www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
192.124.249.104301 Moved Permanently 162 B URL HTTP/1.1 www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
IP 192.124.249.104:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert openphish Mobile Legends
fortinet Phishing
GET /article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/ HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Sucuri/Cloudproxy
Date: Sat, 03 Dec 2022 04:02:27 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
X-Sucuri-ID: 19004
Location: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6370
Expires: Sat, 03 Dec 2022 05:48:37 GMT
Date: Sat, 03 Dec 2022 04:02:27 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 625
Cache-Control: max-age=110353
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:27 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 10:41:40 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5236
Expires: Sat, 03 Dec 2022 05:29:43 GMT
Date: Sat, 03 Dec 2022 04:02:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 03:19:58 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2549
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e5a/MO5BVBZMo/vCZqwajm9NDAy5QmHCQ+sU8QANjoNyt4T5La8/2vbfWnZ965t2AUidXMGz25rgB/bKZA/fBQ==
x-amz-request-id: JV4KJXHQJ2CYCTSN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 03:46:58 GMT
age: 929
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 92aa516c6a7377697b44d8d5c0fd0fb3
2f68692532d340ddb55632bb0bb3e57ef7f35f96
80d2f72eba167e03097f5d6e0f1d862aa51c358826bccdb02302436ba88ac2ab
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 03 Dec 2022 04:02:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Dec 2022 21:38:07 GMT
Expires: Sat, 03 Dec 2022 21:38:07 GMT
ETag: "2f68692532d340ddb55632bb0bb3e57ef7f35f96"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 03:08:58 GMT
cache-control: public,max-age=3600
age: 3210
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/images/lcp.svg
192.124.249.104200 OK 306 B URL HTTP/2 www.sunstar.com.ph/theme_sunstar/images/lcp.svg
IP 192.124.249.104:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (306), with no line terminators
Hash d7e3848208b8a53d5caa272c1e2116b7
5740aa3f2d1dd318c1a4c12ae4d1bfcc97e639b7
56ce9a9f71a8465359a676d95189390683de779bdc085f4fa9d48ec0651d9a5f
GET /theme_sunstar/images/lcp.svg HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: image/svg+xml
content-length: 306
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:35 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
etag: "61b6f8b7-132"
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dvU3j3G1aIh20UdZhgC82XvGFBZm8_yMXMIH_zUlr6ZuIwARa-63IQ==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/images/no-image.png
192.124.249.104200 OK 11 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/images/no-image.png
IP 192.124.249.104:0
File type PNG image data, 1000 x 667, 8-bit colormap, non-interlaced\012- data
Hash 7de3ce73c1b62c0ca6e3d4ec9104aa48
8fe8d1d9702e333f2926291ee31eebb32cc71910
ecf5b768b2c1b9c60b55ca88d49f8800ed54555a3970bb16952611dc8b2fe4d2
GET /theme_sunstar/images/no-image.png HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: image/png
content-length: 11190
x-sucuri-id: 19004
last-modified: Wed, 04 May 2022 10:04:06 GMT
etag: "62724f96-2bb6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: slIm5r1IB-8Wxj-Eeb10sYrQfVvmL4ntO1IFXA0kLWKPJxsLoPrNeA==
age: 148409
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1f15cd5561d4095aa262e44aeb81f4e9
50114904e6664d0dcc8c8525a15611c968f721b6
160537c057bc0e67009af9ad6f869ef78f8c23110d1f15f15e98c49b8b9336ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1080
Cache-Control: max-age=157972
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:28 GMT
Etag: "638a8c30-117"
Expires: Sun, 04 Dec 2022 23:55:20 GMT
Last-Modified: Fri, 02 Dec 2022 23:37:20 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
www.sunstar.com.ph/theme_sunstar/js/jquery-3.5.1.min.js
192.124.249.104200 OK 37 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/js/jquery-3.5.1.min.js
IP 192.124.249.104:0
Hash 06d1286d58e673d816c7ba2ad958b07c
25e007ebfd5f60004ad224d9ca22c43c4054330a
9031383cce196d69bc490148a625da87a34fd19f2b021d32cfe25443d1c18d91
GET /theme_sunstar/js/jquery-3.5.1.min.js HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: application/javascript; charset=utf-8
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:40:02 GMT
etag: W/"61b6f8d2-15f8f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RcfL4jj_nWAKA_7I5jTRD4a4ieBr9k6FdB2HEH7GOd-wtK7r4T5Yiw==
age: 1951271
x-sucuri-cache: HIT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-308175-1
142.250.74.40200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-308175-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (1921)
Hash 8251164e9afa753eb7452406ed6e2ca1
355227d62a7f853dc8210a8b5f7712d4f4408bab
48738deb32f0dbc20047590874b3308dbef4c4099d3c78b17121422e15265603
GET /gtag/js?id=UA-308175-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Dec 2022 04:02:28 GMT
expires: Sat, 03 Dec 2022 04:02:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44674
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 613
Cache-Control: max-age=105279
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:28 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 09:17:07 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
www.sunstar.com.ph/theme_sunstar/css/general-styles.min.css?v=0.33
192.124.249.104200 OK 1.4 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/css/general-styles.min.css?v=0.33
IP 192.124.249.104:0
Hash 567fc1c43b52693f7b781ba07ce18a76
7dd8e87445bf94796d8414a2efc144e24644b05b
a2f42f2f782ba928344c550d4407158bb3e073762db16cbdbe2f68049578e24d
GET /theme_sunstar/css/general-styles.min.css?v=0.33 HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: text/css
x-sucuri-id: 19004
last-modified: Tue, 04 Oct 2022 11:51:00 GMT
etag: W/"633c1e24-cc5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6e44e48abc671a9155ea845c36f68920.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: Id_clG-0hu2LzB9WLnky5WOChILznM8N6ee86_-KzWNICi10sXYlzg==
age: 716818
x-sucuri-cache: HIT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1f15cd5561d4095aa262e44aeb81f4e9
50114904e6664d0dcc8c8525a15611c968f721b6
160537c057bc0e67009af9ad6f869ef78f8c23110d1f15f15e98c49b8b9336ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=156892
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:28 GMT
Etag: "638a8c30-117"
Expires: Sun, 04 Dec 2022 23:37:20 GMT
Last-Modified: Fri, 02 Dec 2022 23:37:20 GMT
Server: nginx
Content-Length: 279
anymind360.com/js/3181/ats.js
151.101.65.55200 OK 37 kB URL HTTP/2 anymind360.com/js/3181/ats.js
IP 151.101.65.55:0
File type ASCII text, with very long lines (65391)
Hash a7209018922cfe5cefc0e6ca49ba8902
720f7519b66c474bbd36ec595e006ce2c05adcd4
b6682269ddcc0966989207044b21f3a38abd98810ee3d595fee223af8c16286d
GET /js/3181/ats.js HTTP/1.1
Host: anymind360.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdump9s-SdHCAwRJLO_Z9R3Wsc1tfGJyfMlEVNK3xh1Fhk3kFcQzsRMUCN-6vAqKD1yia6uPBTkJ7t6pdcXxez6i1w
expires: Fri, 02 Dec 2022 08:52:16 GMT
last-modified: Fri, 02 Dec 2022 08:52:15 GMT
etag: "a7209018922cfe5cefc0e6ca49ba8902"
x-goog-generation: 1669971135642966
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 36905
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
x-goog-hash: crc32c=WK6POg==, md5=pyCQGJIs/lzvwObKSbqJAg==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 03 Dec 2022 04:02:28 GMT
age: 69013
x-served-by: cache-tyo11969-TYO, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 9, 2
x-timer: S1670040149.722811,VS0,VE0
vary: Accept-Encoding
cache-control: max-age=1200
strict-transport-security: max-age=31557600
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 36905
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 47787350e9e13de532485f4a7ceb6ec2
6d6bccc0bd29e8031ac070a799e38e3a3446fa7e
643adc8881807c50ac98b3533ff70bae6626313cbbda93fa2648c33a9c942e0c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "643ADC8881807C50AC98B3533FF70BAE6626313CBBDA93FA2648C33A9C942E0C"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15271
Expires: Sat, 03 Dec 2022 08:16:59 GMT
Date: Sat, 03 Dec 2022 04:02:28 GMT
Connection: keep-alive
www.sunstar.com.ph/theme_sunstar/icomoon/icomoon.ttf?o7tww
192.124.249.104200 OK 3.4 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/icomoon/icomoon.ttf?o7tww
IP 192.124.249.104:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash c2a82f69b7fb62e527a4428c5f75b1fc
6a4b1ddb4fe78884e898d0cb1f61481e717cb806
228902e170dc5704804c8c3dffe0088d0d328c996faff5454f548ab11b5f59a1
GET /theme_sunstar/icomoon/icomoon.ttf?o7tww HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/theme_sunstar/css/general-styles.min.css?v=0.33
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.1.613905426.1670040147
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: application/octet-stream
content-length: 3432
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:35 GMT
etag: "61b6f8b7-d68"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Miss from cloudfront
via: 1.1 6e44e48abc671a9155ea845c36f68920.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: 8TBrBQlK4iW1lwoduLzmIhaoVzIZt5vUk25vUTC7Pxx4_wSKIf2cTg==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
scripts.kiosked.com/loader/kiosked-loader.js?site=17614
54.230.111.49200 OK 94 kB URL HTTP/1.1 scripts.kiosked.com/loader/kiosked-loader.js?site=17614
IP 54.230.111.49:0
File type Unicode text, UTF-8 text, with very long lines (65402)
Hash 7c760de30552806a06430396f68510ff
a1754891ced7f44ad5e50c4128beb14b80ecc5c9
c96cdf06d6cb575fb1add2887acfd5754462bac991a80608957370316df88141
GET /loader/kiosked-loader.js?site=17614 HTTP/1.1
Host: scripts.kiosked.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="KIOSKED"
Pragma: no-cache
Server: nginx/1.14.2
Timing-Allow-Origin: *
Cache-Control: private, max-age=0, must-revalidate, no-cache
Date: Sat, 03 Dec 2022 03:59:30 GMT
Expires: 0
ETag: W/"427f52d722e444a0156affe58384bd85131ffbe5dbf17707e664bf94ff755b4e"
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rzZf4CwRpuAiN7PThJQAqBuxdEB6t0UknsDpqbxBm7Li2XJaccwmWw==
Age: 178
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5b84fab1916684d872ff59e89e60c7a8
9b4f2c4f1e7b84c1f05c038b2cde8ce4f199f5cf
7de9c4e14b0c87eb74a0413d30cc445a45dcee65338ee1a9c71caf034e6e5fb7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2350
Cache-Control: max-age=166751
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:28 GMT
Etag: "638aa985-117"
Expires: Mon, 05 Dec 2022 02:21:39 GMT
Last-Modified: Sat, 03 Dec 2022 01:42:29 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5b84fab1916684d872ff59e89e60c7a8
9b4f2c4f1e7b84c1f05c038b2cde8ce4f199f5cf
7de9c4e14b0c87eb74a0413d30cc445a45dcee65338ee1a9c71caf034e6e5fb7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1113
Cache-Control: max-age=165514
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:28 GMT
Etag: "638aa985-117"
Expires: Mon, 05 Dec 2022 02:01:02 GMT
Last-Modified: Sat, 03 Dec 2022 01:42:29 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
tag.adbro.me/tags/ptag.js
104.22.48.253200 OK 32 kB URL HTTP/2 tag.adbro.me/tags/ptag.js
IP 104.22.48.253:0
Hash 2bfc16b22b7ac3a1e1f35021cfba84f1
fcf8f7e8f7dd41c27b3f0edbf992ff60f32145a5
ac1f0582cb149433a69807283e71ef1cab0f8879d472d6fc30ac98df8b0cf4d4
GET /tags/ptag.js HTTP/1.1
Host: tag.adbro.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=137594
content-md5: QvQgWuhhW41zPH/3Ja6Ycg==
last-modified: Thu, 01 Dec 2022 14:12:00 GMT
cache-control: max-age=7200
cf-cache-status: HIT
age: 2400
vary: Accept-Encoding
server: cloudflare
cf-ray: 77396832eb18b4ed-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.213.121.129101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.121.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: k2wMX9/0zCkiIy2YiMQJUQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8Zx5ibZiDC1xjak66afHZ6W0qbY=
www.sunstar.com.ph/js/owl.carousel.min.js?_=1670040146590
192.124.249.104200 OK 27 kB URL HTTP/2 www.sunstar.com.ph/js/owl.carousel.min.js?_=1670040146590
IP 192.124.249.104:0
File type ASCII text, with very long lines (32068)
Hash aaf5dcdda6f482eab3a1ed86d8c23157
6c744f80d0311b5a9bfd2f4087cbea1118d27e30
e12f9246268b00ee22d56fb6e36996c9730107900e56e03c52afe1dea70f6c9d
GET /js/owl.carousel.min.js?_=1670040146590 HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.1.613905426.1670040147
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: application/javascript; charset=utf-8
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:37:47 GMT
etag: W/"61b6f84b-9dd1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1396f0307ab4835adf6e4163507d4c8a.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: SNRgGqdNX-9lfVNDFyRGen6lBEkhSGBcE7h9-lpEq3LCAwsFHdFg5w==
age: 1963700
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
ad-cdn.technoratimedia.com/html/usersync.html
152.199.22.191200 OK 6.9 kB URL HTTP/2 ad-cdn.technoratimedia.com/html/usersync.html
IP 152.199.22.191:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (15550)
Hash ca7853252951b0806b59115bd39ee432
81d828d11c2755626ae4aaf546dc44eaeaa7b82c
e8837312dba289546ebdea6c93e0010bf6bb33b0856b3597a8174c2eb8526c5b
GET /html/usersync.html HTTP/1.1
Host: ad-cdn.technoratimedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-expose-headers: access-control-allow-credentials,access-control-allow-methods,access-control-allow-origin,date,etag,opc-client-info,opc-request-id,x-api-id
age: 119
cache-control: max-age=900
content-md5: FFbxJ2/F0I3zONDZaRlIPw==
content-type: text/html; charset=utf-8
date: Sat, 03 Dec 2022 04:02:29 GMT
etag: 96d8defa-7ed3-4bf6-984e-9a91c0d53fe6
expires: Sat, 03 Dec 2022 04:17:29 GMT
last-modified: Tue, 29 Nov 2022 14:49:17 GMT
opc-request-id: iad-1:NawnYvYkVs9w_xNdpJsIOzPGndfo1nttX69BJ1tr1tufM5BaDwLYp9_E2pIXSj4S
server: ECAcc (ska/F6B2)
storage-tier: Standard
vary: Accept-Encoding
version-id: 19cfae25-bc35-407d-9577-06d083aedab5
x-api-id: native
x-cache: HIT
content-length: 6922
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 4ad981e34cb86e99cf88bcd5cffe2e10
8e5a9de9e253851e3501e31d475f398cd5e09546
9878a3d1c01d36521fad20836dd40b332fdf11ea347d0880df398cdd15d6d987
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 03 Dec 2022 04:02:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Dec 2022 20:59:54 GMT
Expires: Sat, 03 Dec 2022 20:59:54 GMT
ETag: "8e5a9de9e253851e3501e31d475f398cd5e09546"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
gslbeacon.lijit.com/beacon?viewId=kiosked1_auction_api&rand=542838&informer=13403098&type=fpads&loc=www.sunstar.com.ph&v=1.2
216.52.2.48302 Found 0 B URL HTTP/1.1 gslbeacon.lijit.com/beacon?viewId=kiosked1_auction_api&rand=542838&informer=13403098&type=fpads&loc=www.sunstar.com.ph&v=1.2
IP 216.52.2.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beacon?viewId=kiosked1_auction_api&rand=542838&informer=13403098&type=fpads&loc=www.sunstar.com.ph&v=1.2 HTTP/1.1
Host: gslbeacon.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 03 Dec 2022 04:02:29 GMT
Set-Cookie: ljt_reader=FwJStNZHp2oHPVFQSXWI9iDT; Path=/; Domain=.lijit.com; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000;Secure;SameSite=None
Expires: Fri, 20 Mar 2009 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
P3P: CP="CUR ADM OUR NOR STA NID"
Location: https://gslbeacon.lijit.com/beacon?viewId=kiosked1_auction_api&rand=542838&informer=13403098&type=fpads&loc=www.sunstar.com.ph&v=1.2&dnr=1
Content-Length: 0
X-Sovrn-Pod: ad_ap5ams1
ads.pubmatic.com/AdServer/js/pwt/158497/6026/pwt.js
23.38.200.201200 OK 77 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/158497/6026/pwt.js
IP 23.38.200.201:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b7a0b8de3679d36b6deee0c0ecbe11b8
c883353328f7b611d6e025cba866391114932922
a573ebeb849d361c00040bd7c818c173ac284230d88f799e68274f66bb62d029
GET /AdServer/js/pwt/158497/6026/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Nov 2021 07:43:05 GMT
etag: "17a1e9c-3d366-5d0929c129163"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: text/javascript
content-length: 77259
cache-control: max-age=90563
expires: Sun, 04 Dec 2022 05:11:52 GMT
date: Sat, 03 Dec 2022 04:02:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/images/favicon.ico
192.124.249.104200 OK 15 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/images/favicon.ico
IP 192.124.249.104:0
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 926f04e1e38f0a50713958fefd040756
0022a421eb216127506f7f811be8b3f3f40f3b3a
2cbe158d2b142f2782bfc014415911be5e20ddf8aca791e455b64dcbf28f3606
GET /theme_sunstar/images/favicon.ico HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.1.613905426.1670040147
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:29 GMT
content-type: image/x-icon
content-length: 15086
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:35 GMT
etag: "61b6f8b7-3aee"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Miss from cloudfront
via: 1.1 6e44e48abc671a9155ea845c36f68920.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: Jp5X1FESiJ2GNJIw3S1eydw0hCxf8sdOXhnVQlsFVpqy9pfMHa5WGg==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
gslbeacon.lijit.com/beacon?viewId=kiosked1_auction_api&rand=542838&informer=13403098&type=fpads&loc=www.sunstar.com.ph&v=1.2&dnr=1
216.52.2.48204 No Content 0 B URL HTTP/1.1 gslbeacon.lijit.com/beacon?viewId=kiosked1_auction_api&rand=542838&informer=13403098&type=fpads&loc=www.sunstar.com.ph&v=1.2&dnr=1
IP 216.52.2.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beacon?viewId=kiosked1_auction_api&rand=542838&informer=13403098&type=fpads&loc=www.sunstar.com.ph&v=1.2&dnr=1 HTTP/1.1
Host: gslbeacon.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Sat, 03 Dec 2022 04:02:29 GMT
Set-Cookie: ljt_reader=FwJStNZH2ieyJGS7Q9yJQrVx; Path=/; Domain=.lijit.com; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000;Secure;SameSite=None
Expires: Fri, 20 Mar 2009 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap5ams1
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 02:46:55 GMT
expires: Sat, 03 Dec 2022 04:46:55 GMT
cache-control: public, max-age=7200
age: 4534
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/bSPJ7THa5M4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/bSPJ7THa5M4
IP 142.250.74.131:0
Hash 0e43658e4333258ebbf90a87979023c1
9b83b7a4460c0524082415c8b5dca97e8bbaacec
62221fc13e233358e09ba57a9fefa09690e5bda2ff31cb4c24b00d5bdc82c868
POST /s/gts1d4/bSPJ7THa5M4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p.adlooxtracking.com/gpt/a.js
34.107.231.31200 OK 3.7 kB URL HTTP/2 p.adlooxtracking.com/gpt/a.js
IP 34.107.231.31:0
File type ASCII text, with very long lines (535)
Hash 0a701f7ef001fbb7f9b0730889dfacfb
82d2458323a133ae162ff3158e2f72a9a7d375c7
b54289866d7d7610b8654e5aae5d02e3470ae54132a8c4b507f075a02934afdd
GET /gpt/a.js HTTP/1.1
Host: p.adlooxtracking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
x-content-type-options: nosniff
timing-allow-origin: *
content-encoding: gzip
via: 1.1 google
date: Sat, 03 Dec 2022 03:55:21 GMT
last-modified: Tue, 22 Nov 2022 17:41:01 GMT
etag: W/"81c857a6c52da1ca7444f198bd33b2ea"
content-type: text/javascript
content-length: 3703
age: 428
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=507918834&t=pageview&_s=1&dl=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&ul=en-us&de=UTF-8&dt=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAACAAI~&jid=261061308&gjid=181262620&cid=613905426.1670040147&tid=UA-308175-1&_gid=275127562.1670040147&_r=1>m=2oubu0&z=1464020261
142.250.74.46200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=507918834&t=pageview&_s=1&dl=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&ul=en-us&de=UTF-8&dt=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAACAAI~&jid=261061308&gjid=181262620&cid=613905426.1670040147&tid=UA-308175-1&_gid=275127562.1670040147&_r=1>m=2oubu0&z=1464020261
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j98&a=507918834&t=pageview&_s=1&dl=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&ul=en-us&de=UTF-8&dt=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAACAAI~&jid=261061308&gjid=181262620&cid=613905426.1670040147&tid=UA-308175-1&_gid=275127562.1670040147&_r=1>m=2oubu0&z=1464020261 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.sunstar.com.ph
date: Sat, 03 Dec 2022 04:02:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/bSPJ7THa5M4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/bSPJ7THa5M4
IP 142.250.74.131:0
Hash 0e43658e4333258ebbf90a87979023c1
9b83b7a4460c0524082415c8b5dca97e8bbaacec
62221fc13e233358e09ba57a9fefa09690e5bda2ff31cb4c24b00d5bdc82c868
POST /s/gts1d4/bSPJ7THa5M4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-NKNB9VQZRL>m=2oebu0&_p=507918834&cid=613905426.1670040147&ul=en-us&sr=1280x1024&_s=1&sid=1670040146&sct=1&seg=0&dl=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&dt=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-NKNB9VQZRL>m=2oebu0&_p=507918834&cid=613905426.1670040147&ul=en-us&sr=1280x1024&_s=1&sid=1670040146&sct=1&seg=0&dl=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&dt=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NKNB9VQZRL>m=2oebu0&_p=507918834&cid=613905426.1670040147&ul=en-us&sr=1280x1024&_s=1&sid=1670040146&sct=1&seg=0&dl=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&dt=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.sunstar.com.ph
date: Sat, 03 Dec 2022 04:02:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tag.adbro.me/configs/uvbky7iu.js
104.22.48.253200 OK 28 kB URL HTTP/2 tag.adbro.me/configs/uvbky7iu.js
IP 104.22.48.253:0
File type ASCII text, with very long lines (39235)
Hash ab87ee799bbfa2b172dcac559873d174
f53640556c301cdeb659a6a8930b253332ca8545
c1a1efbdf50c9d94b330d9d8c8562e9d83e148af0bb5bd45b065432d6269c50c
GET /configs/uvbky7iu.js HTTP/1.1
Host: tag.adbro.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1398
last-modified: Thu, 13 Oct 2022 04:51:39 GMT
cache-control: max-age=7200
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 77396832db15b4ed-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-308175-1&cid=613905426.1670040147&jid=261061308&gjid=181262620&_gid=275127562.1670040147&_u=YADAAUAAAAAAACAAI~&z=1366756565
108.177.14.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-308175-1&cid=613905426.1670040147&jid=261061308&gjid=181262620&_gid=275127562.1670040147&_u=YADAAUAAAAAAACAAI~&z=1366756565
IP 108.177.14.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-308175-1&cid=613905426.1670040147&jid=261061308&gjid=181262620&_gid=275127562.1670040147&_u=YADAAUAAAAAAACAAI~&z=1366756565 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.sunstar.com.ph
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 03 Dec 2022 04:02:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json
151.101.65.229200 OK 927 B URL HTTP/2 cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json
IP 151.101.65.229:0
File type JSON data\012- , ASCII text, with very long lines (1648), with no line terminators
Hash 4511f5e8d2a034b9e7cd29b9fed19f2a
d5eb38fd28fb934867d70e273576738ccb62bbc4
60b531156eb13fc2d403e61dd6f7e485e95718d23887c8e17a2fcbe278996558
GET /gh/prebid/currency-file@1/latest.json HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/json; charset=utf-8
x-jsd-version: 1.0.1543
x-jsd-version-type: version
etag: W/"670-iTSVjGbS9Inwzf1ipsKlJ1v0grs"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 03 Dec 2022 04:02:29 GMT
age: 23067
x-served-by: cache-fra-eddf8230021-FRA, cache-bma1658-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 927
X-Firefox-Spdy: h2
sync.technoratimedia.com/services?srv=cs
132.226.41.106204 No Content 0 B URL HTTP/2 sync.technoratimedia.com/services?srv=cs
IP 132.226.41.106:0
ASN #31898 ORACLE-BMC-31898
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /services?srv=cs HTTP/1.1
Host: sync.technoratimedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ad-cdn.technoratimedia.com
Connection: keep-alive
Referer: https://ad-cdn.technoratimedia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
server: nginx
date: Sat, 03 Dec 2022 04:02:29 GMT
set-cookie: tads_uid=GDPR; Max-Age=157680000; Expires=Thu, 02 Dec 2027 04:02:29 GMT; Path=/; Domain=.technoratimedia.com; Secure; SameSite=None
access-control-allow-origin: https://ad-cdn.technoratimedia.com
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,HEAD,OPTIONS
x-varnish: 420703326
age: 0
via: 1.1 varnish
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
37.252.171.85200 OK 53 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.85:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 383f9c4be349dffa576501d3bb905192
00ca8d8ed02e204dd27d5aa0309cd8e7fc514a47
a68a70f7be9281f3f7148b38d7f5971f1dc946d3034a40e55021d0fb6fb78d73
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 4077
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 03 Dec 2022 04:02:29 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 53
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.sunstar.com.ph
AN-X-Request-Uuid: 22084fa6-b2bc-4b96-bfdd-357c61d8bf5b
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 1d01c48aceb0aa610a1769d1398e403d
7c5e8e14bc685af339a979ceef6c2942994bd86e
925a72d059b45264690446d0e004cf1a96d4be10dbf614ad51113af07e82404a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 613
Cache-Control: max-age=112474
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:29 GMT
Etag: "6389dc4a-139"
Expires: Sun, 04 Dec 2022 11:17:03 GMT
Last-Modified: Fri, 02 Dec 2022 11:06:50 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
bidder.criteo.com/cdb?profileId=207&av=34&wv=6.29.3&cb=61395990496
178.250.2.131200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=6.29.3&cb=61395990496
IP 178.250.2.131:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=6.29.3&cb=61395990496 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3268
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:29 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://www.sunstar.com.ph
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/NdWCLJvP6R8
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/NdWCLJvP6R8
IP 142.250.74.131:0
Hash 5702df31cdf395c589f2e29bcf08869f
9c3b26dd127eba18b39b4f1024017e7bc01ed72d
fc30dda76143f280317314a177ea8ee46df561cb4b3b6319ab1df7974361a82f
POST /s/gts1d4/NdWCLJvP6R8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 26b4023d05bede5784d690513246a06c
236be8a0e43d1d22ff2589cd1261897cbf410ba7
a5bfa761937f191a814c174a52a0f37f37ff2d823d630b6697223fc3f0297c13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 555
Cache-Control: max-age=162821
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:29 GMT
Etag: "638aa12f-1d7"
Expires: Mon, 05 Dec 2022 01:16:10 GMT
Last-Modified: Sat, 03 Dec 2022 01:06:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
151.101.194.133200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 151.101.194.133:0
Hash 215074a50d40262dcfe7541aebd89fc6
c22fc9e105d950462359c979806b7ba5fb299944
0b23e0e3de572695b7d6c5506e8622da1c94aa2f6c6a197acae5e15ccf4bfd3f
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1462
Content-Type: application/ocsp-response
Etag: "1668DEA9B0B407F3D2C6C33D2C58131B334C0B29"
Expires: Sat, 03 Dec 2022 15:00:00 UTC
Last-Modified: Sat, 03 Dec 2022 03:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
Accept-Ranges: bytes
Date: Sat, 03 Dec 2022 04:02:29 GMT
Via: 1.1 varnish
Age: 1675
X-Served-By: cache-bma1655-BMA
X-Cache: HIT
X-Cache-Hits: 6
X-Timer: S1670040150.825739,VS0,VE0
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4d5063e9021d24470e46fdb55d5e6cac
62cb1fec9d675182b3ea68073c3247719b755297
992ce23369636df4579bfb98b20c7feede23f57268fe3d7eb8b2ecf32cecb83e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 328
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:29 GMT
Last-Modified: Sat, 03 Dec 2022 03:57:01 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b1dff4c8ca090f2210c9148d2932b265
7c3f266d98371f366352dc0f8eddc409b517527f
c3bd399d691109ef3e410c772c6f83325b2e54b53ddd20af6c2bb2aacbd86d6b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:02:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 19:45:29 GMT
Expires: Tue, 06 Dec 2022 19:45:28 GMT
Etag: "7c3f266d98371f366352dc0f8eddc409b517527f"
Cache-Control: max-age=315178,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773968385bc7b4ff-OSL
ads.playground.xyz/host-config/prebid?v=2
34.102.253.54204 No Content 0 B URL HTTP/2 ads.playground.xyz/host-config/prebid?v=2
IP 34.102.253.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /host-config/prebid?v=2 HTTP/1.1
Host: ads.playground.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 614
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
x-powered-by: Express
x-request-id: 5b842f1b-8194-452e-a9fd-5ddec65a72c0
access-control-allow-origin: https://www.sunstar.com.ph
vary: Origin
access-control-allow-credentials: true
set-cookie: connect.sid=s%3AbnnkaOrbhiMrfhYk4XSOKEeg_15_46tA.40fTBZTzxy1q6eehWoX%2F89eRwoqCJmhusZNMajTwRZs; Path=/; Expires=Sat, 10 Dec 2022 02:09:57 GMT; HttpOnly; Secure; SameSite=None
date: Sat, 03 Dec 2022 04:02:29 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8e3d315810f86282f246b99c5efd320
f29235b75edbd1366dfae79b49185ff8fb3385d2
212ac32b342e44bc8d0740156a60641a0ec352328f0845d8d8babc47de89eabe
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 677
Cache-Control: max-age=126219
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:29 GMT
Etag: "638a11bb-1d7"
Expires: Sun, 04 Dec 2022 15:06:08 GMT
Last-Modified: Fri, 02 Dec 2022 14:54:51 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
a.teads.tv/hb/bid-request
23.38.201.50200 OK 307 B URL HTTP/2 a.teads.tv/hb/bid-request
IP 23.38.201.50:0
File type JSON data\012- HTML document, ASCII text, with very long lines (415), with no line terminators
Hash c10964336c4cfe6a54af416f7ebdec60
7699584de7ae36d101ea304c4a830f5f07b75001
4010abaf7571155df75aa0a9e01e33268ddf4821e70417ca1d12703ef6d448c5
POST /hb/bid-request HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 706
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64
content-encoding: gzip
expires: Sat, 03 Dec 2022 04:02:29 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 03 Dec 2022 04:02:29 GMT
content-length: 307
vary: Accept-Encoding
X-Firefox-Spdy: h2
adasia-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=e1775931-d690-4772-addd-e266da462f1b%2C0f3be09d-910a-4e9b-8666-864c8152de7d%2Cfea0e0f2-eb26-417a-8e73-1ec6768ade04%2C1ac934b5-c234-40d1-be9c-d340652553f8%2C7e6d99b6-22eb-451d-8308-c66784763510%2C5fc49ea4-4b9e-44bd-a483-7761d87f28b9%2C287ec915-fc3a-4c0a-b78a-8f5a2c934818&nocache=1670040147533&schain=1.0%2C1!anymanager.io%2C3181%2C1%2C%2C%2C&aus=300x250%2C336x280%2C728x90%2C1x1%7C728x90%2C640x360%2C300x250%2C336x280%7C728x90%2C300x250%2C336x280%2C640x360%7C300x250%2C336x280%2C728x90%2C640x360%7C300x250%2C336x280%7C728x90%2C970x90%7C300x600%2C160x600%2C120x600&divids=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-6%2Cats-insert_ads-8%2Cats-insert_ads-14%2Cats-insert_ads-15%2Cats-insert_ads-16&aucs=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-6%2Cats-insert_ads-8%2Cats-insert_ads-14%2Cats-insert_ads-15%2Cats-insert_ads-16&auid=542526078%2C542526081%2C542526086%2C557079868%2C558432239%2C558432247%2C558432258
35.244.159.8200 OK 79 B URL HTTP/2 adasia-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=e1775931-d690-4772-addd-e266da462f1b%2C0f3be09d-910a-4e9b-8666-864c8152de7d%2Cfea0e0f2-eb26-417a-8e73-1ec6768ade04%2C1ac934b5-c234-40d1-be9c-d340652553f8%2C7e6d99b6-22eb-451d-8308-c66784763510%2C5fc49ea4-4b9e-44bd-a483-7761d87f28b9%2C287ec915-fc3a-4c0a-b78a-8f5a2c934818&nocache=1670040147533&schain=1.0%2C1!anymanager.io%2C3181%2C1%2C%2C%2C&aus=300x250%2C336x280%2C728x90%2C1x1%7C728x90%2C640x360%2C300x250%2C336x280%7C728x90%2C300x250%2C336x280%2C640x360%7C300x250%2C336x280%2C728x90%2C640x360%7C300x250%2C336x280%7C728x90%2C970x90%7C300x600%2C160x600%2C120x600&divids=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-6%2Cats-insert_ads-8%2Cats-insert_ads-14%2Cats-insert_ads-15%2Cats-insert_ads-16&aucs=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-6%2Cats-insert_ads-8%2Cats-insert_ads-14%2Cats-insert_ads-15%2Cats-insert_ads-16&auid=542526078%2C542526081%2C542526086%2C557079868%2C558432239%2C558432247%2C558432258
IP 35.244.159.8:0
File type JSON data\012- , ASCII text
Hash 443c6838d741c77ce3cb5720ad7840a5
a92df25ac346a2352d3213495b0782764c784dac
42b68c6f648a98863d3796e727d2bce8ad18dff14866c0959e7a200965c6d705
GET /w/1.0/arj?ju=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=e1775931-d690-4772-addd-e266da462f1b%2C0f3be09d-910a-4e9b-8666-864c8152de7d%2Cfea0e0f2-eb26-417a-8e73-1ec6768ade04%2C1ac934b5-c234-40d1-be9c-d340652553f8%2C7e6d99b6-22eb-451d-8308-c66784763510%2C5fc49ea4-4b9e-44bd-a483-7761d87f28b9%2C287ec915-fc3a-4c0a-b78a-8f5a2c934818&nocache=1670040147533&schain=1.0%2C1!anymanager.io%2C3181%2C1%2C%2C%2C&aus=300x250%2C336x280%2C728x90%2C1x1%7C728x90%2C640x360%2C300x250%2C336x280%7C728x90%2C300x250%2C336x280%2C640x360%7C300x250%2C336x280%2C728x90%2C640x360%7C300x250%2C336x280%7C728x90%2C970x90%7C300x600%2C160x600%2C120x600&divids=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-6%2Cats-insert_ads-8%2Cats-insert_ads-14%2Cats-insert_ads-15%2Cats-insert_ads-16&aucs=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-6%2Cats-insert_ads-8%2Cats-insert_ads-14%2Cats-insert_ads-15%2Cats-insert_ads-16&auid=542526078%2C542526081%2C542526086%2C557079868%2C558432239%2C558432247%2C558432258 HTTP/1.1
Host: adasia-d.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Sat, 03 Dec 2022 04:02:29 GMT
content-type: application/json
content-length: 79
content-encoding: gzip
cache-control: private, max-age=0, no-cache
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 283 B IP 172.64.155.188:0
Hash c374fe1bccd0c59a0e0652c3b7d1d75f
1ebe665f727d32d42788e1de267f9f6b1ce68b5e
18106463d8cb7ea7effec1253228c9bf64a20a1a3b11762ec7e90811f4b30697
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:02:29 GMT
Content-Type: application/ocsp-response
Content-Length: 283
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 16:09:12 GMT
Expires: Fri, 09 Dec 2022 16:09:11 GMT
Etag: "1ebe665f727d32d42788e1de267f9f6b1ce68b5e"
Cache-Control: max-age=561401,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77396838fc05b4ff-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 283 B IP 172.64.155.188:0
Hash c374fe1bccd0c59a0e0652c3b7d1d75f
1ebe665f727d32d42788e1de267f9f6b1ce68b5e
18106463d8cb7ea7effec1253228c9bf64a20a1a3b11762ec7e90811f4b30697
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:02:29 GMT
Content-Type: application/ocsp-response
Content-Length: 283
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 16:09:12 GMT
Expires: Fri, 09 Dec 2022 16:09:11 GMT
Etag: "1ebe665f727d32d42788e1de267f9f6b1ce68b5e"
Cache-Control: max-age=561401,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773968390c490b51-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15c4a632694d5581537a3762c6f579c8
93cc67bde84e616d1ec2a4235ba7b26e3632711e
8c7f9c232f24c0eb75cfd6c585bfa98b59f8aeb6b8b58c243add570b4d687dc6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 528
Cache-Control: max-age=106974
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:29 GMT
Etag: "6389c723-1d7"
Expires: Sun, 04 Dec 2022 09:45:23 GMT
Last-Modified: Fri, 02 Dec 2022 09:36:35 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 13fa1773b20fe3e773081e97cbd1a1e6
079e8a265acc2493986042d5bacfb85282ffb307
a6fb2d3b3e98b22d2d070b2d4e421a194017807b6f884174e154269988a8d29f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:02:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 23:23:23 GMT
Expires: Thu, 08 Dec 2022 23:23:22 GMT
Etag: "079e8a265acc2493986042d5bacfb85282ffb307"
Cache-Control: max-age=501052,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773968393c4eb4ff-OSL
prebid.ad.smaato.net/oapi/prebid
34.253.70.245400 Bad Request 0 B URL HTTP/2 prebid.ad.smaato.net/oapi/prebid
IP 34.253.70.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /oapi/prebid HTTP/1.1
Host: prebid.ad.smaato.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 854
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
date: Sat, 03 Dec 2022 04:02:29 GMT
content-length: 0
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-expose-headers: X-SMT-DivId,X-SMT-SessionId,X-SMT-ADTYPE,X-SMT-Impression-Measurement,X-SMT-MESSAGE,X-SMT-Expires
x-smt-sessionid: 2b0a4b5e-12b3-d61a-49ab-897fae472580
x-smt-message: GDPR inventory not enabled for Application. Please contact your Account Manager.
server: SOMA
X-Firefox-Spdy: h2
htlb.casalemedia.com/openrtb/pbjs?s=503783&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%2238b90efab269e628%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A3%2C%22msi%22%3A3%2C%22mfu%22%3A0%2C%22bu%22%3A7%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A7%2C%22ren%22%3Afalse%2C%22version%22%3A%226.29.3%22%2C%22userIds%22%3A%5B%5D%2C%22url%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%2C%22err%22%3A%7B%222%22%3A1%7D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%22406bd214bfd4bc8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897294902%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22336x280%22%7D%7D%2C%7B%22w%22%3A1%2C%22h%22%3A1%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%221x1%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%2241aa781f6f9bee%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%2245a926d40970ddc8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%22%7D%7D%2C%7B%22id%22%3A%22492bd045f7a448a%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50%22%7D%7D%2C%7B%22id%22%3A%22539378837ccc6a98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665491827%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665491827%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right1_300x250%2F%2F336x280%22%7D%7D%2C%7B%22id%22%3A%2255f05359e52b4e78%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665369858%22%7D%7D%2C%7B%22w%22%3A970%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665369858%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_top2_728x90%2F%2F970x90%2F%2F320x100%2F%2F320x50%22%7D%7D%2C%7B%22id%22%3A%22578b7f08feb83ef%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222666015657%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222666015657%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222666015657%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right2_sticky_120x600%2F%2F160x600%2F%2F300x600%22%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22anymanager.io%22%2C%22sid%22%3A%223181%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%7D
104.18.33.19200 OK 38 B URL HTTP/2 htlb.casalemedia.com/openrtb/pbjs?s=503783&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%2238b90efab269e628%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A3%2C%22msi%22%3A3%2C%22mfu%22%3A0%2C%22bu%22%3A7%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A7%2C%22ren%22%3Afalse%2C%22version%22%3A%226.29.3%22%2C%22userIds%22%3A%5B%5D%2C%22url%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%2C%22err%22%3A%7B%222%22%3A1%7D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%22406bd214bfd4bc8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897294902%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22336x280%22%7D%7D%2C%7B%22w%22%3A1%2C%22h%22%3A1%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%221x1%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%2241aa781f6f9bee%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%2245a926d40970ddc8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%22%7D%7D%2C%7B%22id%22%3A%22492bd045f7a448a%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50%22%7D%7D%2C%7B%22id%22%3A%22539378837ccc6a98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665491827%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665491827%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right1_300x250%2F%2F336x280%22%7D%7D%2C%7B%22id%22%3A%2255f05359e52b4e78%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665369858%22%7D%7D%2C%7B%22w%22%3A970%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665369858%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_top2_728x90%2F%2F970x90%2F%2F320x100%2F%2F320x50%22%7D%7D%2C%7B%22id%22%3A%22578b7f08feb83ef%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222666015657%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222666015657%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222666015657%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right2_sticky_120x600%2F%2F160x600%2F%2F300x600%22%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22anymanager.io%22%2C%22sid%22%3A%223181%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%7D
IP 104.18.33.19:0
File type JSON data\012- , ASCII text, with no line terminators
Hash fdcc04760e8c0133c15d727a7c5a2518
35dc114de0dcc78c1df8d8c33e90ebb2be837533
76123355bfc51837350af4d7d74ddcf891303e804ffef390c6396bb2c3197b97
GET /openrtb/pbjs?s=503783&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%2238b90efab269e628%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A3%2C%22msi%22%3A3%2C%22mfu%22%3A0%2C%22bu%22%3A7%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A7%2C%22ren%22%3Afalse%2C%22version%22%3A%226.29.3%22%2C%22userIds%22%3A%5B%5D%2C%22url%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%2C%22err%22%3A%7B%222%22%3A1%7D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%22406bd214bfd4bc8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897294902%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22336x280%22%7D%7D%2C%7B%22w%22%3A1%2C%22h%22%3A1%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%221x1%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%2241aa781f6f9bee%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%2245a926d40970ddc8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%22%7D%7D%2C%7B%22id%22%3A%22492bd045f7a448a%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50%22%7D%7D%2C%7B%22id%22%3A%22539378837ccc6a98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665491827%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665491827%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right1_300x250%2F%2F336x280%22%7D%7D%2C%7B%22id%22%3A%2255f05359e52b4e78%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665369858%22%7D%7D%2C%7B%22w%22%3A970%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222665369858%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_top2_728x90%2F%2F970x90%2F%2F320x100%2F%2F320x50%22%7D%7D%2C%7B%22id%22%3A%22578b7f08feb83ef%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222666015657%22%7D%7D%2C%7B%22w%22%3A160%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222666015657%22%7D%7D%2C%7B%22w%22%3A120%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222666015657%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right2_sticky_120x600%2F%2F160x600%2F%2F300x600%22%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22anymanager.io%22%2C%22sid%22%3A%223181%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%7D HTTP/1.1
Host: htlb.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:29 GMT
content-type: application/json
content-length: 38
cf-ray: 7739683889efb518-OSL
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D2GTNno3nQ9fLlOMOGw1wrrP0rtJfJhPrvgrfgS59sNp0%2FtHnStLZlMydSHmm%2B4WZkMAsz1oL7Fj4raMJkJPoJp%2FirrUwPCj%2FZyfmMGDiYginetPxC96tnFgaNyjokn64dO548S7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
prebid.ad.smaato.net/oapi/prebid
34.253.70.245400 Bad Request 0 B URL HTTP/2 prebid.ad.smaato.net/oapi/prebid
IP 34.253.70.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /oapi/prebid HTTP/1.1
Host: prebid.ad.smaato.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 869
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Sat, 03 Dec 2022 04:02:29 GMT
content-length: 0
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-expose-headers: X-SMT-DivId,X-SMT-SessionId,X-SMT-ADTYPE,X-SMT-Impression-Measurement,X-SMT-MESSAGE,X-SMT-Expires
x-smt-sessionid: 6d02b8cf-853c-c839-754b-b8879b774043
x-smt-message: GDPR inventory not enabled for Application. Please contact your Account Manager.
