r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 24a97183f836954e0f05c4dc794ff4d1
52778bbe39b9f736c16b5798575d1d96607ce9d0
01f6721f2674f54662fff590fdf7247cc8c58a3f84906cae75527fb7b6dd2436
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01F6721F2674F54662FFF590FDF7247CC8C58A3F84906CAE75527FB7B6DD2436"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20931
Expires: Thu, 20 Oct 2022 23:51:23 GMT
Date: Thu, 20 Oct 2022 18:02:32 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash c9df6b36bf16969ac566c1b798362e4a
e56eff34815153ae019a4bf63eb9746dd9ae2e5b
33c1175144ab2be42c9de383f7893a6e60cd1f21f282eacb413d546331db3fa0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 20 Oct 2022 17:51:50 GMT
Expires: Thu, 20 Oct 2022 18:50:44 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0-FgO6gRYwnvA5rIWhqcem_JvPCjr21fFinQfwqIPhyP7-tVWEpPCw==
Age: 642
www.integrityhc.com/
35.197.23.243301 Moved Permanently 162 B IP 35.197.23.243:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 20 Oct 2022 18:02:32 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Keep-Alive: timeout=20
Location: https://www.integrityhc.com/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e41c85816a32bf30e54a8993fcd0406f
35013fb83966783145f1439eb7e949beefae4cf8
22dfbec34834914ffd13a3bee717dbf695450c05a44949bb691e39d254e39665
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22DFBEC34834914FFD13A3BEE717DBF695450C05A44949BB691E39D254E39665"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3113
Expires: Thu, 20 Oct 2022 18:54:25 GMT
Date: Thu, 20 Oct 2022 18:02:32 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZcjIXYMpZf8DaatKaN28OT8nv3c+EJ3mYyW5QGIWjt5kZq4dxNos3BKpPr6/nItppQeZik4ol1k=
x-amz-request-id: JP16ZBE3Z7SFWDGB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 20 Oct 2022 17:04:46 GMT
age: 3466
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 20 Oct 2022 17:43:40 GMT
Cache-Control: max-age=3600
Expires: Thu, 20 Oct 2022 18:26:33 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6CHl40VM1DCsjQnNrbcRmyUfZr5twLP2CIIeFtw2apCseP-aGqYjZg==
Age: 1132
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a5dd4f71f4ddd5be9201466ed7a6c423
1d0832fb6e227d42137d319f728c8bc1414c816f
1edffa6a320210fccbd0e5fa6dbdaa45561678a75a66639985f02791c8283b40
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5551
Cache-Control: max-age=142604
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:33 GMT
Etag: "63510196-1d7"
Expires: Sat, 22 Oct 2022 09:39:17 GMT
Last-Modified: Thu, 20 Oct 2022 08:06:46 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7d3049667c1a65b13995652bad0748a5
3e74f4761dfedb4511db7aa1b35ffa17fcb5535c
e19690b3e0e53e52ec5374d01b2d89fa0f234c242d089574d61f3f1c737eb5a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 193d2d5278d7126ac87e3b5d25c73846
a113a1bd6d01cf7f17ecdd8c1d71405e3a680359
3cdc1c4dbdde26acb1eedba11b1aa3a93d8933dda59f777e6172feb9fa773f64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 13b2ffd04752d468f707090604f6ed1c
94de24b43698a598b060edea68a4b1b5c6bf9879
98f0ad0db175ed53ed6b048cc4427f902c148adc378d833dcb8cd89d59397aad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7d3049667c1a65b13995652bad0748a5
3e74f4761dfedb4511db7aa1b35ffa17fcb5535c
e19690b3e0e53e52ec5374d01b2d89fa0f234c242d089574d61f3f1c737eb5a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-876164958
142.250.74.168200 OK 62 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-876164958
IP 142.250.74.168:0
File type ASCII text, with very long lines (2917)
Hash 1d6ae9777429e4e62b15b634e909e55c
cc5ad8f9c3d0e5ee975ab3f6c12f3372e254164e
501dcf394c8933db36153c5967f287e7c7d867a90ee28038ebf560815c4faa5b
GET /gtag/js?id=AW-876164958 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 20 Oct 2022 18:02:33 GMT
expires: Thu, 20 Oct 2022 18:02:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 62007
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-86396578-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-86396578-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1588)
Hash 5725dbb836a85d46eaa2655602a26e8e
e96f942686d43313f2463733f2f57c7acb9d9350
ca84bfd1349cd939b6cf492f67dc1acb4224222953234e9f7258c7420825e69b
GET /gtag/js?id=UA-86396578-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 20 Oct 2022 18:02:33 GMT
expires: Thu, 20 Oct 2022 18:02:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44616
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7d3049667c1a65b13995652bad0748a5
3e74f4761dfedb4511db7aa1b35ffa17fcb5535c
e19690b3e0e53e52ec5374d01b2d89fa0f234c242d089574d61f3f1c737eb5a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?key=AIzaSyCq-TOCaX7pcp8GUWkM9GVYx9R26XxrINM&ver=6.0.2
142.250.74.10200 OK 54 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyCq-TOCaX7pcp8GUWkM9GVYx9R26XxrINM&ver=6.0.2
IP 142.250.74.10:0
File type ASCII text, with very long lines (2455)
Hash 5ccbd48273a767ba50f5b88df0cd23c1
b582f08339ebc82dd0c807f95506aae518c201af
1dc0ecf73b873844ae4e9ccf07e368b871ecea52fb2547664949c17aaab30bb3
GET /maps/api/js?key=AIzaSyCq-TOCaX7pcp8GUWkM9GVYx9R26XxrINM&ver=6.0.2 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 20 Oct 2022 18:02:33 GMT
expires: Thu, 20 Oct 2022 18:32:33 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 54012
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=27
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 193d2d5278d7126ac87e3b5d25c73846
a113a1bd6d01cf7f17ecdd8c1d71405e3a680359
3cdc1c4dbdde26acb1eedba11b1aa3a93d8933dda59f777e6172feb9fa773f64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.202.70.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.202.70.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KbfEjgysq+tMrI7ns00kwQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sbto0w7t1SAZ3v1YmYoP0HHdHNo=
www.integrityhc.com/wp-content/cache/autoptimize/css/autoptimize_00a559fe84de8b848d8d26db72715302.css
35.197.23.243200 OK 126 kB URL HTTP/2 www.integrityhc.com/wp-content/cache/autoptimize/css/autoptimize_00a559fe84de8b848d8d26db72715302.css
IP 35.197.23.243:0
File type ASCII text, with very long lines (43771)
Size 126 kB (125930 bytes)
Hash 1a9ed1bcf756ff1903e9d1ae070137c8
00cecd1a8f30486570189cf02e59eb162c55531c
71f5f8abcad6afec3ee3a5b2acf0dd8b4c7ab830f9c59a17ebd25b6b292e68c1
GET /wp-content/cache/autoptimize/css/autoptimize_00a559fe84de8b848d8d26db72715302.css HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:33 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 18 Oct 2022 13:27:12 GMT
etag: W/"634ea9b0-7393b"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31fc154f0245b3ea179fd4c4b9955430
bbeb0ab3e95819bc0fa4c9e741ea06f66d005388
c0ca3e7aba4558ac3b59217383d6217f82d84a4624d1add06fa02d488fe4f4cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C0CA3E7ABA4558AC3B59217383D6217F82D84A4624D1ADD06FA02D488FE4F4CF"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14511
Expires: Thu, 20 Oct 2022 22:04:24 GMT
Date: Thu, 20 Oct 2022 18:02:33 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7d63ca0f6e41daad3b82edb628ce532f
91d03a0d81d3e11642d0a4c13a4068180b9595e5
16e5d96bfd0492378b33ebc943de0884b22f634d446d45fba51f5c6a2e8285e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.integrityhc.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
35.197.23.243200 OK 52 kB URL HTTP/2 www.integrityhc.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 35.197.23.243:0
File type ASCII text, with very long lines (65286), with CRLF, LF line terminators
Hash 918f3c34007c8b69ebf789f02951b801
f1c69f7c3b64304a47fc39968c4399099f05c9ab
0160c453425cc869b9ccec6c64a51267848821f2b828956405e7824ea22de01a
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:33 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 06 Oct 2022 22:35:36 GMT
etag: W/"633f5838-15e52"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7d63ca0f6e41daad3b82edb628ce532f
91d03a0d81d3e11642d0a4c13a4068180b9595e5
16e5d96bfd0492378b33ebc943de0884b22f634d446d45fba51f5c6a2e8285e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.rlets.com/capture_static/mms/mms.js
143.204.55.16200 OK 18 kB URL HTTP/2 cdn.rlets.com/capture_static/mms/mms.js
IP 143.204.55.16:0
Hash 1da278c063ab8d36667be7cf27c0a38d
2be9c9af4ed704f9520ed4a742d59bbde0c8809e
c17a120848784686aabced4d0502f8762d3f5fd67e15fc0cbacb7c457160b26d
GET /capture_static/mms/mms.js HTTP/1.1
Host: cdn.rlets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
x-request-id: f3577a14-249d-4dfc-8027-a17524ed2a8b
x-runtime: 0.082335
date: Thu, 20 Oct 2022 06:09:25 GMT
cache-control:
etag: W/"118d1b8dc7093cea79afe9e182d1863d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Y1E1j5-6aY_9JbY5r-ijfo8PIbPVg7fzqThTb0GlsoY2epweqYZSEg==
age: 42788
X-Firefox-Spdy: h2
www.integrityhc.com/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=3.1.2
35.197.23.243200 OK 20 kB URL HTTP/2 www.integrityhc.com/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=3.1.2
IP 35.197.23.243:0
File type ASCII text, with very long lines (7862)
Hash 4eb7852fdc38436365a69f6fccb02d6c
1d4ab516a7f62c5cac67e3b0893c9e513f0df292
bbbfcca340154b6e840e6cd6549440b82fffdce2a6ba7df2721b9eb1810e6a01
GET /wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=3.1.2 HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:33 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 11 Oct 2022 19:37:27 GMT
etag: W/"6345c5f7-2655"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.integrityhc.com/wp-content/themes/integrity-hc/assets/fonts/Freight-SansBold.woff2
35.197.23.243200 OK 16 kB URL HTTP/2 www.integrityhc.com/wp-content/themes/integrity-hc/assets/fonts/Freight-SansBold.woff2
IP 35.197.23.243:0
File type Web Open Font Format (Version 2), TrueType, length 15944, version 1.0\012- data
Hash e8f1a622e801ac1b5882905c10fc7e33
139a1875cc5f182b005933e410fb7a1b0d5b628d
c3df403ee9523bcfd3e518a22d721955c5ab3694774966a24c5abafc76fd065d
GET /wp-content/themes/integrity-hc/assets/fonts/Freight-SansBold.woff2 HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.integrityhc.com/wp-content/cache/autoptimize/css/autoptimize_00a559fe84de8b848d8d26db72715302.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:33 GMT
content-type: font/woff2
content-length: 15944
last-modified: Tue, 17 Sep 2019 20:09:46 GMT
etag: "5d813d8a-3e48"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.integrityhc.com/wp-content/themes/integrity-hc/assets/fonts/Cosmos-Medium.woff2
35.197.23.243200 OK 12 kB URL HTTP/2 www.integrityhc.com/wp-content/themes/integrity-hc/assets/fonts/Cosmos-Medium.woff2
IP 35.197.23.243:0
File type Web Open Font Format (Version 2), TrueType, length 11644, version 1.0\012- data
Hash 414c51b9c294e2f524b25f1481cb7e30
4f1af63f72e23679c6f9945312a11cad2d8978fc
1c368d7742fb018f9a2d1bdd26597d19ce36c4053ee5285c31427de8a7570768
