ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4616
Cache-Control: max-age=98360
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:53 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 11:48:13 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7346
Expires: Mon, 05 Dec 2022 10:31:19 GMT
Date: Mon, 05 Dec 2022 08:28:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 08:20:14 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 519
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7053
Expires: Mon, 05 Dec 2022 10:26:26 GMT
Date: Mon, 05 Dec 2022 08:28:53 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CvE8OMWmZRnz3YmpVgJ5ynh/sbqQaLJ//9guVJHOrWbmRusu8ljdIMyjRu3bI1NlUVyNqieJLIY=
x-amz-request-id: BMTH4F19J58RWF0Z
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 07:47:19 GMT
age: 2494
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
myhealthreads.com/korean-15-crazy-useful-things/
207.246.105.151200 OK 40 kB URL HTTP/2 myhealthreads.com/korean-15-crazy-useful-things/
IP 207.246.105.151:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (45882), with CRLF, LF line terminators
Hash c222dc6ef13c390f638ca41e3fdfc675
7cebef6836ba19d7a16800d44cfa6e295ccf0bc0
968ecbad240743c5d591a16303ead7d9cc557e0a6ab1a2f2146ff12a33a13df2
GET /korean-15-crazy-useful-things/ HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:53 GMT
content-type: text/html; charset=utf-8
content-length: 40306
cache-provider: CLOUDWAYS-CACHE-DE
last-modified: Sun, 04 Dec 2022 18:31:08 GMT
cache-control: max-age=0
expires: Mon, 05 Dec 2022 08:26:39 GMT
vary: Accept-Encoding
content-encoding: gzip
age: 134
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e5bac4d4b369c01a170f61442be654f0
f4f8c5a232a3fd27190891a1b3b6ef36852661fe
3386b75fde66c69fe1d62916e5d2a9c9acc0ee509df1b3ffd00720988c4bb8e7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4673
Cache-Control: max-age=124681
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:54 GMT
Etag: "638cdd8e-117"
Expires: Tue, 06 Dec 2022 19:06:55 GMT
Last-Modified: Sun, 04 Dec 2022 17:49:02 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
myhealthreads.com/wp-content/plugins/theia-post-slider/fonts/style.css?ver=2.0.0
207.246.105.151200 OK 1.3 kB URL HTTP/2 myhealthreads.com/wp-content/plugins/theia-post-slider/fonts/style.css?ver=2.0.0
IP 207.246.105.151:0
Hash 8d905f902415918e3ce8d902d153cd34
f7b7932ae40142ffc599c04fc9b2c890f6e13811
969fe97aeedc589b2a70e1a1cd8af8a46307d824a23053e2fa90fadea2453f57
GET /wp-content/plugins/theia-post-slider/fonts/style.css?ver=2.0.0 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 12:38:30 GMT
vary: Accept-Encoding
etag: W/"636cf0c6-1236"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-150804239-1
142.250.74.8200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-150804239-1
IP 142.250.74.8:0
File type ASCII text, with very long lines (1921)
Hash cf78a454aca353e620590ef2d2a1c619
449ed305eb9c8f0c276bfe5e1cefae8665bf04d7
78683efc1086c17ce6bd8e41c3fbaea2775e8bf4440ad1116079f1fabf442298
GET /gtag/js?id=UA-150804239-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 08:28:54 GMT
expires: Mon, 05 Dec 2022 08:28:54 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43633
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
207.246.105.151200 OK 1.5 kB URL HTTP/2 myhealthreads.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 207.246.105.151:0
Hash 39b29256c44a2e9d6343aca5eefebb3a
0c9ea82cb4787784cb0fd5a5530d9e353b95decb
ce56824ecd319bf2ec751e65fadd0a30fcfdc4e9ee5705f96107aa2546c3e822
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 12:42:26 GMT
vary: Accept-Encoding
etag: W/"636cf1b2-aab"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
myhealthreads.com/wp-includes/css/classic-themes.min.css?ver=1
207.246.105.151200 OK 518 B URL HTTP/2 myhealthreads.com/wp-includes/css/classic-themes.min.css?ver=1
IP 207.246.105.151:0
Hash 738ae5465387faf947a0c37d16097763
c84cf1846264966eb1bb8a4af7229f93905b5bc9
b99052e5eaa0f12b2d298b5b3a8c760b9474a3011e0e4b0da637011d2fcc024f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 13:09:25 GMT
vary: Accept-Encoding
etag: W/"636cf805-d9"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e5bac4d4b369c01a170f61442be654f0
f4f8c5a232a3fd27190891a1b3b6ef36852661fe
3386b75fde66c69fe1d62916e5d2a9c9acc0ee509df1b3ffd00720988c4bb8e7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4673
Cache-Control: max-age=124681
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:54 GMT
Etag: "638cdd8e-117"
Expires: Tue, 06 Dec 2022 19:06:55 GMT
Last-Modified: Sun, 04 Dec 2022 17:49:02 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4600
Cache-Control: max-age=93277
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:54 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 10:23:31 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
myhealthreads.com/wp-content/uploads/2022/10/MyHealthReads-272-x-90-px-1.png
207.246.105.151200 OK 4.3 kB URL HTTP/2 myhealthreads.com/wp-content/uploads/2022/10/MyHealthReads-272-x-90-px-1.png
IP 207.246.105.151:0
File type PNG image data, 272 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f7d201f4a2a29935a3026102978c140
84e42c538dc9c5fcaeb30d4b88a6dbaa446a9e52
f7108d58d5045cb6038baf3e163fb7b3967c8d9e7214c36b7acfcb0e27072113
GET /wp-content/uploads/2022/10/MyHealthReads-272-x-90-px-1.png HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: image/png
content-length: 4268
last-modified: Thu, 13 Oct 2022 11:13:33 GMT
etag: "6347f2dd-10ac"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.223.160.237101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.223.160.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: B2Cw1udypYRNhPm2xeZtxA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XyS9VCT5sfORSkDj3yx3PUgaWk4=
myhealthreads.com/wp-content/uploads/2022/10/sopan.us_-1-1.png
207.246.105.151200 OK 413 kB URL HTTP/2 myhealthreads.com/wp-content/uploads/2022/10/sopan.us_-1-1.png
IP 207.246.105.151:0
File type PNG image data, 680 x 486, 8-bit/color RGBA, non-interlaced\012- data
Size 413 kB (412617 bytes)
Hash 65db7a26a9eb11d2d13096faeea70032
2a3fe2dad3880025c40f238f0d614894227ae3cd
3d9cc9f4dc858ee831ddf9f65af2e732543367be2e9f068988de367bb029a3a0
GET /wp-content/uploads/2022/10/sopan.us_-1-1.png HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: image/png
content-length: 412617
last-modified: Tue, 11 Oct 2022 13:19:08 GMT
etag: "63456d4c-64bc9"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/theia-post-slider/js/tps-transition-simple.js?ver=2.0.0
207.246.105.151200 OK 1.1 kB URL HTTP/2 myhealthreads.com/wp-content/plugins/theia-post-slider/js/tps-transition-simple.js?ver=2.0.0
IP 207.246.105.151:0
Hash 864e419d844fc3caf4e583bfc23be3d1
051874bc76994fe5a6b02fa17603fcf0980878d0
1277cb4ff33a5431af42a62f60d40aef62c9d93f0c9e41d725e802bc4a928c25
GET /wp-content/plugins/theia-post-slider/js/tps-transition-simple.js?ver=2.0.0 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 12:38:30 GMT
vary: Accept-Encoding
etag: W/"636cf0c6-639"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
myhealthreads.com/wp-content/themes/Newspaper/rtl.css?ver=02f418ea69eb1388ebd096360019ef64