server: SOMA
X-Firefox-Spdy: h2
prebid.ad.smaato.net/oapi/prebid
34.253.70.245400 Bad Request 0 B URL HTTP/2 prebid.ad.smaato.net/oapi/prebid
IP 34.253.70.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /oapi/prebid HTTP/1.1
Host: prebid.ad.smaato.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 832
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Sat, 03 Dec 2022 04:02:29 GMT
content-length: 0
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-expose-headers: X-SMT-DivId,X-SMT-SessionId,X-SMT-ADTYPE,X-SMT-Impression-Measurement,X-SMT-MESSAGE,X-SMT-Expires
x-smt-sessionid: 95a2c1ca-e271-b601-d7cb-10790fc10789
x-smt-message: GDPR inventory not enabled for Application. Please contact your Account Manager.
server: SOMA
X-Firefox-Spdy: h2
prebid.ad.smaato.net/oapi/prebid
34.253.70.245400 Bad Request 0 B URL HTTP/2 prebid.ad.smaato.net/oapi/prebid
IP 34.253.70.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /oapi/prebid HTTP/1.1
Host: prebid.ad.smaato.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 835
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Sat, 03 Dec 2022 04:02:29 GMT
content-length: 0
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-expose-headers: X-SMT-DivId,X-SMT-SessionId,X-SMT-ADTYPE,X-SMT-Impression-Measurement,X-SMT-MESSAGE,X-SMT-Expires
x-smt-sessionid: 4271fdf2-7ad4-1ba5-6f90-7fe9f16c3b8a
x-smt-message: GDPR inventory not enabled for Application. Please contact your Account Manager.
server: SOMA
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 07b6ce9d6736186c7a24c054f5dc6d17
dc4b7862583161053fc9c414259fc29f74ea72f8
df2b7bd6959ee5dc0901570cbe3406d4db19cb700e930496106a00abf498aaaa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 554
Cache-Control: max-age=129682
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:30 GMT
Etag: "638a1fbe-13a"
Expires: Sun, 04 Dec 2022 16:03:52 GMT
Last-Modified: Fri, 02 Dec 2022 15:54:38 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 07b6ce9d6736186c7a24c054f5dc6d17
dc4b7862583161053fc9c414259fc29f74ea72f8
df2b7bd6959ee5dc0901570cbe3406d4db19cb700e930496106a00abf498aaaa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 545
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:30 GMT
Last-Modified: Sat, 03 Dec 2022 03:53:25 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 314
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Accept-Encoding,Origin,Accept-Language,X-CSRF-Token,x-unruly-override
access-control-max-age: 1728000
content-type: text/plain charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
prebid.ad.smaato.net/oapi/prebid
34.253.70.245400 Bad Request 0 B URL HTTP/2 prebid.ad.smaato.net/oapi/prebid
IP 34.253.70.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /oapi/prebid HTTP/1.1
Host: prebid.ad.smaato.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 871
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Sat, 03 Dec 2022 04:02:30 GMT
content-length: 0
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-expose-headers: X-SMT-DivId,X-SMT-SessionId,X-SMT-ADTYPE,X-SMT-Impression-Measurement,X-SMT-MESSAGE,X-SMT-Expires
x-smt-sessionid: 41feeae8-c43e-2476-7c6b-ccdc43e3ea0f
x-smt-message: GDPR inventory not enabled for Application. Please contact your Account Manager.
server: SOMA
X-Firefox-Spdy: h2
prebid.ad.smaato.net/oapi/prebid
34.253.70.245400 Bad Request 0 B URL HTTP/2 prebid.ad.smaato.net/oapi/prebid
IP 34.253.70.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /oapi/prebid HTTP/1.1
Host: prebid.ad.smaato.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 870
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Sat, 03 Dec 2022 04:02:30 GMT
content-length: 0
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-expose-headers: X-SMT-DivId,X-SMT-SessionId,X-SMT-ADTYPE,X-SMT-Impression-Measurement,X-SMT-MESSAGE,X-SMT-Expires
x-smt-sessionid: 2595078a-4a63-436d-4202-ed00adb541eb
x-smt-message: GDPR inventory not enabled for Application. Please contact your Account Manager.
server: SOMA
X-Firefox-Spdy: h2
prg-apac.smartadserver.com/prebid/v1
185.86.139.116200 OK 0 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.139.116:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 469
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2232
Expires: Sat, 03 Dec 2022 04:39:42 GMT
Date: Sat, 03 Dec 2022 04:02:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2232
Expires: Sat, 03 Dec 2022 04:39:42 GMT
Date: Sat, 03 Dec 2022 04:02:30 GMT
Connection: keep-alive
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.189.112204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.189.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3192
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache, no-store, must-revalidate
date: Sat, 03 Dec 2022 04:02:30 GMT
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
185.86.139.58200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.139.58:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 438
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash becc8cdba57494c6fe212eb67634e1eb
c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8
fbb25b88b10a818bb0c6ad385b1e5ba54b87672c73bfa8a9c1ecb17dcc689d5a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11942
x-amzn-requestid: ba8a5d03-7796-4c6d-a6df-3cc71b1c5259
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: chqukGmWoAMFtLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a24c3-609dc90d769060d30a16e3df;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 16:16:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: m6j_3bDGFIAHQYzrZ1zXqUb-HbEJ8XCoGH5mgBFOWRbLzoSiuNBnhg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:55 GMT
etag: "c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8"
content-type: image/jpeg
age: 23075
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbee75c6c314655f738b57b828bef016
bb36d39c7adf764e8a7dcf7f91125001623975b4
fd40949b9711db01be746d1723f78c2bb04d356063c6249b8b5ae1470532367a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10877
x-amzn-requestid: bebc4f7f-7349-4973-99f5-d6c3b8a27072
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1G2uIAMFryg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-0637a1a946db78074bc19dc3;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wtaahzdJXnHSYwqIlHyqFy-LsdPl1Nh-CThm-x57bU3dUEgrfB1Gvw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:47 GMT
age: 23083
etag: "bb36d39c7adf764e8a7dcf7f91125001623975b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ffa12df550123f63b20f67437cd8a04
398fd2d837c73f54c4591b69cd683f29bdf9184a
fd9ac4396488098923c27531295e64475047dd008a901e59915109a73a69f305
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6119
x-amzn-requestid: b0bf3aed-f968-4ebb-953e-35300d74ef16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdCe8GgNIAMFQag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63884ac5-4b20ca67753e65c5232660f5;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 06:33:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: axyk2U1R7AX1RVQmdc303S2S2CUs_RgphyeYPsbGveGHMAjY3KEzdw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 13:19:35 GMT
age: 52975
etag: "398fd2d837c73f54c4591b69cd683f29bdf9184a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F741da48c-a860-42fc-8f5c-4572522c2f56.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F741da48c-a860-42fc-8f5c-4572522c2f56.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 585e7e56aed6b2f2f5e658f46bb791c4
34b768eb68f6cb850ff984fd687096e089649523
5412ba902e667571b0bbb3879ba6b9ad39501abce59381e84e6aa09779e7198b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F741da48c-a860-42fc-8f5c-4572522c2f56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6416
x-amzn-requestid: f5456dd6-8459-4a19-a9b5-b7b567fceb01
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cik2pG5aoAMFrVg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a81c3-0923232b35133f471332062b;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 22:52:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8TZjwYhWWdmfZcne3lTU9GR4TqsEjoslXu5WxuF0arKiup8-kBjqbQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 23:08:35 GMT
age: 17635
etag: "34b768eb68f6cb850ff984fd687096e089649523"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
go.trvdp.com/init/5620.js
143.204.55.72200 OK 5.8 kB URL HTTP/2 go.trvdp.com/init/5620.js
IP 143.204.55.72:0
File type ASCII text, with very long lines (5845), with no line terminators
Hash 80c8685af100d8c9c57f97f193cc6947
d4fffa312ce86b07a465ceea578e1389fe0228bc
73eeeef4aae38ab9250c17da31aa8669dac1c4e1c8123589a9215ae6fe727db5
GET /init/5620.js HTTP/1.1
Host: go.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5845
date: Sun, 29 May 2022 06:31:12 GMT
last-modified: Sun, 01 May 2022 12:05:47 GMT
etag: "80c8685af100d8c9c57f97f193cc6947"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FK2_kthedvVLEkowqUaYRswQ64kzAHuQFRTaNYHSgMKAOm6BXVa98g==
age: 16234279
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F690354e1-4f19-43a3-a840-dac23e2cbe16.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F690354e1-4f19-43a3-a840-dac23e2cbe16.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94556ef834fbd97092ea3e546fece90d
3f75442d8577c6272b9a3fdf2c5d1305c5e02703
0e49c3b246f4f999404e408e5326c636584f18ddaeec4ff50ffdd74ad48b9dd3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F690354e1-4f19-43a3-a840-dac23e2cbe16.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10454
x-amzn-requestid: 3c95e941-d127-43a5-a338-7fff4e751367
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTPfcG82IAMF2JA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63845f95-4dde51fa769890d057216cfa;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 07:13:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GaPRHeLJCWSLgGsYaCxii5UNLcRbVsBJV-XvSnDid4KzIqGqLWCc7Q==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 08:18:23 GMT
age: 71047
etag: "3f75442d8577c6272b9a3fdf2c5d1305c5e02703"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/NdWCLJvP6R8
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/NdWCLJvP6R8
IP 142.250.74.131:0
Hash 5702df31cdf395c589f2e29bcf08869f
9c3b26dd127eba18b39b4f1024017e7bc01ed72d
fc30dda76143f280317314a177ea8ee46df561cb4b3b6319ab1df7974361a82f
POST /s/gts1d4/NdWCLJvP6R8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:30 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8e3d315810f86282f246b99c5efd320
f29235b75edbd1366dfae79b49185ff8fb3385d2
212ac32b342e44bc8d0740156a60641a0ec352328f0845d8d8babc47de89eabe
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 678
Cache-Control: max-age=126219
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:30 GMT
Etag: "638a11bb-1d7"
Expires: Sun, 04 Dec 2022 15:06:09 GMT
Last-Modified: Fri, 02 Dec 2022 14:54:51 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PIC-TIeTFK_Y2AiqowYT4_8tMuzIKO23lAwx18fYepTf4PIWkmLqkQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:20:15 GMT
age: 81735
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Accept-Encoding,Origin,Accept-Language,X-CSRF-Token,x-unruly-override
access-control-max-age: 1728000
content-type: text/plain charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
prg-apac.smartadserver.com/prebid/v1
185.86.139.116200 OK 505 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.139.116:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (837), with no line terminators
Hash 78c8aedc93087b66da41885980082058
03d1b3cef8d4d6eb7044f08724e620e46e3cb7af
489c13e7ea4c32a0602b1b2ad4b72bd9fdf561fb9b289fb081171be52ff5e937
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 470
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=9136489397220463185; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369500436348&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg-apac.smartadserver.com/prebid/v1
185.86.139.116200 OK 591 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.139.116:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1207), with no line terminators
Hash a775475bbbf109be5b8693ce5fb42434
e853125a0c3fa7cd8a897de8b40cf828688b5233
400e293c814c11a2f75dcd531ef2ff9f1cef73ed5ffef9114945b2f1beb00164
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 469
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=3610981402179457675; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369500482494&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4d5063e9021d24470e46fdb55d5e6cac
62cb1fec9d675182b3ea68073c3247719b755297
992ce23369636df4579bfb98b20c7feede23f57268fe3d7eb8b2ecf32cecb83e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 329
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:30 GMT
Last-Modified: Sat, 03 Dec 2022 03:57:01 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
prg-apac.smartadserver.com/prebid/v1
185.86.139.116200 OK 511 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.139.116:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (877), with no line terminators
Hash 04c5caf87632cdedbee289f7f4d1828f
e34a2d8065fe1981f625cd3ddea821d951de175c
722e51ae750da2375f83d3a233799b46de648f54f860673ea79adcd087d6dbbb
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 469
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=7444758661872931424; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369500569703&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.139.58200 OK 567 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.139.58:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1067), with no line terminators
Hash 0e5b25c52a8275031a9d333530394462
018c2aa6c244237ffb66bbbf9844cbd24f57529f
e9092f02a9368ec831d8f9f41a8cc22157185faf9087bbe95734b7c13d257936
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 436
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=4333933103718519501; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369500682565&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg-apac.smartadserver.com/prebid/v1
185.86.139.116200 OK 561 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.139.116:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1217), with no line terminators
Hash c37899c53f7686ce76be715e1dc878cf
2dc07283c495ee3fdedafa677da2241f25896d97
b1d693c59f5329824543026d5fee88d6ecc08d1116719b7fef45f718002acbdc
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 466
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=4023047569649357371; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369500633870&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg-apac.smartadserver.com/prebid/v1
185.86.139.116200 OK 556 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.139.116:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1025), with no line terminators
Hash 48d3c9e3fcf93e19ffe80ae73e3413c4
e2c52650b080f7ee9e61ea2e9017e1e6392f94cd
734d3c6c9f35e8ac9c0d46145f920b4fc313d84dd92310f4af1b8ced61bb6fdd
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 466
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=5940049661794636479; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369500538560&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.139.58200 OK 569 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.139.58:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1166), with no line terminators
Hash c7d4a9bc85ff016bc0b4939edd75516e
f243812b922d9dc5566c02865038414171de097f
b904741fbd92c5d01a1b1cb872f0f17e3f8d773f6cc00e763be8281ebbb90a6e
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 456
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=8441370788861497955; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369500722261&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.139.58200 OK 521 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.139.58:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1091), with no line terminators
Hash b4cf7bda5998d9baa5f236d95763d7f0
c771994050695c87b70681cd4f51b2f5a2d75e99
a7131150a1d15536ce5aad92122d9a2462af29e3773423bb619a1327643db8da
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 457
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=7583406549854507623; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369500802344&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg-apac.smartadserver.com/prebid/v1
185.86.139.116200 OK 344 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.139.116:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (548), with no line terminators
Hash f37aaa8b90d46092a5c2bbefc177871b
0148963043c42ddebe908bcc5043a868019e2051
2ff331eb8d26df4ef9e2151e5bcee7ab1f2a2c80b545fb12af8cf8679b98aa68
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 473
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=5453682776307061489; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369500847832&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.139.58200 OK 585 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.139.58:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1143), with no line terminators
Hash 6e40e60be3bdc4c49d517ce9902d0aac
a5f8f12a25cdeebf9d00d971ae269043722e43c1
22f31dc46716cae0fe91ab25fd6b036976870a3de7ea73d0aecd3932d9ec7c2a
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 439
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=2178002827005317682; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369500835591&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.139.58200 OK 466 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.139.58:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (905), with no line terminators
Hash f11354072f47dd8f6e9f7b5db28326fd
31c9d367061466595786f1596f4fccec67858e81
4251e1cfd35980b526e7b5693037c5868434659a37b76eaa19a5949e83615d00
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 436
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=6427606863108559458; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369500825589&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.139.58200 OK 571 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.139.58:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1172), with no line terminators
Hash a0596281043c9bad7d0b6e96988faf07
8048aaa0a9f7e8f9f08f5285d4ad8531d5072536
497869153229c664313432e2d539ebcfb290db7bc63f206ae2cdc32e0c370eb5
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 457
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=1972147655848153803; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369501006894&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1168
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1168
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
prg-apac.smartadserver.com/prebid/v1
185.86.139.116200 OK 509 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.139.116:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (968), with no line terminators
Hash 1003b7189e6c6e82350fa80c66a88f72
8528d9231abd450766b53427481bdbe33332802a
5a5cff940c462932d770e055720d4f9b862c0197d610088735b4e82794680e7e
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 472
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=4991540696074867423; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369501434753&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg-apac.smartadserver.com/prebid/v1
185.86.139.116200 OK 479 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.139.116:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (812), with no line terminators
Hash 364ddd6a23b500c36668c5ceac298023
4b74b803733c0e35ea107faf499b485ecc1bd1b2
b48f957d7580346d7d3521a3d2f16f163be126cc8aa8ad56022a13c800879544
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 472
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=4434895600025260736; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369501511626&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg-apac.smartadserver.com/prebid/v1
185.86.139.116200 OK 528 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.139.116:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (908), with no line terminators
Hash a370aa327932913df88c05461e94b6c0
587cedbae8e99f93e8f530f807e4e5b590cfed60
229f873fc272aadf591557152389f189eeddecdb10a49220eb952e4aa0d55c97
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 472
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
vs=342459=5217362; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
pid=393513043015946893; expires=Sun, 03 Dec 2023 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638056369501561404&o=1; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 04 Dec 2022 04:02:30 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 13fa1773b20fe3e773081e97cbd1a1e6
079e8a265acc2493986042d5bacfb85282ffb307
a6fb2d3b3e98b22d2d070b2d4e421a194017807b6f884174e154269988a8d29f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:02:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 23:23:23 GMT
Expires: Thu, 08 Dec 2022 23:23:22 GMT
Etag: "079e8a265acc2493986042d5bacfb85282ffb307"
Cache-Control: max-age=501051,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773968397c7b0b51-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 13fa1773b20fe3e773081e97cbd1a1e6
079e8a265acc2493986042d5bacfb85282ffb307
a6fb2d3b3e98b22d2d070b2d4e421a194017807b6f884174e154269988a8d29f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:02:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 23:23:23 GMT
Expires: Thu, 08 Dec 2022 23:23:22 GMT
Etag: "079e8a265acc2493986042d5bacfb85282ffb307"
Cache-Control: max-age=501051,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773968394c7ab4ff-OSL
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Accept-Encoding,Origin,Accept-Language,X-CSRF-Token,x-unruly-override
access-control-max-age: 1728000
content-type: text/plain charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Accept-Encoding,Origin,Accept-Language,X-CSRF-Token,x-unruly-override
access-control-max-age: 1728000
content-type: text/plain charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 283 B IP 172.64.155.188:0
Hash c374fe1bccd0c59a0e0652c3b7d1d75f
1ebe665f727d32d42788e1de267f9f6b1ce68b5e
18106463d8cb7ea7effec1253228c9bf64a20a1a3b11762ec7e90811f4b30697
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:02:30 GMT
Content-Type: application/ocsp-response
Content-Length: 283
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 16:09:12 GMT
Expires: Fri, 09 Dec 2022 16:09:11 GMT
Etag: "1ebe665f727d32d42788e1de267f9f6b1ce68b5e"
Cache-Control: max-age=561400,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773968391e83b51b-OSL
prebid.ad.smaato.net/oapi/prebid
34.253.70.245400 Bad Request 0 B URL HTTP/2 prebid.ad.smaato.net/oapi/prebid
IP 34.253.70.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /oapi/prebid HTTP/1.1
Host: prebid.ad.smaato.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 867
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Sat, 03 Dec 2022 04:02:30 GMT
content-length: 0
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-expose-headers: X-SMT-DivId,X-SMT-SessionId,X-SMT-ADTYPE,X-SMT-Impression-Measurement,X-SMT-MESSAGE,X-SMT-Expires
x-smt-sessionid: 35f1a4bb-7f7d-2bff-f503-affc12ccc3e4
x-smt-message: GDPR inventory not enabled for Application. Please contact your Account Manager.
server: SOMA
X-Firefox-Spdy: h2
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1167
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1167
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:30 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
s.trvdp.com/scripts/v5.785/float.js
54.230.111.114200 OK 264 kB URL HTTP/2 s.trvdp.com/scripts/v5.785/float.js
IP 54.230.111.114:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65496), with no line terminators
Size 264 kB (263781 bytes)
Hash 410bef2ccb33d2f6ef10646bf6e6d212
48472e7af806899d67fd92e51e7e0a7d050bdf5b
62f31590e94fc268b4f98388b04ad578cf5ef248998245bc69056bb303fe40a9
GET /scripts/v5.785/float.js HTTP/1.1
Host: s.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 07 Nov 2022 13:11:12 GMT
last-modified: Sun, 06 Nov 2022 14:33:45 GMT
etag: W/"93dc232a404aee475e8fed58e67b6fcb"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KwRwqqEeZe7-nm0MMhLRpslfvKyrOSXAjDOJWelWxAHky8V5n0g8NQ==
age: 2213479
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-308175-1&cid=613905426.1670040147&jid=261061308&_u=YADAAUAAAAAAACAAI~&z=1032821074
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-308175-1&cid=613905426.1670040147&jid=261061308&_u=YADAAUAAAAAAACAAI~&z=1032821074
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-308175-1&cid=613905426.1670040147&jid=261061308&_u=YADAAUAAAAAAACAAI~&z=1032821074 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 04:02:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-308175-1&cid=613905426.1670040147&jid=261061308&_u=YADAAUAAAAAAACAAI~&z=1032821074
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-308175-1&cid=613905426.1670040147&jid=261061308&_u=YADAAUAAAAAAACAAI~&z=1032821074
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-308175-1&cid=613905426.1670040147&jid=261061308&_u=YADAAUAAAAAAACAAI~&z=1032821074 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 04:02:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f3a4f3edea56419c58836a0c80d5cea
1558a7ad0acc0c09cdf39ec92030f7ee5736e595
70aeda0cb136ac1add86931a338558b9f302576cd65537575d232fda623fe2f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 04:02:30 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.sunstar.com.ph
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.sunstar.com.ph
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 04:02:30 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1e962a63933ceae80cc9597364a5a3ec
acce84a52a007bcfda538b42b9bbb19b9ecb0578
de5f860424709de994154f4f6f5410e157e5be97e38f424fa2abd84a74387163
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "DE5F860424709DE994154F4F6F5410E157E5BE97E38F424FA2ABD84A74387163"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4300
Expires: Sat, 03 Dec 2022 05:14:11 GMT
Date: Sat, 03 Dec 2022 04:02:31 GMT
Connection: keep-alive
79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
172.217.21.161200 OK 2.7 kB URL HTTP/2 79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Sat, 03 Dec 2022 04:02:31 GMT
expires: Sun, 03 Dec 2023 04:02:31 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
p.trvdp.com/pixel.gif?e=2IJ1YO7RFaBt5C44+wEAKuqBxeEwEL3zm07pfc6Gsh3sM3heWHjDYHUfHxSkwQqDKCHLKuMapdn3BDFcIBD/ROam7u8IMhXwQ9cM3xgNREdABxdBi5mHvRiVApX6uZHDfmCmOEJAcSOBg4JhBeNBav0QYCAlYm4WQhf3Mp85RzrAzZkK5rVmXwF5tfuZVgpV0IYFimn9etBvm58ADk2NOSjugVs1rWpbuDU9660jkM2IyQIM1SC59rZ+6LbkVt9+
52.205.152.252204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=2IJ1YO7RFaBt5C44+wEAKuqBxeEwEL3zm07pfc6Gsh3sM3heWHjDYHUfHxSkwQqDKCHLKuMapdn3BDFcIBD/ROam7u8IMhXwQ9cM3xgNREdABxdBi5mHvRiVApX6uZHDfmCmOEJAcSOBg4JhBeNBav0QYCAlYm4WQhf3Mp85RzrAzZkK5rVmXwF5tfuZVgpV0IYFimn9etBvm58ADk2NOSjugVs1rWpbuDU9660jkM2IyQIM1SC59rZ+6LbkVt9+
IP 52.205.152.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=2IJ1YO7RFaBt5C44+wEAKuqBxeEwEL3zm07pfc6Gsh3sM3heWHjDYHUfHxSkwQqDKCHLKuMapdn3BDFcIBD/ROam7u8IMhXwQ9cM3xgNREdABxdBi5mHvRiVApX6uZHDfmCmOEJAcSOBg4JhBeNBav0QYCAlYm4WQhf3Mp85RzrAzZkK5rVmXwF5tfuZVgpV0IYFimn9etBvm58ADk2NOSjugVs1rWpbuDU9660jkM2IyQIM1SC59rZ+6LbkVt9+ HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:31 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
j.adlooxtracking.com/ads/js/tfav_adl_152.js
104.22.64.146200 OK 37 kB URL HTTP/2 j.adlooxtracking.com/ads/js/tfav_adl_152.js
IP 104.22.64.146:0
File type ASCII text, with very long lines (2623)
Hash 2561e208573d6a467b9e348ac7eda429
9fc5b2a7b96db7a37a5cdfeeca994a32865b1f37
9d8134d4429d6363c00a2e759595019d13a6c6ddcadef0f213d832b61bc83fa7
GET /ads/js/tfav_adl_152.js HTTP/1.1
Host: j.adlooxtracking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:31 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 14 Dec 2021 10:41:58 GMT
vary: Accept-Encoding
etag: W/"61b874f6-ffbb"
cache-control: public, max-age=14400
content-encoding: gzip
cf-cache-status: HIT
age: 2100
server: cloudflare
cf-ray: 7739683fd8e50a27-ARN
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
prebid.media.net/rtb/prebid?cid=8CU3VM41V
34.107.148.139200 OK 969 B URL HTTP/2 prebid.media.net/rtb/prebid?cid=8CU3VM41V
IP 34.107.148.139:0
Hash f8511d51aaee9c0103ec5ff5888be602
43a63453ee541e8dcb90af7888ffb39ff9acd4c8
cc5a9c99ce63bc184f1bb7676eee5e0b9c57f87018bd0c9f6cb6b78cca1ce61b
POST /rtb/prebid?cid=8CU3VM41V HTTP/1.1
Host: prebid.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2409
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:29 GMT
content-type: application/json;charset=UTF-8
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
accept-ch: Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model
expires: Sat, 03 Dec 2022 04:02:29 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.74200 OK 127 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (2791)
Size 127 kB (126620 bytes)
Hash f641dae66d812e803cbfc91d689e2ea8
96372a7ba661528d13bc774536d04ab3e03b82d6
e78b718ac77697fbb92e88ac394141adc4e016830eb04d53279238cbcd65435b
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 126620
date: Sat, 03 Dec 2022 04:02:31 GMT
expires: Sat, 03 Dec 2022 04:02:31 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=truvid&endpoint=us-east
104.85.187.217301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=truvid&endpoint=us-east
IP 104.85.187.217:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=truvid&endpoint=us-east HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=truvid&endpoint=us-east
date: Sat, 03 Dec 2022 04:02:31 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
p.trvdp.com/pixel.gif?e=d/cHDLje6NB0cH11BoTtWuqBxeEwEL3zm07pfc6Gsh3sM3heWHjDYHUfHxSkwQqDKCHLKuMapdn3BDFcIBD/ROam7u8IMhXwQ9cM3xgNREfZiBdzxWVnyb5l4Tfse0b6B4It1dXqEnCpgaE0iVBUaYUbMB0oFa8uU3fIkO2+q2ndh/zS42+sV34q6SBYHgQdKfhdnP+GUx/ykONrzAm6SdX4CPxQZvt0YuQZ96FRXfVx/DcZyG0JOsROeBkBc6bp&cb=55159574
52.205.152.252204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=d/cHDLje6NB0cH11BoTtWuqBxeEwEL3zm07pfc6Gsh3sM3heWHjDYHUfHxSkwQqDKCHLKuMapdn3BDFcIBD/ROam7u8IMhXwQ9cM3xgNREfZiBdzxWVnyb5l4Tfse0b6B4It1dXqEnCpgaE0iVBUaYUbMB0oFa8uU3fIkO2+q2ndh/zS42+sV34q6SBYHgQdKfhdnP+GUx/ykONrzAm6SdX4CPxQZvt0YuQZ96FRXfVx/DcZyG0JOsROeBkBc6bp&cb=55159574
IP 52.205.152.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=d/cHDLje6NB0cH11BoTtWuqBxeEwEL3zm07pfc6Gsh3sM3heWHjDYHUfHxSkwQqDKCHLKuMapdn3BDFcIBD/ROam7u8IMhXwQ9cM3xgNREfZiBdzxWVnyb5l4Tfse0b6B4It1dXqEnCpgaE0iVBUaYUbMB0oFa8uU3fIkO2+q2ndh/zS42+sV34q6SBYHgQdKfhdnP+GUx/ykONrzAm6SdX4CPxQZvt0YuQZ96FRXfVx/DcZyG0JOsROeBkBc6bp&cb=55159574 HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:31 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?p=truvid&endpoint=us-east
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=truvid&endpoint=us-east
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=truvid&endpoint=us-east HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Sat, 03 Dec 2022 04:02:31 GMT
Connection: keep-alive
Vary: Accept-Encoding
cnt.trvdp.com/js/1273/5620.js
143.204.55.53304 Not Modified 0 B URL HTTP/2 cnt.trvdp.com/js/1273/5620.js
IP 143.204.55.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/1273/5620.js HTTP/1.1
Host: cnt.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Tue, 12 Oct 2021 09:44:40 GMT
If-None-Match: W/"062653e50bad07fbc15c5dc16e4d3e5a"
TE: trailers
HTTP/2 304 Not Modified
date: Sat, 03 Dec 2022 04:02:31 GMT
etag: W/"062653e50bad07fbc15c5dc16e4d3e5a"
server: AmazonS3
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tnypUiB_1LO_Zb9LO6D_Ts3DOjpIZsurK3fWxl11WbkgmH1xgkmm2g==
age: 13731820
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da32e4b24f4f95e4e807cff2459f54c3
02db1c6d628b2f51fa0b46fcb79a71178780bc47
4d6ff368a64dc83f4a637fbf44b2256523ca7c43b824022f8f6428de6cfae368
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/instream/video/client.js
216.58.211.6200 OK 17 kB URL HTTP/2 s0.2mdn.net/instream/video/client.js
IP 216.58.211.6:0
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Sat, 03 Dec 2022 04:02:31 GMT
expires: Sat, 03 Dec 2022 04:02:31 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
151.101.194.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 151.101.194.133:0
Hash 3972a01faf1226819158e9621f77b88b
69a09638bd398066baed2825f2fa8bc29f45961d
290e70540a55a09a3224ef0244c68ea28a56bc857868c7650949649881863955
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 07 Dec 2022 02:47:22 GMT
ETag: "69a09638bd398066baed2825f2fa8bc29f45961d"