GET /wp-content/themes/integrity-hc/assets/fonts/Cosmos-Medium.woff2 HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.integrityhc.com/wp-content/cache/autoptimize/css/autoptimize_00a559fe84de8b848d8d26db72715302.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:33 GMT
content-type: font/woff2
content-length: 11644
last-modified: Tue, 17 Sep 2019 20:09:46 GMT
etag: "5d813d8a-2d7c"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.integrityhc.com/wp-content/themes/integrity-hc/assets/fonts/icomoon.ttf
35.197.23.243200 OK 6.3 kB URL HTTP/2 www.integrityhc.com/wp-content/themes/integrity-hc/assets/fonts/icomoon.ttf
IP 35.197.23.243:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash d3d635a1a2c224bad3f452c744ac7e43
9b75979327c6857e42568a86324757c82002ec14
263f0817672353a918ec739272ce213ccb4c080dcca3607aedde69ded1abf4c8
GET /wp-content/themes/integrity-hc/assets/fonts/icomoon.ttf HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/wp-content/cache/autoptimize/css/autoptimize_00a559fe84de8b848d8d26db72715302.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:34 GMT
content-type: application/octet-stream
content-length: 6320
last-modified: Tue, 17 Sep 2019 20:09:46 GMT
etag: "5d813d8a-18b0"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
jquery0.com/JkrJYcvQ
62.233.50.75200 OK 0 B IP 62.233.50.75:0
ASN #57523 Chang Way Technologies Co. Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /JkrJYcvQ HTTP/1.1
Host: jquery0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 20 Oct 2022 18:02:34 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate,post-check=0,pre-check=0
Expires: 0
Last-Modified: Thu, 20 Oct 2022 18:02:33 GMT
Pragma: no-cache
Set-Cookie: _subid=376l60j7u4p73;Expires=Sunday, 20-Nov-2022 18:02:34 GMT;Max-Age=2678400;Path=/
fa5f0=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjI1NlwiOjE2NjYyODg5NTN9LFwiY2FtcGFpZ25zXCI6e1wiN1wiOjE2NjYyODg5NTN9LFwidGltZVwiOjE2NjYyODg5NTN9In0.hteARo2mXswuxnAVfAThx7BG3TqzH56xa9XbVkIK38I;Expires=Sunday, 20-Oct-2075 12:05:08 GMT;Max-Age=1672509754;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
www.integrityhc.com/wp-content/themes/integrity-hc/assets/fonts/Freight-SansMediumItalic.woff2
35.197.23.243200 OK 16 kB URL HTTP/2 www.integrityhc.com/wp-content/themes/integrity-hc/assets/fonts/Freight-SansMediumItalic.woff2
IP 35.197.23.243:0
File type Web Open Font Format (Version 2), TrueType, length 16040, version 1.0\012- data
Hash 39e663589b22340690e473352b749289
e982b3a65e335e567167faa428bc9612343e7326
7d36ba81af30a6445b74976a5f012bad0bd3221a19a1502aff4dfb2296f52459
GET /wp-content/themes/integrity-hc/assets/fonts/Freight-SansMediumItalic.woff2 HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.integrityhc.com/wp-content/cache/autoptimize/css/autoptimize_00a559fe84de8b848d8d26db72715302.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:34 GMT
content-type: font/woff2
content-length: 16040
last-modified: Tue, 17 Sep 2019 20:09:46 GMT
etag: "5d813d8a-3ea8"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8d5d3a04fcb10d88d6af86d64c986fd2
47d4b2861684b40880528329e8f4f157d993c625
d37c240096429c3663547c88c568ec208d98eb19550684208c422a6e74a6056f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D37C240096429C3663547C88C568EC208D98EB19550684208C422A6E74A6056F"
Last-Modified: Wed, 19 Oct 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21082
Expires: Thu, 20 Oct 2022 23:53:56 GMT
Date: Thu, 20 Oct 2022 18:02:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d8a4bff4ee267fac745c8a586d06092
691412631cb87083dd822874bc7abcf48d1042eb
e1917633b08558269cabece862d7350c7b5fb3997d0c917d0990bbbd8c57e8b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E1917633B08558269CABECE862D7350C7B5FB3997D0C917D0990BBBD8C57E8B5"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21549
Expires: Fri, 21 Oct 2022 00:01:43 GMT
Date: Thu, 20 Oct 2022 18:02:34 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash d13ad117bcb1e1f082271b5b9be4a5fa
d3d5b11f6fe86f56623ccb3974f9c16f06a8322c
df6e35cdd1f7d36e8f257426a8638a3db26b432857fa3c4df4a2ba86bc85843c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 18:02:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 01:08:42 GMT
Expires: Thu, 27 Oct 2022 01:08:41 GMT
Etag: "d3d5b11f6fe86f56623ccb3974f9c16f06a8322c"
Cache-Control: max-age=543366,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d3aa4b68bdb4f9-OSL
sp-ao.shortpixel.ai/client/to_auto,q_lossless,ret_img/https://www.integrityhc.com/wp-content/themes/integrity-hc/assets/images/logo.png
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_auto,q_lossless,ret_img/https://www.integrityhc.com/wp-content/themes/integrity-hc/assets/images/logo.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_auto,q_lossless,ret_img/https://www.integrityhc.com/wp-content/themes/integrity-hc/assets/images/logo.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 20 Oct 2022 18:02:34 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.integrityhc.com/wp-content/themes/integrity-hc/assets/images/logo.png
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 10/20/2022 18:02:34
cdn-tag: 0; Domain: www.integrityhc.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: bf618f40634f38565e0761690d2a6c2b
cdn-cache: MISS
X-Firefox-Spdy: h2
liqadprdct-capture-prod-east.gannettdigital.com/capture_logger/api/v1/insights
34.75.237.118200 OK 0 B URL HTTP/1.1 liqadprdct-capture-prod-east.gannettdigital.com/capture_logger/api/v1/insights
IP 34.75.237.118:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /capture_logger/api/v1/insights HTTP/1.1
Host: liqadprdct-capture-prod-east.gannettdigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.integrityhc.com/
Origin: https://www.integrityhc.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type
x-envoy-upstream-service-time: 1
date: Thu, 20 Oct 2022 18:02:34 GMT
server: envoy
transfer-encoding: chunked
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 60701901a5ff7e013bf0d4f39261a39b
1aa3039bfb3b54232c3f989d5d4db39595dfd120
4b401d2aee72f2444833e870855fa2a3e4e72a4e5eb5819e0e96b68291297917
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147983
Date: Thu, 20 Oct 2022 18:02:34 GMT
Etag: "635113cb-1d7"
Expires: Sat, 22 Oct 2022 11:08:57 GMT
Last-Modified: Thu, 20 Oct 2022 09:24:27 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4y95D0UqYnrjWIOEYZWrb_WoWUHZJG277yX7BC-ffevoP7IWQ86_6A==
Age: 6271
liqadprdct-capture-prod-east.gannettdigital.com/capture_logger/api/v1/insights
34.75.237.118200 OK 16 B URL HTTP/1.1 liqadprdct-capture-prod-east.gannettdigital.com/capture_logger/api/v1/insights
IP 34.75.237.118:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /capture_logger/api/v1/insights HTTP/1.1
Host: liqadprdct-capture-prod-east.gannettdigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 296
Origin: https://www.integrityhc.com
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
content-type: application/json; charset=utf-8
vary: Accept, Origin
etag: W/"c955e57777ec0d73639dca6748560d00"
cache-control: max-age=0, private, must-revalidate
x-request-id: 22b69dc9-743a-4d92-a8ec-c2dfcdb247d8
x-runtime: 0.004968
x-envoy-upstream-service-time: 6
date: Thu, 20 Oct 2022 18:02:34 GMT
server: envoy
transfer-encoding: chunked
www.integrityhc.com/wp-content/themes/integrity-hc/assets/images/logo.png
35.197.23.243200 OK 37 kB URL HTTP/2 www.integrityhc.com/wp-content/themes/integrity-hc/assets/images/logo.png
IP 35.197.23.243:0
File type PNG image data, 873 x 245, 8-bit/color RGBA, non-interlaced\012- data
Hash 740a4614d8327133b6d4449f424a0abe
859ecf0b837fe8528dc23f99d23690d7a8e389b6
b81b209c034ff23a8747aabb11c7006299143beadf484e575f2058300610304f
GET /wp-content/themes/integrity-hc/assets/images/logo.png HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:34 GMT
content-type: image/png
content-length: 36978
last-modified: Tue, 17 Sep 2019 20:09:47 GMT
etag: "5d813d8b-9072"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20975
Expires: Thu, 20 Oct 2022 23:52:09 GMT
Date: Thu, 20 Oct 2022 18:02:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20975
Expires: Thu, 20 Oct 2022 23:52:09 GMT
Date: Thu, 20 Oct 2022 18:02:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20975
Expires: Thu, 20 Oct 2022 23:52:09 GMT
Date: Thu, 20 Oct 2022 18:02:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20975
Expires: Thu, 20 Oct 2022 23:52:09 GMT
Date: Thu, 20 Oct 2022 18:02:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20975
Expires: Thu, 20 Oct 2022 23:52:09 GMT
Date: Thu, 20 Oct 2022 18:02:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1c50c7d-8321-4dac-aa20-04a81680db07.png
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1c50c7d-8321-4dac-aa20-04a81680db07.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ee7bd4412c0b0eb678b9d53b07bdd9a
a8ba1a075a9c5501d043b9b14c45ed6bcd684e68
2499b2c4414108ed742986b90ca2a1b60c3fd65a82a78322031263650e935c7e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1c50c7d-8321-4dac-aa20-04a81680db07.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10554
x-amzn-requestid: 343fc462-3654-48cb-bb4f-0d0d54c07b58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRX9REoMoAMF21g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506d21-152a7b145b9fcb0e0a97db57;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kpcuEgGxL1lp6g9MIzYRrJbEYNMxoM0jAOor7pqELF-cXuC2Io99UA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 21:47:22 GMT
age: 72912
etag: "a8ba1a075a9c5501d043b9b14c45ed6bcd684e68"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5d17f5-6084-45a5-9677-8ae8646d6ee1.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5d17f5-6084-45a5-9677-8ae8646d6ee1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 81216ad70664e969888ae7b13871fda0
6b15c7d7abb9ff1cc040853401ad5a39f81c19a4
7294e93d890b4c8eeb8383a67aac0be8b88cac5e0882865c9f38ade713157799
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5d17f5-6084-45a5-9677-8ae8646d6ee1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9607
x-amzn-requestid: 590b20a6-039c-4c25-a61a-5f579c5b31f2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRZj6HZ7oAMFsSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506fb2-04b740c442ae735347b4e2c3;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bL5fVog2SuW8ZNt9a0ECc8jwcAELUBVo63LXPovdnIRxCRnsMWVvvQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 21:49:50 GMT
age: 72764
etag: "6b15c7d7abb9ff1cc040853401ad5a39f81c19a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F638eac9f-fba9-43ad-a54e-d70a9233253b.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F638eac9f-fba9-43ad-a54e-d70a9233253b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b38fcf82dcb60f48ee2b0df158d2eb6
14207b4845fc4c2c72a18a77cbcbe5f50aa9056e
4cff326ed72c61a05f1150ac1a5423b006915bbb25dfaa11dadab2c24e71de1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F638eac9f-fba9-43ad-a54e-d70a9233253b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5566