207.246.105.151404 Not Found 82 kB URL HTTP/2 myhealthreads.com/wp-content/themes/Newspaper/rtl.css?ver=02f418ea69eb1388ebd096360019ef64
IP 207.246.105.151:0
Hash c5aa5bb7507e9958345602f0f29c53b2
427e8c5212009541454d875a552c002b80cbae24
69dff48ecc3d06fbf4bc2affc2f173a7b9d4f1eead564d1e3a14057e1b9c8c47
GET /wp-content/themes/Newspaper/rtl.css?ver=02f418ea69eb1388ebd096360019ef64 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://myhealthreads.com/wp-json/>; rel="https://api.w.org/"
age: 0
x-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/theia-post-slider/js/balupton-history.js/jquery.history.js?ver=1.7.1
207.246.105.151200 OK 23 kB URL HTTP/2 myhealthreads.com/wp-content/plugins/theia-post-slider/js/balupton-history.js/jquery.history.js?ver=1.7.1
IP 207.246.105.151:0
Hash 1e87bc69ea034fd54624ec478f4dca0a
fffe0f998e3401119591b49d00b05de3fca64146
d1f63f61e7204100859136086f1bb6925df4fef820ccc1cfcccb79a0caa84e60
GET /wp-content/plugins/theia-post-slider/js/balupton-history.js/jquery.history.js?ver=1.7.1 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 12:38:30 GMT
vary: Accept-Encoding
etag: W/"636cf0c6-598f"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/simple_translation_plugin/_inc/dstp.js?ver=1.0.1
207.246.105.151200 OK 18 kB URL HTTP/2 myhealthreads.com/wp-content/plugins/simple_translation_plugin/_inc/dstp.js?ver=1.0.1
IP 207.246.105.151:0
Hash 64368bc900d86659042bcc71e1e4307d
913ba06a0e8405a74dfee8b89a2e414cfd783c3e
4d6319dc78a3cfd81bb23794e18910d8b23eeb526c0aa83b5e14bbb4e83d6b94
GET /wp-content/plugins/simple_translation_plugin/_inc/dstp.js?ver=1.0.1 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 13 Oct 2022 11:03:57 GMT
vary: Accept-Encoding
etag: W/"6347f09d-636"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 392101
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/theia-post-slider/js/async.min.js?ver=14.09.2014
207.246.105.151200 OK 51 kB URL HTTP/2 myhealthreads.com/wp-content/plugins/theia-post-slider/js/async.min.js?ver=14.09.2014
IP 207.246.105.151:0
Hash be5d601d85fa99e634d234e139d25778
40e247feb8473ecd5fee71503f145522ed7bd192
c1abb59bfebcf0e30400fde63b0caaa8e4b3715664b7ec5703b1af738a9ea0d1
GET /wp-content/plugins/theia-post-slider/js/async.min.js?ver=14.09.2014 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 12:38:30 GMT
vary: Accept-Encoding
etag: W/"636cf0c6-2c43"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/theia-post-slider/js/hammer.min.js?ver=2.0.4
207.246.105.151200 OK 23 kB URL HTTP/2 myhealthreads.com/wp-content/plugins/theia-post-slider/js/hammer.min.js?ver=2.0.4
IP 207.246.105.151:0
Hash b4b8a00872655b750d0863e64950d536
d51e356bd4da99d6a71aa32a6c15d9beb65c0697
b2f17cd22552f29c3c734cc178915de22a851ab74abf0b6a3f7aec32b8454e41
GET /wp-content/plugins/theia-post-slider/js/hammer.min.js?ver=2.0.4 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 12:38:30 GMT
vary: Accept-Encoding
etag: W/"636cf0c6-50f6"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
myhealthreads.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
207.246.105.151200 OK 26 kB URL HTTP/2 myhealthreads.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 207.246.105.151:0
Hash 9764a44e9188a785c530650ab933d4fc
2284b99418ee97874430cf08d2698c9c26068657
8226a1f51efc1be8eb9a80add1f0582a2f2a8b62e6e910a972f2e8bcf7c8f161
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 13:05:54 GMT
vary: Accept-Encoding
etag: W/"636cf732-2bd8"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
whazugho.com/ntfc.php?p=3358181
139.45.197.250200 OK 24 kB URL HTTP/2 whazugho.com/ntfc.php?p=3358181
IP 139.45.197.250:0
Hash 9dfc559a9393d3095e88f22cfcab67cc
89992b834f26c6d99a76e56c12b6d2b1b60ef90c
e76fb50a108c5bfe615a5ba1e8d2cdaa9f91a1b28b65132d7676e5eb4f2b9134
Analyzer Verdict Alert fortinet Malware
GET /ntfc.php?p=3358181 HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 15:42:47 GMT
etag: W/"6388cb77-37f4"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
whazugho.com/zone?pub=0&zone_id=3358181&is_mobile=false&domain=myhealthreads.com&var=&ymid=&var_3=
139.45.197.250200 OK 755 B URL HTTP/2 whazugho.com/zone?pub=0&zone_id=3358181&is_mobile=false&domain=myhealthreads.com&var=&ymid=&var_3=
IP 139.45.197.250:0
File type JSON data\012- , ASCII text, with very long lines (754)
Hash bacbdae1898932ff7860fa67c4e8d727
453ec0a72348d95d9652bedd50f84723facec4ef
4ea630d4a58fb4b96d497e3fcfd367f6ab322cb0844bba2afe3ad07200b69c7a
GET /zone?pub=0&zone_id=3358181&is_mobile=false&domain=myhealthreads.com&var=&ymid=&var_3= HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Origin: https://myhealthreads.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:55 GMT
content-type: application/json; charset=utf-8
content-length: 755
x-trace-id: 802fb86938f1ff1a0ccf1c19ac55d4ec
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
143.204.46.73301 Moved Permanently 167 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 143.204.46.73:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 167
location: https://d3div1mtym39ic.cloudfront.net/aax2/apstag.js
server: CloudFront
date: Mon, 05 Dec 2022 00:42:49 GMT
via: 1.1 ed4565467c6c9847b6a3fcb6cec799e4.cloudfront.net (CloudFront), 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-C1
x-amz-cf-id: _-cOEpI6GimFPlUJwxREnNV_gW9uajqO44LGnDjtBGyCcZ22BU9-bg==
age: 27966
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/robustdigital/loader.js
151.101.193.44200 OK 37 kB URL HTTP/2 cdn.taboola.com/libtrc/robustdigital/loader.js
IP 151.101.193.44:0
Hash ca49c3a97037a23a8fa1a99cb40478b8
c8f7a715b719cb600b1547b217f8aacbcf8818a0
599a56c5859f0f84d52407343f5c78ee3e7aa401bdac408e0f41ba92ac926755
GET /libtrc/robustdigital/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
etag: "05c5274153264a1ac2922e63a1ab874ec85461bc"
last-modified: Sun, 04 Dec 2022 20:19:12 UTC
x-amz-id-2: 5E8nsWV4ECfqBYlM3KoJjSyDW9ca/mW6n7HocP34fUFgoPc1zOIa4LWRqV309VRvz+Ot45WuTtY=
x-amz-request-id: WS6J0Z0MBP43BFMV
x-amz-version-id: ULCPp3tEYvizlpBIYO_n_y45xVtIyTfF
x-from-cache: 1
x-envoy-upstream-service-time: 12
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:55 GMT
via: 1.1 varnish
age: 2847
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670228936.542209,VS0,VE1
cache-control: private,max-age=14400
vary: Accept-Encoding, Accept-Encoding
abp: 20
content-length: 36395
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 05 Dec 2022 06:41:08 GMT
expires: Mon, 05 Dec 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 6467
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.taboola.com/libtrc/unip/1226092/tfa.js
151.101.193.44200 OK 21 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1226092/tfa.js
IP 151.101.193.44:0
Hash 739d0093ca4b8e434aee715b6a27c2f7
29e9c62c1f3d5cc64ca769f362f75e6172f4014b
8fd4335cdcd281e391ddd0d0f70ad8dca3d06aa47f54fbc12e06f8d6bbe3fb21
GET /libtrc/unip/1226092/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gJsSBCo/hOruSpUd9wU4pBHuKpcZz5AqgYhHlzQs4b34T+T8t90T7uMmMskXq1Yfm7u8MMqdYYY=
x-amz-request-id: TC7FZ1BDSQ31TRS5
x-amz-replication-status: COMPLETED
last-modified: Sun, 27 Nov 2022 11:03:09 GMT
etag: "77a224b3ecf0426b76fbd98f124319e5"