Last-Modified: Sat, 03 Dec 2022 02:47:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 03 Dec 2022 04:02:31 GMT
Age: 3405
X-Served-By: cache-qpg1235-QPG, cache-bma1655-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 64, 10
X-Timer: S1670040152.746135,VS0,VE0
cnt.trvdp.com/js/1273/5620.js
143.204.55.53200 OK 2.2 kB URL HTTP/2 cnt.trvdp.com/js/1273/5620.js
IP 143.204.55.53:0
Hash ecd6d161b5f0a9fa3a8e506bfe14e2f2
e5dcaa674c3a6cc95af91613efe9989eab2db9fd
a4a36d375545064b59d5845eb9fb6af4f2e577e5e4ed8b4acc0436114a1a463d
GET /js/1273/5620.js HTTP/1.1
Host: cnt.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 27 Jun 2022 05:38:52 GMT
last-modified: Tue, 12 Oct 2021 09:44:40 GMT
etag: W/"062653e50bad07fbc15c5dc16e4d3e5a"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CiELRUOAOiilE1upd0K_wN2AmTe2WEyASIH_qWGsDrwIPEOqFTf5fw==
age: 13731817
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.66200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.66:0
File type ASCII text, with very long lines (3505)
Hash ca57a2dee741fcb5c26204d54254d941
8c9ad16e50db0a268ecdd55a4bdcbb43d320a96b
0bd2d4c3f5c52381fa0a7ce37bc60fcc9f94e4ffbf643c94559f9ad2fa1c646a
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 48508
date: Sat, 03 Dec 2022 04:02:31 GMT
expires: Sat, 03 Dec 2022 04:02:31 GMT
cache-control: private, max-age=3000
etag: "1669811598765935"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.prod.uidapi.com/uid2SecureSignal.js
54.230.82.163200 OK 943 B URL HTTP/1.1 cdn.prod.uidapi.com/uid2SecureSignal.js
IP 54.230.82.163:0
File type ASCII text, with very long lines (943), with no line terminators
Hash c3a71ed2560ee8001f5fcbae726d9005
972fcb33e298d06c49f61991228c9f7f6afe0a52
f9166b04f5879d7d975765abaf7e819cd7702277bed3696eeac4bd5699ae805e
GET /uid2SecureSignal.js HTTP/1.1
Host: cdn.prod.uidapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 943
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 06:20:04 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 02 Dec 2022 06:20:10 GMT
ETag: "c3a71ed2560ee8001f5fcbae726d9005"
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NxFd_xcvhD3O-NuDoOPNQ2dXEMBTdBABXx0amWobjpGo5u-MWpGl_g==
Age: 78142
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da32e4b24f4f95e4e807cff2459f54c3
02db1c6d628b2f51fa0b46fcb79a71178780bc47
4d6ff368a64dc83f4a637fbf44b2256523ca7c43b824022f8f6428de6cfae368
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stg.truvidplayer.com/v5.785/v.php?st=3q2xoOAL8qlYChGvR30vug&e=1670126550&ver=5.785&adid=a8951&videoUrl=//vid1273.trvdp.com/media/9b2e3ca9de9344fdeebd980ccf9ed4d17a028c2d/hls/9b2e3ca9de9344fdeebd980ccf9ed4d17a028c2d.m3u8&height=360&width=640&pageHref=https%253A%252F%252Fwww.sunstar.com.ph%252Farticle%252F1803509%252Fcagayan-de-oro%252Fopinion%252Fis-mobile-legends-good%252F&videoId=9b2e3ca9de9344fdeebd980ccf9ed4d17a028c2d&d=sunstar.com.ph&wid=5620&suid=1273&env_browser=Firefox%20105.0
54.230.111.74200 OK 12 kB URL HTTP/2 stg.truvidplayer.com/v5.785/v.php?st=3q2xoOAL8qlYChGvR30vug&e=1670126550&ver=5.785&adid=a8951&videoUrl=//vid1273.trvdp.com/media/9b2e3ca9de9344fdeebd980ccf9ed4d17a028c2d/hls/9b2e3ca9de9344fdeebd980ccf9ed4d17a028c2d.m3u8&height=360&width=640&pageHref=https%253A%252F%252Fwww.sunstar.com.ph%252Farticle%252F1803509%252Fcagayan-de-oro%252Fopinion%252Fis-mobile-legends-good%252F&videoId=9b2e3ca9de9344fdeebd980ccf9ed4d17a028c2d&d=sunstar.com.ph&wid=5620&suid=1273&env_browser=Firefox%20105.0
IP 54.230.111.74:0
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (60178), with no line terminators
Hash edf04f63349ced5b17e29a80676232ee
8bf6abb52a188eac5c49c779d26cd760ea4d5856
c473f74af35269ecc255cc4bff3b4c3b4744fbf633fb54b16bf6750025c6425a
GET /v5.785/v.php?st=3q2xoOAL8qlYChGvR30vug&e=1670126550&ver=5.785&adid=a8951&videoUrl=//vid1273.trvdp.com/media/9b2e3ca9de9344fdeebd980ccf9ed4d17a028c2d/hls/9b2e3ca9de9344fdeebd980ccf9ed4d17a028c2d.m3u8&height=360&width=640&pageHref=https%253A%252F%252Fwww.sunstar.com.ph%252Farticle%252F1803509%252Fcagayan-de-oro%252Fopinion%252Fis-mobile-legends-good%252F&videoId=9b2e3ca9de9344fdeebd980ccf9ed4d17a028c2d&d=sunstar.com.ph&wid=5620&suid=1273&env_browser=Firefox%20105.0 HTTP/1.1
Host: stg.truvidplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/xml;charset=UTF-8
date: Sat, 03 Dec 2022 04:02:31 GMT
server: nginx
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uoLyh6eMtYP-HEewlBBHOgaG74tNogDJKLqCPn3GSRVFpeY-xyoxbg==
X-Firefox-Spdy: h2
match.adsrvr.org/track/rid?ttd_pid=pubmatic&fmt=json
35.71.131.137200 OK 63 B URL HTTP/2 match.adsrvr.org/track/rid?ttd_pid=pubmatic&fmt=json
IP 35.71.131.137:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 37f8226107609c58ec0f6f8bcd3a3ace
32532fa51dda08356742c16ca7feadea8bc54843
69993b32a4d7f2641dc346aae19b85cbcc25c54f76ee48ee9092451b14204bbd
GET /track/rid?ttd_pid=pubmatic&fmt=json HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:31 GMT
content-type: application/json; charset=utf-8
content-length: 63
cache-control: private
expires: Mon, 02 Jan 2023 04:02:31 GMT
vary: Origin
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Content-Length, Content-Encoding, Vary, Cache-Control, Accept
x-aspnet-version: 4.0.30319
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5f7848832627bb88be3240c73f886232
41bfc250e69a1265db47065cb7ce1ee94a14fea4
80a9ae658048f59f107095c15d8736be021f120b569c17301a89ef8a57777386
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fec62cbd40e742ecdde386ebd4d274a2
67bb5b9cb2de7cd9e0950b135fc5ae16ecb58524
3cfd16529189428892f5f46106520d794b137ffc4ac80ccaef69541c5ecf6e98
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5f7848832627bb88be3240c73f886232
41bfc250e69a1265db47065cb7ce1ee94a14fea4
80a9ae658048f59f107095c15d8736be021f120b569c17301a89ef8a57777386
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5f7848832627bb88be3240c73f886232
41bfc250e69a1265db47065cb7ce1ee94a14fea4
80a9ae658048f59f107095c15d8736be021f120b569c17301a89ef8a57777386
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fec62cbd40e742ecdde386ebd4d274a2
67bb5b9cb2de7cd9e0950b135fc5ae16ecb58524
3cfd16529189428892f5f46106520d794b137ffc4ac80ccaef69541c5ecf6e98
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
142.250.74.161200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
IP 142.250.74.161:0
File type ASCII text, with very long lines (14697)
Hash ae1a9f090984c448deb0629cc2304ee3
e601825ccec746695f370ed68fa33325152e0d9f
6a947bfcdeea64faa6c795caea11ee09dbe00f5d4003b7b9d47e4945c05ac1e4
GET /rtv/012211060024000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 10:51:50 GMT
expires: Wed, 29 Nov 2023 10:51:50 GMT
cache-control: public, max-age=31536000
age: 321041
etag: "abd4378f71571d78"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
142.250.74.161200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash 190bcb4c44fd9e0e93baa80c9b2535b8
97bda56ddc8d6a00d19e1747d63325051f3fd144
b7677f820f06329e357561f570729fe4110af4ac5fb741b97567e20a0f533301
GET /rtv/012211060024000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61592
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:55 GMT
expires: Tue, 28 Nov 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 381216
etag: "a2fca7132416d151"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/U9Z1AR6Ft-g
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/U9Z1AR6Ft-g
IP 142.250.74.131:0
Hash 05b771f6642c922ebbf09a7542413d93
64d4da2d08cebe5d8e2c56227bd54bdfc5d2272a
eec91ebd03c0dbf02cc838e373b058379c283f6eb1e66ccb3e31c6180a50f087
POST /s/gts1d4/U9Z1AR6Ft-g HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18728)
Hash 27065df0fa6b250733f29247a45ec913
8b6871f8e65ef617e1578a147d2f289995953715
81bee460ea91b4cb85b31cae93ae77b1a693002ac2524f5ba18ce9fbd025c331
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?p=truvid&endpoint=us-east
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Fri, 02 Dec 2022 16:20:40 GMT
Content-Encoding: gzip
Content-Length: 10066
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=44273
Expires: Sat, 03 Dec 2022 16:20:24 GMT
Date: Sat, 03 Dec 2022 04:02:31 GMT
Connection: keep-alive
Vary: Accept-Encoding
cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
142.250.74.161200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (41057)
Hash 2f873064835eed23708bde2a16830216
7559437b82b9b761e02549d8d51f9e3571e5ed2c
0f5d00ac674cc34652997f2e0dd7fb6eb1a5b22010989c35a81cd7a388c84fdd
GET /rtv/012211060024000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12946
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:55 GMT
expires: Tue, 28 Nov 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 381216
etag: "0bacd3f1ce38a7db"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-fit-text-0.1.mjs
142.250.74.161200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-fit-text-0.1.mjs
IP 142.250.74.161:0
File type ASCII text, with very long lines (5046)
Hash 669c8592ef8f63e7404e45dd6ca56b71
3f6753966361bb86594193009c9097612c361064
d174ae2c0722ab8d4bf736f0200dc5b15d288f9500a706bb161b64f5a3b74f01
GET /rtv/012211060024000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1913
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:55 GMT
expires: Tue, 28 Nov 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 381216
etag: "403438c4d550ee88"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
142.250.74.161200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
IP 142.250.74.161:0
File type ASCII text, with very long lines (65534)
Hash c88b4e73b12307e42222d337bdd646a2
621233bf4e777b2d44b1bc143187111aca2fe718
ef6935537cd5a603b79bc98d4274b70ee5608955792523fc58e818c8ddbb7b48
GET /rtv/012211060024000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28809
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:55 GMT
expires: Tue, 28 Nov 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 381216
etag: "dd6615029de85e23"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.1 kB IP 142.250.74.131:0
File type gzip compressed data, max compression\012- data
Hash 7d40f203b1b430b7815fedc9b208c79f
e0284174a56c84c12cee402e72cf1519ea5d9b7d
ce12cf9b178ca094b086fd61acccab296e6026978132ff1d7b7b3fc0e0c89c29
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f4b80b9fdd50e1a97c434f592efe9e5f
9f8ef6f699f6a349edf46c73ed4023d706027201
ed2e81c384d6b31b0e0ed2169df1bb332e92bb8c5885eedb13f7a4270b8abec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f4b80b9fdd50e1a97c434f592efe9e5f
9f8ef6f699f6a349edf46c73ed4023d706027201
ed2e81c384d6b31b0e0ed2169df1bb332e92bb8c5885eedb13f7a4270b8abec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bb045ee4346b85d699158fdba8f84f64
ee5cf0d75cd678dc71c6083cc7ce68169c0fce2d
8b2dcab1627a9c21b66cd6ea676dd5b4b6a39bebf2cfafcc21f52b5221bb6a03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
216.58.211.1200 OK 7.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1540)
Hash d22e40b1bc4f1b0f1727b96a0f32f7dd
57030c5040f0013120cca1e77fe38af35d4610e0
6f6d3797f9b19ffcd2f416a7566a58cf70fd4fb0ab17dec03fa5b690c6939494
GET /pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7458
x-xss-protection: 0
date: Fri, 02 Dec 2022 05:12:02 GMT
expires: Fri, 16 Dec 2022 05:12:02 GMT
cache-control: public, max-age=1209600
age: 82229
etag: 16870613375306414947
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bb045ee4346b85d699158fdba8f84f64
ee5cf0d75cd678dc71c6083cc7ce68169c0fce2d
8b2dcab1627a9c21b66cd6ea676dd5b4b6a39bebf2cfafcc21f52b5221bb6a03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f4b80b9fdd50e1a97c434f592efe9e5f
9f8ef6f699f6a349edf46c73ed4023d706027201
ed2e81c384d6b31b0e0ed2169df1bb332e92bb8c5885eedb13f7a4270b8abec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/images/adchoices/en.png
216.58.211.1200 OK 2.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/images/adchoices/en.png
IP 216.58.211.1:0
File type PNG image data, 150 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash ff862c0e7a4755adf3682da543bce1e4
9db9b9c9bb176aee7f639f5f4a4cd702105358b6
36133ca07927c88a7cc578fddbaed3c668ab75087834d0ca13dca5de4ec856c1
GET /pagead/images/adchoices/en.png HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
server: cafe
content-length: 2502
x-xss-protection: 0
date: Fri, 02 Dec 2022 20:55:44 GMT
expires: Sat, 03 Dec 2022 20:55:44 GMT
cache-control: public, max-age=86400
age: 25607
etag: 14819457070020093239
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/images/adchoices/icon.png
216.58.211.1200 OK 295 B URL HTTP/2 tpc.googlesyndication.com/pagead/images/adchoices/icon.png
IP 216.58.211.1:0
File type PNG image data, 15 x 15, 16-bit/color RGBA, non-interlaced\012- data
Hash d848a2953307aa510bdad31f5bf84671
e9d6d8daa9255f99e4e778ff4c4b47806bdb18c1
7fd59024b6ca83f11f7a3448ec148309a13b705725716df134f699e60a96eb1b
GET /pagead/images/adchoices/icon.png HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
server: cafe
content-length: 295
x-xss-protection: 0
date: Fri, 02 Dec 2022 16:03:23 GMT
expires: Sat, 03 Dec 2022 16:03:23 GMT
cache-control: public, max-age=86400
age: 43149
etag: 426692510519060060
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/safeframe/1-0-40/js/ext.js
216.58.211.1200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/safeframe/1-0-40/js/ext.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (21224)
Hash f9c7ccf8a881c621afee8eb4202ec2c4
fb2e16928794f4233e0bec16c2e75975ac5cee97
db7c652e8b46bc8b277eb57b299541ea7cbef676f141a907bc9fb1c3844a4693
GET /safeframe/1-0-40/js/ext.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 6402
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 04:38:16 GMT
expires: Tue, 28 Nov 2023 04:38:16 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
content-type: text/javascript
age: 429856
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/simgad/5332183827311347873/2076313506083323656
216.58.211.1200 OK 50 kB URL HTTP/2 tpc.googlesyndication.com/simgad/5332183827311347873/2076313506083323656
IP 216.58.211.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x500, components 3\012- data
Hash e61e6574f81be6b004371496d67af78b
b3fd0a8d5c0fec2f0bfba98f10614a8ec09b6664
7260b2ac0b8d5fdc1dc2cc4ea4716ffd443a34ce5e6e9420546741e565046a2d
GET /simgad/5332183827311347873/2076313506083323656 HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="content-ads-owners"
report-to: {"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
timing-allow-origin: *
content-length: 49560
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 04:17:04 GMT
expires: Wed, 29 Nov 2023 04:17:04 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 17 May 2019 08:28:08 GMT
content-type: image/jpeg
age: 344728
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/elements/html/interstitial_ad_frame_fy2021.js
216.58.211.1200 OK 8.1 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/elements/html/interstitial_ad_frame_fy2021.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (2235)
Hash 07348a8c4f5798070d4dec3668ac24e9
411c3a3ace0be6cdda18ab10616473ffef6df857
f1ef63af2866fe379944c4fcbd07596edc56e79e92944cd01bbfdf3f849b5340
GET /pagead/js/r20221110/r20110914/elements/html/interstitial_ad_frame_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 8086
x-xss-protection: 0
date: Fri, 02 Dec 2022 18:34:05 GMT
expires: Fri, 16 Dec 2022 18:34:05 GMT
cache-control: public, max-age=1209600
age: 34107
etag: 7427986489964165156
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 8bb256dfc9bfde1880ebd8030a02cabc
ae5d312abddf2531da3f7df9cf723b2d65e08a7b
8eec27810521985839989534603072b6cb9d9a99967267139f789973d373134f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 561
Cache-Control: max-age=150607
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Etag: "638a7176-139"
Expires: Sun, 04 Dec 2022 21:52:39 GMT
Last-Modified: Fri, 02 Dec 2022 21:43:18 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 377159bf825318eb20aa4d63bf540067
e7d13030d1395a9592840604a32660acfd86992a
022dc37a8e29cfc378cc1f7dbf26e26fa9125f72f809e5cdb84cd89e65622dcb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6577
Cache-Control: max-age=123849
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Etag: "6389f170-116"
Expires: Sun, 04 Dec 2022 14:26:41 GMT
Last-Modified: Fri, 02 Dec 2022 12:37:04 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 8bb256dfc9bfde1880ebd8030a02cabc
ae5d312abddf2531da3f7df9cf723b2d65e08a7b
8eec27810521985839989534603072b6cb9d9a99967267139f789973d373134f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 562
Cache-Control: max-age=150608
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Etag: "638a7176-139"
Expires: Sun, 04 Dec 2022 21:52:40 GMT
Last-Modified: Fri, 02 Dec 2022 21:43:18 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/s/gts1d4/M6VkKljkYvQ
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/M6VkKljkYvQ
IP 142.250.74.131:0
Hash 21ad0368b37b48d6ac59c2ba0017a532
b47dcb676d9d36226917a87de6473899d3cdd062
9da50ca1f36cdc21e3bf626c2b2fe4bc9e2e8bb2d6975d1494a54bfbac48e4b0
POST /s/gts1d4/M6VkKljkYvQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
invstatic101.creativecdn.com/encrypted-signals/encrypted-tag-g.js
34.96.70.87200 OK 1.3 kB URL HTTP/2 invstatic101.creativecdn.com/encrypted-signals/encrypted-tag-g.js
IP 34.96.70.87:0
File type ASCII text, with very long lines (1178)
Hash f5bc066f146e3dbb049aa6c86c7012e6
efa97d857c263b3b3672e2ffa630af6e2625d84b
23bc1d893ce2d2f30b68e549aa3cb991c2a7b7dd87e3df67d9fbb6a8dd113bf8
GET /encrypted-signals/encrypted-tag-g.js HTTP/1.1
Host: invstatic101.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsEBYT2sStpTbUQgNHbYg_3h5Y3niLUGb2uFjFJhPYbAzHB1nGPvbwLZaOe-uBWlYyJH8z0EZ8AFdANB9TJsXVAc_BfN5FH
x-goog-generation: 1659113709880056
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1258
x-goog-hash: crc32c=6QojvA==, md5=9bwGbxRuPbsEmqbIbHAS5g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1258
server: UploadServer
via: 1.1 google
date: Sat, 03 Dec 2022 03:09:51 GMT
expires: Sat, 03 Dec 2022 04:09:51 GMT
cache-control: public, max-age=3600
age: 3161
last-modified: Fri, 29 Jul 2022 16:55:09 GMT
etag: "f5bc066f146e3dbb049aa6c86c7012e6"
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 203318
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 203297
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 203297
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
oajs.openx.net/esp?url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&rid=esp
34.120.107.143200 OK 2 B URL HTTP/2 oajs.openx.net/esp?url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&rid=esp
IP 34.120.107.143:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /esp?url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&rid=esp HTTP/1.1
Host: oajs.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-powered-by: Express
access-control-allow-origin: https://www.sunstar.com.ph
vary: Origin
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
content-length: 2
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
date: Sat, 03 Dec 2022 04:02:32 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 88a03156c475297d1b6b2aef74ac0c03
a3889298f39e3f1a207a33cd50fb661eb73157e8
705f0eebadd20e5a730d903c91e784863a48393640baded27bf1fdcf4d392fea
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119607
Date: Sat, 03 Dec 2022 04:02:32 GMT
Etag: "6389f857-1d7"
Expires: Sun, 04 Dec 2022 13:15:59 GMT
Last-Modified: Fri, 02 Dec 2022 13:06:31 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1Oo6JWaG1BNpIf_-opisNX_MrPxG-WZOArH8I5bVXGHVQMccjEDKSA==
Age: 568
ocsp.pki.goog/s/gts1d4/M6VkKljkYvQ
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/M6VkKljkYvQ
IP 142.250.74.131:0
Hash 21ad0368b37b48d6ac59c2ba0017a532
b47dcb676d9d36226917a87de6473899d3cdd062
9da50ca1f36cdc21e3bf626c2b2fe4bc9e2e8bb2d6975d1494a54bfbac48e4b0
POST /s/gts1d4/M6VkKljkYvQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/zFN5wzvNuSs
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/zFN5wzvNuSs
IP 142.250.74.131:0
Hash 869c1da338c6ce269837614e3b727874
59662cf54f1fed922fbb7dd3765fbf141f4cd3a3
ecd0b214de119eaadfe28232772c4ef0c7cc414ad702e6177d9d477fa92b26bd
POST /s/gts1d4/zFN5wzvNuSs HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/zFN5wzvNuSs
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/zFN5wzvNuSs
IP 142.250.74.131:0
Hash 869c1da338c6ce269837614e3b727874
59662cf54f1fed922fbb7dd3765fbf141f4cd3a3
ecd0b214de119eaadfe28232772c4ef0c7cc414ad702e6177d9d477fa92b26bd
POST /s/gts1d4/zFN5wzvNuSs HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bcp.crwdcntrl.net/6/map
63.32.97.75200 OK 60 B IP 63.32.97.75:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c479d7bd7b8323077b7904239f562249
4958449f8a0bcaafbd3d9cef10095a64c7aa88b7
d6e0fe3553505f501642af7ede3fe4d6db7cf2b4ddc1bbbb10f7d84b362998b0
POST /6/map HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 50
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: application/json;charset=utf-8
content-length: 60
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.14.17
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6f38dd7ea1214826c7a65cfadf2b7138
f209cd9d6e043dbc6fbbba23205133fa0e9b991f
36be864cb960e7cf3519f654c0b8233b3bb50a0b307066cfe52c588a4f6b8689
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36BE864CB960E7CF3519F654C0B8233B3BB50A0B307066CFE52C588A4F6B8689"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5444
Expires: Sat, 03 Dec 2022 05:33:16 GMT
Date: Sat, 03 Dec 2022 04:02:32 GMT
Connection: keep-alive
id.sharedid.org/lib/pubcid.min.js
54.71.217.198200 OK 732 B URL HTTP/2 id.sharedid.org/lib/pubcid.min.js
IP 54.71.217.198:0
File type ASCII text, with very long lines (693)
Hash e6147523b7396aad764a752dfc6be7f7
22b6719bfb0fe1aaad21fb3511f130e83839ab56
a5230196df9a4e9f6382c504668862efc8e25c1ec093c7dc997fbedb4b3ec54e
GET /lib/pubcid.min.js HTTP/1.1
Host: id.sharedid.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: application/javascript
content-length: 732
accept-ranges: bytes
cache-control: public, max-age=86400
last-modified: Tue, 29 Nov 2022 22:47:42 GMT
vary: accept-encoding
X-Firefox-Spdy: h2
esp.rtbhouse.com/encrypt
35.190.39.111200 OK 2 B IP 35.190.39.111:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /encrypt HTTP/1.1
Host: esp.rtbhouse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin
access-control-allow-methods: POST, GET
access-control-max-age: 600
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-headers: content-type
content-type: text/plain; charset=utf-8
x-cloud-trace-context: c8614a60d3a366becbe9ddf69c396b48
date: Sat, 03 Dec 2022 04:02:32 GMT
server: Google Frontend
content-length: 2
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
id5-sync.com/api/esp/increment?counter=no-config
162.19.138.118204 0 B URL HTTP/1.1 id5-sync.com/api/esp/increment?counter=no-config
IP 162.19.138.118:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/esp/increment?counter=no-config HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
date: Sat, 03 Dec 2022 04:02:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
static.criteo.net/js/ld/publishertag.prebid.js
178.250.2.130200 OK 30 kB URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.js
IP 178.250.2.130:0
Hash f6f550ac609b593da864e71907f667a2
9b225c56a4996594bedcee25c4f403258ecf97f7
7207a485d0507c5da5b400261d4afe2995c1b3616bf3a7c26c5ecfdaa89565fc
GET /js/ld/publishertag.prebid.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: text/javascript
last-modified: Mon, 24 Oct 2022 11:21:19 GMT
etag: W/"6356752f-16294"
expires: Sun, 04 Dec 2022 04:02:32 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ib.3lift.com/rev/6be1393e0ee56f63717d253e90fe0e4363b3e6d4/dist/bundle.js
54.230.111.102200 OK 55 kB URL HTTP/2 ib.3lift.com/rev/6be1393e0ee56f63717d253e90fe0e4363b3e6d4/dist/bundle.js
IP 54.230.111.102:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 57cca71df74418801685f137aa4584fc
95ddb04b48c37f82111aa902fc363745b4ca4442
867d8528069f4bb0e042363570de3042da3990b358ac153aaf6d66e10db22985
GET /rev/6be1393e0ee56f63717d253e90fe0e4363b3e6d4/dist/bundle.js HTTP/1.1
Host: ib.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 55196
date: Tue, 08 Nov 2022 17:26:20 GMT
last-modified: Tue, 08 Nov 2022 17:25:46 GMT
etag: "57cca71df74418801685f137aa4584fc"
cache-control: max-age=31536000, immutable
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1vlQX3Ed2wNcw8G1WTFl8JZhHfC5vkG_AwbYK-P5xAn8_5EPOUrIig==
age: 2111773
X-Firefox-Spdy: h2
esp.rtbhouse.com/encrypt
35.190.39.111200 OK 285 B IP 35.190.39.111:0
File type JSON data\012- , ASCII text, with no line terminators
Hash cfbfc1e465a23a3a17ae36256a6bc05a
e4e80350c44d164fb9da17ab4b59e8106c3d061a
f203ae98ea180ae533585ec762dffec5454d9a75be12c8b96f9d9ad8937ead59
POST /encrypt HTTP/1.1
Host: esp.rtbhouse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Content-Type: application/json
Origin: https://www.sunstar.com.ph
Content-Length: 211
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-credentials: true
x-cloud-trace-context: 2a06d53ffd3a4c7207fc9e50b081a93e
date: Sat, 03 Dec 2022 04:02:32 GMT
server: Google Frontend
content-length: 285
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/xbbe/pixel?d=CN-KGhDw3uOiAxi7uYbGATAB&v=APEucNVwChpkMHORznuoBVUMOS0hXfSeS6j2K19TFOTQCRwZRQI0Jn8FlgC04xw2tC1aCnxiFmEMtj8FJ_pRdNw5zEN0_DsaG3PL1SeKMmuvt019p_DgqamDkb0ViOe3S8FLp8PUM0V51BBh0zZE51XTb2l7kHXMLzx7XJ9a60ddVdQiTRfCFOE
142.250.74.162200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/xbbe/pixel?d=CN-KGhDw3uOiAxi7uYbGATAB&v=APEucNVwChpkMHORznuoBVUMOS0hXfSeS6j2K19TFOTQCRwZRQI0Jn8FlgC04xw2tC1aCnxiFmEMtj8FJ_pRdNw5zEN0_DsaG3PL1SeKMmuvt019p_DgqamDkb0ViOe3S8FLp8PUM0V51BBh0zZE51XTb2l7kHXMLzx7XJ9a60ddVdQiTRfCFOE
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xbbe/pixel?d=CN-KGhDw3uOiAxi7uYbGATAB&v=APEucNVwChpkMHORznuoBVUMOS0hXfSeS6j2K19TFOTQCRwZRQI0Jn8FlgC04xw2tC1aCnxiFmEMtj8FJ_pRdNw5zEN0_DsaG3PL1SeKMmuvt019p_DgqamDkb0ViOe3S8FLp8PUM0V51BBh0zZE51XTb2l7kHXMLzx7XJ9a60ddVdQiTRfCFOE HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 03 Dec 2022 04:02:32 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 03-Dec-2022 04:17:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sat, 03 Dec 2022 04:02:32 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-CxI2P1FohOyZ0QFJpHo-9ViqFwsc2VErKmKMkUbAI0Wo9CJVYc72fLxZwBXYBgQl4WcIz5zXAzqd9NG17mNKBjvhBaE79xRJOeJorvgbgb2vU1e1JHwa-icztWyBAIqqlleDJjIBFJaGwpkFn89UNwXo4O0VQbxiGDbezIU82vPrNFKjI&cry=1&dbm_d=AKAmf-CWkO5q2PRdEMgJpkgdfh0Z9To69GXqE1xKdLfLysOYzQ5gbo4mJ4q4Ji9JC6q9zO6DTOFo3TCuU9-Czju3B3Abf0Nx5blvTFxPuyCovtzhJlZu2ta0NyNhX1EnIVAYn1pMgt3t_c9xfwYx2II7RHEa5fXt1eYTyn1c1jOym0OJ2tVF92i1qsc7C6JOBA0dBsSbFNFOleaDraHnRCLVJD-mKQwTb-Zo9v-W9mjQeTpPtJDZooB5dupslb5VjP3CmQNXtdsUMs2DCivMoaRg1fdAqEnCHQV0R_bQs1rBoFL7pFCY-L5wsECmp0MTU79Chf_VSpud_AV0lyW3bHxR1misGo7XX20uo9_JNNwPGZ94sF8KwGUZ_SmFCndNSPnnqdLZk1BfX03X5TUj4wNF4_WS96m_zxrEOd6IYKQBENmmW-qmVL7U8AhVLHONWzUmjC-_61HO-mVncYLtWCc-mWzxRisM7JM8QQiI95vwlWXX3g2gFh5Ftn19qCU0APT0ggTM0PPeT93qEhzAQ48M2xDkjb6I8ANuGjQzhUys3HDY2I005JkHtJEVbvUq16vQWlTGKKLdoCriHyN-XhMFlU5qw2J498fEZpaxkatZpAoOggMMj8lm1kSeAgncwbomxHkoFe-7S2nh3BRChXbs8EMb4epWXE0sJrQn4p0LrCVC1PuBUjBck5esrZtPhhQV1TpMXbT6UHHE0Df0Q0OsYopI0BY0igxItUIWB25_UuKBW_2EN-t5rwBQw8W8opczWjA-N32w-12ye-dRVfPz_Wu6UGHaH8EjJC658iVJJ2m6ReHAKbt7kRZ_1_HL9xLwhjSgCLbNaZ41VFeD-dpqZJGiSiP4Tfgc2bXAC6t6HjH7YWEx2GvaoWxkL0pvHQCHIX18PSiI-_5O7T1A0e6XRLGT9vg3yVOFLv862S7MpynP34TEzaKJldQLSpzHD6JsMPQ-Ab7336Ytcki2xy1-fbJ_5EtIJ7wyEIean__Tt5VP2-uZol-Rt7wqKt8KbmNE8dtp4A6Bwe8fYvJypweMnrO6W2XLHndJF7gpSId_uYXINFaFmBaM8zgitaQSL9IIm9uxy6Rfp0SHKYFjb9bjaYtglSEz6GVOYc0cbhT1ECYREPT0nCoNJ22p_dIgX_hLsK2fX9VjnIPN9zFRTbB3oghKOQYhdU-J_ss1-na6F0rhkPvQuFdyL69uWdkH6ASTYf55PmJ_VNx6U8shRpw0_dxS4ZBy6DdwmgD9xbrd45r1zJhmz4j7LCzFS6NqGWE_hEh9TKt_3eo-MRv0BRuBVPCXeHYQHy7vc_aZz_gxIa5wBCikqaZEUHpRI6g1JQ60weZghB6aKUv-gIbuMMp-ic5UKoOG2O4wqfnF3HlJh-XerMvkJMTVK3b4Nq5dXi4NHNIUgzE2ZEnzSUIFoit8iMEsrUpoUC_UoRMGHB13NHA529Qhe5JtGr-H61pp5CZLA1pqkh0YXR-vF_Cp5xiRjgNQxj3h54DGnHwV930Zyo_Y4Vi2Z1jr0Dp3CPrKBgvse_O2CY1TEDoFuE-SGtykoD9PfAbKQwi4yqTVfatZbQoHs_5C3NeO2FVP4IOZd1c9PZeo-wKH5ne0PEl4LaujiZdJz4RolLId1-tP4EdGPsv3QfNjLg1JlXKD4FjXzX0BhqmIvF8KUqeuNeBTaT6_joUyhQYIf50pMUXMqqmyyFoQCAwyuOPGnxK8HJ855BJpP9tQqX7GuKpKtJ_YI2JJHNAoGkw7-CwsByx_iT5UybZpjMCqeeo9Mcv-YPZImN95ZDTLcHdJvJphrX0HhtIoDZ3sq1w1QLlsq4pI6nq_kijBkuftruVIAMuCXAc8ezfeu44cHyPwQ2C9u4Anw3OvggBQ9CYgEbaGRfoz1n-ujOKhOeNKan7GUsnGQRjI6HXABV2wXsxiuNBfDHVNQxjiqyL0s_aO-3JkOEmnRsSmKqX9buNuqhY2UBAOYSEotkyCcqNKXE5I-IKpR36ibpF_TpU44TKvSCBrCuGHfUXabBGlL3YHoVHRBAXw10xuC0GikqZjAbF3xxFQsoaRDaqNA07mG2-eZ7CNF2ZTItcrp1phbLziq4go0hVpZi3pkMzjC8TU9Ec_aTdzHrLkwxfITySFMLRO4hNRgGX18oot691lEtZMpBnDaLtTRTABRWDeh1Q5C274w-S1vyveeKtkTgEIxh-jmVwMf904E1TE-WEJuRS5n-omVafYvIs5qAJOAkl6_kxvxDBNFAErRTf8fqhqITj2j8fVlk7PYVU_Lk1Dt0v_ocrskmeUNmu-g8R8Vtnv_rlBvNii_e5yQZFTCIfexfXIARZJ-mMkL1MMtHrMUouosI3MEbOgW6qeQR_Q7ZBsayxHGyZOi8sCegh6KfZdQZVCVjb-HcjIUd81MkXsVMhKDjH3LC4kgHjHlrXNU55LDlBhd7N-G_uLCbrdbNSWYeQyWqvXP-6emys64hO3I4VBPVO87Im2wpTv9zDlkORT-RtKfUlbPg4OK-xs4opnX7tVKDdl8gqbUO8LhzIyfkjv2F0qVJmuSJE6JS-ZSPnIOICTW5RDZJYRg2moLcr-ojIAuKEGFiq2LEzInmiyNLPMSTK1RmkjplHIKtPiPGcELZPAIa8Ki8oZKYu1bYnyAZjU2vlAI0UBcTml2XAbpHMt7h5oUbkWDLWyitc6-DDw-E_d6FvkdkEf5wGbtf23OuZcGRWRS1lq6HgF4O4zAF4Pzpi08p0MsMFfNFtL8ykOclrSpPBtECjewWZNSCtLCzD69Z2-YPkuVJwnp78vEPqctreiWVrTWjdPy6RZDWqGH2Sd05G83PHIurLQwgHH6oUf_c-wgJoVKuSkaHrEQ2eVWb4jvj1t5xIoRxK1NaUpNExRNbIYgCF90EfjWorwnJkCfM4t8HOWIDTdhj9paOJGgUr9avx4LX7JTfrebH0hDRfy-IfaLmViJzqYxjvwGmbdw-bI9gudJqHROlie_ZyfrCYJM2wZBzkCmCuA40onyQiZVRAIa5aukTVHrSFk3NFdTZCyGUsiN3XKcxf2oDMsCFTDE7SB_9XzOBWgAtoMiyWYvuqlRmPzm4rQniNQ7vWHZTst76nEt1BYmeZ6dd6AzQJ7EzYx0OPvnraimNB156iWmGWtoEnXgAODzBlYncKIraqvgt1AKZpYXr4UjQ95XMx_mgfoHnE6ksC6du6v5Oneeireqs7QLbRp7Rk4iM-6hAEmPHxI8eLI1h1U7iOEN5nFdj6BElu99psZ8OkaSbn3-yKpbSI3RDfYDXyC4gVRYA39PzzrO_3_ghkdrNmG70BurO4cV3Ha008MYaqr8s2yI_NIGtatKtlz0ifJVGPOqezpVwvRfFiBRQI6PWWUYCp4E9inpfZIzUk_ElQUEg5LvdWkjnrroky98-DmlUZFcduisfo8kr_N0-dBYOwthGc9oZ4ElUh4eLZPTuArmG0073BOsJZgz3VB4fLPvidVWu5VZMmo7W6KX3ak2BK6jaRAivpzXH-GWUhhpjKjGKYssFQxEY6G_ACPk-rJ2lNoABV5XeqjFA2IoztEE6oT95Sacd0-7gxNTqDrXMEp21h8q40dpD7y2abJJdC8FhsA0uq6f090snx5T3BJw3JSPAbTAjzY9ZYl-gV_NRSLCwY2FV_nGTQZJRPKr_VxTaeJ0w&cid=CAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT&rfl=1%2Chttps%253A%252F%252Fwww.sunstar.com.ph%252F%240
142.250.74.162200 OK 11 kB URL HTTP/2 googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-CxI2P1FohOyZ0QFJpHo-9ViqFwsc2VErKmKMkUbAI0Wo9CJVYc72fLxZwBXYBgQl4WcIz5zXAzqd9NG17mNKBjvhBaE79xRJOeJorvgbgb2vU1e1JHwa-icztWyBAIqqlleDJjIBFJaGwpkFn89UNwXo4O0VQbxiGDbezIU82vPrNFKjI&cry=1&dbm_d=AKAmf-CWkO5q2PRdEMgJpkgdfh0Z9To69GXqE1xKdLfLysOYzQ5gbo4mJ4q4Ji9JC6q9zO6DTOFo3TCuU9-Czju3B3Abf0Nx5blvTFxPuyCovtzhJlZu2ta0NyNhX1EnIVAYn1pMgt3t_c9xfwYx2II7RHEa5fXt1eYTyn1c1jOym0OJ2tVF92i1qsc7C6JOBA0dBsSbFNFOleaDraHnRCLVJD-mKQwTb-Zo9v-W9mjQeTpPtJDZooB5dupslb5VjP3CmQNXtdsUMs2DCivMoaRg1fdAqEnCHQV0R_bQs1rBoFL7pFCY-L5wsECmp0MTU79Chf_VSpud_AV0lyW3bHxR1misGo7XX20uo9_JNNwPGZ94sF8KwGUZ_SmFCndNSPnnqdLZk1BfX03X5TUj4wNF4_WS96m_zxrEOd6IYKQBENmmW-qmVL7U8AhVLHONWzUmjC-_61HO-mVncYLtWCc-mWzxRisM7JM8QQiI95vwlWXX3g2gFh5Ftn19qCU0APT0ggTM0PPeT93qEhzAQ48M2xDkjb6I8ANuGjQzhUys3HDY2I005JkHtJEVbvUq16vQWlTGKKLdoCriHyN-XhMFlU5qw2J498fEZpaxkatZpAoOggMMj8lm1kSeAgncwbomxHkoFe-7S2nh3BRChXbs8EMb4epWXE0sJrQn4p0LrCVC1PuBUjBck5esrZtPhhQV1TpMXbT6UHHE0Df0Q0OsYopI0BY0igxItUIWB25_UuKBW_2EN-t5rwBQw8W8opczWjA-N32w-12ye-dRVfPz_Wu6UGHaH8EjJC658iVJJ2m6ReHAKbt7kRZ_1_HL9xLwhjSgCLbNaZ41VFeD-dpqZJGiSiP4Tfgc2bXAC6t6HjH7YWEx2GvaoWxkL0pvHQCHIX18PSiI-_5O7T1A0e6XRLGT9vg3yVOFLv862S7MpynP34TEzaKJldQLSpzHD6JsMPQ-Ab7336Ytcki2xy1-fbJ_5EtIJ7wyEIean__Tt5VP2-uZol-Rt7wqKt8KbmNE8dtp4A6Bwe8fYvJypweMnrO6W2XLHndJF7gpSId_uYXINFaFmBaM8zgitaQSL9IIm9uxy6Rfp0SHKYFjb9bjaYtglSEz6GVOYc0cbhT1ECYREPT0nCoNJ22p_dIgX_hLsK2fX9VjnIPN9zFRTbB3oghKOQYhdU-J_ss1-na6F0rhkPvQuFdyL69uWdkH6ASTYf55PmJ_VNx6U8shRpw0_dxS4ZBy6DdwmgD9xbrd45r1zJhmz4j7LCzFS6NqGWE_hEh9TKt_3eo-MRv0BRuBVPCXeHYQHy7vc_aZz_gxIa5wBCikqaZEUHpRI6g1JQ60weZghB6aKUv-gIbuMMp-ic5UKoOG2O4wqfnF3HlJh-XerMvkJMTVK3b4Nq5dXi4NHNIUgzE2ZEnzSUIFoit8iMEsrUpoUC_UoRMGHB13NHA529Qhe5JtGr-H61pp5CZLA1pqkh0YXR-vF_Cp5xiRjgNQxj3h54DGnHwV930Zyo_Y4Vi2Z1jr0Dp3CPrKBgvse_O2CY1TEDoFuE-SGtykoD9PfAbKQwi4yqTVfatZbQoHs_5C3NeO2FVP4IOZd1c9PZeo-wKH5ne0PEl4LaujiZdJz4RolLId1-tP4EdGPsv3QfNjLg1JlXKD4FjXzX0BhqmIvF8KUqeuNeBTaT6_joUyhQYIf50pMUXMqqmyyFoQCAwyuOPGnxK8HJ855BJpP9tQqX7GuKpKtJ_YI2JJHNAoGkw7-CwsByx_iT5UybZpjMCqeeo9Mcv-YPZImN95ZDTLcHdJvJphrX0HhtIoDZ3sq1w1QLlsq4pI6nq_kijBkuftruVIAMuCXAc8ezfeu44cHyPwQ2C9u4Anw3OvggBQ9CYgEbaGRfoz1n-ujOKhOeNKan7GUsnGQRjI6HXABV2wXsxiuNBfDHVNQxjiqyL0s_aO-3JkOEmnRsSmKqX9buNuqhY2UBAOYSEotkyCcqNKXE5I-IKpR36ibpF_TpU44TKvSCBrCuGHfUXabBGlL3YHoVHRBAXw10xuC0GikqZjAbF3xxFQsoaRDaqNA07mG2-eZ7CNF2ZTItcrp1phbLziq4go0hVpZi3pkMzjC8TU9Ec_aTdzHrLkwxfITySFMLRO4hNRgGX18oot691lEtZMpBnDaLtTRTABRWDeh1Q5C274w-S1vyveeKtkTgEIxh-jmVwMf904E1TE-WEJuRS5n-omVafYvIs5qAJOAkl6_kxvxDBNFAErRTf8fqhqITj2j8fVlk7PYVU_Lk1Dt0v_ocrskmeUNmu-g8R8Vtnv_rlBvNii_e5yQZFTCIfexfXIARZJ-mMkL1MMtHrMUouosI3MEbOgW6qeQR_Q7ZBsayxHGyZOi8sCegh6KfZdQZVCVjb-HcjIUd81MkXsVMhKDjH3LC4kgHjHlrXNU55LDlBhd7N-G_uLCbrdbNSWYeQyWqvXP-6emys64hO3I4VBPVO87Im2wpTv9zDlkORT-RtKfUlbPg4OK-xs4opnX7tVKDdl8gqbUO8LhzIyfkjv2F0qVJmuSJE6JS-ZSPnIOICTW5RDZJYRg2moLcr-ojIAuKEGFiq2LEzInmiyNLPMSTK1RmkjplHIKtPiPGcELZPAIa8Ki8oZKYu1bYnyAZjU2vlAI0UBcTml2XAbpHMt7h5oUbkWDLWyitc6-DDw-E_d6FvkdkEf5wGbtf23OuZcGRWRS1lq6HgF4O4zAF4Pzpi08p0MsMFfNFtL8ykOclrSpPBtECjewWZNSCtLCzD69Z2-YPkuVJwnp78vEPqctreiWVrTWjdPy6RZDWqGH2Sd05G83PHIurLQwgHH6oUf_c-wgJoVKuSkaHrEQ2eVWb4jvj1t5xIoRxK1NaUpNExRNbIYgCF90EfjWorwnJkCfM4t8HOWIDTdhj9paOJGgUr9avx4LX7JTfrebH0hDRfy-IfaLmViJzqYxjvwGmbdw-bI9gudJqHROlie_ZyfrCYJM2wZBzkCmCuA40onyQiZVRAIa5aukTVHrSFk3NFdTZCyGUsiN3XKcxf2oDMsCFTDE7SB_9XzOBWgAtoMiyWYvuqlRmPzm4rQniNQ7vWHZTst76nEt1BYmeZ6dd6AzQJ7EzYx0OPvnraimNB156iWmGWtoEnXgAODzBlYncKIraqvgt1AKZpYXr4UjQ95XMx_mgfoHnE6ksC6du6v5Oneeireqs7QLbRp7Rk4iM-6hAEmPHxI8eLI1h1U7iOEN5nFdj6BElu99psZ8OkaSbn3-yKpbSI3RDfYDXyC4gVRYA39PzzrO_3_ghkdrNmG70BurO4cV3Ha008MYaqr8s2yI_NIGtatKtlz0ifJVGPOqezpVwvRfFiBRQI6PWWUYCp4E9inpfZIzUk_ElQUEg5LvdWkjnrroky98-DmlUZFcduisfo8kr_N0-dBYOwthGc9oZ4ElUh4eLZPTuArmG0073BOsJZgz3VB4fLPvidVWu5VZMmo7W6KX3ak2BK6jaRAivpzXH-GWUhhpjKjGKYssFQxEY6G_ACPk-rJ2lNoABV5XeqjFA2IoztEE6oT95Sacd0-7gxNTqDrXMEp21h8q40dpD7y2abJJdC8FhsA0uq6f090snx5T3BJw3JSPAbTAjzY9ZYl-gV_NRSLCwY2FV_nGTQZJRPKr_VxTaeJ0w&cid=CAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT&rfl=1%2Chttps%253A%252F%252Fwww.sunstar.com.ph%252F%240