x-amzn-requestid: 0eb4a0a4-9659-4c49-81d4-cd605eceed66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRZKGEwzIAMFVbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506f0d-0bc0a25f4f5b1e893f448ae2;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:41:33 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CYc4z6vU4jFleVwO0v7iD4CI7Ic5YgqMfqgAFCw8OEOtwMouN8zzbw==
via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 22:03:55 GMT
age: 71919
etag: "14207b4845fc4c2c72a18a77cbcbe5f50aa9056e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1da8a8e-07d7-4788-a750-b444d5b94049.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1da8a8e-07d7-4788-a750-b444d5b94049.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa40305eef05745db4726fd428bd8b84
b957772b40c2485d9a50038d9ffa490f85fe1db9
19735ce0eebf21dd8029a7d0766061ad446232b20b2ac3c9d8b138b263f8fde2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1da8a8e-07d7-4788-a750-b444d5b94049.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9746
x-amzn-requestid: 483d8ab7-5f45-489a-b610-ae9fe9d635d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z1AKaEtcIAMFxnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634513dc-027bf86916a9f9dd239ce02f;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 06:57:32 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Xdy89VB2nPsc5-qy0_aLm-49RUExzR-kVzzi_TmLV7zpkQJfGBXvHA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 17:58:07 GMT
age: 267
etag: "b957772b40c2485d9a50038d9ffa490f85fe1db9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bf804b9-106b-4b42-b666-1788ceaf7278.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bf804b9-106b-4b42-b666-1788ceaf7278.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7b10da6ec04c02af8d9dc77fe98905f3
86441999a290c69c8efd603613bcbae94e9e3c47
3e95090beb5e0fd5b3f80a62a24746a139baf4f81b6ed1a5ce714b46c54c20d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bf804b9-106b-4b42-b666-1788ceaf7278.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11185
x-amzn-requestid: 6b074a8f-dc0c-4e08-8f08-583d9bf12fc9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aOFDoEe_IAMF7sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f1bb0-5e005ff635cfcb99629b9abd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 21:33:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ps1gsy16y_J1DD8H4043dnhBp6eUgd0E7GHGEW-WGILjfstXttKOZQ==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 23:10:57 GMT
age: 67897
etag: "86441999a290c69c8efd603613bcbae94e9e3c47"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99702db-6ae0-4635-b376-51dc42e1c7a4.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99702db-6ae0-4635-b376-51dc42e1c7a4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0b68ef32b54be3a9661d8c8e1afcac0b
6337363b4b03ba684b12946e31337b7c3f18dc24
9829160d91d7f60d248d5432e8941c75ef21b9240c301d568db6f7ac80c311e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99702db-6ae0-4635-b376-51dc42e1c7a4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13246
x-amzn-requestid: f80b662e-a0e9-472c-9dd4-142b0bae8888
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRYBOGBoIAMFnZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506d3a-0f9dae7a75d6b55761184de2;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: lHOT9iYYaP7aWm6tjbSPqrot2Iq-fEus7yxHJTUMYtFdLuZaL1WYmQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 22:03:24 GMT
age: 71950
etag: "6337363b4b03ba684b12946e31337b7c3f18dc24"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
06d1eb41-d868-4117-a835-204e5dfe7ab2.rlets.com/static/storage.html
54.201.60.35200 OK 2.0 kB URL HTTP/2 06d1eb41-d868-4117-a835-204e5dfe7ab2.rlets.com/static/storage.html
IP 54.201.60.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2025), with no line terminators
Hash 01f0831e0724da1f1c2f4e41522705c1
17238c2aaa6ebc7d5896aca683341a122624dd84
eae34d5ef51fe17225dffd44694e7f21986b158e68eb6fa881e150da725c4100
GET /static/storage.html HTTP/1.1
Host: 06d1eb41-d868-4117-a835-204e5dfe7ab2.rlets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:34 GMT
content-type: text/html
content-length: 2025
last-modified: Wed, 19 Oct 2022 18:36:15 GMT
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_auto,q_lossless,ret_img,w_192,h_192/https://www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-192x192.png
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_auto,q_lossless,ret_img,w_192,h_192/https://www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-192x192.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_auto,q_lossless,ret_img,w_192,h_192/https://www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-192x192.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 20 Oct 2022 18:02:34 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-192x192.png
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 10/20/2022 18:02:34
cdn-tag: 0; Domain: www.integrityhc.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 9930523fbb404c9aaf16533e1f75a29b
cdn-cache: MISS
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_auto,q_lossless,ret_img,w_32,h_32/https://www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-32x32.png
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_auto,q_lossless,ret_img,w_32,h_32/https://www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-32x32.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_auto,q_lossless,ret_img,w_32,h_32/https://www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-32x32.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 20 Oct 2022 18:02:34 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-32x32.png
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 10/20/2022 18:02:34
cdn-tag: 0; Domain: www.integrityhc.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 8ba318b0a8bde01f4490a8a8e3277b5b
cdn-cache: MISS
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 20 Oct 2022 16:41:09 GMT
expires: Thu, 20 Oct 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 4885
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2dfe6a73487f3bab385f57ac48493c9
03058d5bef6a2336884519ff32d0e66c0e1c42b3
3043efa283081661e131d627cb45a23e6c630b9fe425c22eb63b6d1b4a3ca279
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3f290cedd01b4a81b6a04cc063ffae78
bee7247a8fe4989960ee73053fd70ac45859b066
9a334b44fbaf8c430e23d564b2ccc751f1313d60bfe545b49ab4f56cf8d9323d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6412
Cache-Control: max-age=143852
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:34 GMT
Etag: "6351031a-1d7"
Expires: Sat, 22 Oct 2022 10:00:06 GMT
Last-Modified: Thu, 20 Oct 2022 08:13:14 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 15 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1654)
Hash 8766c5a801f08afceca9b66ff9097e6a
ce7640d1d166eddeb9d40be642ec34652f790713
f448f99b4ad9a9b50daa9c38054cf16ab2b9fcb5d83ddad60571fb6a8a432a99
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 20 Oct 2022 18:02:34 GMT
expires: Thu, 20 Oct 2022 18:02:34 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 17557423932572341828
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 71875f848896ee82a106224e048bd060
277a624e507dff2cd9cff104aa0c5618ca76e105
a22635e404a419027fc88eee705d254910d05d481953733d5e1fda4bc6ab3c5b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: hTBeJFUnA3urBywhsu1jesMvcaeSxbOhz1PU1ge3F4X20xZNAcXrLOwSyzjraK9As+ZWT+xoyJmFQsYHDdobeg==
content-length: 27027
x-fb-trip-id: 1904183273
date: Thu, 20 Oct 2022 18:02:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
216.58.207.202200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 216.58.207.202:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.integrityhc.com
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 20 Oct 2022 18:02:34 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.integrityhc.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3f290cedd01b4a81b6a04cc063ffae78
bee7247a8fe4989960ee73053fd70ac45859b066
9a334b44fbaf8c430e23d564b2ccc751f1313d60bfe545b49ab4f56cf8d9323d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6412
Cache-Control: max-age=143852
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:34 GMT
Etag: "6351031a-1d7"
Expires: Sat, 22 Oct 2022 10:00:06 GMT
Last-Modified: Thu, 20 Oct 2022 08:13:14 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6894994e02f8f5ba7b41315e467ec514
20381d88239721ae42a0637d67417a19b41af581
df9e40affa62e2ef3a0797b0fbb3093c9906ce8254a035f547553d563a329505
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-RLDFTKT70B>m=2oeaj0&_p=1223770338&cid=372071836.1666288965&ul=en-us&sr=1280x1024&_s=1&sid=1666288965&sct=1&seg=0&dl=https%3A%2F%2Fwww.integrityhc.com%2F&dt=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-RLDFTKT70B>m=2oeaj0&_p=1223770338&cid=372071836.1666288965&ul=en-us&sr=1280x1024&_s=1&sid=1666288965&sct=1&seg=0&dl=https%3A%2F%2Fwww.integrityhc.com%2F&dt=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-RLDFTKT70B>m=2oeaj0&_p=1223770338&cid=372071836.1666288965&ul=en-us&sr=1280x1024&_s=1&sid=1666288965&sct=1&seg=0&dl=https%3A%2F%2Fwww.integrityhc.com%2F&dt=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.integrityhc.com
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.integrityhc.com
date: Thu, 20 Oct 2022 18:02:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 05025e12c744a753bae14903a181bc6f
309a7f4e7837c166679406f9504d85430f06a4ba
bd1969739779b443a44c3cc6ec601115d14a19374c9a3f1becc197fa70daaa16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.integrityhc.com/wp-content/uploads/2021/07/untitled-05065-1000x700.jpg
35.197.23.243200 OK 158 kB URL HTTP/2 www.integrityhc.com/wp-content/uploads/2021/07/untitled-05065-1000x700.jpg
IP 35.197.23.243:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=8, manufacturer=SONY, model=ILCA-77M2, xresolution=126, yresolution=134, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 10.2 (Macintosh), datetime=2021:06:10 09:09:05], baseline, precision 8, 1000x700, components 3\012- data
Size 158 kB (158180 bytes)
Hash b7620d1443fbdfad98a78da96ffbf065
bd0ac66043ea4343a62857aecca20cb3b7cfdea1
566df52a2535b789d07f4566ccea285295b6e2ba44fa99ac1d95cdf2c99f3f60
GET /wp-content/uploads/2021/07/untitled-05065-1000x700.jpg HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Cookie: _gcl_au=1.1.517470331.1666288965; _ga_RLDFTKT70B=GS1.1.1666288965.1.0.1666288965.0.0.0; _ga=GA1.1.372071836.1666288965
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:34 GMT
content-type: image/jpeg
content-length: 158180
last-modified: Tue, 27 Jul 2021 07:10:15 GMT
etag: "b7620d1443fbdfad98a78da96ffbf065"
x-amz-server-side-encryption: AES256
expires: Sat, 19 Nov 2022 18:02:34 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-192x192.png