x-amz-version-id: I1c9JceW93KUHUXdAKzo62tdUj4htVUD
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:55 GMT
via: 1.1 varnish
age: 1875
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670228936.563402,VS0,VE2
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 47
content-length: 17939
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.162200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (40252)
Hash 70b41fb7883cf2818c9ebae68a609136
a99bc58b857e0ddeb432b775a4eb26b5009a8cc6
07c44121d572b0b7dbc9c68c245363922274d9e38468eb825a6de7be83709153
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27501
date: Mon, 05 Dec 2022 08:28:55 GMT
expires: Mon, 05 Dec 2022 08:28:55 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1412 / 29 of 1000 / last-modified: 1670022376"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/tr5?abgroup=aa_test_for_monitoring_ctrl
151.101.193.44200 OK 3 B URL HTTP/2 cdn.taboola.com/libtrc/tr5?abgroup=aa_test_for_monitoring_ctrl
IP 151.101.193.44:0
File type ASCII text, with no line terminators
Hash cf1731f1eadf52f064e6059d699e7615
816201b65af045985cf47b5c7c58089759d00a45
2e34af284c28bf285781a36241b6e00ec74c81e6ae6858d52bdede5ebf7e37c1
GET /libtrc/tr5?abgroup=aa_test_for_monitoring_ctrl HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Varnish
retry-after: 0
content-type: text/html
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:55 GMT
via: 1.1 varnish
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1670228936.617176,VS0,VE0
cache-control: private,max-age=14400
content-length: 3
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.taboola.com/libtrc/impl.20221204-5-RELEASE.js
151.101.193.44200 OK 147 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20221204-5-RELEASE.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (65509)
Size 147 kB (146692 bytes)
Hash 44011b5dd14e2f62cd293736e61bfd5d
de3c2fe115b850c1e3e98fe3f7535b25cb1d3c60
b3afb4ddb950f8d47f69dc4d767ab42575b6ac181266b74bf47f62db718d1b78
GET /libtrc/impl.20221204-5-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: CjI7dNb7Sm2ieogl+FR+2lgv4og9KWqPbaVSss7gfMGqV7gCClnQ5mltb5VDFGjCpsQ2jYBvHZE=
x-amz-request-id: 4J772X8ZNY05ZTSH
last-modified: Sun, 04 Dec 2022 10:58:02 GMT
etag: "44011b5dd14e2f62cd293736e61bfd5d"
content-encoding: br
x-amz-version-id: FCB4xk7W.ZTqnSlYrGqFWfqH44s.QC5m
content-type: application/javascript
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:55 GMT
via: 1.1 varnish
age: 19844
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 11082
x-timer: S1670228936.637837,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 47
server: AmazonS3-br
content-length: 146692
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/uploads/2022/10/MyHealthReads-544-x-180-px-1-2.png
207.246.105.151200 OK 5.7 kB URL HTTP/2 myhealthreads.com/wp-content/uploads/2022/10/MyHealthReads-544-x-180-px-1-2.png
IP 207.246.105.151:0
Hash 07572188187e224ff7698ed2bb3a9881
526867b28219d15bac862b03d11b4222696a49f4
006671d07b9a137b0ef44a40a6cd80ca1fa37edfa4be281f23c525079e20eebb
GET /wp-content/uploads/2022/10/MyHealthReads-544-x-180-px-1-2.png HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:55 GMT
content-type: image/png
content-length: 5469
last-modified: Thu, 13 Oct 2022 14:27:40 GMT
etag: "6348205c-155d"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
d3div1mtym39ic.cloudfront.net/aax2/apstag.js
143.204.55.94204 No Content 45 kB URL HTTP/2 d3div1mtym39ic.cloudfront.net/aax2/apstag.js
IP 143.204.55.94:0
File type gzip compressed data, from Unix\012- data
Hash 447a05493f9e73a684f65b1cc76b31c2
63ac7a82f50b7e033113616654f9177e42106e9c
8e3cbe23b6706b66b929f4bd2be93471216ac1b8f3db057c86625374010322c7
GET /aax2/apstag.js HTTP/1.1
Host: d3div1mtym39ic.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 05 Dec 2022 08:28:55 GMT
set-cookie: UID=100e79bafe52a8cad15ea781670228935; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: e7lnmFELYaOCAdt5Umj-ZFPwrG5iTjRiLF8RK0JfkpSWxjxntY3nCw==
X-Firefox-Spdy: h2
whazugho.com/custom
139.45.197.250200 OK 0 B IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://myhealthreads.com/
Origin: https://myhealthreads.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:55 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fmyhealthreads.com&pubid=66ef05f7-ad53-48f6-873a-ac7543370392
143.204.46.73200 OK 1.1 kB URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fmyhealthreads.com&pubid=66ef05f7-ad53-48f6-873a-ac7543370392
IP 143.204.46.73:0
File type JSON data\012- , ASCII text, with very long lines (1071), with no line terminators
Hash 4a96b217c40c5616eb6d573f37084102
664d1f7d83ce0bf6b1c989c3f41bd15a88bff9cf
f878fbeae7fef5d6c8cd284da9ba817ab55cafd284d7b54723ce214e401c2309
GET /cdn/prod/config?src=600&u=https%3A%2F%2Fmyhealthreads.com&pubid=66ef05f7-ad53-48f6-873a-ac7543370392 HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 1071
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Mon, 05 Dec 2022 08:28:55 GMT
server: Server
x-cache: Miss from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jQjWpxJCce6dJb_WAaT4gaFN2PTnpgOlH1Rl6QZFv8fFY9sWqRrV3w==
X-Firefox-Spdy: h2
whazugho.com/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Content-Type: application/json
Origin: https://myhealthreads.com
Content-Length: 401
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:55 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 9998f34924ae1c692f3722a2f1bc2baa
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 191cb563d0d4d0d9467ed3370ad74d7e
0f70a0580a3ecdaf4b21b7a517dc164b03bc1adb
de965e49b93a1bacbad9d693455e42b923976256e5f4fa41a48b9c39e986589c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6409
Cache-Control: max-age=142273
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:55 GMT
Etag: "638d1b7f-1d7"
Expires: Wed, 07 Dec 2022 00:00:08 GMT
Last-Modified: Sun, 04 Dec 2022 22:13:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a7a2ff7017e3c7d856e1a49b7f7a1fd0
1344d75140a714091fb7e67e2d2a0d6d5ef95243
6c409da37813babfd269d45467f166efa80668d3f7cc7f2bfdf6132a8ca17104
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6C409DA37813BABFD269D45467F166EFA80668D3F7CC7F2BFDF6132A8CA17104"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1987
Expires: Mon, 05 Dec 2022 09:02:02 GMT
Date: Mon, 05 Dec 2022 08:28:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5527
Expires: Mon, 05 Dec 2022 10:01:03 GMT
Date: Mon, 05 Dec 2022 08:28:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5527
Expires: Mon, 05 Dec 2022 10:01:03 GMT
Date: Mon, 05 Dec 2022 08:28:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5527
Expires: Mon, 05 Dec 2022 10:01:03 GMT
Date: Mon, 05 Dec 2022 08:28:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5527
Expires: Mon, 05 Dec 2022 10:01:03 GMT
Date: Mon, 05 Dec 2022 08:28:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5527
Expires: Mon, 05 Dec 2022 10:01:03 GMT
Date: Mon, 05 Dec 2022 08:28:56 GMT
Connection: keep-alive
myhealthreads.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
207.246.105.151200 OK 38 kB URL HTTP/2 myhealthreads.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 207.246.105.151:0