IP 142.250.74.162:0
File type ASCII text, with very long lines (15258), with no line terminators
Hash a49c59c84a252c465d5c30c18c99152b
cf3c2a4b8202b79dbb231ed0da003e5581518550
338cde682fe9b9948911c08e6d3455a4e5de5bb1a2545b1c8c782fc54267c26b
GET /dbm/ad?dbm_c=AKAmf-CxI2P1FohOyZ0QFJpHo-9ViqFwsc2VErKmKMkUbAI0Wo9CJVYc72fLxZwBXYBgQl4WcIz5zXAzqd9NG17mNKBjvhBaE79xRJOeJorvgbgb2vU1e1JHwa-icztWyBAIqqlleDJjIBFJaGwpkFn89UNwXo4O0VQbxiGDbezIU82vPrNFKjI&cry=1&dbm_d=AKAmf-CWkO5q2PRdEMgJpkgdfh0Z9To69GXqE1xKdLfLysOYzQ5gbo4mJ4q4Ji9JC6q9zO6DTOFo3TCuU9-Czju3B3Abf0Nx5blvTFxPuyCovtzhJlZu2ta0NyNhX1EnIVAYn1pMgt3t_c9xfwYx2II7RHEa5fXt1eYTyn1c1jOym0OJ2tVF92i1qsc7C6JOBA0dBsSbFNFOleaDraHnRCLVJD-mKQwTb-Zo9v-W9mjQeTpPtJDZooB5dupslb5VjP3CmQNXtdsUMs2DCivMoaRg1fdAqEnCHQV0R_bQs1rBoFL7pFCY-L5wsECmp0MTU79Chf_VSpud_AV0lyW3bHxR1misGo7XX20uo9_JNNwPGZ94sF8KwGUZ_SmFCndNSPnnqdLZk1BfX03X5TUj4wNF4_WS96m_zxrEOd6IYKQBENmmW-qmVL7U8AhVLHONWzUmjC-_61HO-mVncYLtWCc-mWzxRisM7JM8QQiI95vwlWXX3g2gFh5Ftn19qCU0APT0ggTM0PPeT93qEhzAQ48M2xDkjb6I8ANuGjQzhUys3HDY2I005JkHtJEVbvUq16vQWlTGKKLdoCriHyN-XhMFlU5qw2J498fEZpaxkatZpAoOggMMj8lm1kSeAgncwbomxHkoFe-7S2nh3BRChXbs8EMb4epWXE0sJrQn4p0LrCVC1PuBUjBck5esrZtPhhQV1TpMXbT6UHHE0Df0Q0OsYopI0BY0igxItUIWB25_UuKBW_2EN-t5rwBQw8W8opczWjA-N32w-12ye-dRVfPz_Wu6UGHaH8EjJC658iVJJ2m6ReHAKbt7kRZ_1_HL9xLwhjSgCLbNaZ41VFeD-dpqZJGiSiP4Tfgc2bXAC6t6HjH7YWEx2GvaoWxkL0pvHQCHIX18PSiI-_5O7T1A0e6XRLGT9vg3yVOFLv862S7MpynP34TEzaKJldQLSpzHD6JsMPQ-Ab7336Ytcki2xy1-fbJ_5EtIJ7wyEIean__Tt5VP2-uZol-Rt7wqKt8KbmNE8dtp4A6Bwe8fYvJypweMnrO6W2XLHndJF7gpSId_uYXINFaFmBaM8zgitaQSL9IIm9uxy6Rfp0SHKYFjb9bjaYtglSEz6GVOYc0cbhT1ECYREPT0nCoNJ22p_dIgX_hLsK2fX9VjnIPN9zFRTbB3oghKOQYhdU-J_ss1-na6F0rhkPvQuFdyL69uWdkH6ASTYf55PmJ_VNx6U8shRpw0_dxS4ZBy6DdwmgD9xbrd45r1zJhmz4j7LCzFS6NqGWE_hEh9TKt_3eo-MRv0BRuBVPCXeHYQHy7vc_aZz_gxIa5wBCikqaZEUHpRI6g1JQ60weZghB6aKUv-gIbuMMp-ic5UKoOG2O4wqfnF3HlJh-XerMvkJMTVK3b4Nq5dXi4NHNIUgzE2ZEnzSUIFoit8iMEsrUpoUC_UoRMGHB13NHA529Qhe5JtGr-H61pp5CZLA1pqkh0YXR-vF_Cp5xiRjgNQxj3h54DGnHwV930Zyo_Y4Vi2Z1jr0Dp3CPrKBgvse_O2CY1TEDoFuE-SGtykoD9PfAbKQwi4yqTVfatZbQoHs_5C3NeO2FVP4IOZd1c9PZeo-wKH5ne0PEl4LaujiZdJz4RolLId1-tP4EdGPsv3QfNjLg1JlXKD4FjXzX0BhqmIvF8KUqeuNeBTaT6_joUyhQYIf50pMUXMqqmyyFoQCAwyuOPGnxK8HJ855BJpP9tQqX7GuKpKtJ_YI2JJHNAoGkw7-CwsByx_iT5UybZpjMCqeeo9Mcv-YPZImN95ZDTLcHdJvJphrX0HhtIoDZ3sq1w1QLlsq4pI6nq_kijBkuftruVIAMuCXAc8ezfeu44cHyPwQ2C9u4Anw3OvggBQ9CYgEbaGRfoz1n-ujOKhOeNKan7GUsnGQRjI6HXABV2wXsxiuNBfDHVNQxjiqyL0s_aO-3JkOEmnRsSmKqX9buNuqhY2UBAOYSEotkyCcqNKXE5I-IKpR36ibpF_TpU44TKvSCBrCuGHfUXabBGlL3YHoVHRBAXw10xuC0GikqZjAbF3xxFQsoaRDaqNA07mG2-eZ7CNF2ZTItcrp1phbLziq4go0hVpZi3pkMzjC8TU9Ec_aTdzHrLkwxfITySFMLRO4hNRgGX18oot691lEtZMpBnDaLtTRTABRWDeh1Q5C274w-S1vyveeKtkTgEIxh-jmVwMf904E1TE-WEJuRS5n-omVafYvIs5qAJOAkl6_kxvxDBNFAErRTf8fqhqITj2j8fVlk7PYVU_Lk1Dt0v_ocrskmeUNmu-g8R8Vtnv_rlBvNii_e5yQZFTCIfexfXIARZJ-mMkL1MMtHrMUouosI3MEbOgW6qeQR_Q7ZBsayxHGyZOi8sCegh6KfZdQZVCVjb-HcjIUd81MkXsVMhKDjH3LC4kgHjHlrXNU55LDlBhd7N-G_uLCbrdbNSWYeQyWqvXP-6emys64hO3I4VBPVO87Im2wpTv9zDlkORT-RtKfUlbPg4OK-xs4opnX7tVKDdl8gqbUO8LhzIyfkjv2F0qVJmuSJE6JS-ZSPnIOICTW5RDZJYRg2moLcr-ojIAuKEGFiq2LEzInmiyNLPMSTK1RmkjplHIKtPiPGcELZPAIa8Ki8oZKYu1bYnyAZjU2vlAI0UBcTml2XAbpHMt7h5oUbkWDLWyitc6-DDw-E_d6FvkdkEf5wGbtf23OuZcGRWRS1lq6HgF4O4zAF4Pzpi08p0MsMFfNFtL8ykOclrSpPBtECjewWZNSCtLCzD69Z2-YPkuVJwnp78vEPqctreiWVrTWjdPy6RZDWqGH2Sd05G83PHIurLQwgHH6oUf_c-wgJoVKuSkaHrEQ2eVWb4jvj1t5xIoRxK1NaUpNExRNbIYgCF90EfjWorwnJkCfM4t8HOWIDTdhj9paOJGgUr9avx4LX7JTfrebH0hDRfy-IfaLmViJzqYxjvwGmbdw-bI9gudJqHROlie_ZyfrCYJM2wZBzkCmCuA40onyQiZVRAIa5aukTVHrSFk3NFdTZCyGUsiN3XKcxf2oDMsCFTDE7SB_9XzOBWgAtoMiyWYvuqlRmPzm4rQniNQ7vWHZTst76nEt1BYmeZ6dd6AzQJ7EzYx0OPvnraimNB156iWmGWtoEnXgAODzBlYncKIraqvgt1AKZpYXr4UjQ95XMx_mgfoHnE6ksC6du6v5Oneeireqs7QLbRp7Rk4iM-6hAEmPHxI8eLI1h1U7iOEN5nFdj6BElu99psZ8OkaSbn3-yKpbSI3RDfYDXyC4gVRYA39PzzrO_3_ghkdrNmG70BurO4cV3Ha008MYaqr8s2yI_NIGtatKtlz0ifJVGPOqezpVwvRfFiBRQI6PWWUYCp4E9inpfZIzUk_ElQUEg5LvdWkjnrroky98-DmlUZFcduisfo8kr_N0-dBYOwthGc9oZ4ElUh4eLZPTuArmG0073BOsJZgz3VB4fLPvidVWu5VZMmo7W6KX3ak2BK6jaRAivpzXH-GWUhhpjKjGKYssFQxEY6G_ACPk-rJ2lNoABV5XeqjFA2IoztEE6oT95Sacd0-7gxNTqDrXMEp21h8q40dpD7y2abJJdC8FhsA0uq6f090snx5T3BJw3JSPAbTAjzY9ZYl-gV_NRSLCwY2FV_nGTQZJRPKr_VxTaeJ0w&cid=CAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT&rfl=1%2Chttps%253A%252F%252Fwww.sunstar.com.ph%252F%240 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 04:02:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 11376
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 03-Dec-2022 04:17:32 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash a6f9b3872f96754368c0fcf211a634e4
a0f733d08934838f30de8a9bbf53d58e360523d5
5170ea984601e27c2b6d5fa0613fb9e0c40b244795e8e637528d556af3facac5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 139
Cache-Control: max-age=155588
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Etag: "638a8691-13a"
Expires: Sun, 04 Dec 2022 23:15:40 GMT
Last-Modified: Fri, 02 Dec 2022 23:13:21 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 314
tags.crwdcntrl.net/lt/c/16589/sync.min.js
54.230.111.37200 OK 10 kB URL HTTP/2 tags.crwdcntrl.net/lt/c/16589/sync.min.js
IP 54.230.111.37:0
Hash 6ab51f28a686cd93ba4b116aba606809
d5a4bd336c7277eff9a9d22f5344e467c7330528
ca0b19dc1579483456fba4136dc00d860c47e68fdcf9a9eea2739992370e28fd
GET /lt/c/16589/sync.min.js HTTP/1.1
Host: tags.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Mon, 21 Nov 2022 18:55:41 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sat, 03 Dec 2022 03:09:47 GMT
cache-control: max-age: 86400
etag: W/"2c5f4a319c3d99310927955777b5abe3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _gwDTGxMefKJSEAkDyYYr7DdiwXj1UmOPxdJZ2SC30iG63EIFDYogw==
age: 3166
X-Firefox-Spdy: h2
eb2.3lift.com/pe?fid=4&peid=0&aid=39571115631124672159690
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/pe?fid=4&peid=0&aid=39571115631124672159690
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /pe?fid=4&peid=0&aid=39571115631124672159690 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 79152de86b727fc382afc8945284fd52
5accdc9a105a0df24b8662da5f6012f2cb972ffd
75dfc77b76468557d3d9d4260875b6328900105eeafa7aa55dc997e9c601c7af
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119405
Date: Sat, 03 Dec 2022 04:02:32 GMT
Etag: "6389f721-1d7"
Expires: Sun, 04 Dec 2022 13:12:37 GMT
Last-Modified: Fri, 02 Dec 2022 13:01:21 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0cwNlCaY0iMYleebaTWRtNVWkrHhqQEKUg6z9nP-UXQNmprCsEF4Og==
Age: 676
tlx.3lift.com/s2s/notify?px=1&pr=Y4rKVwAG0EgKwkwoAAU49vwLyjsqOTbVDGcjDg&ts=1670040151&aid=39571115631124672159690&ec=2711_67911_11041759_&n=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%2BXFZABAJgBAKgB%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FAbgBCsABC8gBFPAB1wH4ARSAAguRAgAAAAAAAPA%2FmQIpXI%2FC9SjcP6gCALACAMgCAtgCAPECZmZmZmZm5j%2F4AoA5kAMAmAMAoAMAuAPYoAbIAwDSAwkxMTA0MTc1OV%2FgA9m8QOkDAAAAAAAAAADwAxT5AwAAAAAAAAAA%2BAIFiAMAkgMEMDEzYpgDAKAD%2Bd4WqAMA
18.196.195.252200 OK 37 B URL HTTP/2 tlx.3lift.com/s2s/notify?px=1&pr=Y4rKVwAG0EgKwkwoAAU49vwLyjsqOTbVDGcjDg&ts=1670040151&aid=39571115631124672159690&ec=2711_67911_11041759_&n=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%2BXFZABAJgBAKgB%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FAbgBCsABC8gBFPAB1wH4ARSAAguRAgAAAAAAAPA%2FmQIpXI%2FC9SjcP6gCALACAMgCAtgCAPECZmZmZmZm5j%2F4AoA5kAMAmAMAoAMAuAPYoAbIAwDSAwkxMTA0MTc1OV%2FgA9m8QOkDAAAAAAAAAADwAxT5AwAAAAAAAAAA%2BAIFiAMAkgMEMDEzYpgDAKAD%2Bd4WqAMA
IP 18.196.195.252:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /s2s/notify?px=1&pr=Y4rKVwAG0EgKwkwoAAU49vwLyjsqOTbVDGcjDg&ts=1670040151&aid=39571115631124672159690&ec=2711_67911_11041759_&n=GooGaHR0cDovL3J0Yi5mci5ldS5jcml0ZW8uY29tL3RyaXBsZWxpZnRvcnRibmF0aXZlL2F1Y3Rpb24vbm90aWZ5P3Byb2ZpbGU9MjQ5JmltcD1yV1lmbTVJRjVSclV6em5KUUs5eGZOYWRqTExfU1NVamxpN0ozRllva01adWxNWDktWGlQMjVTYkdZT2E4TWpFcnFjRlpuUl9jTG9sdU53MkZVWHEzNXBhSXVrd1pLaUFWZGNZa2g3S1JwU2xoU1NXOTEySEg0TFF5Y0Q5UmlwSzMtOWJESU9jZ2xWQXVPMlJpZ25HQTBTRGx0Vm9jUlk4OExWX2pzakxhZU1MQU1hdExXWGx3eXA2TzZtTTFybUZHbkktWTRLcWJSY2JNaWhhMDB5WDU3NzRnSGhUOGxGV0VTY19VWTBhWUFLT2VHQ195WEg4VVJLX3cxQ2dIeWsxRUxHY19zbHVFbkl1Wm56RUU5Q2xHSnp4YzZJOUhqRG5vMHRVZ2ZBQ0F1bGt1dWFOWWtwZFdpSVJDVm5YNnNwNDBiZHVYcDhlNUtwd1UyNG1UaEtTTjVYUzRqc1RBMHM5UjUtMjdXamNoZVk1NUFVSVpvQm5oT2E2YjloZWx0b2s4V2pYV0VQRnljLUdEVDhOeW5LbGNzbHVFdHVXMF9fVWQ4bUFKZGF5R0VzMTFGTnlUcWlXQUVNLVFDRm9BNDhKZUlwT2hZMVhMWWUydXljR3Eydk55eGFBRExwMDNzODFsNGphbUhNZ2hZYmpWZS1yZS1EQTJYRXQ4YWppYXMyVlpBWmVZVkdnc0VBZHUtQmFlcHhNSlJ6TDlvN25SVHlsUzNhdmdEU3dLamJTWnd6SVUwYXJkQS1mVHpGd3phNk51dE5Ob3hGdXNobndtOTFOWk9PNGhkWHd4ODFZMFFHVV9ZbGQ2UlotSXFNdG9UZUc4QVpSQ1FuclE4Qmxmdmpia1JfVjc0cmdQeVkmcHJpY2U9QUFBQmhOWW1abm5Nd0xSUExxME1KeDZjTG1DbEdyLUNvLWlZU3c9PfICwQEIABIXMzk1NzExMTU2MzExMjQ2NzIxNTk2OTAYACABKJcVMMeSBEABSABQAGAEaIhAcN%2BXFZABAJgBAKgB%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FAbgBCsABC8gBFPAB1wH4ARSAAguRAgAAAAAAAPA%2FmQIpXI%2FC9SjcP6gCALACAMgCAtgCAPECZmZmZmZm5j%2F4AoA5kAMAmAMAoAMAuAPYoAbIAwDSAwkxMTA0MTc1OV%2FgA9m8QOkDAAAAAAAAAADwAxT5AwAAAAAAAAAA%2BAIFiAMAkgMEMDEzYpgDAKAD%2Bd4WqAMA HTTP/1.1
Host: tlx.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 15 Oct 1992 20:10:00 GMT
pragma: no-cache
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4rKVwAK3HcKwkybAALjLcDLJ82-itiyahX4bw&u=%7COg%2FVITC%2F0Ws8CbNQTe4nmezlR0RfJatlQDVPR167JpY%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyMCnTpn87UHNsuno7AgpGzlOrtZY6p-JqzBn5aYBwP9WwDtfh0nzzH7GFdkMQnloGDwWGm97WbTioeutW617BbRYLt3KV9GQTOxAHgJvgnos6sc2w6sc_vrM6XcrUSqFxHak2XV-rvYbu0kG7PxPKSkAAmlEnGqYyUwmScFIFWy6l47l7nWe7Xfsf515iNm6FUo3FRy6_U4faOv7eJw2EqqfOkJ4e5uGHQgjfsSGnYcGxxiBueTZULAjCaR9MuGOjX6DRxfZlX2ng6lzWKkMnLXaBM5I_jYWs7voqyNUzQyh9140_cFIOtxpHFxsPd0fGnMmDpktt2QnzctRDgbTkOX5tnBh_BTO9pLRVutBstAI7cRBtvjTJymv1XAvuaUQiTCy8ZdR66xtqLHrp0bIYciKV2ovtl_p4VmBSTQfCchzKuSjZnYmr0iclnq_U21RtNtovoM81aCkS7VSYLUZHN0rCyjThSA18B3FrvT_o8kd_8TRnfPOUzTHX869s-5jH9PeHXGHXwSJrkrnkj54x6dEnP5lhG87xdYZWid0IB512ZWn3YeM-RY&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC6HNlV8qKY_e4K5uZiQatxouYAsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItOTA1ODI5MTg1NDQ0Mzg4McgBCakCRL-0GpessT7gAgCoAwGqBP4CT9DJQrY3r6UC69SXxqSrM20sV7P9kPqp4r_wHuZAqfkcW6HF_zs5HHpm4yVedKq3si-cEpr5tKzqvYPvo_HAN3e9kbyl0SdR1PX8lyy19gKT9_FB6-IXndiNL072aNHAk19nFqcQUPa_iZNbpLBHoynAogbcrrQzypOZgWVjMX2poCRJR7E8IqXERjn-Pu6OibV_S6vGZTpZvBhXUpeogTVV47Pcg3GYoCeXhOXXmHiu01ppuOtiPzNAd6ue5gdugjrsh3kuoBKXB1NVCjrfXNs9KWF3FdCUjWWVnjOrZdF82YOEEj29vlqCEKdc9m4549qGFUI8eIlvUfoPS3udb42hMJTGcpSl9RwnxJLlEVf6bFlPpjMQXKAdxfcquwGymTJ8UiuW2dxcbwowvMqq5XpCqOO3mRJgjk-tL1-uuWy8A35B1flKUzVVK12oPbEqMLGAJd9KtfGNzPnn_DZv35f--JCofbeGH-_7NjsITvr3ZOcr6NIdXWXJUeK0lOAEAYAG9e2Vy83i_dMroAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0ll8-cDwu5GDK87QUCMBlXt_85pQ%26client%3Dca-pub-9058291854443881%26adurl%3D
178.250.2.65200 OK 36 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4rKVwAK3HcKwkybAALjLcDLJ82-itiyahX4bw&u=%7COg%2FVITC%2F0Ws8CbNQTe4nmezlR0RfJatlQDVPR167JpY%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyMCnTpn87UHNsuno7AgpGzlOrtZY6p-JqzBn5aYBwP9WwDtfh0nzzH7GFdkMQnloGDwWGm97WbTioeutW617BbRYLt3KV9GQTOxAHgJvgnos6sc2w6sc_vrM6XcrUSqFxHak2XV-rvYbu0kG7PxPKSkAAmlEnGqYyUwmScFIFWy6l47l7nWe7Xfsf515iNm6FUo3FRy6_U4faOv7eJw2EqqfOkJ4e5uGHQgjfsSGnYcGxxiBueTZULAjCaR9MuGOjX6DRxfZlX2ng6lzWKkMnLXaBM5I_jYWs7voqyNUzQyh9140_cFIOtxpHFxsPd0fGnMmDpktt2QnzctRDgbTkOX5tnBh_BTO9pLRVutBstAI7cRBtvjTJymv1XAvuaUQiTCy8ZdR66xtqLHrp0bIYciKV2ovtl_p4VmBSTQfCchzKuSjZnYmr0iclnq_U21RtNtovoM81aCkS7VSYLUZHN0rCyjThSA18B3FrvT_o8kd_8TRnfPOUzTHX869s-5jH9PeHXGHXwSJrkrnkj54x6dEnP5lhG87xdYZWid0IB512ZWn3YeM-RY&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC6HNlV8qKY_e4K5uZiQatxouYAsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItOTA1ODI5MTg1NDQ0Mzg4McgBCakCRL-0GpessT7gAgCoAwGqBP4CT9DJQrY3r6UC69SXxqSrM20sV7P9kPqp4r_wHuZAqfkcW6HF_zs5HHpm4yVedKq3si-cEpr5tKzqvYPvo_HAN3e9kbyl0SdR1PX8lyy19gKT9_FB6-IXndiNL072aNHAk19nFqcQUPa_iZNbpLBHoynAogbcrrQzypOZgWVjMX2poCRJR7E8IqXERjn-Pu6OibV_S6vGZTpZvBhXUpeogTVV47Pcg3GYoCeXhOXXmHiu01ppuOtiPzNAd6ue5gdugjrsh3kuoBKXB1NVCjrfXNs9KWF3FdCUjWWVnjOrZdF82YOEEj29vlqCEKdc9m4549qGFUI8eIlvUfoPS3udb42hMJTGcpSl9RwnxJLlEVf6bFlPpjMQXKAdxfcquwGymTJ8UiuW2dxcbwowvMqq5XpCqOO3mRJgjk-tL1-uuWy8A35B1flKUzVVK12oPbEqMLGAJd9KtfGNzPnn_DZv35f--JCofbeGH-_7NjsITvr3ZOcr6NIdXWXJUeK0lOAEAYAG9e2Vy83i_dMroAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0ll8-cDwu5GDK87QUCMBlXt_85pQ%26client%3Dca-pub-9058291854443881%26adurl%3D
IP 178.250.2.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (34732), with CRLF, LF line terminators
Hash 8ff5f77f4fffe6f3d728e525833b370f
d1d3ee59442ab8632521dfd86618954cf0a6de7e
319110a6b92027c180a7b8b62c7c071f8537f1c0c1e2034f799e8c5f0dca351c
GET /delivery/r/afr.php?z=Y4rKVwAK3HcKwkybAALjLcDLJ82-itiyahX4bw&u=%7COg%2FVITC%2F0Ws8CbNQTe4nmezlR0RfJatlQDVPR167JpY%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyMCnTpn87UHNsuno7AgpGzlOrtZY6p-JqzBn5aYBwP9WwDtfh0nzzH7GFdkMQnloGDwWGm97WbTioeutW617BbRYLt3KV9GQTOxAHgJvgnos6sc2w6sc_vrM6XcrUSqFxHak2XV-rvYbu0kG7PxPKSkAAmlEnGqYyUwmScFIFWy6l47l7nWe7Xfsf515iNm6FUo3FRy6_U4faOv7eJw2EqqfOkJ4e5uGHQgjfsSGnYcGxxiBueTZULAjCaR9MuGOjX6DRxfZlX2ng6lzWKkMnLXaBM5I_jYWs7voqyNUzQyh9140_cFIOtxpHFxsPd0fGnMmDpktt2QnzctRDgbTkOX5tnBh_BTO9pLRVutBstAI7cRBtvjTJymv1XAvuaUQiTCy8ZdR66xtqLHrp0bIYciKV2ovtl_p4VmBSTQfCchzKuSjZnYmr0iclnq_U21RtNtovoM81aCkS7VSYLUZHN0rCyjThSA18B3FrvT_o8kd_8TRnfPOUzTHX869s-5jH9PeHXGHXwSJrkrnkj54x6dEnP5lhG87xdYZWid0IB512ZWn3YeM-RY&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC6HNlV8qKY_e4K5uZiQatxouYAsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItOTA1ODI5MTg1NDQ0Mzg4McgBCakCRL-0GpessT7gAgCoAwGqBP4CT9DJQrY3r6UC69SXxqSrM20sV7P9kPqp4r_wHuZAqfkcW6HF_zs5HHpm4yVedKq3si-cEpr5tKzqvYPvo_HAN3e9kbyl0SdR1PX8lyy19gKT9_FB6-IXndiNL072aNHAk19nFqcQUPa_iZNbpLBHoynAogbcrrQzypOZgWVjMX2poCRJR7E8IqXERjn-Pu6OibV_S6vGZTpZvBhXUpeogTVV47Pcg3GYoCeXhOXXmHiu01ppuOtiPzNAd6ue5gdugjrsh3kuoBKXB1NVCjrfXNs9KWF3FdCUjWWVnjOrZdF82YOEEj29vlqCEKdc9m4549qGFUI8eIlvUfoPS3udb42hMJTGcpSl9RwnxJLlEVf6bFlPpjMQXKAdxfcquwGymTJ8UiuW2dxcbwowvMqq5XpCqOO3mRJgjk-tL1-uuWy8A35B1flKUzVVK12oPbEqMLGAJd9KtfGNzPnn_DZv35f--JCofbeGH-_7NjsITvr3ZOcr6NIdXWXJUeK0lOAEAYAG9e2Vy83i_dMroAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0ll8-cDwu5GDK87QUCMBlXt_85pQ%26client%3Dca-pub-9058291854443881%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=1T-buPxK0CI0d3Xx6DyapFusUxW2z_n9Y3JHBkilwiwvBXABIjqgllfIrtSd9cnea9Dd1m_goQjLVQKqxavr3c7UVKbcbradwKYaz8fZdNA7RJibmLYKLgtL96avZ5sBM9XLBeV80u1O6Y0_dSTiaXODOy_WATXQ33MQ8qMFvwSwBeOF2BuUCm9z6ZZaFnagRtLTJREYE5j0pXaVTfARoG6KicdJCpThjeRay0hFGdNyMb14qz0QZGCAhEs"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 26332843
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 1c79565690e83ae97cd143886eb5adb4
438b270d950fe9ef2bc179b0fd9a12f913c528e6
cc65c4a53a3efad9aacd1165ece271a962d02083a3a570ccf44b110b70a41951
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6586
Cache-Control: max-age=104417
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:32 GMT
Etag: "6389a57f-138"
Expires: Sun, 04 Dec 2022 09:02:49 GMT
Last-Modified: Fri, 02 Dec 2022 07:13:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 312
static.criteo.net/flash/icon/back_button2.svg
178.250.2.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Tue, 28 Nov 2023 04:02:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/close_button.svg
178.250.2.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Tue, 28 Nov 2023 04:02:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=k8uwEf7MCcoHWp2DYgICAAAAzudquAhlz3mcDVgmCTmO2xBXyopjrOGvb6Sh5D6rUAwAEgAA&wp=Y4rKVwAK3HcKwkybAALjLcDLJ82-itiyahX4bw
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=k8uwEf7MCcoHWp2DYgICAAAAzudquAhlz3mcDVgmCTmO2xBXyopjrOGvb6Sh5D6rUAwAEgAA&wp=Y4rKVwAK3HcKwkybAALjLcDLJ82-itiyahX4bw
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=k8uwEf7MCcoHWp2DYgICAAAAzudquAhlz3mcDVgmCTmO2xBXyopjrOGvb6Sh5D6rUAwAEgAA&wp=Y4rKVwAK3HcKwkybAALjLcDLJ82-itiyahX4bw HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 297902
date: Sat, 03 Dec 2022 04:02:32 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8a00578a30ed838a879ece3437fa6e2d
782f6295ac7bb674d26ad1d81ae6312d72218377
ef385643f54a779ef2c22c5a9f428481fc535a8d83b48a2244a33ffa2159ef0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF385643F54A779EF2C22C5A9F428481FC535A8D83B48A2244A33FFA2159EF0F"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8904
Expires: Sat, 03 Dec 2022 06:30:56 GMT
Date: Sat, 03 Dec 2022 04:02:32 GMT
Connection: keep-alive
hal9000.redintelligence.net/zone/30o4vd0fllt4?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCOlicV8qKY5GKObqJ-cAPjIaSuA3X-vqbacKtqePiD_AuEAEgkLemT2DDhICAmBjIAQmpAkS_tBqXrLE-qAMBqgT9AU_Q1nSk05umgQ78X5FyVfSyU82Fb8mxCBMR2gzyoRDtiviYLu6art-RBEZtfZg-2x-VcdZsFAFUXsVOHjJErJT3QD4ST4Ic3TIYr_SJgyVLSMHvFlGHk68Td3qrVwRBh9vQBYL337WfcX3sOr41VhjrZ4VtK-rfv8J1kxcJR-QlyrX2jyBtct_GJgvIluE2xDa2RELKKoX03rcgx6O_E7mHhVF8qiJocWfinPmk_ov6nyxSGeWyEdiluMnDcSZQSk7aPKYDfm5k45Qz7mL1YGUP4mcaZCshGWIAvLehwWXF13YznsDNeQe6kn8hhXIfo1FPOEAIS1xYgcVsUKrABJ39oYnwA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgEDyCBthZHgtc3Vic3luLTI4ODE2NDg4OTQzOTU2MjSACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT%26sig%3DAOD64_0ueLc7SDBejMpMvj9nac79neXKDQ%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-AKrJKqPxeRiqAYfbtMdcrSdHk2IehdowkFQ-39KRKtn4xEEGHMci3UNqrj_cYN_eiCkNYyuw3Xqu-1qXjfReaz4Z_-ABy-KjyZw6QKrA1jKvOv3-mex5-lpHjPYcvigjAy5wJOu6Wro5g2iRk-WHx2EbVdEQlgWpnMc0rSZOE6dxo_sPU%26cry%3D1%26dbm_d%3DAKAmf-CwPJxAze3RCjBG35wn-qlTlFc-Djpyu3xSi2QDP3319eLHLDUzdNoQ06yugPYyyHTZM-Vj0FTlOAtwTn29TXnBo8wvixUXPg_sG3KwRjvjgqPXEAUHN85e2YkldB0sDzPSSejWFTw4sdWECDh6lq_D9T0JVaEz38AJ_WEf-Pb50B4a0f8z7tume4EyRxFZTKziwoRlqX53v8RDkx2wikVE8fR-8Co5m1qIdj_HAmmyznTWsyz7vEobeXe_hIHrmIf5bpnJ-RgzLlWkOsacg921Vg3RXLgK9exVPF2rM7UNHNvRMAPA4nwv78ls3ODBQSbw9y-rxvwqNdsVcZbUWEof5R1O7rzgUkajb-y812yhvhWG07o1CNAU1Kp2qjXdmaBJYTsgdqWx9MUppvQ_w805eWw8gyiysLXXX_c7KiVP53B9S4t8dqpK1v6mIwEw3Id2FbFEbwW-AkRQPEWwiW0h-pGW4nFN1_xargXHJM16kgcRbJ3UPSMqx3JP7rqwijNc8wkiDFoNCor8ow04t6CwcOI7_H9-cZxurHW-Dlf_56Wx4uDwrFkEO4cGU-4si_Z0xnrPx1i8_M5byPI86yObhFKLLsQJYcpGDK0PPPG2I9TyWgOqqNeYXkDMZzhCXLSMERfL%26adurl%3D
138.201.63.157200 OK 4.2 kB URL HTTP/1.1 hal9000.redintelligence.net/zone/30o4vd0fllt4?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCOlicV8qKY5GKObqJ-cAPjIaSuA3X-vqbacKtqePiD_AuEAEgkLemT2DDhICAmBjIAQmpAkS_tBqXrLE-qAMBqgT9AU_Q1nSk05umgQ78X5FyVfSyU82Fb8mxCBMR2gzyoRDtiviYLu6art-RBEZtfZg-2x-VcdZsFAFUXsVOHjJErJT3QD4ST4Ic3TIYr_SJgyVLSMHvFlGHk68Td3qrVwRBh9vQBYL337WfcX3sOr41VhjrZ4VtK-rfv8J1kxcJR-QlyrX2jyBtct_GJgvIluE2xDa2RELKKoX03rcgx6O_E7mHhVF8qiJocWfinPmk_ov6nyxSGeWyEdiluMnDcSZQSk7aPKYDfm5k45Qz7mL1YGUP4mcaZCshGWIAvLehwWXF13YznsDNeQe6kn8hhXIfo1FPOEAIS1xYgcVsUKrABJ39oYnwA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgEDyCBthZHgtc3Vic3luLTI4ODE2NDg4OTQzOTU2MjSACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT%26sig%3DAOD64_0ueLc7SDBejMpMvj9nac79neXKDQ%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-AKrJKqPxeRiqAYfbtMdcrSdHk2IehdowkFQ-39KRKtn4xEEGHMci3UNqrj_cYN_eiCkNYyuw3Xqu-1qXjfReaz4Z_-ABy-KjyZw6QKrA1jKvOv3-mex5-lpHjPYcvigjAy5wJOu6Wro5g2iRk-WHx2EbVdEQlgWpnMc0rSZOE6dxo_sPU%26cry%3D1%26dbm_d%3DAKAmf-CwPJxAze3RCjBG35wn-qlTlFc-Djpyu3xSi2QDP3319eLHLDUzdNoQ06yugPYyyHTZM-Vj0FTlOAtwTn29TXnBo8wvixUXPg_sG3KwRjvjgqPXEAUHN85e2YkldB0sDzPSSejWFTw4sdWECDh6lq_D9T0JVaEz38AJ_WEf-Pb50B4a0f8z7tume4EyRxFZTKziwoRlqX53v8RDkx2wikVE8fR-8Co5m1qIdj_HAmmyznTWsyz7vEobeXe_hIHrmIf5bpnJ-RgzLlWkOsacg921Vg3RXLgK9exVPF2rM7UNHNvRMAPA4nwv78ls3ODBQSbw9y-rxvwqNdsVcZbUWEof5R1O7rzgUkajb-y812yhvhWG07o1CNAU1Kp2qjXdmaBJYTsgdqWx9MUppvQ_w805eWw8gyiysLXXX_c7KiVP53B9S4t8dqpK1v6mIwEw3Id2FbFEbwW-AkRQPEWwiW0h-pGW4nFN1_xargXHJM16kgcRbJ3UPSMqx3JP7rqwijNc8wkiDFoNCor8ow04t6CwcOI7_H9-cZxurHW-Dlf_56Wx4uDwrFkEO4cGU-4si_Z0xnrPx1i8_M5byPI86yObhFKLLsQJYcpGDK0PPPG2I9TyWgOqqNeYXkDMZzhCXLSMERfL%26adurl%3D
IP 138.201.63.157:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1820), with CRLF line terminators
Hash 11f790e548e2caabfc063298220aedcc
c3159e311cd320d6d2b5e1ec9402077cb8f0cd67
800d4d5b9aef9ba7e0baf76da6df9c9304bd2b3722716f26aeb0e46054e051b5
GET /zone/30o4vd0fllt4?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCOlicV8qKY5GKObqJ-cAPjIaSuA3X-vqbacKtqePiD_AuEAEgkLemT2DDhICAmBjIAQmpAkS_tBqXrLE-qAMBqgT9AU_Q1nSk05umgQ78X5FyVfSyU82Fb8mxCBMR2gzyoRDtiviYLu6art-RBEZtfZg-2x-VcdZsFAFUXsVOHjJErJT3QD4ST4Ic3TIYr_SJgyVLSMHvFlGHk68Td3qrVwRBh9vQBYL337WfcX3sOr41VhjrZ4VtK-rfv8J1kxcJR-QlyrX2jyBtct_GJgvIluE2xDa2RELKKoX03rcgx6O_E7mHhVF8qiJocWfinPmk_ov6nyxSGeWyEdiluMnDcSZQSk7aPKYDfm5k45Qz7mL1YGUP4mcaZCshGWIAvLehwWXF13YznsDNeQe6kn8hhXIfo1FPOEAIS1xYgcVsUKrABJ39oYnwA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgEDyCBthZHgtc3Vic3luLTI4ODE2NDg4OTQzOTU2MjSACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT%26sig%3DAOD64_0ueLc7SDBejMpMvj9nac79neXKDQ%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-AKrJKqPxeRiqAYfbtMdcrSdHk2IehdowkFQ-39KRKtn4xEEGHMci3UNqrj_cYN_eiCkNYyuw3Xqu-1qXjfReaz4Z_-ABy-KjyZw6QKrA1jKvOv3-mex5-lpHjPYcvigjAy5wJOu6Wro5g2iRk-WHx2EbVdEQlgWpnMc0rSZOE6dxo_sPU%26cry%3D1%26dbm_d%3DAKAmf-CwPJxAze3RCjBG35wn-qlTlFc-Djpyu3xSi2QDP3319eLHLDUzdNoQ06yugPYyyHTZM-Vj0FTlOAtwTn29TXnBo8wvixUXPg_sG3KwRjvjgqPXEAUHN85e2YkldB0sDzPSSejWFTw4sdWECDh6lq_D9T0JVaEz38AJ_WEf-Pb50B4a0f8z7tume4EyRxFZTKziwoRlqX53v8RDkx2wikVE8fR-8Co5m1qIdj_HAmmyznTWsyz7vEobeXe_hIHrmIf5bpnJ-RgzLlWkOsacg921Vg3RXLgK9exVPF2rM7UNHNvRMAPA4nwv78ls3ODBQSbw9y-rxvwqNdsVcZbUWEof5R1O7rzgUkajb-y812yhvhWG07o1CNAU1Kp2qjXdmaBJYTsgdqWx9MUppvQ_w805eWw8gyiysLXXX_c7KiVP53B9S4t8dqpK1v6mIwEw3Id2FbFEbwW-AkRQPEWwiW0h-pGW4nFN1_xargXHJM16kgcRbJ3UPSMqx3JP7rqwijNc8wkiDFoNCor8ow04t6CwcOI7_H9-cZxurHW-Dlf_56Wx4uDwrFkEO4cGU-4si_Z0xnrPx1i8_M5byPI86yObhFKLLsQJYcpGDK0PPPG2I9TyWgOqqNeYXkDMZzhCXLSMERfL%26adurl%3D HTTP/1.1
Host: hal9000.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:02:32 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4215
Connection: close
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 215ff73e6a9a2ea44476edd258f22fa8
d2b7e4486b94dc3281db108f77a7f9109f50c494
2b70471e6e103daa759e5cd3ea3d29b14a21e0dcb8b6e0a4e4cd02b5994ed53c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6459
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:33 GMT
Last-Modified: Sat, 03 Dec 2022 02:14:54 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 17750493fe7d833b0d0b0d9c22111e49
63d56db4bbf4116d5b7ce0e8278e320234c1b3bf
d75717ca7657a52a8410d60fef98d89529736c8298f8bd3d212fe286c82ab49c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 338
Cache-Control: max-age=114012
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:33 GMT
Etag: "6389e363-13a"
Expires: Sun, 04 Dec 2022 11:42:45 GMT
Last-Modified: Fri, 02 Dec 2022 11:37:07 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 314
p.adlooxtracking.com/q?v=gpt-92559af&c=152&t=1095&p=238&pn=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial%09gpt_unit_%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial_0&s=%2F1012712%2FArticle_Page_leaderboard%09div-gpt-ad-1617796607250-0&s=%2F15918106%2FSunstar%2Fbody1%09sunstarbody1&s=%2F15918106%2FSunstar%2Fbody2%09sunstarbody2&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_allsite_1x1%09ats-insert_ads-22&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right2_sticky_120x600%2F%2F160x600%2F%2F300x600%09ats-insert_ads-16&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_top2_728x90%2F%2F970x90%2F%2F320x100%2F%2F320x50%09ats-insert_ads-15&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_below1_300x250%2F%2F336x280%09ats-insert_ads-5&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%09ats-insert_ads-2
34.107.231.31200 OK 381 B URL HTTP/2 p.adlooxtracking.com/q?v=gpt-92559af&c=152&t=1095&p=238&pn=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial%09gpt_unit_%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial_0&s=%2F1012712%2FArticle_Page_leaderboard%09div-gpt-ad-1617796607250-0&s=%2F15918106%2FSunstar%2Fbody1%09sunstarbody1&s=%2F15918106%2FSunstar%2Fbody2%09sunstarbody2&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_allsite_1x1%09ats-insert_ads-22&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right2_sticky_120x600%2F%2F160x600%2F%2F300x600%09ats-insert_ads-16&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_top2_728x90%2F%2F970x90%2F%2F320x100%2F%2F320x50%09ats-insert_ads-15&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_below1_300x250%2F%2F336x280%09ats-insert_ads-5&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%09ats-insert_ads-2
IP 34.107.231.31:0
Hash c14a9f1db30ddbf25727d36bf6798c1d
5e8254f040a9a05559c6f80b3b494a3382b47869
47146fa6217586bc42395da3494d2f4a2001ff51f0e929cfb0de62f96522759a
GET /q?v=gpt-92559af&c=152&t=1095&p=238&pn=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial%09gpt_unit_%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial_0&s=%2F1012712%2FArticle_Page_leaderboard%09div-gpt-ad-1617796607250-0&s=%2F15918106%2FSunstar%2Fbody1%09sunstarbody1&s=%2F15918106%2FSunstar%2Fbody2%09sunstarbody2&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_allsite_1x1%09ats-insert_ads-22&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right2_sticky_120x600%2F%2F160x600%2F%2F300x600%09ats-insert_ads-16&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_top2_728x90%2F%2F970x90%2F%2F320x100%2F%2F320x50%09ats-insert_ads-15&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_below1_300x250%2F%2F336x280%09ats-insert_ads-5&s=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%09ats-insert_ads-2 HTTP/1.1
Host: p.adlooxtracking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:33 GMT
content-type: application/json
vary: Accept-Encoding, origin, user-agent
x-adloox-pubint-version: 20221203032131
server-timing: conn;dur=0.008, ua;dur=0.021, segment_pipeline;dur=0.271, segment_ip;dur=0.004, segment_iab-valid;dur=0.009, segment_iab-spider;dur=0.482, segment_bs;dur=0.003, segment;dur=1.020
x-adloox-pubint-commit: 80ca8d3
x-adloox-pubint-commit-db: 075350530-dirty
x-real-ip: 91.90.42.154
cache-control: private, must-revalidate, max-age=3600, stale-while-revalidate=86400, stale-if-error=86400
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-headers: x-cloud-trace-context
access-control-expose-headers: x-adloox-pubint-commit, x-adloox-pubint-commit-db, x-adloox-pubint-version
access-control-max-age: 600
timing-allow-origin: *
x-content-type-options: nosniff
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ib.3lift.com/rev/6be1393e0ee56f63717d253e90fe0e4363b3e6d4/dist/369.js
54.230.111.102200 OK 3.9 kB URL HTTP/2 ib.3lift.com/rev/6be1393e0ee56f63717d253e90fe0e4363b3e6d4/dist/369.js
IP 54.230.111.102:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash f313588e820a137a50f05eed75ae577e
99c6e050908e1b5a49aad189f47a17c65867f13e
b8e3c09d561edff0fbb8bb79f8314a042f4102297c8f6d88928be8148839acc1
GET /rev/6be1393e0ee56f63717d253e90fe0e4363b3e6d4/dist/369.js HTTP/1.1
Host: ib.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3854
date: Tue, 08 Nov 2022 17:26:25 GMT
last-modified: Tue, 08 Nov 2022 17:25:46 GMT
etag: "f313588e820a137a50f05eed75ae577e"
cache-control: max-age=31536000, immutable
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qgXRSSpKv4ALYeleKF6D8UszHGGRtCeWOlxGzY9dC6FGXwE53CpDsQ==
age: 2111769
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fround-neck-cotton-t-shirt_1044-000145-0001_flatlay.jpg%3Fref%3DD37C78F0D1&v=3&w=400&s=1prrVr3wZfJ5GV5B1X7Qc7I6&b=400
178.250.0.139200 OK 1.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fround-neck-cotton-t-shirt_1044-000145-0001_flatlay.jpg%3Fref%3DD37C78F0D1&v=3&w=400&s=1prrVr3wZfJ5GV5B1X7Qc7I6&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 267x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 87d1d92d31c5b7ec7807535a7d690977
69125885d78d819c3e22636d19f0f0cbbdc23584
afd044e0c10630dbbc1fb07ac23ce66650a20ea8206f4f4da64fb63c2ae94f4e
GET /img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fround-neck-cotton-t-shirt_1044-000145-0001_flatlay.jpg%3Fref%3DD37C78F0D1&v=3&w=400&s=1prrVr3wZfJ5GV5B1X7Qc7I6&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30213170
expires: Fri, 17 Nov 2023 20:35:23 GMT
date: Sat, 03 Dec 2022 04:02:32 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 1290
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_swiss_dot_panties-1730-000054-0024_1.jpg%3Fref%3D5432397BA9&v=3&w=400&s=5Mw_ecw0cwVCXjHw2CIh7iK4&b=400
178.250.0.139200 OK 5.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_swiss_dot_panties-1730-000054-0024_1.jpg%3Fref%3D5432397BA9&v=3&w=400&s=5Mw_ecw0cwVCXjHw2CIh7iK4&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 267x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cbad2aa92404d14d32c1d7fb9551cd18
156f45c529e88b34cbcbf8fd0dc4b949296dff11
25c4851c0dd130f43f613fa7fab9b24a983ca4b548c6e0e6fae303c82896e820
GET /img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_swiss_dot_panties-1730-000054-0024_1.jpg%3Fref%3D5432397BA9&v=3&w=400&s=5Mw_ecw0cwVCXjHw2CIh7iK4&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29681252
expires: Sat, 11 Nov 2023 16:50:05 GMT
date: Sat, 03 Dec 2022 04:02:32 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5552
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
eb2.3lift.com/r?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&pr=can%27t%2520access%2520top%2520document&bc=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw%3D%3D&bmid=2711&biid=7296&sid=67911&brid=347103&adid=11041759_&crid=1056345&ts=1670040151&bcud=20&ss=5&caid=-1&unid=0&domain=79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com&ref=&rr=creative&fid=4&rb=8200&g=0&cb=11621
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/r?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&pr=can%27t%2520access%2520top%2520document&bc=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw%3D%3D&bmid=2711&biid=7296&sid=67911&brid=347103&adid=11041759_&crid=1056345&ts=1670040151&bcud=20&ss=5&caid=-1&unid=0&domain=79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com&ref=&rr=creative&fid=4&rb=8200&g=0&cb=11621
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /r?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&pr=can%27t%2520access%2520top%2520document&bc=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw%3D%3D&bmid=2711&biid=7296&sid=67911&brid=347103&adid=11041759_&crid=1056345&ts=1670040151&bcud=20&ss=5&caid=-1&unid=0&domain=79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com&ref=&rr=creative&fid=4&rb=8200&g=0&cb=11621 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:33 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.2.130200 OK 5.1 kB URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.2.130:0
Hash 3e4af5b99da0c37cb2b188fc8e17ed05
a3dc648d677b01caebd9d83e74680569eb0528e3
fd9c5d44f760da6d00f60a703b9bd7b15d92f592306d287597cf638d8e73f86a
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Tue, 28 Nov 2023 04:02:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.prebid.123.js
178.250.2.130200 OK 37 kB URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.123.js
IP 178.250.2.130:0
Hash 085e63094dcf61dcf1ea71f8283926fd
90873a1f923043da53f2370a8ae0b5a3fd7fbd91
eb2c0be51ca4e0ba9311d763c950fdd284d477fc486e53313318641b08a21c96