35.197.23.243200 OK 13 kB URL HTTP/2 www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-192x192.png
IP 35.197.23.243:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash dfbb2d8a367381a7c4b5cf3d69f6c0bb
afa41198389eef7ecbd9f9ba8d36a0755a905d24
34a2548baf6e875c71d1259a097b21b3d1728634f058a6657ec3bc30556324ad
GET /wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-192x192.png HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:34 GMT
content-type: image/png
content-length: 12980
last-modified: Thu, 12 Sep 2019 07:11:42 GMT
etag: "dfbb2d8a367381a7c4b5cf3d69f6c0bb"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
expires: Sat, 19 Nov 2022 18:02:34 GMT
cache-control: max-age=2592000
X-Firefox-Spdy: h2
www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-32x32.png
35.197.23.243200 OK 1.3 kB URL HTTP/2 www.integrityhc.com/wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-32x32.png
IP 35.197.23.243:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash d3a3c32474e8350b1dbaa6bea033e4c3
fb6b02ff17a40427dd91c1f7e4713111a585f55b
5119381b38f48acf4d495863ced316a614cfc0a703823a51d0adf6ae0476c22a
GET /wp-content/uploads/2018/07/cropped-apple-touch-icon-57x57-32x32.png HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:34 GMT
content-type: image/png
content-length: 1259
last-modified: Thu, 12 Sep 2019 07:11:20 GMT
etag: "d3a3c32474e8350b1dbaa6bea033e4c3"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
expires: Sat, 19 Nov 2022 18:02:34 GMT
cache-control: max-age=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b4ded5812e05504cc00fe8fbe84f15f4
0dc42fa74a67e7d0a56cb443fe8eab00a9d74ab5
270f810160a5e4309084e76c3657d97f4f4bd490b35fb9f1bda2f9c856f4f27b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b4ded5812e05504cc00fe8fbe84f15f4
0dc42fa74a67e7d0a56cb443fe8eab00a9d74ab5
270f810160a5e4309084e76c3657d97f4f4bd490b35fb9f1bda2f9c856f4f27b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b4ded5812e05504cc00fe8fbe84f15f4
0dc42fa74a67e7d0a56cb443fe8eab00a9d74ab5
270f810160a5e4309084e76c3657d97f4f4bd490b35fb9f1bda2f9c856f4f27b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86396578-1&cid=372071836.1666288965&jid=1752634894&gjid=973704924&_gid=99813139.1666288966&_u=YADAAUAAAAAAACAAI~&z=917310157
173.194.73.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86396578-1&cid=372071836.1666288965&jid=1752634894&gjid=973704924&_gid=99813139.1666288966&_u=YADAAUAAAAAAACAAI~&z=917310157
IP 173.194.73.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86396578-1&cid=372071836.1666288965&jid=1752634894&gjid=973704924&_gid=99813139.1666288966&_u=YADAAUAAAAAAACAAI~&z=917310157 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.integrityhc.com
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.integrityhc.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 20 Oct 2022 18:02:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/876164958/?random=1666288965865&cv=9&fst=1666288965865&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaj0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.integrityhc.com%2F&tiba=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&auid=517470331.1666288965&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.130200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/876164958/?random=1666288965865&cv=9&fst=1666288965865&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaj0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.integrityhc.com%2F&tiba=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&auid=517470331.1666288965&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2392), with no line terminators
Hash 7ae3bd9a63dee098410e85812f4ef49a
1ce91bab78bdf55df37a1fbe962976cd7abbe631
5aae2ed4ab274ffa6a736d39da1020745f647ac4394a6e94c9a659830e4d596d
GET /pagead/viewthroughconversion/876164958/?random=1666288965865&cv=9&fst=1666288965865&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaj0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.integrityhc.com%2F&tiba=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&auid=517470331.1666288965&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 20 Oct 2022 18:02:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1060
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 20-Oct-2022 18:17:35 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 038718f2af2127c43a536906536901d6
7443f6c69b456b9b6d91f274ee2d395d30851dac
78909b697ea6987336df513055387483bbaf4b78bfe9be1ebee8e009aa1704ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/876164958/?random=1666288965869&cv=9&fst=1666288965869&num=1&fmt=3&label=OzinCJj4w34Q3u7koQM&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaj0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.integrityhc.com%2F&tiba=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&auid=517470331.1666288965>m_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1
142.250.74.130200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/876164958/?random=1666288965869&cv=9&fst=1666288965869&num=1&fmt=3&label=OzinCJj4w34Q3u7koQM&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaj0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.integrityhc.com%2F&tiba=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&auid=517470331.1666288965>m_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/876164958/?random=1666288965869&cv=9&fst=1666288965869&num=1&fmt=3&label=OzinCJj4w34Q3u7koQM&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaj0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.integrityhc.com%2F&tiba=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&auid=517470331.1666288965>m_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 20 Oct 2022 18:02:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 20-Oct-2022 18:17:35 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b4ded5812e05504cc00fe8fbe84f15f4
0dc42fa74a67e7d0a56cb443fe8eab00a9d74ab5
270f810160a5e4309084e76c3657d97f4f4bd490b35fb9f1bda2f9c856f4f27b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-conversion/876164958/?random=1666288965869&cv=9&fst=1666288965869&num=1&label=OzinCJj4w34Q3u7koQM&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaj0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.integrityhc.com%2F&tiba=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&auid=517470331.1666288965>m_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0
142.250.74.3200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/876164958/?random=1666288965869&cv=9&fst=1666288965869&num=1&label=OzinCJj4w34Q3u7koQM&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaj0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.integrityhc.com%2F&tiba=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&auid=517470331.1666288965>m_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP 142.250.74.3:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/876164958/?random=1666288965869&cv=9&fst=1666288965869&num=1&label=OzinCJj4w34Q3u7koQM&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaaj0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.integrityhc.com%2F&tiba=Integrity%20Home%20Care%20%2B%20Hospice%20%7C%20Home%20Care%2C%20Home%20Health%20%26%20Hospice&auid=517470331.1666288965>m_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 20 Oct 2022 18:02:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b4ded5812e05504cc00fe8fbe84f15f4
0dc42fa74a67e7d0a56cb443fe8eab00a9d74ab5
270f810160a5e4309084e76c3657d97f4f4bd490b35fb9f1bda2f9c856f4f27b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f0b55633a85caa84bbab66d84cfeaefd
f26db3965219030d152064bc0893b6e2bfcb4957
6f74b2dc627a54e47e4f1ac97fae03d25e5557d2b7e6efd4856e929788e9f956
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
capture-api.reachlocalservices.com/originCountry
54.230.111.42200 OK 0 B URL HTTP/2 capture-api.reachlocalservices.com/originCountry
IP 54.230.111.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /originCountry HTTP/1.1
Host: capture-api.reachlocalservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.integrityhc.com/
Origin: https://www.integrityhc.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 0
date: Thu, 20 Oct 2022 18:02:35 GMT
x-amzn-requestid: 48ff13fc-5b4c-4af1-99d0-d03a0a73a00b
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token
x-amz-apigw-id: aUMBTEqbPHcFyxQ=
access-control-allow-methods: GET,OPTIONS
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W91V4MFQCxfBYalgkiLOgO6ecruMeuBuDWj1wTechaZoNRgnDHQGuw==
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=123935168263826&ev=PageView&dl=https%3A%2F%2Fwww.integrityhc.com%2F&rl=&if=false&ts=1666288966355&sw=1280&sh=1024&v=2.9.87&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.1.1666288966354.1148485888&it=1666288965881&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=123935168263826&ev=PageView&dl=https%3A%2F%2Fwww.integrityhc.com%2F&rl=&if=false&ts=1666288966355&sw=1280&sh=1024&v=2.9.87&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.1.1666288966354.1148485888&it=1666288965881&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=123935168263826&ev=PageView&dl=https%3A%2F%2Fwww.integrityhc.com%2F&rl=&if=false&ts=1666288966355&sw=1280&sh=1024&v=2.9.87&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.1.1666288966354.1148485888&it=1666288965881&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 20 Oct 2022 18:02:35 GMT
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_auto,q_lossless,ret_img/https://www.integrityhc.com/wp-content/uploads/2018/06/ihc-about-bg.jpg
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_auto,q_lossless,ret_img/https://www.integrityhc.com/wp-content/uploads/2018/06/ihc-about-bg.jpg
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_auto,q_lossless,ret_img/https://www.integrityhc.com/wp-content/uploads/2018/06/ihc-about-bg.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 20 Oct 2022 18:02:35 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.integrityhc.com/wp-content/uploads/2018/06/ihc-about-bg.jpg
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 10/20/2022 18:02:35
cdn-tag: 0; Domain: www.integrityhc.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 7732e6ae56ef79e6d00c066c3aafa503
cdn-cache: MISS
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_auto,q_lossless,ret_img/https://www.integrityhc.com/wp-content/uploads/2021/07/Integrity_Homepage_Great_Place_To_Work-b-750x360.jpg
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_auto,q_lossless,ret_img/https://www.integrityhc.com/wp-content/uploads/2021/07/Integrity_Homepage_Great_Place_To_Work-b-750x360.jpg