Hash 0e7cfd5d3deac63f1024c7fda7723dcb
7bdc7cb0ff841eca49a7d517bb5c96144d93a794
1187c10e696013412d264fb0eb493ae1d40d49bbeea64dbb608690fc8cc2c85d
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 13:09:25 GMT
vary: Accept-Encoding
etag: W/"636cf805-15e54"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
143.204.55.94200 OK 14 kB URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 143.204.55.94:0
Hash 1a746fa39e2fa44f9ae4f27a85c7f2ca
073df6dbe0ac3436802839fd0d49c2947a0d6c9d
aeef2a8901a917cd0696f8e4ab73d2dd683180b0699ff2d5bd031b739d288f45
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Mon, 05 Dec 2022 01:57:24 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gtrormbLpubgPyE3aSeZiwHvQIQW3XbRymYWk7sgp6MASqCLsfQZLQ==
age: 26425
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24c69d7ef356b352956d6dcbc9f5df1d
2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 12:09:06 GMT
age: 73190
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=9.1
142.250.74.106200 OK 7.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=9.1
IP 142.250.74.106:0
Hash 7df4d1ee64260d0e7446f285f754147e
fc64146452184c4b028e14cf916696f23809a2a4
1f612f461680e18f5163083c2fe6018b93f19e43ec96cedb381e629159b93eb2
GET /css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=9.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Dec 2022 08:28:54 GMT
date: Mon, 05 Dec 2022 08:28:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JuY0xcLDiERwrVhq33d4PP64liDqFfk9bc9xX1H62o0tOwrt1ek7Pg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:42:39 GMT
age: 38777
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f71032604eecccf0a81f323a5f96a400
f8866d4f3185bcf7871581d75339998b34d6cf6d
d053eedc717d7fd86e621ba948680be16538396d1ba9854b6816626d149b1c57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6886
x-amzn-requestid: d721caf6-2252-4ede-9533-3d3fcd6cce0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpsw-FfRoAMFtOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d5b39-7644a195142f6c420ec7eac6;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 02:45:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mn_L-TMV_ypQZFmolIRm4r5dyj5PpN12jrtafcP9HEkALUPfSzJ38w==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 02:45:54 GMT
age: 20582
etag: "f8866d4f3185bcf7871581d75339998b34d6cf6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.itskiddien.club/apu.php?zoneid=5532722
139.45.197.236200 OK 30 kB URL HTTP/2 cdn.itskiddien.club/apu.php?zoneid=5532722
IP 139.45.197.236:0
Hash 82df70d5ac4b0e0017d56f645a3001a4
cee548610007ffc77bb4a04091215a6d851c3d42
efe43b243921f4be4174032ec004c03bd3ad384c4e7347a8946b4fde77165959
GET /apu.php?zoneid=5532722 HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:56 GMT
content-type: application/javascript
x-trace-id: 383490e388aaedc35e5de132b4bd4193
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=661ffa2a07bd4f34acd152f49532fd53; expires=Tue, 05 Dec 2023 08:28:56 GMT; path=/; secure; SameSite=None
oaidts=1670228936; expires=Tue, 05 Dec 2023 08:28:56 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
172.67.194.45200 OK 5.5 kB IP 172.67.194.45:0
File type ASCII text, with very long lines (12966), with no line terminators
Hash 9b1b06938646350d97cd273fc60af9be
3a060ed02516fcf4e0bfcfcf925943d837d25330
191a326b611edcca75058be969f1da1e17beab070f1d8f94f863b26a0f772899
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:56 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 629
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BqmMwIliw9CNKlTWjrxUDH%2BFI%2BnRA0nUPs2IL9FAfElqo3JYJ79M5dZJpVFCOHEsIPPXzgIJegIYNfUN6KNeYg3h23Ccexalr90VmX5uBCV7laCSM9%2BxVbMHptFgwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 774b69431ef50b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash feada0c59c0eaab85490c6c8a7bcdd19
067889598d6125a945f0f7815a03328b62e9d139
18d3562684c32ed7b8d7cf02c853d8f1f08bf1074151891d9b756d14fdddfa1f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18D3562684C32ED7B8D7CF02C853D8F1F08BF1074151891D9B756D14FDDDFA1F"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11000
Expires: Mon, 05 Dec 2022 11:32:16 GMT
Date: Mon, 05 Dec 2022 08:28:56 GMT
Connection: keep-alive
udmserve.net/udm/img.fetch?sid=15514;tid=1;dt=6;
68.71.249.118200 OK 3.5 kB URL HTTP/1.1 udmserve.net/udm/img.fetch?sid=15514;tid=1;dt=6;
IP 68.71.249.118:0
Hash fdea68658e0db1130a48dd4d1f6be187
798bdcd8e960e737dcd4af6d6384d1d8abc89a1b
b0ca8e6fa88bfa41c621e6fabae35fe9ef34508ff0a3d2437764d867c57060a7
GET /udm/img.fetch?sid=15514;tid=1;dt=6; HTTP/1.1
Host: udmserve.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Connection: Keep-Alive
Content-Encoding: gzip
Content-Type: application/x-javascript
Expires: 0
P3p: NOI DSP CURa ADMa DEVa PSAa PSDa OUR IND UNI COM NAV INT
Pragma: no-cache
Set-Cookie: udmts=1670228936.0; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:28:56 GMT; Secure; SameSite=None
dt=1C5E63A8-C2D2-341B-BA50-2297658F2B0F; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:28:56 GMT; Secure; SameSite=None
Date: Mon, 05 Dec 2022 08:28:56 GMT
Transfer-Encoding: chunked
my.rtmark.net/gid.js?userId=661ffa2a07bd4f34acd152f49532fd53
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=661ffa2a07bd4f34acd152f49532fd53
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash e80016cc28e8144bd1a4c9c3a8d39b37
6e1e00ceea6549292680730e51ab9fc328fb1e4f
4c5d8f376a8b7c3a1727531a0264892144e6f7314ba8ac78cd0d20fe3b34bcb9
GET /gid.js?userId=661ffa2a07bd4f34acd152f49532fd53 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:56 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://myhealthreads.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=661ffa2a07bd4f34acd152f49532fd53; expires=Tue, 05 Dec 2023 08:28:56 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 917d281ca22c901597795b51fd9df338
be0e026d76f26092edfc1f67ea98ddc4a539439a
5f47f5ac32d4c80f29c4a69a830ec9427dd0055fc57973f01f73ec22503cd30c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=myhealthreads.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=myhealthreads.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=myhealthreads.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 05 Dec 2022 08:28:56 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
myhealthreads.com/sw.js
207.246.105.151404 Not Found 36 kB IP 207.246.105.151:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (48981), with CRLF, LF line terminators
Hash 6942bdd6c1ec441ecf5a908c3be21f6e
591ceb077444e1127f9dbd4122606bc30c75f64b
4a9cdaf57a1dc42f155966c7a25bc7644ef72fa3c958b7bc09919e12df3d53aa
GET /sw.js HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Connection: keep-alive
Cookie: _ga=GA1.2.174753843.1670228933; _gid=GA1.2.1790688773.1670228933; _gat_gtag_UA_150804239_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 05 Dec 2022 08:28:56 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://myhealthreads.com/wp-json/>; rel="https://api.w.org/"
age: 0
x-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 917d281ca22c901597795b51fd9df338
be0e026d76f26092edfc1f67ea98ddc4a539439a