GET /js/ld/publishertag.prebid.123.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: text/javascript
last-modified: Tue, 03 May 2022 11:21:03 GMT
etag: W/"6271101f-15b58"
expires: Sun, 04 Dec 2022 04:02:32 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
hal900013.redintelligence.net/request.php?zone=30o4vd0fllt4&nw=20&renderingType=javascript&namespace=8ead3641cc&subid=&uid=9c790a3d5cba8dce&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCOlicV8qKY5GKObqJ-cAPjIaSuA3X-vqbacKtqePiD_AuEAEgkLemT2DDhICAmBjIAQmpAkS_tBqXrLE-qAMBqgT9AU_Q1nSk05umgQ78X5FyVfSyU82Fb8mxCBMR2gzyoRDtiviYLu6art-RBEZtfZg-2x-VcdZsFAFUXsVOHjJErJT3QD4ST4Ic3TIYr_SJgyVLSMHvFlGHk68Td3qrVwRBh9vQBYL337WfcX3sOr41VhjrZ4VtK-rfv8J1kxcJR-QlyrX2jyBtct_GJgvIluE2xDa2RELKKoX03rcgx6O_E7mHhVF8qiJocWfinPmk_ov6nyxSGeWyEdiluMnDcSZQSk7aPKYDfm5k45Qz7mL1YGUP4mcaZCshGWIAvLehwWXF13YznsDNeQe6kn8hhXIfo1FPOEAIS1xYgcVsUKrABJ39oYnwA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgEDyCBthZHgtc3Vic3luLTI4ODE2NDg4OTQzOTU2MjSACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT%26sig%3DAOD64_0ueLc7SDBejMpMvj9nac79neXKDQ%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-AKrJKqPxeRiqAYfbtMdcrSdHk2IehdowkFQ-39KRKtn4xEEGHMci3UNqrj_cYN_eiCkNYyuw3Xqu-1qXjfReaz4Z_-ABy-KjyZw6QKrA1jKvOv3-mex5-lpHjPYcvigjAy5wJOu6Wro5g2iRk-WHx2EbVdEQlgWpnMc0rSZOE6dxo_sPU%26cry%3D1%26dbm_d%3DAKAmf-CwPJxAze3RCjBG35wn-qlTlFc-Djpyu3xSi2QDP3319eLHLDUzdNoQ06yugPYyyHTZM-Vj0FTlOAtwTn29TXnBo8wvixUXPg_sG3KwRjvjgqPXEAUHN85e2YkldB0sDzPSSejWFTw4sdWECDh6lq_D9T0JVaEz38AJ_WEf-Pb50B4a0f8z7tume4EyRxFZTKziwoRlqX53v8RDkx2wikVE8fR-8Co5m1qIdj_HAmmyznTWsyz7vEobeXe_hIHrmIf5bpnJ-RgzLlWkOsacg921Vg3RXLgK9exVPF2rM7UNHNvRMAPA4nwv78ls3ODBQSbw9y-rxvwqNdsVcZbUWEof5R1O7rzgUkajb-y812yhvhWG07o1CNAU1Kp2qjXdmaBJYTsgdqWx9MUppvQ_w805eWw8gyiysLXXX_c7KiVP53B9S4t8dqpK1v6mIwEw3Id2FbFEbwW-AkRQPEWwiW0h-pGW4nFN1_xargXHJM16kgcRbJ3UPSMqx3JP7rqwijNc8wkiDFoNCor8ow04t6CwcOI7_H9-cZxurHW-Dlf_56Wx4uDwrFkEO4cGU-4si_Z0xnrPx1i8_M5byPI86yObhFKLLsQJYcpGDK0PPPG2I9TyWgOqqNeYXkDMZzhCXLSMERfL%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=4163997456811&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
116.202.48.214302 Found 0 B URL HTTP/1.1 hal900013.redintelligence.net/request.php?zone=30o4vd0fllt4&nw=20&renderingType=javascript&namespace=8ead3641cc&subid=&uid=9c790a3d5cba8dce&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCOlicV8qKY5GKObqJ-cAPjIaSuA3X-vqbacKtqePiD_AuEAEgkLemT2DDhICAmBjIAQmpAkS_tBqXrLE-qAMBqgT9AU_Q1nSk05umgQ78X5FyVfSyU82Fb8mxCBMR2gzyoRDtiviYLu6art-RBEZtfZg-2x-VcdZsFAFUXsVOHjJErJT3QD4ST4Ic3TIYr_SJgyVLSMHvFlGHk68Td3qrVwRBh9vQBYL337WfcX3sOr41VhjrZ4VtK-rfv8J1kxcJR-QlyrX2jyBtct_GJgvIluE2xDa2RELKKoX03rcgx6O_E7mHhVF8qiJocWfinPmk_ov6nyxSGeWyEdiluMnDcSZQSk7aPKYDfm5k45Qz7mL1YGUP4mcaZCshGWIAvLehwWXF13YznsDNeQe6kn8hhXIfo1FPOEAIS1xYgcVsUKrABJ39oYnwA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgEDyCBthZHgtc3Vic3luLTI4ODE2NDg4OTQzOTU2MjSACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT%26sig%3DAOD64_0ueLc7SDBejMpMvj9nac79neXKDQ%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-AKrJKqPxeRiqAYfbtMdcrSdHk2IehdowkFQ-39KRKtn4xEEGHMci3UNqrj_cYN_eiCkNYyuw3Xqu-1qXjfReaz4Z_-ABy-KjyZw6QKrA1jKvOv3-mex5-lpHjPYcvigjAy5wJOu6Wro5g2iRk-WHx2EbVdEQlgWpnMc0rSZOE6dxo_sPU%26cry%3D1%26dbm_d%3DAKAmf-CwPJxAze3RCjBG35wn-qlTlFc-Djpyu3xSi2QDP3319eLHLDUzdNoQ06yugPYyyHTZM-Vj0FTlOAtwTn29TXnBo8wvixUXPg_sG3KwRjvjgqPXEAUHN85e2YkldB0sDzPSSejWFTw4sdWECDh6lq_D9T0JVaEz38AJ_WEf-Pb50B4a0f8z7tume4EyRxFZTKziwoRlqX53v8RDkx2wikVE8fR-8Co5m1qIdj_HAmmyznTWsyz7vEobeXe_hIHrmIf5bpnJ-RgzLlWkOsacg921Vg3RXLgK9exVPF2rM7UNHNvRMAPA4nwv78ls3ODBQSbw9y-rxvwqNdsVcZbUWEof5R1O7rzgUkajb-y812yhvhWG07o1CNAU1Kp2qjXdmaBJYTsgdqWx9MUppvQ_w805eWw8gyiysLXXX_c7KiVP53B9S4t8dqpK1v6mIwEw3Id2FbFEbwW-AkRQPEWwiW0h-pGW4nFN1_xargXHJM16kgcRbJ3UPSMqx3JP7rqwijNc8wkiDFoNCor8ow04t6CwcOI7_H9-cZxurHW-Dlf_56Wx4uDwrFkEO4cGU-4si_Z0xnrPx1i8_M5byPI86yObhFKLLsQJYcpGDK0PPPG2I9TyWgOqqNeYXkDMZzhCXLSMERfL%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=4163997456811&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
IP 116.202.48.214:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /request.php?zone=30o4vd0fllt4&nw=20&renderingType=javascript&namespace=8ead3641cc&subid=&uid=9c790a3d5cba8dce&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCOlicV8qKY5GKObqJ-cAPjIaSuA3X-vqbacKtqePiD_AuEAEgkLemT2DDhICAmBjIAQmpAkS_tBqXrLE-qAMBqgT9AU_Q1nSk05umgQ78X5FyVfSyU82Fb8mxCBMR2gzyoRDtiviYLu6art-RBEZtfZg-2x-VcdZsFAFUXsVOHjJErJT3QD4ST4Ic3TIYr_SJgyVLSMHvFlGHk68Td3qrVwRBh9vQBYL337WfcX3sOr41VhjrZ4VtK-rfv8J1kxcJR-QlyrX2jyBtct_GJgvIluE2xDa2RELKKoX03rcgx6O_E7mHhVF8qiJocWfinPmk_ov6nyxSGeWyEdiluMnDcSZQSk7aPKYDfm5k45Qz7mL1YGUP4mcaZCshGWIAvLehwWXF13YznsDNeQe6kn8hhXIfo1FPOEAIS1xYgcVsUKrABJ39oYnwA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgEDyCBthZHgtc3Vic3luLTI4ODE2NDg4OTQzOTU2MjSACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT%26sig%3DAOD64_0ueLc7SDBejMpMvj9nac79neXKDQ%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-AKrJKqPxeRiqAYfbtMdcrSdHk2IehdowkFQ-39KRKtn4xEEGHMci3UNqrj_cYN_eiCkNYyuw3Xqu-1qXjfReaz4Z_-ABy-KjyZw6QKrA1jKvOv3-mex5-lpHjPYcvigjAy5wJOu6Wro5g2iRk-WHx2EbVdEQlgWpnMc0rSZOE6dxo_sPU%26cry%3D1%26dbm_d%3DAKAmf-CwPJxAze3RCjBG35wn-qlTlFc-Djpyu3xSi2QDP3319eLHLDUzdNoQ06yugPYyyHTZM-Vj0FTlOAtwTn29TXnBo8wvixUXPg_sG3KwRjvjgqPXEAUHN85e2YkldB0sDzPSSejWFTw4sdWECDh6lq_D9T0JVaEz38AJ_WEf-Pb50B4a0f8z7tume4EyRxFZTKziwoRlqX53v8RDkx2wikVE8fR-8Co5m1qIdj_HAmmyznTWsyz7vEobeXe_hIHrmIf5bpnJ-RgzLlWkOsacg921Vg3RXLgK9exVPF2rM7UNHNvRMAPA4nwv78ls3ODBQSbw9y-rxvwqNdsVcZbUWEof5R1O7rzgUkajb-y812yhvhWG07o1CNAU1Kp2qjXdmaBJYTsgdqWx9MUppvQ_w805eWw8gyiysLXXX_c7KiVP53B9S4t8dqpK1v6mIwEw3Id2FbFEbwW-AkRQPEWwiW0h-pGW4nFN1_xargXHJM16kgcRbJ3UPSMqx3JP7rqwijNc8wkiDFoNCor8ow04t6CwcOI7_H9-cZxurHW-Dlf_56Wx4uDwrFkEO4cGU-4si_Z0xnrPx1i8_M5byPI86yObhFKLLsQJYcpGDK0PPPG2I9TyWgOqqNeYXkDMZzhCXLSMERfL%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=4163997456811&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0 HTTP/1.1
Host: hal900013.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 03 Dec 2022 04:02:33 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 03 Dec 2022 04:02:33 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=582144d479e52a3b; expires=Fri, 03-Mar-2023 04:02:33 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
Location: request.php?zone=30o4vd0fllt4&nw=20&renderingType=javascript&namespace=8ead3641cc&subid=&uid=9c790a3d5cba8dce&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCOlicV8qKY5GKObqJ-cAPjIaSuA3X-vqbacKtqePiD_AuEAEgkLemT2DDhICAmBjIAQmpAkS_tBqXrLE-qAMBqgT9AU_Q1nSk05umgQ78X5FyVfSyU82Fb8mxCBMR2gzyoRDtiviYLu6art-RBEZtfZg-2x-VcdZsFAFUXsVOHjJErJT3QD4ST4Ic3TIYr_SJgyVLSMHvFlGHk68Td3qrVwRBh9vQBYL337WfcX3sOr41VhjrZ4VtK-rfv8J1kxcJR-QlyrX2jyBtct_GJgvIluE2xDa2RELKKoX03rcgx6O_E7mHhVF8qiJocWfinPmk_ov6nyxSGeWyEdiluMnDcSZQSk7aPKYDfm5k45Qz7mL1YGUP4mcaZCshGWIAvLehwWXF13YznsDNeQe6kn8hhXIfo1FPOEAIS1xYgcVsUKrABJ39oYnwA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgEDyCBthZHgtc3Vic3luLTI4ODE2NDg4OTQzOTU2MjSACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT%26sig%3DAOD64_0ueLc7SDBejMpMvj9nac79neXKDQ%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-AKrJKqPxeRiqAYfbtMdcrSdHk2IehdowkFQ-39KRKtn4xEEGHMci3UNqrj_cYN_eiCkNYyuw3Xqu-1qXjfReaz4Z_-ABy-KjyZw6QKrA1jKvOv3-mex5-lpHjPYcvigjAy5wJOu6Wro5g2iRk-WHx2EbVdEQlgWpnMc0rSZOE6dxo_sPU%26cry%3D1%26dbm_d%3DAKAmf-CwPJxAze3RCjBG35wn-qlTlFc-Djpyu3xSi2QDP3319eLHLDUzdNoQ06yugPYyyHTZM-Vj0FTlOAtwTn29TXnBo8wvixUXPg_sG3KwRjvjgqPXEAUHN85e2YkldB0sDzPSSejWFTw4sdWECDh6lq_D9T0JVaEz38AJ_WEf-Pb50B4a0f8z7tume4EyRxFZTKziwoRlqX53v8RDkx2wikVE8fR-8Co5m1qIdj_HAmmyznTWsyz7vEobeXe_hIHrmIf5bpnJ-RgzLlWkOsacg921Vg3RXLgK9exVPF2rM7UNHNvRMAPA4nwv78ls3ODBQSbw9y-rxvwqNdsVcZbUWEof5R1O7rzgUkajb-y812yhvhWG07o1CNAU1Kp2qjXdmaBJYTsgdqWx9MUppvQ_w805eWw8gyiysLXXX_c7KiVP53B9S4t8dqpK1v6mIwEw3Id2FbFEbwW-AkRQPEWwiW0h-pGW4nFN1_xargXHJM16kgcRbJ3UPSMqx3JP7rqwijNc8wkiDFoNCor8ow04t6CwcOI7_H9-cZxurHW-Dlf_56Wx4uDwrFkEO4cGU-4si_Z0xnrPx1i8_M5byPI86yObhFKLLsQJYcpGDK0PPPG2I9TyWgOqqNeYXkDMZzhCXLSMERfL%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=4163997456811&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
ib.3lift.com/static/buttons/edaa/OBA_TRANS.png
54.230.111.102200 OK 3.1 kB URL HTTP/2 ib.3lift.com/static/buttons/edaa/OBA_TRANS.png
IP 54.230.111.102:0
File type PNG image data, 19 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash ddf020e069f1706b72b7698b28fede09
a069c14bec652f1d6a531b80303db51deee27eef
2fd4c3ae6afc2b4026d9f0b64b8ff1110ecfcf47b90bc988c06e844b3921cbf6
GET /static/buttons/edaa/OBA_TRANS.png HTTP/1.1
Host: ib.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3125
last-modified: Thu, 05 Aug 2021 17:23:36 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 30 Nov 2022 20:06:08 GMT
cache-control: max-age=604800,s-maxage=604800,public
etag: "ddf020e069f1706b72b7698b28fede09"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HHORDNpLTAf146CottTiXgmcIdjwTHNiRwuu4AlRwjUwfDqejk0xcA==
age: 201385
X-Firefox-Spdy: h2
ib.3lift.com/static/buttons/edaa/OBA_UK.png
54.230.111.102200 OK 3.5 kB URL HTTP/2 ib.3lift.com/static/buttons/edaa/OBA_UK.png
IP 54.230.111.102:0
File type PNG image data, 72 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ceab27af00fa466072a3c3360041755
c1bc3497b095a637bef430169af3b48fae3a71e2
08285afd2f0c11a2a9d89f00dce769479e4d164e62caa39eceea9f1eb551afa9
GET /static/buttons/edaa/OBA_UK.png HTTP/1.1
Host: ib.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3518
last-modified: Thu, 05 Aug 2021 17:23:31 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 01 Dec 2022 06:39:56 GMT
cache-control: max-age=604800,s-maxage=604800,public
etag: "7ceab27af00fa466072a3c3360041755"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Sd_Faw1FVucKD3LM9SHuUm4MPdMYv3hxBONGRgHIrvjCE2GcJX0k0A==
age: 163358
X-Firefox-Spdy: h2
rdi.eu.criteo.com/delivery/r/native?u=%7COg%2FVITC%2F0WtQrBnrjws%2F6kaGVf8pH%2FsgE%2Ftg%2Fozx1lw%3D%7C&zn=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw==&callback=doDco&c1=ymDJpzxEYmK5CD010BkPEcmf4sszbCIJhys4979bYJY3SplKOg4YY700RpEw8lp8v413l_MNUG2f3P5L3FDXdoRP8xpJ_VbM-hz6KLw3kty_5jPKsZuwaogfcbRxjOUSxj91mN5eDaWCGwUaghYkfRLw2YbYGk1na9R5QIaBgpU7k_pi27nfjo-tYeCRpX2_eoyx8XG6bDZh5ewrp9W5wM-ZnmksP2SXhlgvWL59iAV0ztKpN88czrND8LtyfggZ4JLiMpoFoppC3LgPjDMZG1H97IP1xCNyf25I6LKddnZh2dQwzObVWIn9Pi3roEiW2Wo1JFVZWpkZmeICfN6tH0-LbB3d82BvjAqNbVtall8dotPGTpMv8pGftz6VDpI0FByUsh1hhbEHuoTIpxud5S2zsKw7RiTUYt14Nm1cYsCTlahqhnIgLVPjBVhzCkb4gcLptjFjIW2v2g_mQza8KDl7dlY086NXJ2PTzAH0XeMacf6aSvMCJb4x1aggPrfV43E4zLluyR5JsNOVcFvNKmiDArGZZV1QVDZxtL2aWLpiX371tXvbjRMTvL8Y_e8h3wFcevmt2HxutY3kf8bP9aUrl_8aLqp9wGdfrnDNLg9KMIdZbyGxXb3nxhHj91-GVv5mM2zYYKCiWK8AIO6ADynyhxxaJ-XKWsPHxS7w2HCfDY-V0E9k601FqrpxsRkH0xp6LAg1VHwz9yjKj_xXHRoJjWjojxfELooDSCsRGMW5zXGVNC1NF_rj4sMl6tURTe9j6yluiEynhkqD03LZRwftlCWb0LSzabRMc5suDno5CtFWzE2Qv645B9U_uV6vAktVqGD-wic
178.250.2.144200 OK 13 kB URL HTTP/2 rdi.eu.criteo.com/delivery/r/native?u=%7COg%2FVITC%2F0WtQrBnrjws%2F6kaGVf8pH%2FsgE%2Ftg%2Fozx1lw%3D%7C&zn=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw==&callback=doDco&c1=ymDJpzxEYmK5CD010BkPEcmf4sszbCIJhys4979bYJY3SplKOg4YY700RpEw8lp8v413l_MNUG2f3P5L3FDXdoRP8xpJ_VbM-hz6KLw3kty_5jPKsZuwaogfcbRxjOUSxj91mN5eDaWCGwUaghYkfRLw2YbYGk1na9R5QIaBgpU7k_pi27nfjo-tYeCRpX2_eoyx8XG6bDZh5ewrp9W5wM-ZnmksP2SXhlgvWL59iAV0ztKpN88czrND8LtyfggZ4JLiMpoFoppC3LgPjDMZG1H97IP1xCNyf25I6LKddnZh2dQwzObVWIn9Pi3roEiW2Wo1JFVZWpkZmeICfN6tH0-LbB3d82BvjAqNbVtall8dotPGTpMv8pGftz6VDpI0FByUsh1hhbEHuoTIpxud5S2zsKw7RiTUYt14Nm1cYsCTlahqhnIgLVPjBVhzCkb4gcLptjFjIW2v2g_mQza8KDl7dlY086NXJ2PTzAH0XeMacf6aSvMCJb4x1aggPrfV43E4zLluyR5JsNOVcFvNKmiDArGZZV1QVDZxtL2aWLpiX371tXvbjRMTvL8Y_e8h3wFcevmt2HxutY3kf8bP9aUrl_8aLqp9wGdfrnDNLg9KMIdZbyGxXb3nxhHj91-GVv5mM2zYYKCiWK8AIO6ADynyhxxaJ-XKWsPHxS7w2HCfDY-V0E9k601FqrpxsRkH0xp6LAg1VHwz9yjKj_xXHRoJjWjojxfELooDSCsRGMW5zXGVNC1NF_rj4sMl6tURTe9j6yluiEynhkqD03LZRwftlCWb0LSzabRMc5suDno5CtFWzE2Qv645B9U_uV6vAktVqGD-wic
IP 178.250.2.144:0
Hash c2072e3951bfe8009ff064365ea1d0cd
328f377ef9d0dcee4472d670c50438c1bd56cfa1
cb33f0d4c160df6e984d82686b8e2e58b40debd3e392a72ecafe77d41ef43465
GET /delivery/r/native?u=%7COg%2FVITC%2F0WtQrBnrjws%2F6kaGVf8pH%2FsgE%2Ftg%2Fozx1lw%3D%7C&zn=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw==&callback=doDco&c1=ymDJpzxEYmK5CD010BkPEcmf4sszbCIJhys4979bYJY3SplKOg4YY700RpEw8lp8v413l_MNUG2f3P5L3FDXdoRP8xpJ_VbM-hz6KLw3kty_5jPKsZuwaogfcbRxjOUSxj91mN5eDaWCGwUaghYkfRLw2YbYGk1na9R5QIaBgpU7k_pi27nfjo-tYeCRpX2_eoyx8XG6bDZh5ewrp9W5wM-ZnmksP2SXhlgvWL59iAV0ztKpN88czrND8LtyfggZ4JLiMpoFoppC3LgPjDMZG1H97IP1xCNyf25I6LKddnZh2dQwzObVWIn9Pi3roEiW2Wo1JFVZWpkZmeICfN6tH0-LbB3d82BvjAqNbVtall8dotPGTpMv8pGftz6VDpI0FByUsh1hhbEHuoTIpxud5S2zsKw7RiTUYt14Nm1cYsCTlahqhnIgLVPjBVhzCkb4gcLptjFjIW2v2g_mQza8KDl7dlY086NXJ2PTzAH0XeMacf6aSvMCJb4x1aggPrfV43E4zLluyR5JsNOVcFvNKmiDArGZZV1QVDZxtL2aWLpiX371tXvbjRMTvL8Y_e8h3wFcevmt2HxutY3kf8bP9aUrl_8aLqp9wGdfrnDNLg9KMIdZbyGxXb3nxhHj91-GVv5mM2zYYKCiWK8AIO6ADynyhxxaJ-XKWsPHxS7w2HCfDY-V0E9k601FqrpxsRkH0xp6LAg1VHwz9yjKj_xXHRoJjWjojxfELooDSCsRGMW5zXGVNC1NF_rj4sMl6tURTe9j6yluiEynhkqD03LZRwftlCWb0LSzabRMc5suDno5CtFWzE2Qv645B9U_uV6vAktVqGD-wic HTTP/1.1
Host: rdi.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: application/javascript
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 37012494
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
eb2.3lift.com/ctar?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&cta_render_method=2&cta_render_text=Learn%20more&cb=34264
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/ctar?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&cta_render_method=2&cta_render_text=Learn%20more&cb=34264
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /ctar?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&cta_render_method=2&cta_render_text=Learn%20more&cb=34264 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:33 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
eb2.3lift.com/eev?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&pr=Y4rKVwAG0EgKwkwoAAU49vwLyjsqOTbVDGcjDg&bc=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw%3D%3D&bmid=2711&biid=7296&sid=67911&brid=347103&adid=11041759_&crid=1056345&ts=1670040151&bcud=20&ss=5&caid=-1&unid=0&cepos=0&ceid=-1&cb=52239
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/eev?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&pr=Y4rKVwAG0EgKwkwoAAU49vwLyjsqOTbVDGcjDg&bc=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw%3D%3D&bmid=2711&biid=7296&sid=67911&brid=347103&adid=11041759_&crid=1056345&ts=1670040151&bcud=20&ss=5&caid=-1&unid=0&cepos=0&ceid=-1&cb=52239
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /eev?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&pr=Y4rKVwAG0EgKwkwoAAU49vwLyjsqOTbVDGcjDg&bc=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw%3D%3D&bmid=2711&biid=7296&sid=67911&brid=347103&adid=11041759_&crid=1056345&ts=1670040151&bcud=20&ss=5&caid=-1&unid=0&cepos=0&ceid=-1&cb=52239 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:33 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fsaranda_reci_1017-001819-0002_social.jpg%3Fref%3DF5F8DE89DF&ups=1&v=3&w=400&s=EqZRrNUu0f__Z-ZIK2yLdnz9
178.250.0.139200 OK 16 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fsaranda_reci_1017-001819-0002_social.jpg%3Fref%3DF5F8DE89DF&ups=1&v=3&w=400&s=EqZRrNUu0f__Z-ZIK2yLdnz9
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 267x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2c4c7abd59f6ad20fe3ec8f5bdaba988
2e6379baf988fab89379c11d3e2c278a723652fc
e3002ffc0845c917ce5054696eb50a3c9b3bc76a8f34245d6a470d44c5876110
GET /img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fsaranda_reci_1017-001819-0002_social.jpg%3Fref%3DF5F8DE89DF&ups=1&v=3&w=400&s=EqZRrNUu0f__Z-ZIK2yLdnz9 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=23453402
expires: Thu, 31 Aug 2023 14:52:35 GMT
date: Sat, 03 Dec 2022 04:02:33 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 15580
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_ribbed_polo_knitted_sweater_1100-004847-0002_0154_01c.jpg%3Fref%3DC8BC8EED45&ups=1&v=3&w=400&s=-cE5dRGnzcRkqPo-ImPjJPuk
178.250.0.139200 OK 4.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_ribbed_polo_knitted_sweater_1100-004847-0002_0154_01c.jpg%3Fref%3DC8BC8EED45&ups=1&v=3&w=400&s=-cE5dRGnzcRkqPo-ImPjJPuk
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 267x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b905ccc55b6ddfd689b0f9e93aea8dda
84bc61ae0acdc79a2030c4a9a37cf010d9e7c1f9
90cafb598673fadd3deec92107f33e3270675c76de68c842019b6afa270e3c9a
GET /img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_ribbed_polo_knitted_sweater_1100-004847-0002_0154_01c.jpg%3Fref%3DC8BC8EED45&ups=1&v=3&w=400&s=-cE5dRGnzcRkqPo-ImPjJPuk HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29658690
expires: Sat, 11 Nov 2023 10:34:04 GMT
date: Sat, 03 Dec 2022 04:02:32 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 4006
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_v_detail_light_rib_knitted_sweater_1100-005027-0005_9656.jpg%3Fref%3D939B97C3F6&ups=1&v=3&w=400&s=iVySldgu3N28um6ZrTXAN0QT
178.250.0.139200 OK 16 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_v_detail_light_rib_knitted_sweater_1100-005027-0005_9656.jpg%3Fref%3D939B97C3F6&ups=1&v=3&w=400&s=iVySldgu3N28um6ZrTXAN0QT
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 267x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cf8b5702da690435b49dab68889c174a
ab9b00687f2ad9fed853797095a4415f6ffabc9f
425bd50daf03d35023acc68e84bf8a48dc46cf31616148a874b45144b3716054
GET /img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_v_detail_light_rib_knitted_sweater_1100-005027-0005_9656.jpg%3Fref%3D939B97C3F6&ups=1&v=3&w=400&s=iVySldgu3N28um6ZrTXAN0QT HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=25069504
expires: Tue, 19 Sep 2023 07:47:38 GMT
date: Sat, 03 Dec 2022 04:02:33 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 15482
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_one_shoulderib_top_1660-000421-0002_01a.jpg%3Fref%3D7EB79CFF27&ups=1&v=3&w=400&s=pc1kgfwfeb-YH2KGV0kxdHKb
178.250.0.139200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_one_shoulderib_top_1660-000421-0002_01a.jpg%3Fref%3D7EB79CFF27&ups=1&v=3&w=400&s=pc1kgfwfeb-YH2KGV0kxdHKb
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 267x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a14c0c109ef3b8801c8b66eeee3af6c2
65048547a4dfef2cd5690774a70e0592ddd1a056
39e4548309a2f12686f9aacad6d56c23d32e2abd665b0a2f806a11e5794611c9
GET /img/img?cq=256&h=400&m=0&partner=75302&q=80&r=0&u=https%3A%2F%2Fwww.na-kd.com%2Fglobalassets%2Fnakd_one_shoulderib_top_1660-000421-0002_01a.jpg%3Fref%3D7EB79CFF27&ups=1&v=3&w=400&s=pc1kgfwfeb-YH2KGV0kxdHKb HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=24744840
expires: Fri, 15 Sep 2023 13:36:33 GMT
date: Sat, 03 Dec 2022 04:02:32 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6558
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
img.3lift.com/blank?width=328&height=185
54.230.111.6200 OK 615 B URL HTTP/2 img.3lift.com/blank?width=328&height=185
IP 54.230.111.6:0
File type PNG image data, 328 x 185, 8-bit/color RGB, non-interlaced\012- data
Hash e3357fd61dd86226683a7f86abb4a017
9b1347c9e05807665e4f01a091daf19b481f43c7
7e677e4ae5d4bf2dfa8304d03888bf6c7304dc3dfec6cb1d5c29fa2273328857
GET /blank?width=328&height=185 HTTP/1.1
Host: img.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 615
date: Thu, 01 Dec 2022 07:30:57 GMT
cache-control: public, max-age=604800
last-modified: Thu, 01 Dec 2022 07:30:57 GMT
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 9XkfQQV4o9_h32FDVNUrmaa3vcZBRQm_3V5GmYQHwhXvwGefkLedwQ==
age: 160296
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsslOnD3eI2PFPiJmBMm2eFimUShtv4kq21fimGzRMJmwcLjcNxAVkvWkkvDa33V3yklITSTr8PJp-L3J3C_AfWq_kNIgdkot35ywMIPLBYbaG9WgoGi&sig=Cg0ArKJSzJpzZDyC8_llEAE&id=lidar2&mcvt=1003&p=0,0,1,1&mtos=1003,1003,1003,1003,1003&tos=1003,0,0,0,0&v=20221130&bin=7&avms=nio&bs=1268,939&mc=1&vu=1&app=0&itpl=19&adk=2466855607&rs=4&la=0&cr=0&vs=4&r=v&rst=1670040149720&rpt=567&met=ce&wmsd=0&pbe=0
142.250.74.98200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsslOnD3eI2PFPiJmBMm2eFimUShtv4kq21fimGzRMJmwcLjcNxAVkvWkkvDa33V3yklITSTr8PJp-L3J3C_AfWq_kNIgdkot35ywMIPLBYbaG9WgoGi&sig=Cg0ArKJSzJpzZDyC8_llEAE&id=lidar2&mcvt=1003&p=0,0,1,1&mtos=1003,1003,1003,1003,1003&tos=1003,0,0,0,0&v=20221130&bin=7&avms=nio&bs=1268,939&mc=1&vu=1&app=0&itpl=19&adk=2466855607&rs=4&la=0&cr=0&vs=4&r=v&rst=1670040149720&rpt=567&met=ce&wmsd=0&pbe=0
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsslOnD3eI2PFPiJmBMm2eFimUShtv4kq21fimGzRMJmwcLjcNxAVkvWkkvDa33V3yklITSTr8PJp-L3J3C_AfWq_kNIgdkot35ywMIPLBYbaG9WgoGi&sig=Cg0ArKJSzJpzZDyC8_llEAE&id=lidar2&mcvt=1003&p=0,0,1,1&mtos=1003,1003,1003,1003,1003&tos=1003,0,0,0,0&v=20221130&bin=7&avms=nio&bs=1268,939&mc=1&vu=1&app=0&itpl=19&adk=2466855607&rs=4&la=0&cr=0&vs=4&r=v&rst=1670040149720&rpt=567&met=ce&wmsd=0&pbe=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Sat, 03 Dec 2022 04:02:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
eb2.3lift.com/sce?block=Custom%20Template%20Code&ref=https%3A%2F%2F79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&lvl=3&inv_code=adasia_allpublishers_desktop_970x250&e=Fixed%20Parent%203
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/sce?block=Custom%20Template%20Code&ref=https%3A%2F%2F79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&lvl=3&inv_code=adasia_allpublishers_desktop_970x250&e=Fixed%20Parent%203
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /sce?block=Custom%20Template%20Code&ref=https%3A%2F%2F79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&lvl=3&inv_code=adasia_allpublishers_desktop_970x250&e=Fixed%20Parent%203 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:33 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
eb2.3lift.com/dr?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&disclosure_render_method=3&disclosure_render_text=Sponsored%20By&cb=88377
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/dr?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&disclosure_render_method=3&disclosure_render_text=Sponsored%20By&cb=88377
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /dr?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&disclosure_render_method=3&disclosure_render_text=Sponsored%20By&cb=88377 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:33 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
eb2.3lift.com/aop?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&pr=can%27t%2520access%2520top%2520document&bc=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw%3D%3D&bmid=2711&biid=7296&sid=67911&brid=347103&adid=11041759_&crid=1056345&ts=1670040151&bcud=20&ss=5&caid=-1&unid=0&domain=79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com&ref=&rr=creative&fid=4&rb=8200&g=0&cb=76652
13.248.245.213200 OK 562 B URL HTTP/2 eb2.3lift.com/aop?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&pr=can%27t%2520access%2520top%2520document&bc=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw%3D%3D&bmid=2711&biid=7296&sid=67911&brid=347103&adid=11041759_&crid=1056345&ts=1670040151&bcud=20&ss=5&caid=-1&unid=0&domain=79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com&ref=&rr=creative&fid=4&rb=8200&g=0&cb=76652
IP 13.248.245.213:0
File type gzip compressed data, max compression\012- data
Hash 9c35db7ccb11b4e61684e30ec7d2560f
10c4bb7a409aece066b42d85af00e1fa639d2be3
5868de2f6cc2e75f3749017bffe01b7d7f7e97f31a26061358d6cfddeb22e68c
GET /aop?inv_code=adasia_allpublishers_desktop_970x250&aid=39571115631124672159690&rev=6be1393&pr=can%27t%2520access%2520top%2520document&bc=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw%3D%3D&bmid=2711&biid=7296&sid=67911&brid=347103&adid=11041759_&crid=1056345&ts=1670040151&bcud=20&ss=5&caid=-1&unid=0&domain=79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com&ref=&rr=creative&fid=4&rb=8200&g=0&cb=76652 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:33 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash f829602d7982e68ac3d868291c704ec0
f5735254e4279ed5d8d361167a0d0168b7f15c9d
a74093148dc2ee7f42d3adbcf18fd72da565da03c67648966b384ab512f7490b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160379
Date: Sat, 03 Dec 2022 04:02:33 GMT
Etag: "638a9751-1d7"
Expires: Mon, 05 Dec 2022 00:35:32 GMT
Last-Modified: Sat, 03 Dec 2022 00:24:49 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EnzINb9e1L3MRu_z8trFk2DWO6ty9G4Z8osgaXPb__hXi7gdlnhjRw==
Age: 643
eb2.3lift.com/sync?max=10&cb=80784
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/sync?max=10&cb=80784
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /sync?max=10&cb=80784 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:33 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
hal900013.redintelligence.net/request.php?zone=30o4vd0fllt4&nw=20&renderingType=javascript&namespace=8ead3641cc&subid=&uid=9c790a3d5cba8dce&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCOlicV8qKY5GKObqJ-cAPjIaSuA3X-vqbacKtqePiD_AuEAEgkLemT2DDhICAmBjIAQmpAkS_tBqXrLE-qAMBqgT9AU_Q1nSk05umgQ78X5FyVfSyU82Fb8mxCBMR2gzyoRDtiviYLu6art-RBEZtfZg-2x-VcdZsFAFUXsVOHjJErJT3QD4ST4Ic3TIYr_SJgyVLSMHvFlGHk68Td3qrVwRBh9vQBYL337WfcX3sOr41VhjrZ4VtK-rfv8J1kxcJR-QlyrX2jyBtct_GJgvIluE2xDa2RELKKoX03rcgx6O_E7mHhVF8qiJocWfinPmk_ov6nyxSGeWyEdiluMnDcSZQSk7aPKYDfm5k45Qz7mL1YGUP4mcaZCshGWIAvLehwWXF13YznsDNeQe6kn8hhXIfo1FPOEAIS1xYgcVsUKrABJ39oYnwA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgEDyCBthZHgtc3Vic3luLTI4ODE2NDg4OTQzOTU2MjSACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT%26sig%3DAOD64_0ueLc7SDBejMpMvj9nac79neXKDQ%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-AKrJKqPxeRiqAYfbtMdcrSdHk2IehdowkFQ-39KRKtn4xEEGHMci3UNqrj_cYN_eiCkNYyuw3Xqu-1qXjfReaz4Z_-ABy-KjyZw6QKrA1jKvOv3-mex5-lpHjPYcvigjAy5wJOu6Wro5g2iRk-WHx2EbVdEQlgWpnMc0rSZOE6dxo_sPU%26cry%3D1%26dbm_d%3DAKAmf-CwPJxAze3RCjBG35wn-qlTlFc-Djpyu3xSi2QDP3319eLHLDUzdNoQ06yugPYyyHTZM-Vj0FTlOAtwTn29TXnBo8wvixUXPg_sG3KwRjvjgqPXEAUHN85e2YkldB0sDzPSSejWFTw4sdWECDh6lq_D9T0JVaEz38AJ_WEf-Pb50B4a0f8z7tume4EyRxFZTKziwoRlqX53v8RDkx2wikVE8fR-8Co5m1qIdj_HAmmyznTWsyz7vEobeXe_hIHrmIf5bpnJ-RgzLlWkOsacg921Vg3RXLgK9exVPF2rM7UNHNvRMAPA4nwv78ls3ODBQSbw9y-rxvwqNdsVcZbUWEof5R1O7rzgUkajb-y812yhvhWG07o1CNAU1Kp2qjXdmaBJYTsgdqWx9MUppvQ_w805eWw8gyiysLXXX_c7KiVP53B9S4t8dqpK1v6mIwEw3Id2FbFEbwW-AkRQPEWwiW0h-pGW4nFN1_xargXHJM16kgcRbJ3UPSMqx3JP7rqwijNc8wkiDFoNCor8ow04t6CwcOI7_H9-cZxurHW-Dlf_56Wx4uDwrFkEO4cGU-4si_Z0xnrPx1i8_M5byPI86yObhFKLLsQJYcpGDK0PPPG2I9TyWgOqqNeYXkDMZzhCXLSMERfL%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=4163997456811&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
116.202.48.214200 OK 508 B URL HTTP/1.1 hal900013.redintelligence.net/request.php?zone=30o4vd0fllt4&nw=20&renderingType=javascript&namespace=8ead3641cc&subid=&uid=9c790a3d5cba8dce&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCOlicV8qKY5GKObqJ-cAPjIaSuA3X-vqbacKtqePiD_AuEAEgkLemT2DDhICAmBjIAQmpAkS_tBqXrLE-qAMBqgT9AU_Q1nSk05umgQ78X5FyVfSyU82Fb8mxCBMR2gzyoRDtiviYLu6art-RBEZtfZg-2x-VcdZsFAFUXsVOHjJErJT3QD4ST4Ic3TIYr_SJgyVLSMHvFlGHk68Td3qrVwRBh9vQBYL337WfcX3sOr41VhjrZ4VtK-rfv8J1kxcJR-QlyrX2jyBtct_GJgvIluE2xDa2RELKKoX03rcgx6O_E7mHhVF8qiJocWfinPmk_ov6nyxSGeWyEdiluMnDcSZQSk7aPKYDfm5k45Qz7mL1YGUP4mcaZCshGWIAvLehwWXF13YznsDNeQe6kn8hhXIfo1FPOEAIS1xYgcVsUKrABJ39oYnwA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgEDyCBthZHgtc3Vic3luLTI4ODE2NDg4OTQzOTU2MjSACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT%26sig%3DAOD64_0ueLc7SDBejMpMvj9nac79neXKDQ%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-AKrJKqPxeRiqAYfbtMdcrSdHk2IehdowkFQ-39KRKtn4xEEGHMci3UNqrj_cYN_eiCkNYyuw3Xqu-1qXjfReaz4Z_-ABy-KjyZw6QKrA1jKvOv3-mex5-lpHjPYcvigjAy5wJOu6Wro5g2iRk-WHx2EbVdEQlgWpnMc0rSZOE6dxo_sPU%26cry%3D1%26dbm_d%3DAKAmf-CwPJxAze3RCjBG35wn-qlTlFc-Djpyu3xSi2QDP3319eLHLDUzdNoQ06yugPYyyHTZM-Vj0FTlOAtwTn29TXnBo8wvixUXPg_sG3KwRjvjgqPXEAUHN85e2YkldB0sDzPSSejWFTw4sdWECDh6lq_D9T0JVaEz38AJ_WEf-Pb50B4a0f8z7tume4EyRxFZTKziwoRlqX53v8RDkx2wikVE8fR-8Co5m1qIdj_HAmmyznTWsyz7vEobeXe_hIHrmIf5bpnJ-RgzLlWkOsacg921Vg3RXLgK9exVPF2rM7UNHNvRMAPA4nwv78ls3ODBQSbw9y-rxvwqNdsVcZbUWEof5R1O7rzgUkajb-y812yhvhWG07o1CNAU1Kp2qjXdmaBJYTsgdqWx9MUppvQ_w805eWw8gyiysLXXX_c7KiVP53B9S4t8dqpK1v6mIwEw3Id2FbFEbwW-AkRQPEWwiW0h-pGW4nFN1_xargXHJM16kgcRbJ3UPSMqx3JP7rqwijNc8wkiDFoNCor8ow04t6CwcOI7_H9-cZxurHW-Dlf_56Wx4uDwrFkEO4cGU-4si_Z0xnrPx1i8_M5byPI86yObhFKLLsQJYcpGDK0PPPG2I9TyWgOqqNeYXkDMZzhCXLSMERfL%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=4163997456811&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
IP 116.202.48.214:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 6864d3574244d01d87fe35ecc270c7b5
e95a201f60efd3bc90323b27479242b8a0172f09
6a94ca74448e64caebfb89225e7bc9bc386153763b63384cb56b51a165f81802
GET /request.php?zone=30o4vd0fllt4&nw=20&renderingType=javascript&namespace=8ead3641cc&subid=&uid=9c790a3d5cba8dce&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x600&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCOlicV8qKY5GKObqJ-cAPjIaSuA3X-vqbacKtqePiD_AuEAEgkLemT2DDhICAmBjIAQmpAkS_tBqXrLE-qAMBqgT9AU_Q1nSk05umgQ78X5FyVfSyU82Fb8mxCBMR2gzyoRDtiviYLu6art-RBEZtfZg-2x-VcdZsFAFUXsVOHjJErJT3QD4ST4Ic3TIYr_SJgyVLSMHvFlGHk68Td3qrVwRBh9vQBYL337WfcX3sOr41VhjrZ4VtK-rfv8J1kxcJR-QlyrX2jyBtct_GJgvIluE2xDa2RELKKoX03rcgx6O_E7mHhVF8qiJocWfinPmk_ov6nyxSGeWyEdiluMnDcSZQSk7aPKYDfm5k45Qz7mL1YGUP4mcaZCshGWIAvLehwWXF13YznsDNeQe6kn8hhXIfo1FPOEAIS1xYgcVsUKrABJ39oYnwA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgEDyCBthZHgtc3Vic3luLTI4ODE2NDg4OTQzOTU2MjSACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9uKboGuMIL6T2c9VZf-LVqukA4DCstAvs5SqdjDKIUia6JZ0lNhabtAhaz6z6f9dtQjejBiHA7ufCAx07v9_4JNnAE6jE2rYYASAT%26sig%3DAOD64_0ueLc7SDBejMpMvj9nac79neXKDQ%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-AKrJKqPxeRiqAYfbtMdcrSdHk2IehdowkFQ-39KRKtn4xEEGHMci3UNqrj_cYN_eiCkNYyuw3Xqu-1qXjfReaz4Z_-ABy-KjyZw6QKrA1jKvOv3-mex5-lpHjPYcvigjAy5wJOu6Wro5g2iRk-WHx2EbVdEQlgWpnMc0rSZOE6dxo_sPU%26cry%3D1%26dbm_d%3DAKAmf-CwPJxAze3RCjBG35wn-qlTlFc-Djpyu3xSi2QDP3319eLHLDUzdNoQ06yugPYyyHTZM-Vj0FTlOAtwTn29TXnBo8wvixUXPg_sG3KwRjvjgqPXEAUHN85e2YkldB0sDzPSSejWFTw4sdWECDh6lq_D9T0JVaEz38AJ_WEf-Pb50B4a0f8z7tume4EyRxFZTKziwoRlqX53v8RDkx2wikVE8fR-8Co5m1qIdj_HAmmyznTWsyz7vEobeXe_hIHrmIf5bpnJ-RgzLlWkOsacg921Vg3RXLgK9exVPF2rM7UNHNvRMAPA4nwv78ls3ODBQSbw9y-rxvwqNdsVcZbUWEof5R1O7rzgUkajb-y812yhvhWG07o1CNAU1Kp2qjXdmaBJYTsgdqWx9MUppvQ_w805eWw8gyiysLXXX_c7KiVP53B9S4t8dqpK1v6mIwEw3Id2FbFEbwW-AkRQPEWwiW0h-pGW4nFN1_xargXHJM16kgcRbJ3UPSMqx3JP7rqwijNc8wkiDFoNCor8ow04t6CwcOI7_H9-cZxurHW-Dlf_56Wx4uDwrFkEO4cGU-4si_Z0xnrPx1i8_M5byPI86yObhFKLLsQJYcpGDK0PPPG2I9TyWgOqqNeYXkDMZzhCXLSMERfL%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=4163997456811&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1 HTTP/1.1
Host: hal900013.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Connection: keep-alive
Cookie: 8lcfmzhxc8d6_uid=582144d479e52a3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:02:33 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 03 Dec 2022 04:02:33 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=582144d479e52a3b; expires=Fri, 03-Mar-2023 04:02:33 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
X-NEORY-SubId: 67775000010565004438068012162013
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 508
Connection: close
Content-Type: application/x-javascript; charset=utf-8
adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 04:02:33 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stg.truvidplayer.com/p.php?sid=1273&wid=5620&cb=5692.464862779934&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F
54.230.111.74200 OK 2.0 kB URL HTTP/2 stg.truvidplayer.com/p.php?sid=1273&wid=5620&cb=5692.464862779934&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F
IP 54.230.111.74:0
File type JSON data\012- , ASCII text, with very long lines (3245), with no line terminators
Hash f2b0e43ca57d5078571d4e0e0decb860
4b7dff6500420b1250c3f08ec5b0a9b9fa5ea47d
92a1c137e4250483f0d887d8a5a21550a1cbb955048ff9ffbc6c9958122af259
GET /p.php?sid=1273&wid=5620&cb=5692.464862779934&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F HTTP/1.1
Host: stg.truvidplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sat, 03 Dec 2022 04:02:33 GMT
server: nginx
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GmMPTtmsg4bB25R7Lq6u_i7ZrsH2LT6rNuOUNntPALjDhtlzZAIINg==
X-Firefox-Spdy: h2
p.trvdp.com/pixel.gif?e=IxiJB5spKBXmozAY5PuGmLjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXTe/BBdwC6A05Bs4Tb1JxjtzTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAewyQG2CpcnI0dDHtmaVusL97vYu5dIB9a9ntMjVd5CofQaIIqZ5uVi2fii9/tYy4hc9sKyxMcBAwV/1VP+m9mVD67wgnxq5GMxgrW5nySlp4D038YVDB2bn4HbFXtdgFvl9+LDGgrV9P24aQPCeHLgAI=&cb=48403932