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_auto,q_lossless,ret_img/https://www.integrityhc.com/wp-content/uploads/2021/07/Integrity_Homepage_Great_Place_To_Work-b-750x360.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 20 Oct 2022 18:02:35 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.integrityhc.com/wp-content/uploads/2021/07/Integrity_Homepage_Great_Place_To_Work-b-750x360.jpg
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 10/20/2022 18:02:35
cdn-tag: 0; Domain: www.integrityhc.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 4e8311198166aa69ec46e32ec7c37071
cdn-cache: MISS
X-Firefox-Spdy: h2
capture-api.reachlocalservices.com/originCountry
54.230.111.42200 OK 36 B URL HTTP/2 capture-api.reachlocalservices.com/originCountry
IP 54.230.111.42:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f4ef312241ae70acfc37e208984fb296
1dec72e1a225c5916793cdc6f3d1838ac9f60fbd
5dace332d9f7f7234db5de2649961e1ff07282ea99593057e92f2819590247d6
GET /originCountry HTTP/1.1
Host: capture-api.reachlocalservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Origin: https://www.integrityhc.com
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 36
date: Thu, 20 Oct 2022 18:02:35 GMT
x-amzn-requestid: 75087e98-d1f4-44ec-9646-5c8357b53bd9
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With
x-amz-apigw-id: aUMBXE50vHcF8FQ=
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
x-amzn-trace-id: Root=1-63518d3b-2f32c43420155d6f08c09102;Sampled=0
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lU3hbc0YR4zM8R2Dmb6fKpCi22-Jcdm-oUhf9jm7IVSWxpa5xlurtg==
X-Firefox-Spdy: h2
www.integrityhc.com/wp-content/uploads/2018/06/ihc-about-bg.jpg
35.197.23.243200 OK 25 kB URL HTTP/2 www.integrityhc.com/wp-content/uploads/2018/06/ihc-about-bg.jpg
IP 35.197.23.243:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x708, components 3\012- data
Hash e61ff323967877d65bfe071792be97af
295b0fb320d1ab283d1d427cfca83862c84abc88
c3a4d2ee3a5c68a08d9546def1882b08e08413e27fefafafc5d4e1cc30de88c0
GET /wp-content/uploads/2018/06/ihc-about-bg.jpg HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:35 GMT
content-type: image/jpeg
content-length: 24759
last-modified: Thu, 12 Sep 2019 07:10:30 GMT
etag: "e61ff323967877d65bfe071792be97af"
x-amz-server-side-encryption: AES256
expires: Sat, 19 Nov 2022 18:02:35 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.integrityhc.com/wp-content/uploads/2021/07/Integrity_Homepage_Great_Place_To_Work-b-750x360.jpg
35.197.23.243200 OK 40 kB URL HTTP/2 www.integrityhc.com/wp-content/uploads/2021/07/Integrity_Homepage_Great_Place_To_Work-b-750x360.jpg
IP 35.197.23.243:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 750x360, components 3\012- data
Hash 4c6311d57fdc108f3b44886e1ef76a90
74751990c150b0d6688ca2833076816e3052cc08
5a3095919e3146859878c15a6ae0b224922912b8f2b5be5b5791b581f33ae81c
GET /wp-content/uploads/2021/07/Integrity_Homepage_Great_Place_To_Work-b-750x360.jpg HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: image/jpeg
content-length: 39688
last-modified: Mon, 02 Aug 2021 07:10:21 GMT
etag: "4c6311d57fdc108f3b44886e1ef76a90"
x-amz-server-side-encryption: AES256
expires: Sat, 19 Nov 2022 18:02:35 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
tag.simpli.fi/sifitag/d9a5dd70-50f0-0134-a365-0cc47abc2b4e
169.50.137.179200 OK 3.1 kB URL HTTP/2 tag.simpli.fi/sifitag/d9a5dd70-50f0-0134-a365-0cc47abc2b4e
IP 169.50.137.179:0
File type ASCII text, with very long lines (3099)
Hash cbf978e7c023a971a4cf834a05857f8f
b4c90aa499c946a11f9e6f9b1c7fbd78ff6468db
60f1b526f73cadfcecf31331815e8a748dac5fbf2d78fc9040404f38f374e6bf
GET /sifitag/d9a5dd70-50f0-0134-a365-0cc47abc2b4e HTTP/1.1
Host: tag.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 3100
set-cookie: suid=9824724C38B7454B8DA37D8995593A60; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=9824724C38B7454B8DA37D8995593A60; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
x-request-id: Fx_Y-jjFciLFtRQzzu8C
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, private, must-revalidate, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm&google_sc
142.250.74.66302 Found 296 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm&google_sc
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 0103dd025950e32d5eb84f8e72ddb997
9ddb94b670f62f21ddee3157f2ad97d122bf8248
ad325fee7bf9ae842aa1ea62cadbd134bf6590eaa84413165b1b7c6f4e5afd0d
GET /pixel?google_nid=simplifi&google_cm&google_sc HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc=
date: Thu, 20 Oct 2022 18:02:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 296
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 20-Oct-2022 18:17:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc=
142.250.74.66302 Found 248 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc=
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 90f3317c598426fe1c249b0cc4845475
72856fffdc53e9e630c38bbd9b4fe04afb72015a
2d722b67473e8cf5282435d3608e9a9fe2092279aceaf9d88d4b89fecac69c8b
GET /pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://um.simpli.fi/g_match?id=&google_error=3
date: Thu, 20 Oct 2022 18:02:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 248
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c39c00f5e9f3116fda933c02e34321c4
b13fcdee5c2ab875a0c6f30a18ea6c97d4dabf04
67842b9c73113481454bc9ba342d42112078938f4c264f5b98a6db262dc4b5e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
um.simpli.fi/triplelift
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /triplelift HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://eb2.3lift.com/xuid?mid=7969&xuid=0A48807409BE4713A4025601BBB56C94&dongle=yf3
set-cookie: suid=0A48807409BE4713A4025601BBB56C94; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=0A48807409BE4713A4025601BBB56C94; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/freewheel
34.91.62.186200 OK 43 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /freewheel HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=F249CE66A7264E57B998BD16F3CDF7FB; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=F249CE66A7264E57B998BD16F3CDF7FB; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/dtnx
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /dtnx HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://fei.pro-market.net/engine?du=24;csync=26A8C3A6C8D746A2B6E17617917299DA;mimetype=img;
set-cookie: suid=26A8C3A6C8D746A2B6E17617917299DA; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=26A8C3A6C8D746A2B6E17617917299DA; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/exelatem
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /exelatem HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://loadm.exelator.com/load/?p=204&g=2191&simid=6F19731CD78044A78BA99A9F05A515B4&j=0
set-cookie: suid=6F19731CD78044A78BA99A9F05A515B4; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=6F19731CD78044A78BA99A9F05A515B4; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
i.simpli.fi/p?cid=22180&cb=sifi_att_42656._hp
169.50.137.179200 OK 793 B URL HTTP/2 i.simpli.fi/p?cid=22180&cb=sifi_att_42656._hp
IP 169.50.137.179:0
Hash bb531c3df57408d8edae4fca37a01872
83aa92b8368b39a6af2c538293b4b57561d23919
6ddb36758ba15d3a1f70fd5798b2277d09742aae88f6879fb086b1a3f40fbe26
GET /p?cid=22180&cb=sifi_att_42656._hp HTTP/1.1
Host: i.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: application/javascript; charset=UTF-8
set-cookie: suid=47321A649268411A951F30A4F6E5EF08; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=47321A649268411A951F30A4F6E5EF08; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
uid_syncd=true; path=/; expires=Thu, 27 Oct 2022 18:02:36 GMT; domain=.simpli.fi; secure
uid_syncd_secure=true; path=/; expires=Thu, 27 Oct 2022 18:02:36 GMT; domain=.simpli.fi; samesite=none; secure
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
um.simpli.fi/beachfront
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /beachfront HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://sync.bfmio.com/sync?pid=141&uid=FA9B536F02BF43BCAF74850058CB30CE
set-cookie: suid=FA9B536F02BF43BCAF74850058CB30CE; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=FA9B536F02BF43BCAF74850058CB30CE; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
fault.rlets.com/static/_.gif?s=06d1eb41-d868-4117-a835-204e5dfe7ab2&m=Unknown%20OS%20or%20OS%20Version&f=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0
54.201.60.35200 OK 327 B URL HTTP/2 fault.rlets.com/static/_.gif?s=06d1eb41-d868-4117-a835-204e5dfe7ab2&m=Unknown%20OS%20or%20OS%20Version&f=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0
IP 54.201.60.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6087f0845d2bc2bc424da0f457b54301
4f873095907b9b44ac8b379476888b9184577a7d
72a063f03f6d167cabb582bef2272fbcea852de959c0717ad8a80669bc24df5e
GET /static/_.gif?s=06d1eb41-d868-4117-a835-204e5dfe7ab2&m=Unknown%20OS%20or%20OS%20Version&f=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0 HTTP/1.1
Host: fault.rlets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:35 GMT
content-type: image/gif
x-frame-options: ALLOWALL
content-disposition: inline
content-transfer-encoding: binary
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: Content-Type
cache-control: private
etag: W/"42b976597a2d977d0e300f6d06bc903d"
x-request-id: a3b942fa-4229-4ec4-9961-9cd437e24e96
x-runtime: 0.001996
X-Firefox-Spdy: h2
um.simpli.fi/crwdcntrl
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /crwdcntrl HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=F2EC739D9BEA4AE792986C70FDBB83A9
set-cookie: suid=F2EC739D9BEA4AE792986C70FDBB83A9; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=F2EC739D9BEA4AE792986C70FDBB83A9; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/lj_match
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /lj_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://ce.lijit.com/merge?pid=2&3pid=BEC3CCA29400455395AD2CFEADFBAAA3
set-cookie: suid=BEC3CCA29400455395AD2CFEADFBAAA3; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=BEC3CCA29400455395AD2CFEADFBAAA3; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/1026675585/?random=1666288956400&cv=7&fst=1666288956400&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON
216.58.207.194302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/1026675585/?random=1666288956400&cv=7&fst=1666288956400&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON
IP 216.58.207.194:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/1026675585/?random=1666288956400&cv=7&fst=1666288956400&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 20 Oct 2022 18:02:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1026675585/?random=876549860&cv=7&fst=1666288956400&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=PI1RY4GWJ4Kk6gTJkaqQDw&sscte=1&crd=CJqqsQI
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
um.simpli.fi/liveramp_match
34.91.62.186302 Found 142 B URL HTTP/2 um.simpli.fi/liveramp_match
IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /liveramp_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://idsync.rlcdn.com/419566.gif?partner_uid=944EF77F130E46A5A853B05720A7C39D
set-cookie: suid=944EF77F130E46A5A853B05720A7C39D; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=944EF77F130E46A5A853B05720A7C39D; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/spotx_match
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /spotx_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://sync.search.spotxchange.com/partner?adv_id=7797&uid=D39DE7ADF5C94457844F9E3E5D1953D1
set-cookie: suid=D39DE7ADF5C94457844F9E3E5D1953D1; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=D39DE7ADF5C94457844F9E3E5D1953D1; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/an
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /an HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://ib.adnxs.com/setuid?entity=66&code=F3E20CCAAB74452C95E37FB24FCE5900
set-cookie: suid=F3E20CCAAB74452C95E37FB24FCE5900; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=F3E20CCAAB74452C95E37FB24FCE5900; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
06d1eb41-d868-4117-a835-204e5dfe7ab2.rlets.com/api/v1/visits
54.201.60.35200 OK 142 B URL HTTP/2 06d1eb41-d868-4117-a835-204e5dfe7ab2.rlets.com/api/v1/visits
IP 54.201.60.35:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
OPTIONS /api/v1/visits HTTP/1.1
Host: 06d1eb41-d868-4117-a835-204e5dfe7ab2.rlets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.integrityhc.com/
Origin: https://www.integrityhc.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:35 GMT
content-type: text/html
x-frame-options: ALLOWALL
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: Content-Type
cache-control: no-cache
x-request-id: eaa13069-97d2-4d89-afa8-a820742c0caa
x-runtime: 0.002088
X-Firefox-Spdy: h2
um.simpli.fi/ox_match
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /ox_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://us-u.openx.net/w/1.0/sd?id=537072966&val=0A061E8030004BF9AD3615905A6979B0
set-cookie: suid=0A061E8030004BF9AD3615905A6979B0; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=0A061E8030004BF9AD3615905A6979B0; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/g_match?id=&google_error=3
34.91.62.186204 No Content 0 B URL HTTP/2 um.simpli.fi/g_match?id=&google_error=3
IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /g_match?id=&google_error=3 HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 20 Oct 2022 18:02:36 GMT
set-cookie: suid=393BBDD6BFD14FB6A3FD3550154D6B37; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=393BBDD6BFD14FB6A3FD3550154D6B37; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/telaria_p
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /telaria_p HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://simplifi.partners.tremorhub.com/sync?UISF=4C13280FE41A4E228E3016B59D9CB9D5
set-cookie: suid=4C13280FE41A4E228E3016B59D9CB9D5; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=4C13280FE41A4E228E3016B59D9CB9D5; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/tapad
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /tapad HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=F62BF829103C4B0086FFED7EDA333753
set-cookie: suid=F62BF829103C4B0086FFED7EDA333753; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=F62BF829103C4B0086FFED7EDA333753; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/ad_advisor
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /ad_advisor HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=67FE51FF6AD5478DBE91DE77F1C75841
set-cookie: suid=67FE51FF6AD5478DBE91DE77F1C75841; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=67FE51FF6AD5478DBE91DE77F1C75841; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/intentiq
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /intentiq HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 142
location: https://sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=281B47402C874772B82FEA67FB1022E8
set-cookie: suid=281B47402C874772B82FEA67FB1022E8; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=281B47402C874772B82FEA67FB1022E8; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/pubmatic
34.91.62.186200 OK 43 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pubmatic HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=7D4D23EEE4974AD088D005BE7DDE3F0F; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; SameSite=none; Secure;
suid_legacy=7D4D23EEE4974AD088D005BE7DDE3F0F; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:36 GMT; Secure;
expires: Wed, 19 Oct 2022 18:02:36 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 918f13d0a180e271f323b97d47f5df74
ca7f656c46066c53f552b9d7819b36ed945435ff
5fab9a0931aa631a12f8beff47d855cfded8856463d6ccb40419f7634a306e31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.usertrust.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 1e79a47b027dbf5f161f617092dae183
21a4172b2699477e846b5bdac0de4202eed94ced
550c4f2da67e86b83f926efe8263c28468109f2ca208e52df76e8c593ddb0ded
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 18:02:36 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 10:10:17 GMT
Expires: Wed, 26 Oct 2022 10:10:16 GMT
Etag: "21a4172b2699477e846b5bdac0de4202eed94ced"
Cache-Control: max-age=602752,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1003
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75d3aa5b8ff8b521-OSL
fei.pro-market.net/engine?du=24;csync=26A8C3A6C8D746A2B6E17617917299DA;mimetype=img;
107.178.240.89302 Found 0 B URL HTTP/2 fei.pro-market.net/engine?du=24;csync=26A8C3A6C8D746A2B6E17617917299DA;mimetype=img;
IP 107.178.240.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /engine?du=24;csync=26A8C3A6C8D746A2B6E17617917299DA;mimetype=img; HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-5.c.datonics-gcp-01.internal
set-cookie: anProfile="1+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(rk2csc)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
location: https://fei.pro-market.net/engine?du=24;csync=26A8C3A6C8D746A2B6E17617917299DA;mimetype=img;sr
content-type: image/gif
content-length: 0
date: Thu, 20 Oct 2022 18:02:36 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 84a1c57e071b0bec681248a2441633b2
205e8008e1070358f5507d0eaeb898580b05d14f
e82297a0181f627e3f0c9d67ec1160d1de1f5486c4e64f002cbb65531ff328e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5910
Cache-Control: max-age=124944
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:36 GMT
Etag: "6350bb36-1d7"
Expires: Sat, 22 Oct 2022 04:45:00 GMT
Last-Modified: Thu, 20 Oct 2022 03:06:30 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
fei.pro-market.net/engine?du=24;csync=26A8C3A6C8D746A2B6E17617917299DA;mimetype=img;sr
107.178.240.89200 OK 43 B URL HTTP/2 fei.pro-market.net/engine?du=24;csync=26A8C3A6C8D746A2B6E17617917299DA;mimetype=img;sr
IP 107.178.240.89:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 968c3ad2c1183fee0bf0dd479f7904b7
1d770800ecb05eb9133f9b51620c9e4349656859
3331a0486cb3e8a75c8c2fdf02bf80fd8fe2b811dfe5c7b4aa892d38bfcf604a
GET /engine?du=24;csync=26A8C3A6C8D746A2B6E17617917299DA;mimetype=img;sr HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-5.c.datonics-gcp-01.internal
set-cookie: anProfile="0+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(rk2csc)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
content-type: image/gif
content-length: 43
date: Thu, 20 Oct 2022 18:02:36 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash cf1e2061d90cc8721446654bccef5039
ae29dcd493f71d84499fdd8de3a50db462fffa07
236edad796f8db6c811cb3fee337469380d541d43786bf95c5823907f2c695ae
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154210
Date: Thu, 20 Oct 2022 18:02:36 GMT
Etag: "63513888-1d7"
Expires: Sat, 22 Oct 2022 12:52:46 GMT
Last-Modified: Thu, 20 Oct 2022 12:01:12 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Vfki6w_-H_P33vWZ6usvd99WTYTdqCRQk7daY1L9qqiefhSSK_36rA==
Age: 3094
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad802da38f5133506692ed227deb7b60
923466b36450bd0bdb9da1a07d3bf8b1456fd4de
208ddb43672e8e4adf2b32913894c384ed6d87b043bdfaf7b70a2b63dea0102c
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5250
Cache-Control: max-age=163179
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:36 GMT
Etag: "63515325-1d7"
Expires: Sat, 22 Oct 2022 15:22:15 GMT
Last-Modified: Thu, 20 Oct 2022 13:54:45 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e4ec060e40a017e905d37ff0d4dc6f59
69d50e027afb70c7eecb2e08453fc90d5588fcc9
89aeba99b586d4383c1984889fdfd23d36551bf9bd10d765d306e31a5045cc61
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 745
Cache-Control: max-age=105769
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:36 GMT
Etag: "6350847c-1d7"
Expires: Fri, 21 Oct 2022 23:25:25 GMT
Last-Modified: Wed, 19 Oct 2022 23:13:00 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=F62BF829103C4B0086FFED7EDA333753
35.227.248.159302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=F62BF829103C4B0086FFED7EDA333753
IP 35.227.248.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=2305&partner_device_id=F62BF829103C4B0086FFED7EDA333753 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 20 Oct 2022 18:02:36 GMT
strict-transport-security: max-age=31536000
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1666288956852;Expires=Mon, 19 Dec 2022 18:02:36 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=4a66e615-a054-4c9e-bcef-cbee2bccc662;Expires=Mon, 19 Dec 2022 18:02:36 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=F62BF829103C4B0086FFED7EDA333753
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=281B47402C874772B82FEA67FB1022E8
143.204.55.7403 Forbidden 986 B URL HTTP/2 sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=281B47402C874772B82FEA67FB1022E8
IP 143.204.55.7:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7d60acec7285401a61d5e2871022a5db
ec4773934b7e8f75e1123c222550f0bdc06eb55a
3299238e9c7f4b7ef34b53effdd8378526e0b23db076ab49e51703b5680316d4
GET /profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=281B47402C874772B82FEA67FB1022E8 HTTP/1.1
Host: sync.intentiq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: CloudFront
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: text/html
content-length: 986
x-cache: Error from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PTD1I8v_e_KQ5XFACZt1g6Iwfo1mTt6um8-c1Pd9WWIeDcAAmeMcag==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash f9c1cae9390f4faa2bbbcdc4feee49a1
22ba4d182eac1eaf09560b19f59a13ca49211533
926d9afec1ef4f63e1c7671ce4926f2fd45f65dbd7db4478442771c5c79588b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6457
Cache-Control: max-age=134145
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:36 GMT