5f47f5ac32d4c80f29c4a69a830ec9427dd0055fc57973f01f73ec22503cd30c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
216.58.207.193200 OK 2.7 kB URL HTTP/2 d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 216.58.207.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Mon, 05 Dec 2022 08:28:56 GMT
expires: Tue, 05 Dec 2023 08:28:56 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 2a3e9c9270d5d1402700343b567d8e21
4348655937347ff19881acafd04b1277e017f19c
905ee9517e8597ac86e76b99b970f77a4fbb2500de30ef6efea97a4bbcea51d4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 08:28:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 13:33:18 GMT
Expires: Fri, 09 Dec 2022 13:33:17 GMT
Etag: "4348655937347ff19881acafd04b1277e017f19c"
Cache-Control: max-age=363260,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 774b69448cd0b4fa-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8a9ae791f9a0c0ef2d9400dcbe7e5f87
48fd8b1b03bd8cd972a71c3bb1ab1b3242406fb7
adbaf61c4563e45375ec505fc4e3fe4b377db9e147f53e270d5d6d8b4d06a574
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4223
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:56 GMT
Last-Modified: Mon, 05 Dec 2022 07:18:33 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 7fb43028a041cf05ed71b3c712c115b7
056f3b46626e8d596372674c57f10ac6079680f0
0147a45b698ca780f86355291f8b0f102e1e9059d9d739978f44f00ff6ac03be
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3449
Cache-Control: max-age=104740
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:56 GMT
Etag: "638c9473-116"
Expires: Tue, 06 Dec 2022 13:34:36 GMT
Last-Modified: Sun, 04 Dec 2022 12:37:07 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.253200 OK 12 B URL HTTP/1.1 datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.253:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 917
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Mon, 05 Dec 2022 08:28:56 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://myhealthreads.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
ssum-sec.casalemedia.com/usermatchredir?s=199174&cb=https%3A%2F%2Fudmserve.net%2Fudm%2Ffetch.pix%3Fdt%3D1%3Bcb%3D0.8887872%3Bindx%3D
104.18.33.19302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatchredir?s=199174&cb=https%3A%2F%2Fudmserve.net%2Fudm%2Ffetch.pix%3Fdt%3D1%3Bcb%3D0.8887872%3Bindx%3D
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatchredir?s=199174&cb=https%3A%2F%2Fudmserve.net%2Fudm%2Ffetch.pix%3Fdt%3D1%3Bcb%3D0.8887872%3Bindx%3D HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 05 Dec 2022 08:28:56 GMT
content-length: 0
location: /usermatchredir?cb=https%3A%2F%2Fudmserve.net%2Fudm%2Ffetch.pix%3Fdt%3D1%3Bcb%3D0.8887872%3Bindx%3D&s=199174&C=1
cf-ray: 774b69460fb0b512-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y42ryGx7Ru6OxiARB4tsSAAA; Path=/; Domain=casalemedia.com; Expires=Tue, 05 Dec 2023 08:28:56 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=720; Path=/; Domain=casalemedia.com; Expires=Sun, 05 Mar 2023 08:28:56 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=720; Path=/; Domain=casalemedia.com; Expires=Sun, 05 Mar 2023 08:28:56 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RapfDvNdTXGeWqAsDUUz7KdFFJD9gBzsIG6kMNFErHe1exVK153oQX6cvmDRhDhqGuJHhFuMwmk5qWiNEbPGIdVTxk8fV4F6OG3rUF08n%2FqiK0kjZHtT9YzkfBxN%2FXyVAJBjRjerRyPBKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bid.underdog.media/bcv1.js
54.230.111.115200 OK 100 B URL HTTP/2 bid.underdog.media/bcv1.js
IP 54.230.111.115:0
Hash 7d9c5036cd0380a3843a8b0124299fd9
057c3db8a74512ae99df95dcee3bbec80c39c788
685c39356c171bf08dbcbc214b0442cef8b6e703c31bff939141b5b7e91986f1
GET /bcv1.js HTTP/1.1
Host: bid.underdog.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 100
date: Mon, 05 Dec 2022 08:17:32 GMT
last-modified: Mon, 05 Dec 2022 08:00:05 GMT
etag: "7d9c5036cd0380a3843a8b0124299fd9"
cache-control: max-age=1800
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TZ8Y3EhBjhbqBI_ro2PkW64PGHofCYUNjBrH5L0VWoPXahh-U0JDEg==
age: 685
X-Firefox-Spdy: h2
bid.underdog.media/rrv7.js
54.230.111.115200 OK 988 B URL HTTP/2 bid.underdog.media/rrv7.js
IP 54.230.111.115:0
File type ASCII text, with very long lines (2379)
Hash 2372249a439de5bff94d34f70a2d7d96
6b6cdc4b13accbf89aecb3e5da995cfe5408a545
4291ecc34612f2e3cf51976f1fbb888ff4fd373e0f8932ec56df7ffefb066b31
GET /rrv7.js HTTP/1.1
Host: bid.underdog.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 988
date: Mon, 05 Dec 2022 08:11:22 GMT
last-modified: Mon, 05 Dec 2022 08:00:05 GMT
etag: "2372249a439de5bff94d34f70a2d7d96"
cache-control: max-age=7200
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AlnbEFdyJBkT33v6R-s0cv1Uvc2cPOg1ZHSlZsZMXXTkSEpkGsWeGA==
age: 1054
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae8886055f17ae2b4b3220f9f599fd49
a0d09bf707607a4329f159700bb4310dac73cf22
cadd324c725bdcdb5f7c70af8bc1a0332e5be30beed54e10e462225727d378cc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4233
Cache-Control: max-age=125306
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:56 GMT
Etag: "638ce1b9-1d7"
Expires: Tue, 06 Dec 2022 19:17:22 GMT
Last-Modified: Sun, 04 Dec 2022 18:06:49 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 841aa6e47394e8dcb3126e9fbb88fcdf
6d7a773dbf3759d567c66b907b52e61f5d93f9f9
ba2bf4a41df43d5563181e11c44baf6f58afc3fe13a80050a7ec44cd0882c60b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4407
Cache-Control: max-age=94863
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:56 GMT
Etag: "638c6a20-1d7"
Expires: Tue, 06 Dec 2022 10:49:59 GMT
Last-Modified: Sun, 04 Dec 2022 09:36:32 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 8b839bec32f7b79c6fea79eef3c39eaf
e78ff3339301c487eb72d61eeafa61fc02ce5012
f4630ec53ba02868a55d568264fa0c2715ce825558bb74d070dcac5ee49bb31c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4499
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:56 GMT
Last-Modified: Mon, 05 Dec 2022 07:13:58 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8a9ae791f9a0c0ef2d9400dcbe7e5f87
48fd8b1b03bd8cd972a71c3bb1ab1b3242406fb7
adbaf61c4563e45375ec505fc4e3fe4b377db9e147f53e270d5d6d8b4d06a574
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4206
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:56 GMT
Last-Modified: Mon, 05 Dec 2022 07:18:50 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
trc-events.taboola.com/robustdigital-myheathreads/log/2/debug?tim=08%3A28%3A53.223&type=usage&msg=rtus&llvl=2&id=2641&cv=20221204-5-RELEASE<=aa_test_for_monitoring_ctrl&uuid=26c4684f951936cca81bccff2671115c99951fbcdddc98faec889d392befd34d&dcc=1&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/robustdigital-myheathreads/log/2/debug?tim=08%3A28%3A53.223&type=usage&msg=rtus&llvl=2&id=2641&cv=20221204-5-RELEASE<=aa_test_for_monitoring_ctrl&uuid=26c4684f951936cca81bccff2671115c99951fbcdddc98faec889d392befd34d&dcc=1&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /robustdigital-myheathreads/log/2/debug?tim=08%3A28%3A53.223&type=usage&msg=rtus&llvl=2&id=2641&cv=20221204-5-RELEASE<=aa_test_for_monitoring_ctrl&uuid=26c4684f951936cca81bccff2671115c99951fbcdddc98faec889d392befd34d&dcc=1&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Dec 2022 08:28:56 GMT