52.205.152.252204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=IxiJB5spKBXmozAY5PuGmLjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXTe/BBdwC6A05Bs4Tb1JxjtzTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAewyQG2CpcnI0dDHtmaVusL97vYu5dIB9a9ntMjVd5CofQaIIqZ5uVi2fii9/tYy4hc9sKyxMcBAwV/1VP+m9mVD67wgnxq5GMxgrW5nySlp4D038YVDB2bn4HbFXtdgFvl9+LDGgrV9P24aQPCeHLgAI=&cb=48403932
IP 52.205.152.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=IxiJB5spKBXmozAY5PuGmLjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXTe/BBdwC6A05Bs4Tb1JxjtzTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAewyQG2CpcnI0dDHtmaVusL97vYu5dIB9a9ntMjVd5CofQaIIqZ5uVi2fii9/tYy4hc9sKyxMcBAwV/1VP+m9mVD67wgnxq5GMxgrW5nySlp4D038YVDB2bn4HbFXtdgFvl9+LDGgrV9P24aQPCeHLgAI=&cb=48403932 HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:33 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=1T-buPxK0CI0d3Xx6DyapFusUxW2z_n9Y3JHBkilwiwvBXABIjqgllfIrtSd9cnea9Dd1m_goQjLVQKqxavr3c7UVKbcbradwKYaz8fZdNA7RJibmLYKLgtL96avZ5sBM9XLBeV80u1O6Y0_dSTiaXODOy_WATXQ33MQ8qMFvwSwBeOF2BuUCm9z6ZZaFnagRtLTJREYE5j0pXaVTfARoG6KicdJCpThjeRay0hFGdNyMb14qz0QZGCAhEs&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=1T-buPxK0CI0d3Xx6DyapFusUxW2z_n9Y3JHBkilwiwvBXABIjqgllfIrtSd9cnea9Dd1m_goQjLVQKqxavr3c7UVKbcbradwKYaz8fZdNA7RJibmLYKLgtL96avZ5sBM9XLBeV80u1O6Y0_dSTiaXODOy_WATXQ33MQ8qMFvwSwBeOF2BuUCm9z6ZZaFnagRtLTJREYE5j0pXaVTfARoG6KicdJCpThjeRay0hFGdNyMb14qz0QZGCAhEs&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=1T-buPxK0CI0d3Xx6DyapFusUxW2z_n9Y3JHBkilwiwvBXABIjqgllfIrtSd9cnea9Dd1m_goQjLVQKqxavr3c7UVKbcbradwKYaz8fZdNA7RJibmLYKLgtL96avZ5sBM9XLBeV80u1O6Y0_dSTiaXODOy_WATXQ33MQ8qMFvwSwBeOF2BuUCm9z6ZZaFnagRtLTJREYE5j0pXaVTfARoG6KicdJCpThjeRay0hFGdNyMb14qz0QZGCAhEs&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:32 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ee6a367d99db7d49230bb1715b8a927
2d7d2d0a3f9b8e0122f3a23d83603348c178c14d
f61e63077176f7e4d089e1c8fbe185ab97259ad5840ad3d8afc34278cc427979
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F61E63077176F7E4D089E1C8FBE185AB97259AD5840AD3D8AFC34278CC427979"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2971
Expires: Sat, 03 Dec 2022 04:52:04 GMT
Date: Sat, 03 Dec 2022 04:02:33 GMT
Connection: keep-alive
data00.adlooxtracking.com/ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dsunstarbody1%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=69653544451&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=sunstarbody1&id2=%2F15918106%2FSunstar%2Fbody1&id3=4799306104&id4=3036384370&id7=336x280&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.881&d5=4517&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=sunstarbody1&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1
35.241.31.249204 No Content 0 B URL HTTP/2 data00.adlooxtracking.com/ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dsunstarbody1%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=69653544451&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=sunstarbody1&id2=%2F15918106%2FSunstar%2Fbody1&id3=4799306104&id4=3036384370&id7=336x280&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.881&d5=4517&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=sunstarbody1&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1
IP 35.241.31.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dsunstarbody1%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=69653544451&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=sunstarbody1&id2=%2F15918106%2FSunstar%2Fbody1&id3=4799306104&id4=3036384370&id7=336x280&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.881&d5=4517&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=sunstarbody1&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1 HTTP/1.1
Host: data00.adlooxtracking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:33 GMT
x-powered-by: PHP/7.4.33
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-route: ads-prod-85587b555b-cpmc6
accept-ch: UA-Arch, UA-Model, UA-Platform, UA-Platform-Version, UA-Mobile, UA, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT, Platform, Arch, Model, Mobile
accept-ch-lifetime: 86400
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-headers: Content-Type, X-Requested-With
access-control-max-age: 86400
access-control-allow-methods: GET, OPTIONS
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
data00.adlooxtracking.com/ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dats-insert_ads-22%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=41838355675&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=ats-insert_ads-22&id2=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_allsite_1x1&id3=4423307908&id4=2731348472&id5=138398259034&id6=6059803104&id7=1x1&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.906&d5=4518&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=ats-insert_ads-22&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1
35.241.31.249204 No Content 0 B URL HTTP/2 data00.adlooxtracking.com/ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dats-insert_ads-22%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=41838355675&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=ats-insert_ads-22&id2=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_allsite_1x1&id3=4423307908&id4=2731348472&id5=138398259034&id6=6059803104&id7=1x1&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.906&d5=4518&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=ats-insert_ads-22&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1
IP 35.241.31.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dats-insert_ads-22%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=41838355675&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=ats-insert_ads-22&id2=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_allsite_1x1&id3=4423307908&id4=2731348472&id5=138398259034&id6=6059803104&id7=1x1&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.906&d5=4518&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=ats-insert_ads-22&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1 HTTP/1.1
Host: data00.adlooxtracking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:33 GMT
x-powered-by: PHP/7.4.33
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-route: ads-prod-85587b555b-v6vdq
accept-ch: UA-Arch, UA-Model, UA-Platform, UA-Platform-Version, UA-Mobile, UA, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT, Platform, Arch, Model, Mobile
accept-ch-lifetime: 86400
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-headers: Content-Type, X-Requested-With
access-control-max-age: 86400
access-control-allow-methods: GET, OPTIONS
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
data00.adlooxtracking.com/ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dsunstarbody2%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=66781398329&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=sunstarbody2&id2=%2F15918106%2FSunstar%2Fbody2&id3=4799306104&id4=3036384370&id7=336x280&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.93&d5=4520&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=sunstarbody2&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1
35.241.31.249204 No Content 0 B URL HTTP/2 data00.adlooxtracking.com/ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dsunstarbody2%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=66781398329&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=sunstarbody2&id2=%2F15918106%2FSunstar%2Fbody2&id3=4799306104&id4=3036384370&id7=336x280&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.93&d5=4520&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=sunstarbody2&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1
IP 35.241.31.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dsunstarbody2%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=66781398329&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=sunstarbody2&id2=%2F15918106%2FSunstar%2Fbody2&id3=4799306104&id4=3036384370&id7=336x280&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.93&d5=4520&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=sunstarbody2&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1 HTTP/1.1
Host: data00.adlooxtracking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:33 GMT
x-powered-by: PHP/7.4.33
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-route: ads-prod-85587b555b-bfp5h
accept-ch: UA-Arch, UA-Model, UA-Platform, UA-Platform-Version, UA-Mobile, UA, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT, Platform, Arch, Model, Mobile
accept-ch-lifetime: 86400
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-headers: Content-Type, X-Requested-With
access-control-max-age: 86400
access-control-allow-methods: GET, OPTIONS
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ee6a367d99db7d49230bb1715b8a927
2d7d2d0a3f9b8e0122f3a23d83603348c178c14d
f61e63077176f7e4d089e1c8fbe185ab97259ad5840ad3d8afc34278cc427979
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F61E63077176F7E4D089E1C8FBE185AB97259AD5840AD3D8AFC34278CC427979"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2971
Expires: Sat, 03 Dec 2022 04:52:04 GMT
Date: Sat, 03 Dec 2022 04:02:33 GMT
Connection: keep-alive
data00.adlooxtracking.com/ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dgpt_unit_%252F21622890900%252C1012712%252FPH_sunstar.com.ph_res_article_interstitial_0%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=90611205624&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=gpt_unit_%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial_0&id2=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial&id3=4420818472&id4=2138565747&id7=1268x939&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.955&d5=4521&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=gpt_unit_%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial_0&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1
35.241.31.249204 No Content 0 B URL HTTP/2 data00.adlooxtracking.com/ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dgpt_unit_%252F21622890900%252C1012712%252FPH_sunstar.com.ph_res_article_interstitial_0%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=90611205624&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=gpt_unit_%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial_0&id2=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial&id3=4420818472&id4=2138565747&id7=1268x939&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.955&d5=4521&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=gpt_unit_%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial_0&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1
IP 35.241.31.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ads/ic5.php?d1=%7B%22tag_hash%22%3A%22tagid%3D1095%26platform%3D238%26targetelt%3Dgpt_unit_%252F21622890900%252C1012712%252FPH_sunstar.com.ph_res_article_interstitial_0%26fwtype%3D4%22%7D&adloox_io=1&client=adasia&campagne=152&banniere=0&visite_id=90611205624&seq=0&timezone=0&js=tfav_adl_152.js&date_regen=2021-12-14%2010%3A41%3A54&plat=238&tagid=1095&fw=4&version=4&type_crea=2&sl=%22sm%22%3A%22browser%22&id1=gpt_unit_%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial_0&id2=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial&id3=4420818472&id4=2138565747&id7=1268x939&id8=1678061206026503&id9=2294279303733957&id11=%24ADLOOX_WEBSITE&id20=614b730&p_d=0.955&d5=4521&headless=webgl&d3=1280x1024&d6=found-targetelt&d7=0&d8=gpt_unit_%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_interstitial_0&appname=Netscape&fai=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&iframe=0&fake=001000&resolution=1280x1024&nav_lang=en-US&debug=1%3A%20parent.parent.location.href&url_referrer=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&nb_cpu=16&data=1675935239ttttttfffftfffftfffffffffffftffff&activetab=1 HTTP/1.1
Host: data00.adlooxtracking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:33 GMT
x-powered-by: PHP/7.4.33
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-route: ads-prod-85587b555b-x2cbd
accept-ch: UA-Arch, UA-Model, UA-Platform, UA-Platform-Version, UA-Mobile, UA, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT, Platform, Arch, Model, Mobile
accept-ch-lifetime: 86400
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-headers: Content-Type, X-Requested-With
access-control-max-age: 86400
access-control-allow-methods: GET, OPTIONS
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hal900013.redintelligence.net/request_content.php?s=67775000010565004438068012162013&a=bf91a8e7
116.202.48.214200 OK 1.4 kB URL HTTP/1.1 hal900013.redintelligence.net/request_content.php?s=67775000010565004438068012162013&a=bf91a8e7
IP 116.202.48.214:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 9a92b36af4e7f59b8def32f67a0222c5
da82753df2a6874ba9bdf31afc948ec81d9bac9b
c62721a3070d69bffd4e0eae63429ab68c1de73084006bee608bdba2f645b5d2
GET /request_content.php?s=67775000010565004438068012162013&a=bf91a8e7 HTTP/1.1
Host: hal900013.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Cookie: 8lcfmzhxc8d6_uid=582144d479e52a3b
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:02:33 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 03 Dec 2022 04:02:33 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1411
Connection: close
Content-Type: text/html; charset=utf-8
hal900013.redintelligence.net/viewability?s=67775000010565004438068012162013&a=30177e61&vb=m
116.202.48.214200 OK 0 B URL HTTP/1.1 hal900013.redintelligence.net/viewability?s=67775000010565004438068012162013&a=30177e61&vb=m
IP 116.202.48.214:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /viewability?s=67775000010565004438068012162013&a=30177e61&vb=m HTTP/1.1
Host: hal900013.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900013.redintelligence.net/request_content.php?s=67775000010565004438068012162013&a=bf91a8e7
Cookie: 8lcfmzhxc8d6_uid=582144d479e52a3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 04:02:33 GMT
Server: Apache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
s.trvdp.com/scripts/v5.785/float.js
54.230.111.114304 Not Modified 0 B URL HTTP/2 s.trvdp.com/scripts/v5.785/float.js
IP 54.230.111.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /scripts/v5.785/float.js HTTP/1.1
Host: s.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Sun, 06 Nov 2022 14:33:45 GMT
If-None-Match: W/"93dc232a404aee475e8fed58e67b6fcb"
TE: trailers
HTTP/2 304 Not Modified
date: Mon, 07 Nov 2022 13:11:12 GMT
last-modified: Sun, 06 Nov 2022 14:33:45 GMT
etag: W/"93dc232a404aee475e8fed58e67b6fcb"
server: AmazonS3
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QkR_6uftvBNpigQcjvyzZGOkfl-WLGQ7tEdwoD9ulBX5Dp0kYj_0qw==
age: 2213483
X-Firefox-Spdy: h2
cdn.contentspread.net/24i/content/soberfb/EN/S-300x600.gif
88.99.65.215200 OK 98 kB URL HTTP/1.1 cdn.contentspread.net/24i/content/soberfb/EN/S-300x600.gif
IP 88.99.65.215:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 300 x 600\012- data
Hash 1fb479ecee8b6c066d1837d322eb1ac3
27d833cb481349d94904b3f0de66e9ec1ea93ed4
15489bb6f46021bebd0fedd4fef40981361ec05da79884da97f998dfe3c4690a
GET /24i/content/soberfb/EN/S-300x600.gif HTTP/1.1
Host: cdn.contentspread.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900013.redintelligence.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:02:34 GMT
Content-Type: image/gif
Content-Length: 97758
Last-Modified: Mon, 23 Jul 2018 15:20:13 GMT
Connection: close
ETag: "5b55f22d-17dde"
Accept-Ranges: bytes
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022113001&st=env
142.250.74.98200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022113001&st=env
IP 142.250.74.98:0
File type JSON data\012- , ASCII text, with very long lines (14847), with no line terminators
Hash ee49b47ac2f0745b748cb0da7396d86b
43921b3feccaee8a04596bb69e74f212ae53df0c
9f09f994feae8eada10727c918b7552929e528e35ccae5239aa644368c9e9d89
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022113001&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Sat, 03 Dec 2022 04:02:34 GMT
server: cafe
content-length: 11203
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/11/30/398418.jpg&w=100&q=100&f=webp&t=2
172.67.74.221200 OK 18 kB URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/11/30/398418.jpg&w=100&q=100&f=webp&t=2
IP 172.67.74.221:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x67, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ee5a4f7ab502ef8e61eea834ae547073
ad013fa73b374eeb4c385bbd03ce3486dcfef19d
b6175b2bf7957d13cb4ed0c304871328350059e78a50afe3d4f5070ede2d691e
GET /?url=https://sunstar.com.ph/uploads/images/2022/11/30/398418.jpg&w=100&q=100&f=webp&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: image/webp
x-powered-by: PHP/7.4.14
x-fastcgi-cache: MISS
cache-control: max-age=31536000
cf-cache-status: MISS
last-modified: Sat, 03 Dec 2022 04:02:34 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ud356bnaXlaOm9eBqBBMr951JgQP9J5nzzfJtHP8xfYQXwQtV71Pb8pnVZegndyyfSzPcmEkXaIxxxnCWny%2Fxi%2BVG8FJQ7PcIiQMjKddOxnLXNvapgtiOGQOKpCetaWDPer5shzA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773968534c630b4d-OSL
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjst2AQXtCvItgNtmW0Ze8bRxwBZJ-cmb53MZ6FYexwlSbMiOIHxPPUUK3RV1Ro1yy2XUqP0JsaYUjCS_S4Z-YJLbKPs&sig=Cg0ArKJSzKdmRmJ0CuGvEAE&id=lidar2&mcvt=1002&p=470,149,560,1119&mtos=1002,1002,1002,1002,1002&tos=1002,0,0,0,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=4033641640&rs=4&la=0&cr=0&vs=4&r=v&rst=1670040150111&rpt=1228&isd=0&lsd=0&met=ie&wmsd=0&pbe=0
142.250.74.98200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjst2AQXtCvItgNtmW0Ze8bRxwBZJ-cmb53MZ6FYexwlSbMiOIHxPPUUK3RV1Ro1yy2XUqP0JsaYUjCS_S4Z-YJLbKPs&sig=Cg0ArKJSzKdmRmJ0CuGvEAE&id=lidar2&mcvt=1002&p=470,149,560,1119&mtos=1002,1002,1002,1002,1002&tos=1002,0,0,0,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=4033641640&rs=4&la=0&cr=0&vs=4&r=v&rst=1670040150111&rpt=1228&isd=0&lsd=0&met=ie&wmsd=0&pbe=0
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjst2AQXtCvItgNtmW0Ze8bRxwBZJ-cmb53MZ6FYexwlSbMiOIHxPPUUK3RV1Ro1yy2XUqP0JsaYUjCS_S4Z-YJLbKPs&sig=Cg0ArKJSzKdmRmJ0CuGvEAE&id=lidar2&mcvt=1002&p=470,149,560,1119&mtos=1002,1002,1002,1002,1002&tos=1002,0,0,0,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=4033641640&rs=4&la=0&cr=0&vs=4&r=v&rst=1670040150111&rpt=1228&isd=0&lsd=0&met=ie&wmsd=0&pbe=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Sat, 03 Dec 2022 04:02:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/fonts/Roboto-Regular.ttf
192.124.249.104200 OK 168 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/fonts/Roboto-Regular.ttf
IP 192.124.249.104:0
File type TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-RegularRob\012- data
Size 168 kB (168260 bytes)
Hash f36638c2135b71e5a623dca52b611173
84d102488738b0ebbc7a5087973effbd54c95bd5
319cff6e7a31f0f2a41c475dca42890aa5d19fe16017e2290f8c1d4e14f76481
GET /theme_sunstar/fonts/Roboto-Regular.ttf HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.3.613905426.1670040147; _gid=GA1.3.275127562.1670040147; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=121aff85-e517-495c-a1f8-5a53bd775b42; __gads=ID=ddd63c0f49d2888f:T=1670040151:S=ALNI_Mbqo__y4eB3efM87TWZSq6tgMC9kQ; __gpi=UID=00000b8c24010ec0:T=1670040151:RT=1670040151:S=ALNI_MYnA_vGWd3jBZ5cMyolICFaX6WaIw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-12-03T04%3A02%3A31%22%7D; panoramaId_expiry=1670040152400
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: application/octet-stream
content-length: 168260
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:36 GMT
etag: "61b6f8b8-29144"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Miss from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IoKLUAKMghIGPO2_SODRFu_mD0lomLlx-qINO9ZCIUNaHtJPvHqVgA==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/fonts/Ziggurat-HTF-Black.ttf
192.124.249.104200 OK 27 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/fonts/Ziggurat-HTF-Black.ttf
IP 192.124.249.104:0
File type TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Hash 6d841027bb6e9edec41e1da8648d0b91
97cbbb8d12a1ebeb4939aab1e842544481455e01
c3d84cbade4703da21a28db837868005245acfc507307393e2226cac49b0e8d6
GET /theme_sunstar/fonts/Ziggurat-HTF-Black.ttf HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.3.613905426.1670040147; _gid=GA1.3.275127562.1670040147; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=121aff85-e517-495c-a1f8-5a53bd775b42; __gads=ID=ddd63c0f49d2888f:T=1670040151:S=ALNI_Mbqo__y4eB3efM87TWZSq6tgMC9kQ; __gpi=UID=00000b8c24010ec0:T=1670040151:RT=1670040151:S=ALNI_MYnA_vGWd3jBZ5cMyolICFaX6WaIw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-12-03T04%3A02%3A31%22%7D; panoramaId_expiry=1670040152400
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: application/octet-stream
content-length: 27388
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:36 GMT
etag: "61b6f8b8-6afc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Miss from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DN3MMRe6gfaz2ebGHCmDJxqzyxVnIZ3YkYImWn8sNcRJo-Shdi0usQ==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/fonts/Arvo-Bold.ttf
192.124.249.104200 OK 38 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/fonts/Arvo-Bold.ttf
IP 192.124.249.104:0
File type TrueType Font data, 15 tables, 1st "OS/2", 8 names, Microsoft, language 0x409, Copyright (c) 2010 by Anton Koovit.ArvoBoldArvo beta: 1.006 2010;KORKArvo BoldVersion 1.006 2010\012- DOS 2.0-3.2 backed up sequence 1 of file \017\012- data
Hash ab1dabbd8ffd289a5c35cb151879e987
0f5c7895d87238a42e7e1e15396bb46591063a65
c90fbf2e7da3bb74e38cf01e8e56aaebf5d030b1191cf416fc5b979b45f5fbb2
GET /theme_sunstar/fonts/Arvo-Bold.ttf HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.3.613905426.1670040147; _gid=GA1.3.275127562.1670040147; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=121aff85-e517-495c-a1f8-5a53bd775b42; __gads=ID=ddd63c0f49d2888f:T=1670040151:S=ALNI_Mbqo__y4eB3efM87TWZSq6tgMC9kQ; __gpi=UID=00000b8c24010ec0:T=1670040151:RT=1670040151:S=ALNI_MYnA_vGWd3jBZ5cMyolICFaX6WaIw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-12-03T04%3A02%3A31%22%7D; panoramaId_expiry=1670040152400
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: application/octet-stream
content-length: 37480
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:36 GMT
etag: "61b6f8b8-9268"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Miss from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9BEurN5gxH5E4-npDHxdnOPEtL7S2bGVr1ottRjfG7a_C-7Ni7EjBw==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/fonts/PublicoText-Bold.ttf
192.124.249.104200 OK 236 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/fonts/PublicoText-Bold.ttf
IP 192.124.249.104:0
File type TrueType Font data, 15 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size 236 kB (235872 bytes)
Hash 68e8dad4839d6f3683cf06107fdb9eda
f723f166d491a0607325a1eaeeec99a79a67deb1
a7452f8bc1947778ce3922ed04dc243c4f56c73b89624e69da5262a7de66987a
GET /theme_sunstar/fonts/PublicoText-Bold.ttf HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.3.613905426.1670040147; _gid=GA1.3.275127562.1670040147; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=121aff85-e517-495c-a1f8-5a53bd775b42; __gads=ID=ddd63c0f49d2888f:T=1670040151:S=ALNI_Mbqo__y4eB3efM87TWZSq6tgMC9kQ; __gpi=UID=00000b8c24010ec0:T=1670040151:RT=1670040151:S=ALNI_MYnA_vGWd3jBZ5cMyolICFaX6WaIw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-12-03T04%3A02%3A31%22%7D; panoramaId_expiry=1670040152400
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: application/octet-stream
content-length: 235872
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:36 GMT
etag: "61b6f8b8-39960"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Miss from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vIBfS8ZvkYX3tXO-bws4lkb7FBVh2hpY0dqr27hN3X2LX9uZaY3Tjg==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/fonts/Roboto-Medium.ttf
192.124.249.104200 OK 169 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/fonts/Roboto-Medium.ttf
IP 192.124.249.104:0
File type TrueType Font data, 18 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto MediumRegularVersion 2.137; 2017Roboto-Med\012- data
Size 169 kB (168644 bytes)
Hash b2d307df606f23cb14e6483039e2b7fa
fddc8b1c688ef3baed0d5a46abf5f01f0edaf02b
4ac8e03606ffa4c37f61a6510a2080f1f37a7054f4726c214887d3b23f72e369
GET /theme_sunstar/fonts/Roboto-Medium.ttf HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.3.613905426.1670040147; _gid=GA1.3.275127562.1670040147; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=121aff85-e517-495c-a1f8-5a53bd775b42; __gads=ID=ddd63c0f49d2888f:T=1670040151:S=ALNI_Mbqo__y4eB3efM87TWZSq6tgMC9kQ; __gpi=UID=00000b8c24010ec0:T=1670040151:RT=1670040151:S=ALNI_MYnA_vGWd3jBZ5cMyolICFaX6WaIw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-12-03T04%3A02%3A31%22%7D; panoramaId_expiry=1670040152400
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: application/octet-stream
content-length: 168644
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:36 GMT
etag: "61b6f8b8-292c4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 37DZnMTVDWxYHgeF241_9NjeKulYwjAVxzgnghO1Qp35bJo4kQMjaQ==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/fonts/Roboto-Bold.ttf
192.124.249.104200 OK 167 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/fonts/Roboto-Bold.ttf
IP 192.124.249.104:0
File type TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoBoldRoboto BoldVersion 2.137; 2017Roboto-Bo\012- data
Size 167 kB (167336 bytes)
Hash 9ece5b48963bbc96309220952cda38aa
013f1bbcbbd80991a5f00fca52a90d0d7ab8b81f
baf44ce81636cc927fc27768437e5da853bac699e8aaf832d042f0dfed29b4b4
GET /theme_sunstar/fonts/Roboto-Bold.ttf HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.3.613905426.1670040147; _gid=GA1.3.275127562.1670040147; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=121aff85-e517-495c-a1f8-5a53bd775b42; __gads=ID=ddd63c0f49d2888f:T=1670040151:S=ALNI_Mbqo__y4eB3efM87TWZSq6tgMC9kQ; __gpi=UID=00000b8c24010ec0:T=1670040151:RT=1670040151:S=ALNI_MYnA_vGWd3jBZ5cMyolICFaX6WaIw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-12-03T04%3A02%3A31%22%7D; panoramaId_expiry=1670040152400
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: application/octet-stream
content-length: 167336
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:36 GMT
etag: "61b6f8b8-28da8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 73ssLi2Ln6m5gEiLgQhlqq99pAGk4-A_6TC70dLN0boeJD5N1X5-Ug==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/12/03/399129.png&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 29 kB URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/12/03/399129.png&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 30x18, components 3\012- data
Hash f7dc7b71079d21bb852dfe225226e2a8
3ab971fe4677f6aa4cd29e24648f652ea6098af0
db771bdaeafcde40481fdff122dd366f7d0a93ba51bfffd1c8e9c705b556533a
GET /?url=https://sunstar.com.ph/uploads/images/2022/12/03/399129.png&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1684
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 10574
last-modified: Sat, 03 Dec 2022 01:06:20 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0A6KBAUUnnX7Ws75SoThD0bCZ2G85%2FCtbWOfNvTLhr7WNJp%2B%2FHSUkQZeqfxagwmt1U%2FyqM8n848HJKdLO79%2FRCL064UFGkgB8SshPLEj9zS8JlQHNr%2FnqCJul8Dj4tIzr%2Fdt2gGY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773968553d030b4d-OSL
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/12/03/399147.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 7.3 kB URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/12/03/399147.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 30x18, components 3\012- data
Hash da564f452b591e23c7e57875328c4bf0
9b2e686fc48b8e20834cec9885dfed92d0b57fdf
a39ea5ed58f0dfc089e5907a85ecfcf8c541fa843853922bc54e99a1728c78af
GET /?url=https://sunstar.com.ph/uploads/images/2022/12/03/399147.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1292
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3635
last-modified: Sat, 03 Dec 2022 03:01:59 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PMAUa46MT0XtP1GINBwIDjSlJRUiKaR0Nb1WMZZHW%2Byug7mDstagk1OpsxzSNdhGNTDoUWAlgZTxS5WI87uE5ZBXSozrVypFnifZPmuqBXMkshfGBLMlN2wkuEXBI0qife8cRCVm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773968552cf80b4d-OSL
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/12/03/399142.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 5.6 kB URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/12/03/399142.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 30x19, components 3\012- data
Hash 4220484195abab51537fc4e51205bf9a
ce0c485cb0530fe25da9556ebc88708674fe9288
d2044afdebdb5350ebaf1c7603fcd3b816233e432e93ef104e1281bd2ef5b439
GET /?url=https://sunstar.com.ph/uploads/images/2022/12/03/399142.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1759
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3935
last-modified: Sat, 03 Dec 2022 02:56:59 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s2qbN0wT%2BUc9wM1LcxC3kf9PaXDGostWhUV2Xsq4rLFS6xH7OveCQevgt9fzm0VxZ2o5VUdN0UAKAoeXlOQh%2BwZyrVHrIBnBohh7EtJ3IbjQRADWTUxT9oxYRSwXDRYNodVzRZve"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773968553d020b4d-OSL
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/11/29/398275.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 6.6 kB URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/11/29/398275.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 30x18, components 3\012- data
Hash 9aaeb1d75b5336f72085eb93ab6d172f
5c578673532a799e073151b0db8098e1c3c4c064
bd1af3da7341e845ed498768c80420f6da6a412e7314ed50e8be2093bedacc5d
GET /?url=https://sunstar.com.ph/uploads/images/2022/11/29/398275.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: image/jpeg
x-powered-by: PHP/7.4.14
x-fastcgi-cache: MISS
cache-control: max-age=31536000
cf-cache-status: MISS
last-modified: Sat, 03 Dec 2022 04:02:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bqnp%2FGKhMwgTftfPO0YNHdmMXl9MSNbwmv0%2BsiHuvsDxgnkt%2BAQPInumjmUxAZaHbY4F98VEYpM%2B4yfvYomA%2BcowWTDm9cFx0Uup%2FreoVnEDCPUld64QkhBTkzNQnd2ll6B7N2UL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773968305c4a0b4d-OSL
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=1T-buPxK0CI0d3Xx6DyapFusUxW2z_n9Y3JHBkilwiwvBXABIjqgllfIrtSd9cnea9Dd1m_goQjLVQKqxavr3c7UVKbcbradwKYaz8fZdNA7RJibmLYKLgtL96avZ5sBM9XLBeV80u1O6Y0_dSTiaXODOy_WATXQ33MQ8qMFvwSwBeOF2BuUCm9z6ZZaFnagRtLTJREYE5j0pXaVTfARoG6KicdJCpThjeRay0hFGdNyMb14qz0QZGCAhEs&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=1T-buPxK0CI0d3Xx6DyapFusUxW2z_n9Y3JHBkilwiwvBXABIjqgllfIrtSd9cnea9Dd1m_goQjLVQKqxavr3c7UVKbcbradwKYaz8fZdNA7RJibmLYKLgtL96avZ5sBM9XLBeV80u1O6Y0_dSTiaXODOy_WATXQ33MQ8qMFvwSwBeOF2BuUCm9z6ZZaFnagRtLTJREYE5j0pXaVTfARoG6KicdJCpThjeRay0hFGdNyMb14qz0QZGCAhEs&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=1T-buPxK0CI0d3Xx6DyapFusUxW2z_n9Y3JHBkilwiwvBXABIjqgllfIrtSd9cnea9Dd1m_goQjLVQKqxavr3c7UVKbcbradwKYaz8fZdNA7RJibmLYKLgtL96avZ5sBM9XLBeV80u1O6Y0_dSTiaXODOy_WATXQ33MQ8qMFvwSwBeOF2BuUCm9z6ZZaFnagRtLTJREYE5j0pXaVTfARoG6KicdJCpThjeRay0hFGdNyMb14qz0QZGCAhEs&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:33 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/11/30/398421.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 1.9 kB URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/11/30/398421.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 30x22, components 3\012- data
Hash 7ebeac40de4b61da43becbead45baa3a
294c5051dca12286fd286f468b49636be15fd06e
42450e42a8fb7aed5220c2ae937a5129e4672a23b415f89f98afbb06870a89c4
GET /?url=https://sunstar.com.ph/uploads/images/2022/11/30/398421.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: image/jpeg
x-powered-by: PHP/7.4.14
x-fastcgi-cache: MISS
cache-control: max-age=31536000
cf-cache-status: MISS
last-modified: Sat, 03 Dec 2022 04:02:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JF3AMYmbJtfAcJYtlL4Mh9ISIVCILZIkynIc3x2KFuXa2G8V3YDYPVi2XnUQTxBmz8h5%2FMIC1GqEMUMoF0RXbZiFjrNItp1m0Cm4sLmlNAyf3kib2yFDVHfA%2FponmGurChEEmCo4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773968305c480b4d-OSL
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 04:02:34 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
p.trvdp.com/pixel.gif?e=MphfADQ0Ik/hT9WF4gFg2bjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOysVuf1cz79U5FcH0zbV46d030wcoXjOpdJe1AvFvpo2FF8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=11602224