Etag: "6350dd04-2d7"
Expires: Sat, 22 Oct 2022 07:18:21 GMT
Last-Modified: Thu, 20 Oct 2022 05:30:44 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f46625ed57fb01b3aef6cbb5c3e87ea4
33afd5081bfb9c38dea472e1ab32442e08f5c2c5
2ee654a743e24d84112f92e6b68a3fb8a363354ce5964f71907cd9a0124a1e28
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2295
Cache-Control: max-age=160235
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:36 GMT
Etag: "63515330-1d7"
Expires: Sat, 22 Oct 2022 14:33:11 GMT
Last-Modified: Thu, 20 Oct 2022 13:54:56 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
eb2.3lift.com/xuid?mid=7969&xuid=0A48807409BE4713A4025601BBB56C94&dongle=yf3
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=7969&xuid=0A48807409BE4713A4025601BBB56C94&dongle=yf3
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=7969&xuid=0A48807409BE4713A4025601BBB56C94&dongle=yf3 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=7797&uid=D39DE7ADF5C94457844F9E3E5D1953D1
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7797&uid=D39DE7ADF5C94457844F9E3E5D1953D1
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=7797&uid=D39DE7ADF5C94457844F9E3E5D1953D1 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 20 Oct 2022 18:02:36 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=6131c500-50a1-11ed-8c6b-1189f5600206; expires=Thu, 17-Nov-2022 18:02:36 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7797&uid=D39DE7ADF5C94457844F9E3E5D1953D1&__user_check__=1&sync_id=6131c566-50a1-11ed-8c6b-1189f5600206
X-fe: 99
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd99ae96a1d9cfb9bffb833a29992944
8be8165013e27a26546815fa171b5837148dd410
a99155b839456fbda7db1c86dc8e8db346ec0579199bafff725ae5dc2f4d84ff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2280
Cache-Control: max-age=110540
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:36 GMT
Etag: "63509120-1d7"
Expires: Sat, 22 Oct 2022 00:44:56 GMT
Last-Modified: Thu, 20 Oct 2022 00:06:56 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
us-u.openx.net/w/1.0/sd?id=537072966&val=0A061E8030004BF9AD3615905A6979B0
34.98.64.218200 OK 43 B URL HTTP/2 us-u.openx.net/w/1.0/sd?id=537072966&val=0A061E8030004BF9AD3615905A6979B0
IP 34.98.64.218:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /w/1.0/sd?id=537072966&val=0A061E8030004BF9AD3615905A6979B0 HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Thu, 20 Oct 2022 18:02:36 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ib.adnxs.com/setuid?entity=66&code=F3E20CCAAB74452C95E37FB24FCE5900
185.89.211.132307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/setuid?entity=66&code=F3E20CCAAB74452C95E37FB24FCE5900
IP 185.89.211.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=66&code=F3E20CCAAB74452C95E37FB24FCE5900 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 20 Oct 2022 18:02:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3DF3E20CCAAB74452C95E37FB24FCE5900
AN-X-Request-Uuid: d0c9a704-499b-4ff7-9423-c3bd4ac6c08a
Set-Cookie: uuid2=449708892535109247; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 18-Jan-2023 18:02:36 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=F62BF829103C4B0086FFED7EDA333753
35.227.248.159200 OK 95 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=F62BF829103C4B0086FFED7EDA333753
IP 35.227.248.159:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /idsync/ex/receive/check?partner_id=2305&partner_device_id=F62BF829103C4B0086FFED7EDA333753 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:36 GMT
strict-transport-security: max-age=31536000
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1666288956908;Expires=Mon, 19 Dec 2022 18:02:36 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=3aa4e97e-514e-47bc-be7b-dd9b673cc7c4;Expires=Mon, 19 Dec 2022 18:02:36 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_3WAY_SYNCS=;Expires=Mon, 19 Dec 2022 18:02:36 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
content-type: image/png
content-length: 95
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 84a1c57e071b0bec681248a2441633b2
205e8008e1070358f5507d0eaeb898580b05d14f
e82297a0181f627e3f0c9d67ec1160d1de1f5486c4e64f002cbb65531ff328e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5910
Cache-Control: max-age=124944
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:36 GMT
Etag: "6350bb36-1d7"
Expires: Sat, 22 Oct 2022 04:45:00 GMT
Last-Modified: Thu, 20 Oct 2022 03:06:30 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
sync.search.spotxchange.com/partner?adv_id=7797&uid=D39DE7ADF5C94457844F9E3E5D1953D1&__user_check__=1&sync_id=6131c566-50a1-11ed-8c6b-1189f5600206
185.94.180.126200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7797&uid=D39DE7ADF5C94457844F9E3E5D1953D1&__user_check__=1&sync_id=6131c566-50a1-11ed-8c6b-1189f5600206
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=7797&uid=D39DE7ADF5C94457844F9E3E5D1953D1&__user_check__=1&sync_id=6131c566-50a1-11ed-8c6b-1189f5600206 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 20 Oct 2022 18:02:36 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=6136ba6b-50a1-11ed-a890-1ebee0f60406; expires=Thu, 17-Nov-2022 18:02:36 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 92
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3DF3E20CCAAB74452C95E37FB24FCE5900
185.89.211.132200 OK 43 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3DF3E20CCAAB74452C95E37FB24FCE5900
IP 185.89.211.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D66%26code%3DF3E20CCAAB74452C95E37FB24FCE5900 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 20 Oct 2022 18:02:36 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: d7073ad7-a49e-48c4-a663-04fe262ed90c
Set-Cookie: anj=dTM7k!M4.FE:2jUF']wIg2Il`=D%[`!@wnfH8KW.dG5<#Z?TyTG4U<mr0-^HHMV)noH<TvG5IB$E:]bcqyY=PCr+`ik!2Dt(j#iP(Md+>)fy*<Ryhc>; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 18-Jan-2023 18:02:36 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=4515FE75F07E4B6C93A657DA84FDE022&expires=365
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=4515FE75F07E4B6C93A657DA84FDE022&expires=365
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6286&nid=2132&put=4515FE75F07E4B6C93A657DA84FDE022&expires=365 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 17c962550296893d145ef1b8078fc6d6
Content-Type: image/gif
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad802da38f5133506692ed227deb7b60
923466b36450bd0bdb9da1a07d3bf8b1456fd4de
208ddb43672e8e4adf2b32913894c384ed6d87b043bdfaf7b70a2b63dea0102c
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5551
Cache-Control: max-age=163480
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 18:02:36 GMT
Etag: "63515325-1d7"
Expires: Sat, 22 Oct 2022 15:27:16 GMT
Last-Modified: Thu, 20 Oct 2022 13:54:45 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
loadm.exelator.com/load/?p=204&g=2191&simid=6F19731CD78044A78BA99A9F05A515B4&j=0
34.254.143.3204 No Content 0 B URL HTTP/2 loadm.exelator.com/load/?p=204&g=2191&simid=6F19731CD78044A78BA99A9F05A515B4&j=0
IP 34.254.143.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /load/?p=204&g=2191&simid=6F19731CD78044A78BA99A9F05A515B4&j=0 HTTP/1.1
Host: loadm.exelator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 20 Oct 2022 18:02:36 GMT
cache-control: no-cache
x-powered-by: Undertow/1
access-control-allow-credentials: true
p3p: policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA, policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 0a5a7ce1cb202a76c722693fe322a15f
800bb05f4df01397caa8810a89b659e2ecef7fee
7c8113b3f1b14228f865d6ed1eae99610d2467a5ef409739f7cc1538b0e91576
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=85547
Date: Thu, 20 Oct 2022 18:02:36 GMT
Etag: "63502361-1d7"
Expires: Fri, 21 Oct 2022 17:48:23 GMT
Last-Modified: Wed, 19 Oct 2022 16:18:41 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Od3mMwozgCsM4M0bqfRcU7O4l3VrbsqGnAKjj8VHBI-hQIKPzCqGwg==
Age: 5382
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash b99e6de2bb268e73fcd06d828cd8611e
80a0eb98c534c6a5fb8abbea701608e0cd308604
2c20099d6849d767f69a9bdef6231d6074da2e53a7431a2bdac26abcae370d38
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 20 Oct 2022 18:02:37 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 19 Oct 2022 20:24:37 GMT
Expires: Thu, 20 Oct 2022 20:24:37 GMT
ETag: "80a0eb98c534c6a5fb8abbea701608e0cd308604"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash b6378221a0a35478828f1031f9307888
8828c54afe26cc0f41e5799a5b63f888021f9b52
2e609852e391e799467b273399c1264e31adc2f7dac2caf2313811f08ba3541e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 18:02:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 13:42:56 GMT
Expires: Wed, 26 Oct 2022 13:42:55 GMT
Etag: "8828c54afe26cc0f41e5799a5b63f888021f9b52"
Cache-Control: max-age=502218,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d3aa5c1e19b4f9-OSL
idsync.rlcdn.com/419566.gif?partner_uid=944EF77F130E46A5A853B05720A7C39D
35.244.174.68451 Unavailable For Legal Reasons 0 B URL HTTP/2 idsync.rlcdn.com/419566.gif?partner_uid=944EF77F130E46A5A853B05720A7C39D
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /419566.gif?partner_uid=944EF77F130E46A5A853B05720A7C39D HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Thu, 20 Oct 2022 18:02:37 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stags.bluekai.com/site/29931?id=D16AF8C159144A6DBDDEA200EF44726C
23.38.201.22200 OK 62 B URL HTTP/2 stags.bluekai.com/site/29931?id=D16AF8C159144A6DBDDEA200EF44726C
IP 23.38.201.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3f386f5061436a0338a64e0910db495d
599fe4a552c991a2b3ce5a1660732bf7b21fb901
0af3aae90b7de9fdceee2ab421378ea2f54c74be81ef43fc6c1790a032755d80
GET /site/29931?id=D16AF8C159144A6DBDDEA200EF44726C HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 62
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Thu, 20 Oct 2022 18:02:37 GMT
set-cookie: bku=blx99e0BDVw/+U/h; Path=/; Domain=.bluekai.com; Expires=Thu, 20 Apr 2023 18:02:36 GMT; SameSite=None
bkpa=KJy9nyexd02pSUHknp/8mE1hwtkAwDxhBAasmW1hBEAhBeHOBAHYHWHaxE/y1WPsBexl1Mje9y9309rX; Path=/; Domain=.bluekai.com; Expires=Thu, 20 Apr 2023 18:02:36 GMT; SameSite=None
X-Firefox-Spdy: h2
d.agkn.com/pixel/10751/?che=1666288956912&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216803104310003349930
34.248.212.187302 Found 0 B URL HTTP/1.1 d.agkn.com/pixel/10751/?che=1666288956912&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216803104310003349930
IP 34.248.212.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/10751/?che=1666288956912&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216803104310003349930 HTTP/1.1
Host: d.agkn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache, must-revalidate
Date: Thu, 20 Oct 2022 18:02:36 GMT