x-fastly-to-nlb-rtt: 21954
access-control-allow-credentials: true
X-Firefox-Spdy: h2
bid.underdog.media/udmVideoPlayer-v1.1.8.js
54.230.111.115200 OK 155 kB URL HTTP/2 bid.underdog.media/udmVideoPlayer-v1.1.8.js
IP 54.230.111.115:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 155 kB (154939 bytes)
Hash abbb49e13e8eec0b231b7bf452e4ceab
79287f65014ccab6f809c6c7074b6614c6db8026
4a82c4bb12a05d2be501f6a592ff3a9eea3fe383d110565e4683d06e831d2a01
GET /udmVideoPlayer-v1.1.8.js HTTP/1.1
Host: bid.underdog.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 154939
date: Fri, 02 Dec 2022 07:57:16 GMT
last-modified: Mon, 14 Mar 2022 17:48:12 GMT
etag: "abbb49e13e8eec0b231b7bf452e4ceab"
cache-control: max-age=604800
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q3kdFkXuBQs9GSFXaLI12cOQuHRt4vfPTk43aj2T9iivx-tmIRNGkw==
age: 261100
X-Firefox-Spdy: h2
image8.pubmatic.com/AdServer/ImgSync?p=156505&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156505%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fudmserve.net%252Fudm%252Ffetch.pix%253Fpmid%253D%2523PMUID%3Bcb%3D0.8887872
198.47.127.18302 Found 277 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=156505&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156505%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fudmserve.net%252Fudm%252Ffetch.pix%253Fpmid%253D%2523PMUID%3Bcb%3D0.8887872
IP 198.47.127.18:0
File type HTML document, ASCII text
Hash 4186438bc58812dbaede5a441f740a3a
5de0303e410fb71f8175045629cc21e298bb7b06
d7c188436c37a482c7fc94bb959593469653f01519f33758cba13ab49591d7e3
GET /AdServer/ImgSync?p=156505&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156505%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fudmserve.net%252Fudm%252Ffetch.pix%253Fpmid%253D%2523PMUID%3Bcb%3D0.8887872 HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
location: /AdServer/ImgSync?p=156505&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156505%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fudmserve.net%252Fudm%252Ffetch.pix%253Fpmid%253D%2523PMUID%3Bcb%3D0.8887872&rdf=1
set-cookie: KTPCACOOKIE=YES; domain=pubmatic.com; path=/; max-age=86400; secure;
date: Mon, 05 Dec 2022 08:28:56 GMT
content-length: 277
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 90efd5c68640e00126e7714ac498de8e
a44af37087906e85006f9f3c3701892d6c0d073f
5e02501ddc39a9f9766be1a50ff32d4081c7c4c47f2f3939ae9899ae23e6ad82
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148741
Date: Mon, 05 Dec 2022 08:28:56 GMT
Etag: "638d3d35-1d7"
Expires: Wed, 07 Dec 2022 01:47:57 GMT
Last-Modified: Mon, 05 Dec 2022 00:37:09 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jTU4bx-f3l1gqU8Am-UGG8NLsXHWvX43Anzj3NXycL1TOwWiwvczDg==
Age: 4248
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 45a560af2d1a64d1f4bd1133e109612f
636beffd6cba7a6a53c7e742f9853524072a6d69
8af93f3cefa029d0b8f944881704f9b1dcf040b1b6d26bbb8dfd9ae0ef8b1f83
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8AF93F3CEFA029D0B8F944881704F9B1DCF040B1B6D26BBB8DFD9AE0EF8B1F83"
Last-Modified: Sun, 04 Dec 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12065
Expires: Mon, 05 Dec 2022 11:50:01 GMT
Date: Mon, 05 Dec 2022 08:28:56 GMT
Connection: keep-alive
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.24.0&cb=97137336395&lsavail=0
178.250.0.165200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.24.0&cb=97137336395&lsavail=0
IP 178.250.0.165:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=7.24.0&cb=97137336395&lsavail=0 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1394
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:56 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://myhealthreads.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2616
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://myhealthreads.com
cache-control: max-age=0, private, must-revalidate
date: Mon, 05 Dec 2022 08:28:56 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&pid=S5HhMz3fdLjln&cb=1&ws=1280x939&v=22.1107.1609&t=2000&slots=%5B%7B%22sd%22%3A%22myhealthreads.com_fluid_lb%2Bsq_topnew%22%2C%22s%22%3A%5B%22468x60%22%5D%7D%5D&pubid=66ef05f7-ad53-48f6-873a-ac7543370392&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
54.230.241.131200 OK 164 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&pid=S5HhMz3fdLjln&cb=1&ws=1280x939&v=22.1107.1609&t=2000&slots=%5B%7B%22sd%22%3A%22myhealthreads.com_fluid_lb%2Bsq_topnew%22%2C%22s%22%3A%5B%22468x60%22%5D%7D%5D&pubid=66ef05f7-ad53-48f6-873a-ac7543370392&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
IP 54.230.241.131:0
File type ASCII text, with no line terminators
Hash 3eed675f46689bbd8961283411bebc52
43196127106db16aeec860712c62942c4b6be917
72b9ab0916ac83f3ee5a6e3460702ed7b04249ba160bf82570146a3b85e8876d
GET /e/dtb/bid?src=600&u=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&pid=S5HhMz3fdLjln&cb=1&ws=1280x939&v=22.1107.1609&t=2000&slots=%5B%7B%22sd%22%3A%22myhealthreads.com_fluid_lb%2Bsq_topnew%22%2C%22s%22%3A%5B%22468x60%22%5D%7D%5D&pubid=66ef05f7-ad53-48f6-873a-ac7543370392&gdprl=%7B%22status%22%3A%22no-cmp%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 164
server: Server
date: Mon, 05 Dec 2022 08:28:56 GMT
x-amz-rid: 595MYMX03GJSYWVGBVN4
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hsk_Fl5lcjxEDaUTj38CGvOe5ro6F4HM3Mh5lrc0GetNs4_R0ab5pw==
X-Firefox-Spdy: h2
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&pid=S5HhMz3fdLjln&cb=0&ws=1280x939&v=22.1107.1609&t=2000&slots=%5B%7B%22sd%22%3A%22myhealthreads.com_fluid_lb%2Bsq_1top%22%2C%22s%22%3A%5B%22468x60%22%5D%7D%5D&pubid=66ef05f7-ad53-48f6-873a-ac7543370392&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
54.230.241.131200 OK 164 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&pid=S5HhMz3fdLjln&cb=0&ws=1280x939&v=22.1107.1609&t=2000&slots=%5B%7B%22sd%22%3A%22myhealthreads.com_fluid_lb%2Bsq_1top%22%2C%22s%22%3A%5B%22468x60%22%5D%7D%5D&pubid=66ef05f7-ad53-48f6-873a-ac7543370392&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
IP 54.230.241.131:0
File type ASCII text, with no line terminators
Hash 4ea4e6fb53d8b433bc7f05501be9ea28
be81191218306838b5086c9424d7b056db3c6430
4da6db7308638ba2ff4f65e6d60147432fdc3f6a0b9a3d06e2313e65a717b58f
GET /e/dtb/bid?src=600&u=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&pid=S5HhMz3fdLjln&cb=0&ws=1280x939&v=22.1107.1609&t=2000&slots=%5B%7B%22sd%22%3A%22myhealthreads.com_fluid_lb%2Bsq_1top%22%2C%22s%22%3A%5B%22468x60%22%5D%7D%5D&pubid=66ef05f7-ad53-48f6-873a-ac7543370392&gdprl=%7B%22status%22%3A%22no-cmp%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 164
server: Server
date: Mon, 05 Dec 2022 08:28:56 GMT
x-amz-rid: 3RTM2VY9C5KT7YVXXKG3
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ePHlcZ0hwbyKW3UYMuStec6716yT5wmiPKBfqr6EJzkwO0V9LB1kXg==
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
37.252.171.149200 OK 261 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.149:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a6ee4f35f62a9c120314d536f2995d9c
922fa9ccbc2af58dba6ce35eb1537fa16247088e
134e0cdf16bbc315eddaa352a00e3c26cf52a8c7581f79714ae6f624dc4553b6