52.205.152.252204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=MphfADQ0Ik/hT9WF4gFg2bjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOysVuf1cz79U5FcH0zbV46d030wcoXjOpdJe1AvFvpo2FF8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=11602224
IP 52.205.152.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=MphfADQ0Ik/hT9WF4gFg2bjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOysVuf1cz79U5FcH0zbV46d030wcoXjOpdJe1AvFvpo2FF8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=11602224 HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:34 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 04:02:34 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
p.trvdp.com/pixel.gif?e=IxiJB5spKBXmozAY5PuGmLjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOys3k3VPO9ME0rcr3YneCwCwsDNmQrmtWZfAXm1+5lWClV8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=90450448
52.205.152.252204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=IxiJB5spKBXmozAY5PuGmLjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOys3k3VPO9ME0rcr3YneCwCwsDNmQrmtWZfAXm1+5lWClV8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=90450448
IP 52.205.152.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=IxiJB5spKBXmozAY5PuGmLjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOys3k3VPO9ME0rcr3YneCwCwsDNmQrmtWZfAXm1+5lWClV8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=90450448 HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:34 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3c22e279d291dace2ffebfccdd4a59e9
fdbf29ff763b23ac646caa428d77367685d7cfa0
1869d3b43e88dfc33ed3b02aeda7b116c6d5c82e7486de9b752ec912ebdb946b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 486
Cache-Control: max-age=136128
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:34 GMT
Etag: "638a3934-139"
Expires: Sun, 04 Dec 2022 17:51:22 GMT
Last-Modified: Fri, 02 Dec 2022 17:43:16 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:34 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=mrG8FF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnpDV2lUUEElMkJ6UjlsdUw2OElLUGV3JTJCZFJudWs2YTljaW1OdHEyZVFVWHY; expires=Thu, 28 Dec 2023 04:02:34 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 256944
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 561fc9500f286cbed4b8a40a7e3f4fda
b61aee5d87b48ce838250940a0d417665090f8a3
f644f090f9d1d513e2d555451081e72ada3b8c3507d9d7a950ff42de3dc3520c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 616
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:34 GMT
Etag: "6389ccd7-139"
Last-Modified: Sat, 03 Dec 2022 03:52:18 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 561fc9500f286cbed4b8a40a7e3f4fda
b61aee5d87b48ce838250940a0d417665090f8a3
f644f090f9d1d513e2d555451081e72ada3b8c3507d9d7a950ff42de3dc3520c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 618
Cache-Control: max-age=108519
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:34 GMT
Etag: "6389ccd7-139"
Expires: Sun, 04 Dec 2022 10:11:13 GMT
Last-Modified: Fri, 02 Dec 2022 10:00:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash bdfe29bfdf6bf80256b4b8c967aa245d
5e31f571223e6f05df56d00de203c424130a6124
fca7539553b88f53619dddea737946474310cd240dd5070fcbadd8bee37bb4e1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 03 Dec 2022 04:02:34 GMT
Last-Modified: Sat, 03 Dec 2022 03:52:38 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fd1hVoEwHQNLV-J3FP0M4pB5kSvzjmO_-I6S2K7oslR41KjBmhKr1g==
Age: 597
redirect.prod.experiment.routing.cloudfront.aws.a2z.com/x.png
18.222.102.2204 No Content 0 B URL HTTP/2 redirect.prod.experiment.routing.cloudfront.aws.a2z.com/x.png
IP 18.222.102.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x.png HTTP/1.1
Host: redirect.prod.experiment.routing.cloudfront.aws.a2z.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:35 GMT
server: Server
X-Firefox-Spdy: h2
mab.chartbeat.com/mab_strategy/headline_testing/get_strategy/?host=sunstar.com.ph&domain=sunstar.com.ph&path=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good
151.101.194.202200 OK 170 B URL HTTP/2 mab.chartbeat.com/mab_strategy/headline_testing/get_strategy/?host=sunstar.com.ph&domain=sunstar.com.ph&path=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good
IP 151.101.194.202:0
File type JSON data\012- , ASCII text, with no line terminators
Hash fc7296940e0c8838acee728bdb56c06d
a39d23e42dc009d1e47cb80238cee7db7e9ca752
32fe2e98937f370a67978ff5264c3a2bca5ec5d444a4f26cbf03a6b20cbce17e
GET /mab_strategy/headline_testing/get_strategy/?host=sunstar.com.ph&domain=sunstar.com.ph&path=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good HTTP/1.1
Host: mab.chartbeat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
expires: Thu, 01 Dec 2022 04:02:35 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0, s-maxage=0
content-encoding: gzip
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
accept-ranges: bytes
date: Sat, 03 Dec 2022 04:02:35 GMT
age: 0
x-served-by: cache-bma1633-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670040155.982482,VS0,VE98
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
content-length: 170
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33d4c0eb73252b9ee70cebc62151b0dd
31bc157147ab1329097d7c6f60bd077186c24bf8
fbf26b2930e09e9f73ff165eba2ce1f953054ebb7f47d425fd656108131b5cba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3b31c5c614ff3e157c4c942ddd574c9f
f42e9f088d195acdf3c861da33a21e3f7d7e468c
67be1e3030e5fc4bc2240dfb3a6cc0a7df361423a696aab7a73f4da0fc0c9173
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 622
Cache-Control: max-age=129750
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:35 GMT
Etag: "638a1fc3-1d7"
Expires: Sun, 04 Dec 2022 16:05:05 GMT
Last-Modified: Fri, 02 Dec 2022 15:54:43 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
yt3.ggpht.com/ytc/AMLnZu8dwsdCjOkwfebjTr7q2xdRCA2jeRuHhyMSvQ3hsg=s48-c-k-c0x00ffffff-no-rj
142.250.74.65200 OK 1.4 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu8dwsdCjOkwfebjTr7q2xdRCA2jeRuHhyMSvQ3hsg=s48-c-k-c0x00ffffff-no-rj
IP 142.250.74.65:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 48x48, components 3\012- data
Hash e59e6f892a409ffc61aa23cc24f0e7f0
79aed983c22804025735bfbe552c9f2f53002e67
b25b7ddf70e1690878e63c9c39cc93da8479dc69942ad0d851ae525917c7ea37
GET /ytc/AMLnZu8dwsdCjOkwfebjTr7q2xdRCA2jeRuHhyMSvQ3hsg=s48-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1381
x-xss-protection: 0
date: Sat, 03 Dec 2022 01:11:51 GMT
expires: Wed, 30 Nov 2022 08:01:46 GMT
cache-control: public, max-age=86400, no-transform
age: 10244
etag: "v191"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 04:02:35 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p.trvdp.com/pixel.gif?e=XmuyxJddVvrrPpTqIx/0QeqBxeEwEL3zm07pfc6Gsh1OT8aO9b/AJpgaz3XeLHVb+aRoFZjfi4zfiva401lhySghyyrjGqXZ9wQxXCAQ/0Tmpu7vCDIV8EPXDN8YDURHkc1U1hDrw7d6UjE56EVeloaRZ58lv+KJFmwTQp4TqF28+Ku1awb9N7Yn2DZQe7EPNhbid2Kij5pKNX9PMcIgG5JL2hMoeCf9JXdYvllM9VSIKkYYjYAnhlIh6ix0AiAyZwR6TekwFglbiF9U6Vp1eNsKyxMcBAwV/1VP+m9mVD67wgnxq5GMxgrW5nySlp4D038YVDB2bn4HbFXtdgFvl9+LDGgrV9P24aQPCeHLgAI=&cb=69024495
52.205.152.252204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=XmuyxJddVvrrPpTqIx/0QeqBxeEwEL3zm07pfc6Gsh1OT8aO9b/AJpgaz3XeLHVb+aRoFZjfi4zfiva401lhySghyyrjGqXZ9wQxXCAQ/0Tmpu7vCDIV8EPXDN8YDURHkc1U1hDrw7d6UjE56EVeloaRZ58lv+KJFmwTQp4TqF28+Ku1awb9N7Yn2DZQe7EPNhbid2Kij5pKNX9PMcIgG5JL2hMoeCf9JXdYvllM9VSIKkYYjYAnhlIh6ix0AiAyZwR6TekwFglbiF9U6Vp1eNsKyxMcBAwV/1VP+m9mVD67wgnxq5GMxgrW5nySlp4D038YVDB2bn4HbFXtdgFvl9+LDGgrV9P24aQPCeHLgAI=&cb=69024495
IP 52.205.152.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=XmuyxJddVvrrPpTqIx/0QeqBxeEwEL3zm07pfc6Gsh1OT8aO9b/AJpgaz3XeLHVb+aRoFZjfi4zfiva401lhySghyyrjGqXZ9wQxXCAQ/0Tmpu7vCDIV8EPXDN8YDURHkc1U1hDrw7d6UjE56EVeloaRZ58lv+KJFmwTQp4TqF28+Ku1awb9N7Yn2DZQe7EPNhbid2Kij5pKNX9PMcIgG5JL2hMoeCf9JXdYvllM9VSIKkYYjYAnhlIh6ix0AiAyZwR6TekwFglbiF9U6Vp1eNsKyxMcBAwV/1VP+m9mVD67wgnxq5GMxgrW5nySlp4D038YVDB2bn4HbFXtdgFvl9+LDGgrV9P24aQPCeHLgAI=&cb=69024495 HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:35 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 687e04d91de0188de0a524fcb4a61172
9f3a40b98eb9497cfebad979779daa483091aa5b
481ed623a68f76fb18fce55868021280e592883370000ce1a31dabaf11899a81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 04:02:35 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ping.chartbeat.net/ping?h=sunstar.com.ph&p=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good&u=CNIbzNRQZ5VWoZo_&d=sunstar.com.ph&g=66382&g0=No%20Section&g1=No%20Author&n=1&f=00001&c=0&x=0&m=0&y=3512&o=1268&w=939&j=45&R=1&W=0&I=0&E=0&e=0&r=&b=6552&t=BWZqpgCkMeoCCnVLDOBJNjeEDabqy1&V=137&i=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&tz=0&_acct=anon&sn=1&sv=N25d3BZVWjkEocFAClprLZu1HCY&sd=1&im=067b0cff&_
3.231.82.137200 OK 43 B URL HTTP/2 ping.chartbeat.net/ping?h=sunstar.com.ph&p=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good&u=CNIbzNRQZ5VWoZo_&d=sunstar.com.ph&g=66382&g0=No%20Section&g1=No%20Author&n=1&f=00001&c=0&x=0&m=0&y=3512&o=1268&w=939&j=45&R=1&W=0&I=0&E=0&e=0&r=&b=6552&t=BWZqpgCkMeoCCnVLDOBJNjeEDabqy1&V=137&i=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&tz=0&_acct=anon&sn=1&sv=N25d3BZVWjkEocFAClprLZu1HCY&sd=1&im=067b0cff&_
IP 3.231.82.137:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping?h=sunstar.com.ph&p=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good&u=CNIbzNRQZ5VWoZo_&d=sunstar.com.ph&g=66382&g0=No%20Section&g1=No%20Author&n=1&f=00001&c=0&x=0&m=0&y=3512&o=1268&w=939&j=45&R=1&W=0&I=0&E=0&e=0&r=&b=6552&t=BWZqpgCkMeoCCnVLDOBJNjeEDabqy1&V=137&i=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&tz=0&_acct=anon&sn=1&sv=N25d3BZVWjkEocFAClprLZu1HCY&sd=1&im=067b0cff&_ HTTP/1.1
Host: ping.chartbeat.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:35 GMT
content-type: image/gif
content-length: 43
cross-origin-resource-policy: cross-origin
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 04:02:35 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 687e04d91de0188de0a524fcb4a61172
9f3a40b98eb9497cfebad979779daa483091aa5b
481ed623a68f76fb18fce55868021280e592883370000ce1a31dabaf11899a81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a9bdfccd1df3e323e28d92aea1077409
4625fbbbbb614755a86dabddfaf40e99b3934ba6
8020fb77bd7e1b8cc3e2fed030e59d004e720c61162046fc93285c1ca07c0e66
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a9bdfccd1df3e323e28d92aea1077409
4625fbbbbb614755a86dabddfaf40e99b3934ba6
8020fb77bd7e1b8cc3e2fed030e59d004e720c61162046fc93285c1ca07c0e66
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gum.criteo.com/sid/json?origin=publishertag&domain=sunstar.com.ph&sn=FirefoxSyncframe&so=0&topUrl=www.sunstar.com.ph&info=sDFJKF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnpDV2lUUEElMkJ6UjlsdUw2OElLUGV6YiUyRndNdFNERzFKQlQ5UmNtNFdSWXA&idsd=-2083565991,550417024&cw=1&lsw=1
178.250.2.146200 OK 314 B URL HTTP/2 gum.criteo.com/sid/json?origin=publishertag&domain=sunstar.com.ph&sn=FirefoxSyncframe&so=0&topUrl=www.sunstar.com.ph&info=sDFJKF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnpDV2lUUEElMkJ6UjlsdUw2OElLUGV6YiUyRndNdFNERzFKQlQ5UmNtNFdSWXA&idsd=-2083565991,550417024&cw=1&lsw=1
IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with very long lines (393), with no line terminators
Hash 7de8730857e909e2df8d1b6459a408e2
a26f485ea3d1efffeb3c5a011b0276b8cef94aff
c3c1065af0f339da8c08e268f209b95dbed15424efc17c2d9500478ad5690587
GET /sid/json?origin=publishertag&domain=sunstar.com.ph&sn=FirefoxSyncframe&so=0&topUrl=www.sunstar.com.ph&info=sDFJKF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnpDV2lUUEElMkJ6UjlsdUw2OElLUGV6YiUyRndNdFNERzFKQlQ5UmNtNFdSWXA&idsd=-2083565991,550417024&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=publishertag&topUrl=www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:35 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1224136
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 04:02:35 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
p.trvdp.com/pixel.gif?e=d/cHDLje6NB0cH11BoTtWuqBxeEwEL3zm07pfc6Gsh3sM3heWHjDYHUfHxSkwQqDKCHLKuMapdn3BDFcIBD/ROam7u8IMhXwQ9cM3xgNREfZiBdzxWVnyb5l4Tfse0b6B4It1dXqEnCpgaE0iVBUaYUbMB0oFa8uU3fIkO2+q2ndh/zS42+sV34q6SBYHgQdKfhdnP+GUx/ykONrzAm6SdX4CPxQZvt0YuQZ96FRXfVx/DcZyG0JOsROeBkBc6bp&cb=27058236
52.205.152.252204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=d/cHDLje6NB0cH11BoTtWuqBxeEwEL3zm07pfc6Gsh3sM3heWHjDYHUfHxSkwQqDKCHLKuMapdn3BDFcIBD/ROam7u8IMhXwQ9cM3xgNREfZiBdzxWVnyb5l4Tfse0b6B4It1dXqEnCpgaE0iVBUaYUbMB0oFa8uU3fIkO2+q2ndh/zS42+sV34q6SBYHgQdKfhdnP+GUx/ykONrzAm6SdX4CPxQZvt0YuQZ96FRXfVx/DcZyG0JOsROeBkBc6bp&cb=27058236
IP 52.205.152.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=d/cHDLje6NB0cH11BoTtWuqBxeEwEL3zm07pfc6Gsh3sM3heWHjDYHUfHxSkwQqDKCHLKuMapdn3BDFcIBD/ROam7u8IMhXwQ9cM3xgNREfZiBdzxWVnyb5l4Tfse0b6B4It1dXqEnCpgaE0iVBUaYUbMB0oFa8uU3fIkO2+q2ndh/zS42+sV34q6SBYHgQdKfhdnP+GUx/ykONrzAm6SdX4CPxQZvt0YuQZ96FRXfVx/DcZyG0JOsROeBkBc6bp&cb=27058236 HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:35 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
216.58.211.6200 OK 38 kB URL HTTP/2 s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
IP 216.58.211.6:0
File type ASCII text, with very long lines (3095)
Hash 4f9b890a6c4cfbbfd0fb7eff98bf4dde
2db204fb0ee448842b40f84463234ea496763130
8e0d4c67a688228e1ba10b1e1dc367c078edf7e9bc35be0bd4ae8c0ce980647c
GET /879366/express_html_inpage_rendering_lib_200_276.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 37872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 05:12:01 GMT
expires: Sat, 03 Dec 2022 05:12:01 GMT
cache-control: public, max-age=86400
age: 82234
last-modified: Wed, 02 Mar 2022 23:07:26 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
p.trvdp.com/pixel.gif?e=MphfADQ0Ik/hT9WF4gFg2bjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXTe/BBdwC6A05Bs4Tb1JxjtzTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAewyQG2CpcnI0dDHtmaVusL97vYu5dIB9a9ntMjVd5CofQS+v+m488pBcdXH6MsGUswFqOTIw/wc/gMDi1iPjqJq67wgnxq5GMxgrW5nySlp4D038YVDB2bn4HbFXtdgFvl9+LDGgrV9P24aQPCeHLgAI=&cb=40044302
52.205.152.252204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=MphfADQ0Ik/hT9WF4gFg2bjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXTe/BBdwC6A05Bs4Tb1JxjtzTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAewyQG2CpcnI0dDHtmaVusL97vYu5dIB9a9ntMjVd5CofQS+v+m488pBcdXH6MsGUswFqOTIw/wc/gMDi1iPjqJq67wgnxq5GMxgrW5nySlp4D038YVDB2bn4HbFXtdgFvl9+LDGgrV9P24aQPCeHLgAI=&cb=40044302
IP 52.205.152.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=MphfADQ0Ik/hT9WF4gFg2bjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXTe/BBdwC6A05Bs4Tb1JxjtzTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAewyQG2CpcnI0dDHtmaVusL97vYu5dIB9a9ntMjVd5CofQS+v+m488pBcdXH6MsGUswFqOTIw/wc/gMDi1iPjqJq67wgnxq5GMxgrW5nySlp4D038YVDB2bn4HbFXtdgFvl9+LDGgrV9P24aQPCeHLgAI=&cb=40044302 HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:35 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.155200 OK 28 kB URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.155:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63213)
Hash 50a99c1d574a3af8a0990515abc0acb0
3d93f6b86fe7dce979da6ad9d1788854969c6a2d
3d53446b21e4557e7443c2b880089c9b33727c3940d1925465d5f540dd8dfb6e
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 131215
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670068954&ei=WsqKY4a2No2MyAWvi66IAQ&ip=91.90.42.154&id=704c29939fcd20f5&itag=22&source=youtube&requiressl=yes&mh=lY&mm=31&mn=sn-capm-vnae&ms=au&mv=u&mvi=1&pl=21&susc=gvp&acao=yes&ctier=L&mime=video/mp4&vprv=1&dur=37.291&lmt=1650406935439130&mt=1670039278&txp=5318224&sparams=expire,ei,ip,id,itag,source,requiressl,susc,acao,ctier,mime,vprv,dur,lmt&sig=AOq0QJ8wRQIhAMDqJTdg4de9Dm99bgaOTe18Fra_qnBf5XChKE0T5IXrAiBLqwJ1FemZP7Grv61gFbcrGv8V-eECsDavnYh4nntmRw==&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAI3Ci1LDCf2eOQkpcNo_cnjIEGmBtI6oSlH2lKmYFh_vAiBS4jMev-QybYyaLEuZVtlnQT4yBTcJ_DPzc8uK7En97w==&cpn=3FNUEIn7ivNx-A-7
91.90.45.172206 Partial Content 23 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670068954&ei=WsqKY4a2No2MyAWvi66IAQ&ip=91.90.42.154&id=704c29939fcd20f5&itag=22&source=youtube&requiressl=yes&mh=lY&mm=31&mn=sn-capm-vnae&ms=au&mv=u&mvi=1&pl=21&susc=gvp&acao=yes&ctier=L&mime=video/mp4&vprv=1&dur=37.291&lmt=1650406935439130&mt=1670039278&txp=5318224&sparams=expire,ei,ip,id,itag,source,requiressl,susc,acao,ctier,mime,vprv,dur,lmt&sig=AOq0QJ8wRQIhAMDqJTdg4de9Dm99bgaOTe18Fra_qnBf5XChKE0T5IXrAiBLqwJ1FemZP7Grv61gFbcrGv8V-eECsDavnYh4nntmRw==&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAI3Ci1LDCf2eOQkpcNo_cnjIEGmBtI6oSlH2lKmYFh_vAiBS4jMev-QybYyaLEuZVtlnQT4yBTcJ_DPzc8uK7En97w==&cpn=3FNUEIn7ivNx-A-7
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
Hash 23b41d9b6032c54ca7c7e0d05eabf09a
104b5c8e462273f5ed8b590b31751f4c6169fcbf
2c1f2d3fff45a4660a79e6310c16f50e33ac638985cc7d00ea318f912b84bbdd
GET /videoplayback?expire=1670068954&ei=WsqKY4a2No2MyAWvi66IAQ&ip=91.90.42.154&id=704c29939fcd20f5&itag=22&source=youtube&requiressl=yes&mh=lY&mm=31&mn=sn-capm-vnae&ms=au&mv=u&mvi=1&pl=21&susc=gvp&acao=yes&ctier=L&mime=video/mp4&vprv=1&dur=37.291&lmt=1650406935439130&mt=1670039278&txp=5318224&sparams=expire,ei,ip,id,itag,source,requiressl,susc,acao,ctier,mime,vprv,dur,lmt&sig=AOq0QJ8wRQIhAMDqJTdg4de9Dm99bgaOTe18Fra_qnBf5XChKE0T5IXrAiBLqwJ1FemZP7Grv61gFbcrGv8V-eECsDavnYh4nntmRw==&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAI3Ci1LDCf2eOQkpcNo_cnjIEGmBtI6oSlH2lKmYFh_vAiBS4jMev-QybYyaLEuZVtlnQT4yBTcJ_DPzc8uK7En97w==&cpn=3FNUEIn7ivNx-A-7 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Last-Modified: Tue, 19 Apr 2022 22:22:15 GMT
Content-Type: video/mp4
Date: Sat, 03 Dec 2022 04:02:35 GMT
Expires: Sat, 03 Dec 2022 04:02:35 GMT
Cache-Control: private, max-age=28499
Content-Range: bytes 0-7259492/7259493
Accept-Ranges: bytes
Content-Length: 7259493
Connection: close
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
dnacdn.net/dna
178.250.2.146200 OK 139 B IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f6232732d043a83c12892a21a1aecc3
beca3ba6bb97440ee9a48d7a533bc4bf8ef91854
27cb0bc75f5221d6b0ff92144e97867db89e6a6bc12f5c1b49e5f2a705da78f0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=mrG8FF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnpDV2lUUEElMkJ6UjlsdUw2OElLUGV3JTJCZFJudWs2YTljaW1OdHEyZVFVWHY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=sDFJKF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnpDV2lUUEElMkJ6UjlsdUw2OElLUGV6YiUyRndNdFNERzFKQlQ5UmNtNFdSWXA; expires=Thu, 28 Dec 2023 04:02:35 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 560889
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&puid=1~lb7esalk&c=1179425110350&slotId=589712555175&qqid=CNfehLHI3PsCFYbdsgodu5kDlg&gqid=WcqKY92wMNqKywXjuab4Dg&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&eee=missing-element&bi=missing-id&vast_v=4.0&wta=1&ghmsh_eids=44748969%2C44765701&vmfc=11&vhc=0
142.250.4.120204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=1~lb7esalk&c=1179425110350&slotId=589712555175&qqid=CNfehLHI3PsCFYbdsgodu5kDlg&gqid=WcqKY92wMNqKywXjuab4Dg&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&eee=missing-element&bi=missing-id&vast_v=4.0&wta=1&ghmsh_eids=44748969%2C44765701&vmfc=11&vhc=0
IP 142.250.4.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=1~lb7esalk&c=1179425110350&slotId=589712555175&qqid=CNfehLHI3PsCFYbdsgodu5kDlg&gqid=WcqKY92wMNqKywXjuab4Dg&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&eee=missing-element&bi=missing-id&vast_v=4.0&wta=1&ghmsh_eids=44748969%2C44765701&vmfc=11&vhc=0 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sat, 03 Dec 2022 04:02:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&puid=3~lb7esctn&c=1179425110350&slotId=589712555175&qqid=CNfehLHI3PsCFYbdsgodu5kDlg&gqid=WcqKY92wMNqKywXjuab4Dg&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=11&gpm_c=11&gpm_a=0&met.4=err.lb7esctp&aec=403&vamt=application%2Fx-mpegurl%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4
142.250.4.120204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=3~lb7esctn&c=1179425110350&slotId=589712555175&qqid=CNfehLHI3PsCFYbdsgodu5kDlg&gqid=WcqKY92wMNqKywXjuab4Dg&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=11&gpm_c=11&gpm_a=0&met.4=err.lb7esctp&aec=403&vamt=application%2Fx-mpegurl%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4
IP 142.250.4.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=3~lb7esctn&c=1179425110350&slotId=589712555175&qqid=CNfehLHI3PsCFYbdsgodu5kDlg&gqid=WcqKY92wMNqKywXjuab4Dg&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=11&gpm_c=11&gpm_a=0&met.4=err.lb7esctp&aec=403&vamt=application%2Fx-mpegurl%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sat, 03 Dec 2022 04:02:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&top=1&puid=1~lb7esacs&c=1179425110350&slotId=589712555175&eee=missing-element&bi=missing-id
142.250.4.120204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=ima&top=1&puid=1~lb7esacs&c=1179425110350&slotId=589712555175&eee=missing-element&bi=missing-id
IP 142.250.4.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&top=1&puid=1~lb7esacs&c=1179425110350&slotId=589712555175&eee=missing-element&bi=missing-id HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sat, 03 Dec 2022 04:02:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&puid=2~lb7esctc&c=1179425110350&slotId=589712555175&qqid=CNfehLHI3PsCFYbdsgodu5kDlg&gqid=WcqKY92wMNqKywXjuab4Dg&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=7&gpm_c=7&gpm_a=0&webm=0&vp9=0&vamt=application%2Fx-mpegurl%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4&hvmf=false
142.250.4.120204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=2~lb7esctc&c=1179425110350&slotId=589712555175&qqid=CNfehLHI3PsCFYbdsgodu5kDlg&gqid=WcqKY92wMNqKywXjuab4Dg&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=7&gpm_c=7&gpm_a=0&webm=0&vp9=0&vamt=application%2Fx-mpegurl%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4&hvmf=false
IP 142.250.4.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=2~lb7esctc&c=1179425110350&slotId=589712555175&qqid=CNfehLHI3PsCFYbdsgodu5kDlg&gqid=WcqKY92wMNqKywXjuab4Dg&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=7&gpm_c=7&gpm_a=0&webm=0&vp9=0&vamt=application%2Fx-mpegurl%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4&hvmf=false HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sat, 03 Dec 2022 04:02:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
p.trvdp.com/pixel.gif?e=XmuyxJddVvrrPpTqIx/0QeqBxeEwEL3zm07pfc6Gsh1OT8aO9b/AJpgaz3XeLHVb+aRoFZjfi4zfiva401lhySghyyrjGqXZ9wQxXCAQ/0Tmpu7vCDIV8EPXDN8YDURHkc1U1hDrw7d6UjE56EVelnnAuLPWH85KHN/GvvM3Awe8+Ku1awb9N7Yn2DZQe7EPNhbid2Kij5pKNX9PMcIgG/y1byPp1Jd3T7XBX8hBLwaXNSxWxIUciMD+Q2npUxi6+Wu70CB44PWvTiElRb44WqvRyyQ8CLXA7qfR42OjYepzNI20x2kE0G8bInp9tv5j6lIh02LwacMuQ5if5E2FWvGikhlKkjTlRWklHJjhG1A=&cb=52165758
52.205.152.252204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=XmuyxJddVvrrPpTqIx/0QeqBxeEwEL3zm07pfc6Gsh1OT8aO9b/AJpgaz3XeLHVb+aRoFZjfi4zfiva401lhySghyyrjGqXZ9wQxXCAQ/0Tmpu7vCDIV8EPXDN8YDURHkc1U1hDrw7d6UjE56EVelnnAuLPWH85KHN/GvvM3Awe8+Ku1awb9N7Yn2DZQe7EPNhbid2Kij5pKNX9PMcIgG/y1byPp1Jd3T7XBX8hBLwaXNSxWxIUciMD+Q2npUxi6+Wu70CB44PWvTiElRb44WqvRyyQ8CLXA7qfR42OjYepzNI20x2kE0G8bInp9tv5j6lIh02LwacMuQ5if5E2FWvGikhlKkjTlRWklHJjhG1A=&cb=52165758
IP 52.205.152.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=XmuyxJddVvrrPpTqIx/0QeqBxeEwEL3zm07pfc6Gsh1OT8aO9b/AJpgaz3XeLHVb+aRoFZjfi4zfiva401lhySghyyrjGqXZ9wQxXCAQ/0Tmpu7vCDIV8EPXDN8YDURHkc1U1hDrw7d6UjE56EVelnnAuLPWH85KHN/GvvM3Awe8+Ku1awb9N7Yn2DZQe7EPNhbid2Kij5pKNX9PMcIgG/y1byPp1Jd3T7XBX8hBLwaXNSxWxIUciMD+Q2npUxi6+Wu70CB44PWvTiElRb44WqvRyyQ8CLXA7qfR42OjYepzNI20x2kE0G8bInp9tv5j6lIh02LwacMuQ5if5E2FWvGikhlKkjTlRWklHJjhG1A=&cb=52165758 HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:36 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670068955&ei=W8qKY5uWNdGG0u8PrKyj4Ac&ip=91.90.42.154&id=e19237530bcedce2&itag=22&source=youtube&requiressl=yes&mh=hY&mm=31&mn=sn-capm-vnae&ms=au&mv=u&mvi=2&pl=21&susc=gvp&acao=yes&ctier=L&mime=video/mp4&vprv=1&dur=6.106&lmt=1669501210093238&mt=1670039278&txp=5432434&sparams=expire,ei,ip,id,itag,source,requiressl,susc,acao,ctier,mime,vprv,dur,lmt&sig=AOq0QJ8wRQIhANmkOj4e_qY6xaI3Tkef2Eno7H2_IPuErQvrUUh3DDQfAiBeEh9Ai1oOqss0EBNUXmwJTOZo1mNu6DrzM-41lg0oKg==&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgeONJLiJQo8UQxdo_LOa8PVI2NrYn-snJE-GmpEM1mMUCIQCVb8UdnxG9cvir9anemHehlNFtLEqt6gNPp5QOVL3uIA==&cpn=0-nP98gzj_S-HeHl
91.90.45.173206 Partial Content 661 kB URL HTTP/1.1 rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670068955&ei=W8qKY5uWNdGG0u8PrKyj4Ac&ip=91.90.42.154&id=e19237530bcedce2&itag=22&source=youtube&requiressl=yes&mh=hY&mm=31&mn=sn-capm-vnae&ms=au&mv=u&mvi=2&pl=21&susc=gvp&acao=yes&ctier=L&mime=video/mp4&vprv=1&dur=6.106&lmt=1669501210093238&mt=1670039278&txp=5432434&sparams=expire,ei,ip,id,itag,source,requiressl,susc,acao,ctier,mime,vprv,dur,lmt&sig=AOq0QJ8wRQIhANmkOj4e_qY6xaI3Tkef2Eno7H2_IPuErQvrUUh3DDQfAiBeEh9Ai1oOqss0EBNUXmwJTOZo1mNu6DrzM-41lg0oKg==&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgeONJLiJQo8UQxdo_LOa8PVI2NrYn-snJE-GmpEM1mMUCIQCVb8UdnxG9cvir9anemHehlNFtLEqt6gNPp5QOVL3uIA==&cpn=0-nP98gzj_S-HeHl
IP 91.90.45.173:0
ASN #50304 Blix Solutions AS
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 661 kB (661251 bytes)
Hash dc05d14d946e17710ce8909769550e3f
cc12a4047cfcc2010961e2ee560d8cf3ecd21955
42e6179747b4fb448794987d7982694bd3bc922e8a24f87307f573ece68e018a
GET /videoplayback?expire=1670068955&ei=W8qKY5uWNdGG0u8PrKyj4Ac&ip=91.90.42.154&id=e19237530bcedce2&itag=22&source=youtube&requiressl=yes&mh=hY&mm=31&mn=sn-capm-vnae&ms=au&mv=u&mvi=2&pl=21&susc=gvp&acao=yes&ctier=L&mime=video/mp4&vprv=1&dur=6.106&lmt=1669501210093238&mt=1670039278&txp=5432434&sparams=expire,ei,ip,id,itag,source,requiressl,susc,acao,ctier,mime,vprv,dur,lmt&sig=AOq0QJ8wRQIhANmkOj4e_qY6xaI3Tkef2Eno7H2_IPuErQvrUUh3DDQfAiBeEh9Ai1oOqss0EBNUXmwJTOZo1mNu6DrzM-41lg0oKg==&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgeONJLiJQo8UQxdo_LOa8PVI2NrYn-snJE-GmpEM1mMUCIQCVb8UdnxG9cvir9anemHehlNFtLEqt6gNPp5QOVL3uIA==&cpn=0-nP98gzj_S-HeHl HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Last-Modified: Sat, 26 Nov 2022 22:20:10 GMT
Content-Type: video/mp4
Date: Sat, 03 Dec 2022 04:02:36 GMT
Expires: Sat, 03 Dec 2022 04:02:36 GMT
Cache-Control: private, max-age=28499
Content-Range: bytes 0-661250/661251
Accept-Ranges: bytes
Content-Length: 661251
Connection: close
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
csi.gstatic.com/csi?v=2&s=ima&puid=4~lb7escxn&c=1179425110350&slotId=589712555175&qqid=CMjevbHI3PsCFQTysgodIOID0g&gqid=WsqKY83cLNmoygWJh5OACQ&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=11&gpm_c=11&gpm_a=0&met.4=err.lb7escxm~ghmsh_s.lb7esd7w~ghmsh_s.lb7esd7z&icc=1&icrh=0&icri=0&icrs=1&icru=0&icp=GoogleWhyThisAd&icdi=18x18&vmfc=2&hghme=1&ghmsh_mi=22%2C18%2C&ghmsh_vi=134%2C136%2C243%2C247%2C&ghmsh_ai=139%2C140%2C250%2C&ghmsh_gvt=0&ams=1&vs=1280x720&vc=avc1.64001F&mt=video%2Fmp4&vsrc=youtube&bit=22&cpn=3FNUEIn7ivNx-A-7
142.250.4.120204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=4~lb7escxn&c=1179425110350&slotId=589712555175&qqid=CMjevbHI3PsCFQTysgodIOID0g&gqid=WsqKY83cLNmoygWJh5OACQ&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=11&gpm_c=11&gpm_a=0&met.4=err.lb7escxm~ghmsh_s.lb7esd7w~ghmsh_s.lb7esd7z&icc=1&icrh=0&icri=0&icrs=1&icru=0&icp=GoogleWhyThisAd&icdi=18x18&vmfc=2&hghme=1&ghmsh_mi=22%2C18%2C&ghmsh_vi=134%2C136%2C243%2C247%2C&ghmsh_ai=139%2C140%2C250%2C&ghmsh_gvt=0&ams=1&vs=1280x720&vc=avc1.64001F&mt=video%2Fmp4&vsrc=youtube&bit=22&cpn=3FNUEIn7ivNx-A-7
IP 142.250.4.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=4~lb7escxn&c=1179425110350&slotId=589712555175&qqid=CMjevbHI3PsCFQTysgodIOID0g&gqid=WsqKY83cLNmoygWJh5OACQ&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=11&gpm_c=11&gpm_a=0&met.4=err.lb7escxm~ghmsh_s.lb7esd7w~ghmsh_s.lb7esd7z&icc=1&icrh=0&icri=0&icrs=1&icru=0&icp=GoogleWhyThisAd&icdi=18x18&vmfc=2&hghme=1&ghmsh_mi=22%2C18%2C&ghmsh_vi=134%2C136%2C243%2C247%2C&ghmsh_ai=139%2C140%2C250%2C&ghmsh_gvt=0&ams=1&vs=1280x720&vc=avc1.64001F&mt=video%2Fmp4&vsrc=youtube&bit=22&cpn=3FNUEIn7ivNx-A-7 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sat, 03 Dec 2022 04:02:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&top=1&puid=2~lb7esdci&c=1179425110350&slotId=589712555175&met.4=hvd_lc.lb7esdch~hvd_ad.lb7esdch~hvd_mad.lb7esdch~hvd_admu.lb7esdch~hvd_src.lb7esdch
142.250.4.120204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=ima&top=1&puid=2~lb7esdci&c=1179425110350&slotId=589712555175&met.4=hvd_lc.lb7esdch~hvd_ad.lb7esdch~hvd_mad.lb7esdch~hvd_admu.lb7esdch~hvd_src.lb7esdch
IP 142.250.4.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&top=1&puid=2~lb7esdci&c=1179425110350&slotId=589712555175&met.4=hvd_lc.lb7esdch~hvd_ad.lb7esdch~hvd_mad.lb7esdch~hvd_admu.lb7esdch~hvd_src.lb7esdch HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sat, 03 Dec 2022 04:02:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/83de75e735dabeddf4e705de6f0a2f41.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.35200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/83de75e735dabeddf4e705de6f0a2f41.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.35:0
File type C++ source, ASCII text, with very long lines (1833)
Hash bf18e06fe996d8e32931955996f6f9f9
83b00b5650cf50deb2c305d4382f06a42b63fb32
a9b7ee4074a79df10d3f9eb1d4dffd8f08d1c46883cca461ef023c00b7c71f88
GET /mysidia/83de75e735dabeddf4e705de6f0a2f41.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 14157
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 15:24:06 GMT
expires: Thu, 02 Mar 2023 15:24:06 GMT
cache-control: public, max-age=7776000
last-modified: Wed, 30 Nov 2022 21:37:13 GMT
content-type: text/javascript
age: 45510
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=158497
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=158497
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?kdntuid=1&p=158497 HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=60527
expires: Sat, 03 Dec 2022 20:51:23 GMT
date: Sat, 03 Dec 2022 04:02:36 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Sat, 03 Dec 2022 04:02:36 GMT
Connection: keep-alive
Vary: Accept-Encoding
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1
178.250.2.146200 OK 22 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1
IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 91d4898f938e4920ac88f87453b33933
1bd4a04303c2501101656075ad8304e1a84eb91e
93ecc6762eafd376cbe2fd18250fa9f12c90f9a86b481430ef29ec40716d8f35
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://www.sunstar.com.ph
server-processing-duration-in-ticks: 515520
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49fea74a471d9b45d94402298988d827
11dbe272c75ad8dda9fe66062f761ad0a978c350
ddcf2de56e0fa45e50b45bb021a7b212ddf1ba5a108a849df04ad109809913bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4996
x-amzn-requestid: ac93701b-5591-447b-abcd-6dd7c8236d63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1EmIoAMFUyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-62984f247ab5233275eefc7f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8_misG2sRVJlrCdLEQhPoQdkNAxTYwdSqNwAoqDzwEZuC787t9US0A==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:47 GMT
age: 23089
etag: "11dbe272c75ad8dda9fe66062f761ad0a978c350"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvf3pCfpIvKHjESBHbzDRkvzosG3xTq6m39BqTPORuhkdpdhWtqAVX4sDfhHHn7t416BdwnwIAkxGfWVgfgNZKXb6gZ5dEneMSRslBS4IpkFSprthoqfjsGHdpCqkK4hfuLa7XeQKKTJ1yp13U5a7mkQXkFhf9KEcYnFqG2ydqAfQsRwSIBRw5pE14MgN9OvXEB6LMwtateTlk4CROMESg-3xpoX2SMdr0MMzAq5vlLI8r2w81jL8Usl6FpuCaY6jSwdgK63bWW9rYpzaEP2gHmtGHC2yOqy2RcUczGSZUQXTGaDZ3VyREgIJzNE67G7cdrpelbAv1KffOjjJ-Bn8cILsfCOkrsI6kQsjm2bvtcK2p7He8LR3F3o-b8ADnoHa3I6_Y0Xb7ciuvl3ozdKaBTEWwetVJdKqndVX1Oag8tkq37mLskndT5ls5lCvk0T1plzaVkRsOSomeLYRXw8leFfAgba8GA5uQwwtgq8dEBR4LFuSM3T9NdoQJav1UyBaO2cVKf4NZ1tyNCy19qz-qoVumzV_d-4_wgtp60xxegsX9O7UIQqHCz31kZcmTAt80-k9hMCpRVw2qC61O1am3cDWlq-KmaS6-Hew25GfB0V2ZT-zrfcToT9YcsHObD4k92nRThnfnRUf1ruLgxW4awlQKo0ViT3tMEOcOkLV72nF528ATK9LqEVVhImL2aw08j0Pi__upXbaE0OV5vQ19zlf2epSh8iYGfb5hx5A59uHT0oZMCBKNolc1RDarIpLvOc_GUFvkRwSTIxkBvF9QHCrD2PRUoy8FjKzYFrwU-if-e7ct4p-amqXKbwzS1IQg4Otlrf7bmDMWfLa6SpTpC3aR8_cxrWbd3Dzm9BEdd44O3pw4F9Ez2ngGKpri9pEaywAfIUF37UguAaHHSXn64xH2bcEA5H77CVXCFPPM65QTTIwQshpTpys6GnRKbffWEYXcVHuXwMqbW5pJe4hGquuYtBVo5wUdCjG6NFpN9hId7dMAP55cxPD4wKHxGsfMr7TvPfzVx63a8bFlG72s3ZlOM9ojOQ4hO7Xf8aaGk2meoO3Q6HzQ9oH_BXK5bfufZCx7l-iiRkCG4Vry1MQd_Ea0WKNS6zwggN6HwKJaNQflawzomGmKblTOv_ct2JPGu0JeF89DOoolUfTZhVS658MEWMuIhZLmlXACmOOY9WPPWYhThO1liv13dwgG1dtZ3IGhzvpDK790EGm4QuEjJb9WuYE2tPpwPIuJxHcfCA6uE56gwJU1g-w-ZYu_ljau6QAZUin4U&sai=AMfl-YTVWOz4-mOGB7WaDCyr5l0mVfeY91bYoKjpaRDCMXd6xA5IkySJqm-PCCsQ6kgMpqxEBPPjP8aVVF-z9DHYt14XlTmA3T9BMQJexTaljUb64Iyz1RTY3Rad1q52YHpooacBP_AVw2ezIvp1oYIipj-EgGILteWBBYFeMc0UW_3nvzGOa6nWX9MiOUkoJ4cFFxttGqpUbZ4UAKYVOxyDi7zgX4fMu5NeTWati39j7wXSnC_QL7ujWaaTWJhafCkqBFtR5tQQ4-mgLiyqvCof2KJob_O2-_JzSH7m_Fgqe2VBkKiiIbg&sig=Cg0ArKJSzN09DmBAMA_PEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=634&vt=11&dtpt=542&dett=3&cstd=86&cisv=r20221110.73668&arae=0&ftch=1&adurl=