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://um.simpli.fi/aa_px?sk=216803104310003349930
P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Server: Apache-Coyote/1.1
Set-Cookie: ab=0001%3At8PcELh8nyCz%2F8nEX6T409ZbZVM2OYxV;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
u=C|0AAAq5Em9KuRJvQAAAAAA;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
Content-Length: 0
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 209b9c1f89641a0a9d4632f498663275
9631b2cd927ed78e1cc9d9739ec7d5235ea16511
62891cc12b84318c3685b9649a466d17e33e7ce1eef4a67d29e3230235692a66
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171428
Date: Thu, 20 Oct 2022 18:02:37 GMT
Etag: "63517399-1d7"
Expires: Sat, 22 Oct 2022 17:39:45 GMT
Last-Modified: Thu, 20 Oct 2022 16:13:13 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Acap8lHysH3JTkObfq6hfkQU0HbTvj_FoL6-kE19MDhuv7IMUZOf8w==
Age: 5192
liqadprdct-capture-prod-east.gannettdigital.com/capture_logger/api/v1/insights
34.75.237.118200 OK 16 B URL HTTP/1.1 liqadprdct-capture-prod-east.gannettdigital.com/capture_logger/api/v1/insights
IP 34.75.237.118:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /capture_logger/api/v1/insights HTTP/1.1
Host: liqadprdct-capture-prod-east.gannettdigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 4388
Origin: https://www.integrityhc.com
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
content-type: application/json; charset=utf-8
vary: Accept, Origin
etag: W/"c955e57777ec0d73639dca6748560d00"
cache-control: max-age=0, private, must-revalidate
x-request-id: 1ef36754-872e-4223-95f0-cce62b009022
x-runtime: 0.022592
x-envoy-upstream-service-time: 28
date: Thu, 20 Oct 2022 18:02:36 GMT
server: envoy
transfer-encoding: chunked
ce.lijit.com/merge?pid=2&3pid=BEC3CCA29400455395AD2CFEADFBAAA3
23.92.190.74204 No Content 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=2&3pid=BEC3CCA29400455395AD2CFEADFBAAA3
IP 23.92.190.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=2&3pid=BEC3CCA29400455395AD2CFEADFBAAA3 HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Thu, 20 Oct 2022 18:02:37 GMT
X-MERGE: GDPR Optout true
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
Expires: Fri, 20 Mar 2009 00:00:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap4ewr1
sync.bfmio.com/sync?pid=141&uid=FA9B536F02BF43BCAF74850058CB30CE
54.84.45.215204 0 B URL HTTP/1.1 sync.bfmio.com/sync?pid=141&uid=FA9B536F02BF43BCAF74850058CB30CE
IP 54.84.45.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=141&uid=FA9B536F02BF43BCAF74850058CB30CE HTTP/1.1
Host: sync.bfmio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204
Date: Thu, 20 Oct 2022 18:02:36 GMT
Set-Cookie: __141_cid=FA9B536F02BF43BCAF74850058CB30CE; Domain=.bfmio.com; Expires=Fri, 20-Oct-2023 18:02:37 GMT; Path=/
__io_cid=a8a6219aeb2d2aa0b0cddf9d106516ef3cb91356; Domain=.bfmio.com; Expires=Fri, 20-Oct-2023 18:02:37 GMT; Path=/
Connection: keep-alive
aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=67FE51FF6AD5478DBE91DE77F1C75841
52.58.135.188302 Found 142 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=67FE51FF6AD5478DBE91DE77F1C75841
IP 52.58.135.188:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /adscores/g.pixel?sid=9201915418&sifi_uid=67FE51FF6AD5478DBE91DE77F1C75841 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 20 Oct 2022 18:02:36 GMT
location: https://d.agkn.com/pixel/10751/?che=1666288956912&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216803104310003349930
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3ActF4d%2F9RPbMIM%2BGzPB4Sjup5UFp05Hde; Path=/; Domain=.agkn.com; Expires=Fri, 20-Oct-2023 18:02:36 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
um.simpli.fi/empty.gif
34.91.62.186200 OK 43 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /empty.gif HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:37 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=13B2992146B34D8E963839C9CEA38B01; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:37 GMT; SameSite=none; Secure;
suid_legacy=13B2992146B34D8E963839C9CEA38B01; Path=/; domain=simpli.fi; Expires=Sat, 21-Oct-23 18:02:37 GMT; Secure;
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash b6378221a0a35478828f1031f9307888
8828c54afe26cc0f41e5799a5b63f888021f9b52
2e609852e391e799467b273399c1264e31adc2f7dac2caf2313811f08ba3541e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 18:02:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 13:42:56 GMT
Expires: Wed, 26 Oct 2022 13:42:55 GMT
Etag: "8828c54afe26cc0f41e5799a5b63f888021f9b52"
Cache-Control: max-age=502217,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d3aa5dc984b4f9-OSL
bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=F2EC739D9BEA4AE792986C70FDBB83A9
34.251.218.252302 Found 0 B URL HTTP/2 bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=F2EC739D9BEA4AE792986C70FDBB83A9
IP 34.251.218.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /map/c=7625/tp=SIMP/tpid=F2EC739D9BEA4AE792986C70FDBB83A9 HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 20 Oct 2022 18:02:37 GMT
content-length: 0
location: https://bcp.crwdcntrl.net/map/ct=y/c=7625/tp=SIMP/tpid=F2EC739D9BEA4AE792986C70FDBB83A9
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.22.153
set-cookie: _cc_cc=ctst;Path=/;Domain=crwdcntrl.net;SameSite=None;Secure
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
bcp.crwdcntrl.net/map/ct=y/c=7625/tp=SIMP/tpid=F2EC739D9BEA4AE792986C70FDBB83A9
34.251.218.252200 OK 49 B URL HTTP/2 bcp.crwdcntrl.net/map/ct=y/c=7625/tp=SIMP/tpid=F2EC739D9BEA4AE792986C70FDBB83A9
IP 34.251.218.252:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /map/ct=y/c=7625/tp=SIMP/tpid=F2EC739D9BEA4AE792986C70FDBB83A9 HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:37 GMT
content-type: image/gif
content-length: 49
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.0.54
x-consent: absent
access-control-allow-origin: *
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash f77298c01766bf26f637daa26e17a3bc
331eacd018b9f676afa294814055035c883ccd8c
ade7cd4cc9fd7a6b08e250c5eedbd9c8e4fd490935b07bc227bf552b8d7f5e9e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 20 Oct 2022 18:02:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 20 Oct 2022 07:01:37 GMT
Expires: Fri, 21 Oct 2022 07:01:37 GMT
ETag: "331eacd018b9f676afa294814055035c883ccd8c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8f4c469-7b52-4900-a2b2-b5c937961850.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8f4c469-7b52-4900-a2b2-b5c937961850.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fc696c41b037c43afe2039706b5bf4d4
82eddbb839a78c0584a67ed57523af489e57a290
4dbeff5715c19055cd43e3b9f70f5a8f12e24f134fe286cb494c873c339f7c5d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8f4c469-7b52-4900-a2b2-b5c937961850.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7143
x-amzn-requestid: a6b294ee-febd-4346-8b94-943105d558a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRX9LHTvoAMFYrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506d20-4107c22b75adea7139bde747;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VOU0lwkU5dgkiI_ubndzd_ZY1EUmKeW8nLkZI4nHDdjq6TjYQ8TuDA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 21:49:31 GMT
age: 72790
etag: "82eddbb839a78c0584a67ed57523af489e57a290"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.integrityhc.com/wp-content/cache/autoptimize/js/autoptimize_971a6353bc19c180c80815227920d915.js
35.197.23.243200 OK 0 B URL HTTP/2 www.integrityhc.com/wp-content/cache/autoptimize/js/autoptimize_971a6353bc19c180c80815227920d915.js
IP 35.197.23.243:0
GET /wp-content/cache/autoptimize/js/autoptimize_971a6353bc19c180c80815227920d915.js HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:33 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 18 Oct 2022 13:27:12 GMT
etag: W/"634ea9b0-659db"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
static.addtoany.com/menu/page.js
172.67.39.148200 OK 0 B URL HTTP/2 static.addtoany.com/menu/page.js
IP 172.67.39.148:0
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:33 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 38354
etag: W/"bb9-5eb5d2575a6c8"
last-modified: Wed, 19 Oct 2022 06:16:16 GMT
vary: Accept-Encoding
via: e1s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75d3aa465c1ab511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Playfair+Display&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Playfair+Display&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Playfair+Display&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 20 Oct 2022 18:02:33 GMT
date: Thu, 20 Oct 2022 18:02:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
simplifi.partners.tremorhub.com/sync?UISF=4C13280FE41A4E228E3016B59D9CB9D5
34.192.165.142200 OK 0 B URL HTTP/2 simplifi.partners.tremorhub.com/sync?UISF=4C13280FE41A4E228E3016B59D9CB9D5
IP 34.192.165.142:0
GET /sync?UISF=4C13280FE41A4E228E3016B59D9CB9D5 HTTP/1.1
Host: simplifi.partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.integrityhc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:37 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
www.integrityhc.com/
35.197.23.243200 OK 0 B IP 35.197.23.243:0
GET / HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
link: <https://www.integrityhc.com/wp-json/>; rel="https://api.w.org/", <https://www.integrityhc.com/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://www.integrityhc.com/>; rel=shortlink
x-powered-by: WP Engine
x-cacheable: SHORT
cache-control: max-age=600, must-revalidate
x-cache: HIT: 4
x-cache-group: normal
content-encoding: br
X-Firefox-Spdy: h2
static.addtoany.com/menu/modules/core.ad902dd1.js
172.67.39.148200 OK 0 B URL HTTP/2 static.addtoany.com/menu/modules/core.ad902dd1.js
IP 172.67.39.148:0
GET /menu/modules/core.ad902dd1.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.integrityhc.com
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 20 Oct 2022 18:02:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 19 Oct 2022 06:16:14 GMT
etag: W/"11786-5eb5d25506b88"
cache-control: max-age=315360000, immutable
x-content-type-options: nosniff
access-control-allow-origin: *
vary: Accept-Encoding
via: e4s
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75d3aa49ac3bb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.integrityhc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
35.197.23.243200 OK 0 B URL HTTP/2 www.integrityhc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 35.197.23.243:0
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.integrityhc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.integrityhc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 18:02:33 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
etag: W/"62551487-48b9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2