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 941
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Mon, 05 Dec 2022 08:28:56 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 261
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://myhealthreads.com
AN-X-Request-Uuid: 532578f4-9eba-45b3-b54e-7a8ce49ed3d3
Set-Cookie: icu=ChgI-7AlEAoYASABKAEwyNe2nAY4AUABSAEQyNe2nAYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 05-Mar-2023 08:28:56 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=1317810224504322854; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 05-Mar-2023 08:28:56 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
rules.quantcount.com/rules-p-effSsmMYCbAck.js
143.204.55.97200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-effSsmMYCbAck.js
IP 143.204.55.97:0
Hash 435cbd9bc4b3440e866ad1f4f7d1ef02
dcac4dd52a42fe954f9a29c465a7e3c63cfa7654
f4110d145ad25681a3ef677782ec9a807407fe09b028c2ea15648833ed9cac60
GET /rules-p-effSsmMYCbAck.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Thu, 13 Oct 2022 22:21:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Mon, 05 Dec 2022 07:36:08 GMT
cache-control: max-age=3600
etag: "435cbd9bc4b3440e866ad1f4f7d1ef02"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _vZMIJnFYMvFeN6E31twuM1geRaughykzIF0wq7_7ac4LswM7hdnxw==
age: 3170
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fudmserve.net%252Fudm%252Ffetch.pix%253Fdt%253D1%253Bapnid%253D%2524UID%253Bcb%253D0.8887872
37.252.171.52302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fudmserve.net%252Fudm%252Ffetch.pix%253Fdt%253D1%253Bapnid%253D%2524UID%253Bcb%253D0.8887872
IP 37.252.171.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fudmserve.net%252Fudm%252Ffetch.pix%253Fdt%253D1%253Bapnid%253D%2524UID%253Bcb%253D0.8887872 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Mon, 05 Dec 2022 08:28:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://udmserve.net/udm/fetch.pix?dt=1;apnid=0;cb=0.8887872
AN-X-Request-Uuid: 3a228ab1-6930-4805-adba-33ba33ad9e0c
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
rules.quantcount.com/rules-p-Pz67dCqdsHfxh.js
143.204.55.97200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-Pz67dCqdsHfxh.js
IP 143.204.55.97:0
Hash eee1bd1fc55b604b66cd9e63c4f811b8
e5e7e1b5be61cc274d86f26cce861e9d71bae391
11b2088deff6ac044087d2ef9e23453bc600e5e505f5cca9bd62a4cfe6d11a74
GET /rules-p-Pz67dCqdsHfxh.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Thu, 13 Oct 2022 23:00:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Mon, 05 Dec 2022 08:23:29 GMT
cache-control: max-age=3600
etag: "eee1bd1fc55b604b66cd9e63c4f811b8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iyYuGnxFlogPFD2UJSGlCxH6pnMiu1fj7GD74u30ZE9VWf_LaTt5uQ==
age: 328
X-Firefox-Spdy: h2
image8.pubmatic.com/AdServer/ImgSync?p=156505&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156505%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fudmserve.net%252Fudm%252Ffetch.pix%253Fpmid%253D%2523PMUID%3Bcb%3D0.8887872&rdf=1
198.47.127.18200 OK 0 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=156505&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156505%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fudmserve.net%252Fudm%252Ffetch.pix%253Fpmid%253D%2523PMUID%3Bcb%3D0.8887872&rdf=1
IP 198.47.127.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AdServer/ImgSync?p=156505&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156505%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fudmserve.net%252Fudm%252Ffetch.pix%253Fpmid%253D%2523PMUID%3Bcb%3D0.8887872&rdf=1 HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:56 GMT
content-length: 0
X-Firefox-Spdy: h2
ad.360yield.com/server_match?partner_id=1782&r=https%3A%2F%2Fudmserve.net%2Fudm%2Ffetch.pix%3Fdt%3D1%3Bcb%3D0.8887872%3Bidid%3D%7BPUB_USER_ID%7D
18.194.50.14302 Found 0 B URL HTTP/2 ad.360yield.com/server_match?partner_id=1782&r=https%3A%2F%2Fudmserve.net%2Fudm%2Ffetch.pix%3Fdt%3D1%3Bcb%3D0.8887872%3Bidid%3D%7BPUB_USER_ID%7D
IP 18.194.50.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /server_match?partner_id=1782&r=https%3A%2F%2Fudmserve.net%2Fudm%2Ffetch.pix%3Fdt%3D1%3Bcb%3D0.8887872%3Bidid%3D%7BPUB_USER_ID%7D HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 05 Dec 2022 08:28:56 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/server_match?partner_id=1782&r=https%3A%2F%2Fudmserve.net%2Fudm%2Ffetch.pix%3Fdt%3D1%3Bcb%3D0.8887872%3Bidid%3D%7BPUB_USER_ID%7D
set-cookie: tuuid=61c9cf34-29d7-446c-9218-7c54b907751f; Expires=Sun, 05 Mar 2023 08:28:56 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1670228936; Expires=Sun, 05 Mar 2023 08:28:56 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&pid=S5HhMz3fdLjln&cb=2&ws=1280x939&v=22.1107.1609&t=2000&slots=%5B%7B%22sd%22%3A%22myhealthreads.com_fluid_lb%2Bsq_bottomnew%22%2C%22s%22%3A%5B%22468x60%22%5D%7D%5D&pubid=66ef05f7-ad53-48f6-873a-ac7543370392&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
54.230.241.131200 OK 164 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&pid=S5HhMz3fdLjln&cb=2&ws=1280x939&v=22.1107.1609&t=2000&slots=%5B%7B%22sd%22%3A%22myhealthreads.com_fluid_lb%2Bsq_bottomnew%22%2C%22s%22%3A%5B%22468x60%22%5D%7D%5D&pubid=66ef05f7-ad53-48f6-873a-ac7543370392&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
IP 54.230.241.131:0
File type ASCII text, with no line terminators
Hash 7851383f8e54304851c62b471b3cf1ec
d33923f12ce0faceb801dcc178754f225d0968f7
9fe0d4c76fece14b9797adc77d69ff3fb9de922ddcc66af92def6efd4908a927
GET /e/dtb/bid?src=600&u=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&pid=S5HhMz3fdLjln&cb=2&ws=1280x939&v=22.1107.1609&t=2000&slots=%5B%7B%22sd%22%3A%22myhealthreads.com_fluid_lb%2Bsq_bottomnew%22%2C%22s%22%3A%5B%22468x60%22%5D%7D%5D&pubid=66ef05f7-ad53-48f6-873a-ac7543370392&gdprl=%7B%22status%22%3A%22no-cmp%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 164
server: Server
date: Mon, 05 Dec 2022 08:28:57 GMT
x-amz-rid: 30206BK3NVN58716N7N6
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aePLlx5mBBXmbfkJaaCjDsCjLvMPwt6pWTBtDj_ufeT-gNjjA_HonQ==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14ce148a7eb62c3d7c29ff79d62f3c15
e65b8ffb0f384f49dbc67b28acbc6d2db0e506aa
845ddab5edeb25e56119f531f0804f0b6887b94cea91b5047123cd1ecbd89a47
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "845DDAB5EDEB25E56119F531F0804F0B6887B94CEA91B5047123CD1ECBD89A47"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14478
Expires: Mon, 05 Dec 2022 12:30:15 GMT
Date: Mon, 05 Dec 2022 08:28:57 GMT
Connection: keep-alive
pixel.quantserve.com/pixel;r=1942716555;labels=edge.1%2Csid.15514;rf=0;a=p-effSsmMYCbAck;url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F;uht=2;fpan=1;fpa=P0-159828458-1670228934208;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=myhealthreads.com;dst=0;et=1670228934456;tzo=0;ogl=image.https%3A%2F%2Fmyhealthreads%252Ecom%2Fwp-content%2Fuploads%2F2019%2F10%2Fyallairaq%252Ecom_-1%252Ejpg;ses=71ffd8cb-76bc-4661-9e7c-58e092e4ae56