142.250.74.2200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvf3pCfpIvKHjESBHbzDRkvzosG3xTq6m39BqTPORuhkdpdhWtqAVX4sDfhHHn7t416BdwnwIAkxGfWVgfgNZKXb6gZ5dEneMSRslBS4IpkFSprthoqfjsGHdpCqkK4hfuLa7XeQKKTJ1yp13U5a7mkQXkFhf9KEcYnFqG2ydqAfQsRwSIBRw5pE14MgN9OvXEB6LMwtateTlk4CROMESg-3xpoX2SMdr0MMzAq5vlLI8r2w81jL8Usl6FpuCaY6jSwdgK63bWW9rYpzaEP2gHmtGHC2yOqy2RcUczGSZUQXTGaDZ3VyREgIJzNE67G7cdrpelbAv1KffOjjJ-Bn8cILsfCOkrsI6kQsjm2bvtcK2p7He8LR3F3o-b8ADnoHa3I6_Y0Xb7ciuvl3ozdKaBTEWwetVJdKqndVX1Oag8tkq37mLskndT5ls5lCvk0T1plzaVkRsOSomeLYRXw8leFfAgba8GA5uQwwtgq8dEBR4LFuSM3T9NdoQJav1UyBaO2cVKf4NZ1tyNCy19qz-qoVumzV_d-4_wgtp60xxegsX9O7UIQqHCz31kZcmTAt80-k9hMCpRVw2qC61O1am3cDWlq-KmaS6-Hew25GfB0V2ZT-zrfcToT9YcsHObD4k92nRThnfnRUf1ruLgxW4awlQKo0ViT3tMEOcOkLV72nF528ATK9LqEVVhImL2aw08j0Pi__upXbaE0OV5vQ19zlf2epSh8iYGfb5hx5A59uHT0oZMCBKNolc1RDarIpLvOc_GUFvkRwSTIxkBvF9QHCrD2PRUoy8FjKzYFrwU-if-e7ct4p-amqXKbwzS1IQg4Otlrf7bmDMWfLa6SpTpC3aR8_cxrWbd3Dzm9BEdd44O3pw4F9Ez2ngGKpri9pEaywAfIUF37UguAaHHSXn64xH2bcEA5H77CVXCFPPM65QTTIwQshpTpys6GnRKbffWEYXcVHuXwMqbW5pJe4hGquuYtBVo5wUdCjG6NFpN9hId7dMAP55cxPD4wKHxGsfMr7TvPfzVx63a8bFlG72s3ZlOM9ojOQ4hO7Xf8aaGk2meoO3Q6HzQ9oH_BXK5bfufZCx7l-iiRkCG4Vry1MQd_Ea0WKNS6zwggN6HwKJaNQflawzomGmKblTOv_ct2JPGu0JeF89DOoolUfTZhVS658MEWMuIhZLmlXACmOOY9WPPWYhThO1liv13dwgG1dtZ3IGhzvpDK790EGm4QuEjJb9WuYE2tPpwPIuJxHcfCA6uE56gwJU1g-w-ZYu_ljau6QAZUin4U&sai=AMfl-YTVWOz4-mOGB7WaDCyr5l0mVfeY91bYoKjpaRDCMXd6xA5IkySJqm-PCCsQ6kgMpqxEBPPjP8aVVF-z9DHYt14XlTmA3T9BMQJexTaljUb64Iyz1RTY3Rad1q52YHpooacBP_AVw2ezIvp1oYIipj-EgGILteWBBYFeMc0UW_3nvzGOa6nWX9MiOUkoJ4cFFxttGqpUbZ4UAKYVOxyDi7zgX4fMu5NeTWati39j7wXSnC_QL7ujWaaTWJhafCkqBFtR5tQQ4-mgLiyqvCof2KJob_O2-_JzSH7m_Fgqe2VBkKiiIbg&sig=Cg0ArKJSzN09DmBAMA_PEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=634&vt=11&dtpt=542&dett=3&cstd=86&cisv=r20221110.73668&arae=0&ftch=1&adurl=
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsvf3pCfpIvKHjESBHbzDRkvzosG3xTq6m39BqTPORuhkdpdhWtqAVX4sDfhHHn7t416BdwnwIAkxGfWVgfgNZKXb6gZ5dEneMSRslBS4IpkFSprthoqfjsGHdpCqkK4hfuLa7XeQKKTJ1yp13U5a7mkQXkFhf9KEcYnFqG2ydqAfQsRwSIBRw5pE14MgN9OvXEB6LMwtateTlk4CROMESg-3xpoX2SMdr0MMzAq5vlLI8r2w81jL8Usl6FpuCaY6jSwdgK63bWW9rYpzaEP2gHmtGHC2yOqy2RcUczGSZUQXTGaDZ3VyREgIJzNE67G7cdrpelbAv1KffOjjJ-Bn8cILsfCOkrsI6kQsjm2bvtcK2p7He8LR3F3o-b8ADnoHa3I6_Y0Xb7ciuvl3ozdKaBTEWwetVJdKqndVX1Oag8tkq37mLskndT5ls5lCvk0T1plzaVkRsOSomeLYRXw8leFfAgba8GA5uQwwtgq8dEBR4LFuSM3T9NdoQJav1UyBaO2cVKf4NZ1tyNCy19qz-qoVumzV_d-4_wgtp60xxegsX9O7UIQqHCz31kZcmTAt80-k9hMCpRVw2qC61O1am3cDWlq-KmaS6-Hew25GfB0V2ZT-zrfcToT9YcsHObD4k92nRThnfnRUf1ruLgxW4awlQKo0ViT3tMEOcOkLV72nF528ATK9LqEVVhImL2aw08j0Pi__upXbaE0OV5vQ19zlf2epSh8iYGfb5hx5A59uHT0oZMCBKNolc1RDarIpLvOc_GUFvkRwSTIxkBvF9QHCrD2PRUoy8FjKzYFrwU-if-e7ct4p-amqXKbwzS1IQg4Otlrf7bmDMWfLa6SpTpC3aR8_cxrWbd3Dzm9BEdd44O3pw4F9Ez2ngGKpri9pEaywAfIUF37UguAaHHSXn64xH2bcEA5H77CVXCFPPM65QTTIwQshpTpys6GnRKbffWEYXcVHuXwMqbW5pJe4hGquuYtBVo5wUdCjG6NFpN9hId7dMAP55cxPD4wKHxGsfMr7TvPfzVx63a8bFlG72s3ZlOM9ojOQ4hO7Xf8aaGk2meoO3Q6HzQ9oH_BXK5bfufZCx7l-iiRkCG4Vry1MQd_Ea0WKNS6zwggN6HwKJaNQflawzomGmKblTOv_ct2JPGu0JeF89DOoolUfTZhVS658MEWMuIhZLmlXACmOOY9WPPWYhThO1liv13dwgG1dtZ3IGhzvpDK790EGm4QuEjJb9WuYE2tPpwPIuJxHcfCA6uE56gwJU1g-w-ZYu_ljau6QAZUin4U&sai=AMfl-YTVWOz4-mOGB7WaDCyr5l0mVfeY91bYoKjpaRDCMXd6xA5IkySJqm-PCCsQ6kgMpqxEBPPjP8aVVF-z9DHYt14XlTmA3T9BMQJexTaljUb64Iyz1RTY3Rad1q52YHpooacBP_AVw2ezIvp1oYIipj-EgGILteWBBYFeMc0UW_3nvzGOa6nWX9MiOUkoJ4cFFxttGqpUbZ4UAKYVOxyDi7zgX4fMu5NeTWati39j7wXSnC_QL7ujWaaTWJhafCkqBFtR5tQQ4-mgLiyqvCof2KJob_O2-_JzSH7m_Fgqe2VBkKiiIbg&sig=Cg0ArKJSzN09DmBAMA_PEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=634&vt=11&dtpt=542&dett=3&cstd=86&cisv=r20221110.73668&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Sat, 03 Dec 2022 04:02:36 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 03-Dec-2022 04:17:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sat, 03 Dec 2022 04:02:36 GMT
X-Firefox-Spdy: h2
ib.adnxs.com/getuidnb?https://ads.playground.xyz/usersync?partner=appnexus&uid=$UID
37.252.171.85200 OK 43 B URL HTTP/1.1 ib.adnxs.com/getuidnb?https://ads.playground.xyz/usersync?partner=appnexus&uid=$UID
IP 37.252.171.85:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /getuidnb?https://ads.playground.xyz/usersync?partner=appnexus&uid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 03 Dec 2022 04:02:36 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: f36fd3bd-97e0-4484-ad5d-6294673ea4ea
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash c79423c9c391ee093a981860ecf38a44
cb4475eb824357a1fc9d29c7d46e40eeb2d36a91
6ecab5315d545e49e8aa1090b08a08c33f24a729556556d36c51665c491c5e43
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 332
Cache-Control: max-age=106446
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:02:36 GMT
Etag: "6389c5de-116"
Expires: Sun, 04 Dec 2022 09:36:42 GMT
Last-Modified: Fri, 02 Dec 2022 09:31:10 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1
178.250.2.146200 OK 405 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1
IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with very long lines (489), with no line terminators
Hash dc8089da468fcd33efc3b56bce3291fa
dd91b973a219bf6b72dd41e17b9967c6bb34cab0
46c0c4d839f6b19347230e3336c6c4052498fe9c83ab99f019b49c78b8692ed5
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.sunstar.com.ph
server-processing-duration-in-ticks: 911088
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Dec 2022 04:02:36 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
acdn.adnxs.com/dmp/async_usersync.html
23.38.200.189200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 23.38.200.189:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: "623de86a-cf34"
Server: nginx/1.18.0 (Ubuntu)
Access-Control-Allow-Origin: *
Content-Type: text/html
Content-Encoding: gzip
Content-Length: 17053
Cache-Control: max-age=86402
Expires: Sun, 04 Dec 2022 04:02:38 GMT
Date: Sat, 03 Dec 2022 04:02:36 GMT
Connection: keep-alive
Vary: Accept-Encoding
p.trvdp.com/pixel.gif?e=MphfADQ0Ik/hT9WF4gFg2bjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOysVuf1cz79U5FcH0zbV46d030wcoXjOpdJe1AvFvpo2FF8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=58720780
52.205.152.252204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=MphfADQ0Ik/hT9WF4gFg2bjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOysVuf1cz79U5FcH0zbV46d030wcoXjOpdJe1AvFvpo2FF8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=58720780
IP 52.205.152.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=MphfADQ0Ik/hT9WF4gFg2bjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOysVuf1cz79U5FcH0zbV46d030wcoXjOpdJe1AvFvpo2FF8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=58720780 HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:36 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU3VM41V&prvid=2034%2C2033%2C2031%2C2030%2C233%2C2028%2C2027%2C159%2C236%2C2025%2C237%2C117%2C359%2C97%2C55%2C99%2C3012%2C3010%2C244%2C201%2C2039%2C3007%2C246%2C4%2C203%2C326%2C9%2C208%2C2055%2C3020%2C173%2C251%2C175%2C178%2C3018%2C3017%2C214%2C3016%2C337%2C338%2C70%2C77%2C2022%2C182%2C141%2C222%2C10000%2C228%2C80%2C108%2C229%2C109%2C307&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1
23.38.200.22200 OK 8.3 kB URL HTTP/2 contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU3VM41V&prvid=2034%2C2033%2C2031%2C2030%2C233%2C2028%2C2027%2C159%2C236%2C2025%2C237%2C117%2C359%2C97%2C55%2C99%2C3012%2C3010%2C244%2C201%2C2039%2C3007%2C246%2C4%2C203%2C326%2C9%2C208%2C2055%2C3020%2C173%2C251%2C175%2C178%2C3018%2C3017%2C214%2C3016%2C337%2C338%2C70%2C77%2C2022%2C182%2C141%2C222%2C10000%2C228%2C80%2C108%2C229%2C109%2C307&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1
IP 23.38.200.22:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (18979)
Hash 95f0511e4404a006b5ce6e68da428a2c
181a617a7c3895562e8b52493f0809be150e7c9c
7e8f106a8f8b851864b33eacd55078f735e4ff64ec62155ea818e95166202593
GET /checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU3VM41V&prvid=2034%2C2033%2C2031%2C2030%2C233%2C2028%2C2027%2C159%2C236%2C2025%2C237%2C117%2C359%2C97%2C55%2C99%2C3012%2C3010%2C244%2C201%2C2039%2C3007%2C246%2C4%2C203%2C326%2C9%2C208%2C2055%2C3020%2C173%2C251%2C175%2C178%2C3018%2C3017%2C214%2C3016%2C337%2C338%2C70%2C77%2C2022%2C182%2C141%2C222%2C10000%2C228%2C80%2C108%2C229%2C109%2C307&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1 HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-type: text/html; charset=UTF-8
x-mnet-hl2: E
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Mon, 05 Dec 2022 04:02:36 GMT
date: Sat, 03 Dec 2022 04:02:36 GMT
content-length: 8267
X-Firefox-Spdy: h2
p.trvdp.com/pixel.gif?e=IxiJB5spKBXmozAY5PuGmLjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOys3k3VPO9ME0rcr3YneCwCwsDNmQrmtWZfAXm1+5lWClV8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=13785091
52.205.152.252204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=IxiJB5spKBXmozAY5PuGmLjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOys3k3VPO9ME0rcr3YneCwCwsDNmQrmtWZfAXm1+5lWClV8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=13785091
IP 52.205.152.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=IxiJB5spKBXmozAY5PuGmLjfBbP4SMp5s0tpLa4NKc+PFn7fiI2vspO1yReoPd0ogiL7Xy1q+mHNfvUiFciMi2i+K46eBbJJ0IjQKASr7y2hkiAD0zKl6ltBZ5ray6By+zun2cM4nbBf8MqSspPoXVguWszkDLSAaIvWWoeMpw5zTWsXRIbtzdg2hMA0NkIZPs+V+M9tqYr4tQTyLdAew2AV6EDx8/i7C6wOKh7QLh8twyrSin33+csC1rQOnOys3k3VPO9ME0rcr3YneCwCwsDNmQrmtWZfAXm1+5lWClV8aVSpa6YDRpPredCauVCcNd49rcGxx+nHM/eED1tHyeWpWXpSorok3JnMEANOFGY=&cb=13785091 HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 04:02:36 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&puid=5~lb7esd8e&c=1179425110350&slotId=589712555175&qqid=CPTx-bHI3PsCFUz_sgodvNwITQ&gqid=W8qKY-vUK9q-ygWJjbeIBQ&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=11&gpm_c=11&gpm_a=0&met.4=ghmsh_s.lb7esd8i~vss_tr.2vt~err.lb7esdl7~ghmsh_s.lb7esdyq~ghmsh_s.lb7esdyu&aec=400&vs=960x720&cpn=0-nP98gzj_S-HeHl
142.250.4.120204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=5~lb7esd8e&c=1179425110350&slotId=589712555175&qqid=CPTx-bHI3PsCFUz_sgodvNwITQ&gqid=W8qKY-vUK9q-ygWJjbeIBQ&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=11&gpm_c=11&gpm_a=0&met.4=ghmsh_s.lb7esd8i~vss_tr.2vt~err.lb7esdl7~ghmsh_s.lb7esdyq~ghmsh_s.lb7esdyu&aec=400&vs=960x720&cpn=0-nP98gzj_S-HeHl
IP 142.250.4.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=5~lb7esd8e&c=1179425110350&slotId=589712555175&qqid=CPTx-bHI3PsCFUz_sgodvNwITQ&gqid=W8qKY-vUK9q-ygWJjbeIBQ&fb=ima_html5-lima&sdkv=h.3.547.0&ppt=truvid&ppv=1.0.0&mrd=4&aab=1&itv=1&gpm_i=11&gpm_c=11&gpm_a=0&met.4=ghmsh_s.lb7esd8i~vss_tr.2vt~err.lb7esdl7~ghmsh_s.lb7esdyq~ghmsh_s.lb7esdyu&aec=400&vs=960x720&cpn=0-nP98gzj_S-HeHl HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sat, 03 Dec 2022 04:02:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
198.47.127.19200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP 198.47.127.19:0
File type ASCII text, with no line terminators
Hash 94e22b16274c21276cbbdc96675648b1
24f466b04a4abc992ba893f1e00988eaa4f351bd
c33d67228073889174539fd40acc4e5a065d7fe19775e40116a3fcd9ebb7f35f
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Thu, 2 Mar 2023 19:33:38 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Sat, 03 Dec 2022 04:02:36 GMT
content-length: 60
X-Firefox-Spdy: h2
www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
192.124.249.104200 OK 0 B URL HTTP/2 www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
IP 192.124.249.104:0
Analyzer Verdict Alert openphish Mobile Legends
fortinet Phishing
GET /article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/ HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: text/html; charset=UTF-8
x-sucuri-id: 19004
set-cookie: device=web; expires=Tue, 30-Nov-2032 04:02:28 GMT; Max-Age=315360000; path=/
USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; expires=Mon, 02-Jan-2023 04:02:28 GMT; Max-Age=2592000; path=/
p_stats_monthly=1803509; expires=Mon, 02-Jan-2023 04:02:28 GMT; Max-Age=2592000; path=/
cache-control: no-cache, private
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 1396f0307ab4835adf6e4163507d4c8a.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: BsAjcJ0LBt_eqO1qdu8oAYHxoWP3s2pvjNaDNG-bolzrKitfRqakLA==
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
js-sec.indexww.com/um/ixmatch.html
104.18.36.94200 OK 0 B URL HTTP/2 js-sec.indexww.com/um/ixmatch.html
IP 104.18.36.94:0
GET /um/ixmatch.html HTTP/1.1
Host: js-sec.indexww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:36 GMT
content-type: text/html; charset=UTF-8
last-modified: Mon, 25 Jul 2022 19:18:26 GMT
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 841
expires: Sat, 03 Dec 2022 08:02:36 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 773968646cacb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C700
IP 142.250.74.106:0
GET /css?family=Roboto%3A300%2C400%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 04:02:31 GMT
date: Sat, 03 Dec 2022 04:02:31 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.ids.js
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/publishertag.ids.js
IP 178.250.2.130:0
GET /js/ld/publishertag.ids.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: text/javascript
last-modified: Mon, 24 Oct 2022 11:21:19 GMT
etag: W/"6356752f-9c1f"
expires: Sun, 04 Dec 2022 04:02:32 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.2.130:0
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Tue, 28 Nov 2023 04:02:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=jWfpEWwkPThjlXoJ0MS37ldKod-M3IGVvv_Xkp_f_KW8JjmFRQH6BelBZCKqz21U4Dgegk2lL9_ycQBXzdYwjUweN8JSRbXrEVjSAnZjn4j1hSKUpo2YzFxtTG7xeePc_JNtsCkHpnPb-KV7G2JCEGy9nN2NpAdAALLIcA8OU6Xo1ls6_I7dpClj1qGprzESdggLrGRdnrRy4IqAxfsy4014rw5j2qQ-eqERqRGIWzmj49BY3CkTa_IDm20LFNAqVS0yBZPKtCSyPDP98EYYmY6WkybwNjq6tBxTpgE9HilZVCToZuzKoSe8kA8ISagiOGftTK6WIXX0bKaRWordChIkXvCOxdNd_vKbgq9P4tDbKcfNicKrHDiMr3aXm_iQQfYL1tSjsEXoXYZCj2a_T99MfdwGl5F5NpDOvWHLWIZpjdG7KfSg5-jzay_0UQD_Phzm-g
178.250.2.148200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=jWfpEWwkPThjlXoJ0MS37ldKod-M3IGVvv_Xkp_f_KW8JjmFRQH6BelBZCKqz21U4Dgegk2lL9_ycQBXzdYwjUweN8JSRbXrEVjSAnZjn4j1hSKUpo2YzFxtTG7xeePc_JNtsCkHpnPb-KV7G2JCEGy9nN2NpAdAALLIcA8OU6Xo1ls6_I7dpClj1qGprzESdggLrGRdnrRy4IqAxfsy4014rw5j2qQ-eqERqRGIWzmj49BY3CkTa_IDm20LFNAqVS0yBZPKtCSyPDP98EYYmY6WkybwNjq6tBxTpgE9HilZVCToZuzKoSe8kA8ISagiOGftTK6WIXX0bKaRWordChIkXvCOxdNd_vKbgq9P4tDbKcfNicKrHDiMr3aXm_iQQfYL1tSjsEXoXYZCj2a_T99MfdwGl5F5NpDOvWHLWIZpjdG7KfSg5-jzay_0UQD_Phzm-g
IP 178.250.2.148:0
GET /delivery/lg.php?cppv=3&cpp=jWfpEWwkPThjlXoJ0MS37ldKod-M3IGVvv_Xkp_f_KW8JjmFRQH6BelBZCKqz21U4Dgegk2lL9_ycQBXzdYwjUweN8JSRbXrEVjSAnZjn4j1hSKUpo2YzFxtTG7xeePc_JNtsCkHpnPb-KV7G2JCEGy9nN2NpAdAALLIcA8OU6Xo1ls6_I7dpClj1qGprzESdggLrGRdnrRy4IqAxfsy4014rw5j2qQ-eqERqRGIWzmj49BY3CkTa_IDm20LFNAqVS0yBZPKtCSyPDP98EYYmY6WkybwNjq6tBxTpgE9HilZVCToZuzKoSe8kA8ISagiOGftTK6WIXX0bKaRWordChIkXvCOxdNd_vKbgq9P4tDbKcfNicKrHDiMr3aXm_iQQfYL1tSjsEXoXYZCj2a_T99MfdwGl5F5NpDOvWHLWIZpjdG7KfSg5-jzay_0UQD_Phzm-g HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3062301
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/11/30/398421.jpg&w=100&q=100&f=webp&t=2
172.67.74.221200 OK 0 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/11/30/398421.jpg&w=100&q=100&f=webp&t=2
IP 172.67.74.221:0
GET /?url=https://sunstar.com.ph/uploads/images/2022/11/30/398421.jpg&w=100&q=100&f=webp&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: image/webp
x-powered-by: PHP/7.4.14
x-fastcgi-cache: MISS
cache-control: max-age=31536000
cf-cache-status: MISS
last-modified: Sat, 03 Dec 2022 04:02:34 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YRwEI8DtgVLQDGY9Fpze8x8kZ31kq2SV%2Fo0b2MwT7uULvufdkzrVJnipzk4x02oSodb87vW1GtA2ZIMfaHQw80Ex22eE9tgJuYJYcAC3e8%2FWsjwZgjxKgycgoKiN5zHB87PjxY%2F6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773968534c620b4d-OSL
X-Firefox-Spdy: h2
www.sunstar.com.ph/ajax/article_count/1803509
192.124.249.104200 OK 0 B URL HTTP/2 www.sunstar.com.ph/ajax/article_count/1803509
IP 192.124.249.104:0
GET /ajax/article_count/1803509 HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.1.613905426.1670040147
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:29 GMT
content-type: text/html; charset=UTF-8
x-sucuri-id: 19004
cache-control: no-cache, private
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 1396f0307ab4835adf6e4163507d4c8a.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: sPLU1XXyawTKm4VsqCBtYSu3dogXwidqfWC2obgy8ApQICRAYRjApQ==
x-sucuri-cache: BYPASS
X-Firefox-Spdy: h2
www.sunstar.com.ph/js/lazyload.min.js?_=1670040146591
192.124.249.104200 OK 0 B URL HTTP/2 www.sunstar.com.ph/js/lazyload.min.js?_=1670040146591
IP 192.124.249.104:0
GET /js/lazyload.min.js?_=1670040146591 HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.3.613905426.1670040147; _gid=GA1.3.275127562.1670040147; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=121aff85-e517-495c-a1f8-5a53bd775b42; __gads=ID=ddd63c0f49d2888f:T=1670040151:S=ALNI_Mbqo__y4eB3efM87TWZSq6tgMC9kQ; __gpi=UID=00000b8c24010ec0:T=1670040151:RT=1670040151:S=ALNI_MYnA_vGWd3jBZ5cMyolICFaX6WaIw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-12-03T04%3A02%3A31%22%7D; panoramaId_expiry=1670040152400
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: application/javascript; charset=utf-8
x-sucuri-id: 19004
last-modified: Thu, 16 Dec 2021 13:02:21 GMT
etag: W/"61bb38dd-1176"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1396f0307ab4835adf6e4163507d4c8a.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: 0E3PihhEauFMQLIlJsR06cYNBAfd4WQUEuSUYDT7bKZQU15BdkQTyw==
age: 1738169
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/11/30/398418.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 0 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/11/30/398418.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
GET /?url=https://sunstar.com.ph/uploads/images/2022/11/30/398418.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:28 GMT
content-type: image/jpeg
x-powered-by: PHP/7.4.14
x-fastcgi-cache: MISS
cache-control: max-age=31536000
cf-cache-status: MISS
last-modified: Sat, 03 Dec 2022 04:02:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MyW0r9w6uJXhJ%2F4Hz08cmmQ7whB989h%2B%2FJj1fJt6bvodPJGbVRG3dlMVeANyakKfn%2BcaCTY9c0mSNyqfmTa6YOTR9k0k4o2eXj6S3DfhOzIZVWau%2BcuuctWielv7nNAWt4wysqo2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773968305c490b4d-OSL
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17692&site_id=396196&zone_id=2211426%3B2211428%3B2395606%3B2395582%3B2669264%3B2669366%3B2669454&size_id=15%3B15%3B15%3B15%3B15%3B2%3B9&alt_size_ids=2%2C16%2C221%3B2%2C16%2C198%3B2%2C16%2C198%3B2%2C16%2C198%3B16%3B55%3B8%2C10&rp_schain=1.0,1!anymanager.io,3181,1,,,&rf=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&tg_i.pbadslot=ats-insert_ads-2%3Bats-insert_ads-3%3Bats-insert_ads-6%3Bats-insert_ads-8%3Bats-insert_ads-14%3Bats-insert_ads-15%3Bats-insert_ads-16&tk_flint=pbjs_lite_v6.29.3&x_source.tid=e1775931-d690-4772-addd-e266da462f1b%3B0f3be09d-910a-4e9b-8666-864c8152de7d%3Bfea0e0f2-eb26-417a-8e73-1ec6768ade04%3B1ac934b5-c234-40d1-be9c-d340652553f8%3B7e6d99b6-22eb-451d-8308-c66784763510%3B5fc49ea4-4b9e-44bd-a483-7761d87f28b9%3B287ec915-fc3a-4c0a-b78a-8f5a2c934818&l_pb_bid_id=24ede535a65e6c18%3B2584dc995bfb30f8%3B26c5d2f0766a34f8%3B271684c7e89c54e%3B28145f5acb9a569%3B29006d6e21e49dc8%3B3089dc66e96ba1c&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right1_300x250%2F%2F336x280%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_top2_728x90%2F%2F970x90%2F%2F320x100%2F%2F320x50%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right2_sticky_120x600%2F%2F160x600%2F%2F300x600&slots=7&rand=0.06505814332951831
213.19.162.51200 OK 0 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17692&site_id=396196&zone_id=2211426%3B2211428%3B2395606%3B2395582%3B2669264%3B2669366%3B2669454&size_id=15%3B15%3B15%3B15%3B15%3B2%3B9&alt_size_ids=2%2C16%2C221%3B2%2C16%2C198%3B2%2C16%2C198%3B2%2C16%2C198%3B16%3B55%3B8%2C10&rp_schain=1.0,1!anymanager.io,3181,1,,,&rf=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&tg_i.pbadslot=ats-insert_ads-2%3Bats-insert_ads-3%3Bats-insert_ads-6%3Bats-insert_ads-8%3Bats-insert_ads-14%3Bats-insert_ads-15%3Bats-insert_ads-16&tk_flint=pbjs_lite_v6.29.3&x_source.tid=e1775931-d690-4772-addd-e266da462f1b%3B0f3be09d-910a-4e9b-8666-864c8152de7d%3Bfea0e0f2-eb26-417a-8e73-1ec6768ade04%3B1ac934b5-c234-40d1-be9c-d340652553f8%3B7e6d99b6-22eb-451d-8308-c66784763510%3B5fc49ea4-4b9e-44bd-a483-7761d87f28b9%3B287ec915-fc3a-4c0a-b78a-8f5a2c934818&l_pb_bid_id=24ede535a65e6c18%3B2584dc995bfb30f8%3B26c5d2f0766a34f8%3B271684c7e89c54e%3B28145f5acb9a569%3B29006d6e21e49dc8%3B3089dc66e96ba1c&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right1_300x250%2F%2F336x280%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_top2_728x90%2F%2F970x90%2F%2F320x100%2F%2F320x50%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right2_sticky_120x600%2F%2F160x600%2F%2F300x600&slots=7&rand=0.06505814332951831
IP 213.19.162.51:0
GET /a/api/fastlane.json?account_id=17692&site_id=396196&zone_id=2211426%3B2211428%3B2395606%3B2395582%3B2669264%3B2669366%3B2669454&size_id=15%3B15%3B15%3B15%3B15%3B2%3B9&alt_size_ids=2%2C16%2C221%3B2%2C16%2C198%3B2%2C16%2C198%3B2%2C16%2C198%3B16%3B55%3B8%2C10&rp_schain=1.0,1!anymanager.io,3181,1,,,&rf=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&tg_i.pbadslot=ats-insert_ads-2%3Bats-insert_ads-3%3Bats-insert_ads-6%3Bats-insert_ads-8%3Bats-insert_ads-14%3Bats-insert_ads-15%3Bats-insert_ads-16&tk_flint=pbjs_lite_v6.29.3&x_source.tid=e1775931-d690-4772-addd-e266da462f1b%3B0f3be09d-910a-4e9b-8666-864c8152de7d%3Bfea0e0f2-eb26-417a-8e73-1ec6768ade04%3B1ac934b5-c234-40d1-be9c-d340652553f8%3B7e6d99b6-22eb-451d-8308-c66784763510%3B5fc49ea4-4b9e-44bd-a483-7761d87f28b9%3B287ec915-fc3a-4c0a-b78a-8f5a2c934818&l_pb_bid_id=24ede535a65e6c18%3B2584dc995bfb30f8%3B26c5d2f0766a34f8%3B271684c7e89c54e%3B28145f5acb9a569%3B29006d6e21e49dc8%3B3089dc66e96ba1c&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right1_300x250%2F%2F336x280%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_top2_728x90%2F%2F970x90%2F%2F320x100%2F%2F320x50%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_pc_article_right2_sticky_120x600%2F%2F160x600%2F%2F300x600&slots=7&rand=0.06505814332951831 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sat, 03 Dec 2022 04:02:29 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LB7ESAOD-9-9CE5; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqUQlYjzcmNB+9DtVM30fCgJ0MVX6Cj0QdFRmY9agZEIS1dB8aBR4ayL1MIU4jowJLgcRgjl6EitaTfV3L7jjjb3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LB7ESAOD-9-9CE5; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqUQlYjzcmNB+9DtVM30fCgJ0MVX6Cj0QdFRmY9agZEIS1dB8aBR4ayL1MIU4jowJLgcRgjl6EitaTfV3L7jjjb3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LB7ESAOD-9-9CE5; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqUQlYjzcmNB+9DtVM30fCgJ0MVX6Cj0QdFRmY9agZEIS1dB8aBR4ayL1MIU4jowJLgcRgjl6EitaTfV3L7jjjb3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LB7ESAOD-9-9CE5; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqUQlYjzcmNB+9DtVM30fCgJ0MVX6Cj0QdFRmY9agZEIS1dB8aBR4ayL1MIU4jowJLgcRgjl6EitaTfV3L7jjjb3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LB7ESAOD-9-9CE5; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqUQlYjzcmNB+9DtVM30fCgJ0MVX6Cj0QdFRmY9agZEIS1dB8aBR4ayL1MIU4jowJLgcRgjl6EitaTfV3L7jjjb3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LB7ESAOD-9-9CE5; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqUQlYjzcmNB+9DtVM30fCgJ0MVX6Cj0QdFRmY9agZEIS1dB8aBR4ayL1MIU4jowJLgcRgjl6EitaTfV3L7jjjb3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LB7ESAOD-9-9CE5; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqUQlYjzcmNB+9DtVM30fCgJ0MVX6Cj0QdFRmY9agZEIS1dB8aBR4ayL1MIU4jowJLgcRgjl6EitaTfV3L7jjjb3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Sun, 03-Dec-2023 04:02:29 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/esp.js
104.22.52.86200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/esp.js
IP 104.22.52.86:0
GET /api/1.0/esp.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: aYvx1CvZoW+jC0SWV8GDk58b+1v6FtaZO2lvKc6PNlRdteqgFNQlnkyjvJj+sWDx4Mlyoy6w6aw=
x-amz-request-id: 6QPMVSX1631H1C3W
last-modified: Thu, 24 Nov 2022 12:48:29 GMT
etag: W/"91dadf6b1eddd8d91a5cc2e3be5ea8cf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 1337
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 773968471902b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lgn.php?cppv=3&cpp=GelKeB_MStMZWn1ArJt-Ina5lfjLdLvUmUwBJNFR3H6vwgVy-0Urex_v41ls1uvogUk_iX9hjp3r6bwf737bzEORLJu5urLRg11JIEGlTGWhgWRzggw0TltpBmro9sjZ-PFQVZDxCjN3V1koOseiPDUIuKGQse1CRbyhiBNZRF5ur6-5fLNcnAk92uslMFpxS4ADs37ZnUNQsmurYpDRMfV3IzTXRxB-swQRu4WR2bjkwS9OF05cPq9KVl7uLpIAgGUj0DEcN6l56qG6-u2L94M-0zI7E5Prxsrwiwf75xsWCEoBA3hEE1s6ybSQNgIJDqGnQREBbfbbVnf6wRIU5tBJAcuHgzc-L5a-0ee5EbvNhirRuis1wEJeNREJk5aDUVTlOaQ5pPMa3f0gISCLOMvvCSXdZHALhVaWBRH2C1uJb5_b_EHG8W3Xe0WP1GxvHV8XGVbZlX6H-3CfNtgWgEfzs3Y&z=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw==
178.250.2.148200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lgn.php?cppv=3&cpp=GelKeB_MStMZWn1ArJt-Ina5lfjLdLvUmUwBJNFR3H6vwgVy-0Urex_v41ls1uvogUk_iX9hjp3r6bwf737bzEORLJu5urLRg11JIEGlTGWhgWRzggw0TltpBmro9sjZ-PFQVZDxCjN3V1koOseiPDUIuKGQse1CRbyhiBNZRF5ur6-5fLNcnAk92uslMFpxS4ADs37ZnUNQsmurYpDRMfV3IzTXRxB-swQRu4WR2bjkwS9OF05cPq9KVl7uLpIAgGUj0DEcN6l56qG6-u2L94M-0zI7E5Prxsrwiwf75xsWCEoBA3hEE1s6ybSQNgIJDqGnQREBbfbbVnf6wRIU5tBJAcuHgzc-L5a-0ee5EbvNhirRuis1wEJeNREJk5aDUVTlOaQ5pPMa3f0gISCLOMvvCSXdZHALhVaWBRH2C1uJb5_b_EHG8W3Xe0WP1GxvHV8XGVbZlX6H-3CfNtgWgEfzs3Y&z=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw==
IP 178.250.2.148:0
GET /delivery/lgn.php?cppv=3&cpp=GelKeB_MStMZWn1ArJt-Ina5lfjLdLvUmUwBJNFR3H6vwgVy-0Urex_v41ls1uvogUk_iX9hjp3r6bwf737bzEORLJu5urLRg11JIEGlTGWhgWRzggw0TltpBmro9sjZ-PFQVZDxCjN3V1koOseiPDUIuKGQse1CRbyhiBNZRF5ur6-5fLNcnAk92uslMFpxS4ADs37ZnUNQsmurYpDRMfV3IzTXRxB-swQRu4WR2bjkwS9OF05cPq9KVl7uLpIAgGUj0DEcN6l56qG6-u2L94M-0zI7E5Prxsrwiwf75xsWCEoBA3hEE1s6ybSQNgIJDqGnQREBbfbbVnf6wRIU5tBJAcuHgzc-L5a-0ee5EbvNhirRuis1wEJeNREJk5aDUVTlOaQ5pPMa3f0gISCLOMvvCSXdZHALhVaWBRH2C1uJb5_b_EHG8W3Xe0WP1GxvHV8XGVbZlX6H-3CfNtgWgEfzs3Y&z=AAABhNYmZnnMwLRPLq0MJx6cLmClGr-Co-iYSw== HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://79d43abcde15b225af8f62cfc53b7ea2.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3168553
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.248200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.248:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:33 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 96120
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/12/03/399126.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 0 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/12/03/399126.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
GET /?url=https://sunstar.com.ph/uploads/images/2022/12/03/399126.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1616
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 10922
last-modified: Sat, 03 Dec 2022 01:00:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P26ASsaSJHl1VCB29ZFQviUW3ZIV6BPpbKvdlpX6e56e9UEHFryLs9Hpu6B%2FetPG0VGvsfV1MQBdZ0RjGEIg5zqivQSk%2FD9ZWBh7ULp7fGGWqy0MlDtHhtYzvfAmcIki8rBDZeEi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773968554d040b4d-OSL
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.2.130:0
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:32 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Tue, 28 Nov 2023 04:02:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/js/initial.min.js?v=0.33
192.124.249.104200 OK 0 B URL HTTP/2 www.sunstar.com.ph/theme_sunstar/js/initial.min.js?v=0.33
IP 192.124.249.104:0
GET /theme_sunstar/js/initial.min.js?v=0.33 HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.3.613905426.1670040147; _gid=GA1.3.275127562.1670040147; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=121aff85-e517-495c-a1f8-5a53bd775b42; __gads=ID=ddd63c0f49d2888f:T=1670040151:S=ALNI_Mbqo__y4eB3efM87TWZSq6tgMC9kQ; __gpi=UID=00000b8c24010ec0:T=1670040151:RT=1670040151:S=ALNI_MYnA_vGWd3jBZ5cMyolICFaX6WaIw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-12-03T04%3A02%3A31%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: application/javascript; charset=utf-8
x-sucuri-id: 19004
last-modified: Tue, 22 Feb 2022 07:32:51 GMT
etag: W/"621491a3-2d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6642832e0f3e501fb9fdc5f35d4351d8.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: GAmMIwvyxFhKbwdFjV4p2PnjkwDPQl8qWfdlkj3i8UUTdzvaszeL9A==
age: 1952795
x-sucuri-cache: HIT
X-Firefox-Spdy: h2
stg.truvidplayer.com/p.php?sid=1273&wid=5620&cb=5979.480784039472&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F
54.230.111.74200 OK 0 B URL HTTP/2 stg.truvidplayer.com/p.php?sid=1273&wid=5620&cb=5979.480784039472&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F
IP 54.230.111.74:0
GET /p.php?sid=1273&wid=5620&cb=5979.480784039472&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F HTTP/1.1
Host: stg.truvidplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Sat, 03 Dec 2022 04:02:30 GMT
server: nginx
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5qQob6iBcNSDamM9bYMKl1ogxk9vogIsa1X8n42W4y2yvzMz_xsz7w==
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/12/03/399146.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 0 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/12/03/399146.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
GET /?url=https://sunstar.com.ph/uploads/images/2022/12/03/399146.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1480
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3935
last-modified: Sat, 03 Dec 2022 02:56:59 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1OJztQ5mDml2J2D%2B6ZGuSYq4khy1kTl5QGKeNufU5qI8FwpTi2sYZJ3YCqO84FNE6dNyVCExBF8f4XV4N60i3DbnY4PmCiJDa4OVadOuYTn3xTadh5vIwSnu%2Be171Jm14FbaDzIg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773968552cf90b4d-OSL
X-Firefox-Spdy: h2
www.sunstar.com.ph/ajax/ajaxWidgets
192.124.249.104200 OK 0 B URL HTTP/2 www.sunstar.com.ph/ajax/ajaxWidgets
IP 192.124.249.104:0
POST /ajax/ajaxWidgets HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 4495
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1670040146.1.0.1670040146.0.0.0; _ga=GA1.3.613905426.1670040147; _gid=GA1.3.275127562.1670040147; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=121aff85-e517-495c-a1f8-5a53bd775b42; __gads=ID=ddd63c0f49d2888f:T=1670040151:S=ALNI_Mbqo__y4eB3efM87TWZSq6tgMC9kQ; __gpi=UID=00000b8c24010ec0:T=1670040151:RT=1670040151:S=ALNI_MYnA_vGWd3jBZ5cMyolICFaX6WaIw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-12-03T04%3A02%3A31%22%7D; panoramaId_expiry=1670040152400
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:02:34 GMT
content-type: application/json
x-sucuri-id: 19004
vary: Accept-Encoding
set-cookie: USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; expires=Mon, 02-Jan-2023 04:02:34 GMT; Max-Age=2592000; path=/
cache-control: no-cache, private
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 1396f0307ab4835adf6e4163507d4c8a.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: 5VLhEu4vJlbtfhJp0eh8_g-bVWF8wZ2scwBf1OA1Y6652KeB_Iz6kw==
X-Firefox-Spdy: h2
static.chartbeat.com/js/chartbeat.js
54.230.219.187200 OK 0 B URL HTTP/2 static.chartbeat.com/js/chartbeat.js
IP 54.230.219.187:0
GET /js/chartbeat.js HTTP/1.1
Host: static.chartbeat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
date: Sat, 03 Dec 2022 03:36:58 GMT
server: nginx
last-modified: Wed, 30 Nov 2022 01:35:48 GMT
cross-origin-resource-policy: cross-origin
expires: Sat, 03 Dec 2022 05:36:58 GMT
cache-control: max-age=7200
content-encoding: gzip
etag: W/"6386b374-9343"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1UfNYA-mgATGoe4_Ye3Z3i1xcAnZAIAf3y8YXpRiln1NBfiJ0NKMNA==
age: 1536
X-Firefox-Spdy: h2