91.228.74.166200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=1942716555;labels=edge.1%2Csid.15514;rf=0;a=p-effSsmMYCbAck;url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F;uht=2;fpan=1;fpa=P0-159828458-1670228934208;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=myhealthreads.com;dst=0;et=1670228934456;tzo=0;ogl=image.https%3A%2F%2Fmyhealthreads%252Ecom%2Fwp-content%2Fuploads%2F2019%2F10%2Fyallairaq%252Ecom_-1%252Ejpg;ses=71ffd8cb-76bc-4661-9e7c-58e092e4ae56
IP 91.228.74.166:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=1942716555;labels=edge.1%2Csid.15514;rf=0;a=p-effSsmMYCbAck;url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F;uht=2;fpan=1;fpa=P0-159828458-1670228934208;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=myhealthreads.com;dst=0;et=1670228934456;tzo=0;ogl=image.https%3A%2F%2Fmyhealthreads%252Ecom%2Fwp-content%2Fuploads%2F2019%2F10%2Fyallairaq%252Ecom_-1%252Ejpg;ses=71ffd8cb-76bc-4661-9e7c-58e092e4ae56 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:57 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=638dabc9-0e020-00c0f-547b6; expires=Fri, 05-Jan-2024 08:28:57 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=219728912;rf=0;a=p-Pz67dCqdsHfxh;url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F;uht=2;fpan=1;fpa=P0-159828458-1670228934208;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=myhealthreads.com;dst=0;et=1670228934454;tzo=0;ogl=image.https%3A%2F%2Fmyhealthreads%252Ecom%2Fwp-content%2Fuploads%2F2019%2F10%2Fyallairaq%252Ecom_-1%252Ejpg;ses=71ffd8cb-76bc-4661-9e7c-58e092e4ae56
91.228.74.166200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=219728912;rf=0;a=p-Pz67dCqdsHfxh;url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F;uht=2;fpan=1;fpa=P0-159828458-1670228934208;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=myhealthreads.com;dst=0;et=1670228934454;tzo=0;ogl=image.https%3A%2F%2Fmyhealthreads%252Ecom%2Fwp-content%2Fuploads%2F2019%2F10%2Fyallairaq%252Ecom_-1%252Ejpg;ses=71ffd8cb-76bc-4661-9e7c-58e092e4ae56
IP 91.228.74.166:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=219728912;rf=0;a=p-Pz67dCqdsHfxh;url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F;uht=2;fpan=1;fpa=P0-159828458-1670228934208;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=myhealthreads.com;dst=0;et=1670228934454;tzo=0;ogl=image.https%3A%2F%2Fmyhealthreads%252Ecom%2Fwp-content%2Fuploads%2F2019%2F10%2Fyallairaq%252Ecom_-1%252Ejpg;ses=71ffd8cb-76bc-4661-9e7c-58e092e4ae56 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:57 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=638dabc9-0e216-2461c-54043; expires=Fri, 05-Jan-2024 08:28:57 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
lb.eu-1-id5-sync.com/lb/v1
141.95.98.64200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 141.95.98.64:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ffe3996785a614dc85b3f9ba4c491720
f3efbed8522fc476bc7ffea05eea175f790c4364
fd01ddd169862c3a9bdc580321895ebf2ee31ee30820cd7c309cc84767edab34
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://myhealthreads.com
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Mon, 05 Dec 2022 08:28:56 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
lbs.eu-1-id5-sync.com/lbs/v1
162.19.138.119200 OK 34 B URL HTTP/1.1 lbs.eu-1-id5-sync.com/lbs/v1
IP 162.19.138.119:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d35cacecdd4ac6eaa1b73163cc7c3016
def11c93364380326c1e0ece7d59de783b96a891
c6950f78fed72faff8078cc97c40062ef4e7fbee85afa6f94904c94a05779b1e
GET /lbs/v1 HTTP/1.1
Host: lbs.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 5 Dec 2022 08:28:57 GMT
access-control-allow-origin: https://myhealthreads.com
vary: Origin
content-type: application/json
content-length: 34
strict-transport-security: max-age=63072000; includeSubDomains; preload
bcp.crwdcntrl.net/6/map
3.248.87.83200 OK 60 B IP 3.248.87.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 668fa47631a62d981f663bbdf2f01133
de7550b073a202aeb391354ea5d3c4eed0807cde
445897bc226b4c7f2c956b966aaa5079ee94b7f936ce837885e3c1fcb5dc7ffd
POST /6/map HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 50
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:57 GMT
content-type: application/json;charset=utf-8
content-length: 60
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.22.162
access-control-allow-credentials: true
access-control-allow-origin: https://myhealthreads.com
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eb4a83dbb7b375e0b8756ef1d69d0b5b
196e4c458274ae8f53d71cac6b29610e928e8ec8
6489deb3feafb50c5fb70a8c4df3cce20267ff757b0d15c3f9443c667f81c65d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eb4a83dbb7b375e0b8756ef1d69d0b5b
196e4c458274ae8f53d71cac6b29610e928e8ec8
6489deb3feafb50c5fb70a8c4df3cce20267ff757b0d15c3f9443c667f81c65d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eb4a83dbb7b375e0b8756ef1d69d0b5b
196e4c458274ae8f53d71cac6b29610e928e8ec8
6489deb3feafb50c5fb70a8c4df3cce20267ff757b0d15c3f9443c667f81c65d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eb4a83dbb7b375e0b8756ef1d69d0b5b
196e4c458274ae8f53d71cac6b29610e928e8ec8
6489deb3feafb50c5fb70a8c4df3cce20267ff757b0d15c3f9443c667f81c65d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
172.217.21.161200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (65534)
Hash c88b4e73b12307e42222d337bdd646a2
621233bf4e777b2d44b1bc143187111aca2fe718
ef6935537cd5a603b79bc98d4274b70ee5608955792523fc58e818c8ddbb7b48
GET /rtv/012211060024000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28809
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:55 GMT
expires: Tue, 28 Nov 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 570002
etag: "dd6615029de85e23"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eb4a83dbb7b375e0b8756ef1d69d0b5b
196e4c458274ae8f53d71cac6b29610e928e8ec8
6489deb3feafb50c5fb70a8c4df3cce20267ff757b0d15c3f9443c667f81c65d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
172.217.21.161200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash 190bcb4c44fd9e0e93baa80c9b2535b8
97bda56ddc8d6a00d19e1747d63325051f3fd144
b7677f820f06329e357561f570729fe4110af4ac5fb741b97567e20a0f533301
GET /rtv/012211060024000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61592
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:55 GMT
expires: Tue, 28 Nov 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 570002
etag: "a2fca7132416d151"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
172.217.21.161200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (14697)
Hash ae1a9f090984c448deb0629cc2304ee3
e601825ccec746695f370ed68fa33325152e0d9f
6a947bfcdeea64faa6c795caea11ee09dbe00f5d4003b7b9d47e4945c05ac1e4
GET /rtv/012211060024000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 10:51:50 GMT
expires: Wed, 29 Nov 2023 10:51:50 GMT
cache-control: public, max-age=31536000
age: 509827
etag: "abd4378f71571d78"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-Db-ZeJtmvdvHmqbfGq4W-3oramJEUMnZehNM7r9DzSt3K5j7RXpeWZ7Ed37H67tUkFn5aWsDuxYg-RRKk5J2jY4I15Q6GLSUbmPaK-uug_5zF-OaAlc1tVf_iAR6CzhPUhgrlYh6JpdQ8cCt2E2UDOu_DTLw7bckXpJl_Jsv-jo7YX5lo&cry=1&dbm_d=AKAmf-CRQD9htqrm6kLUkNHWciCG8vgIZcdSiojqR4eI0GGDw70QlrubizT-VYWtCBYv7aDY3gZTruoTVM5yZ8e7MzUO61lqi_xvlji72fB81_yDKytaWuhaheLh4yEGoWgPphV2fH9GwSy6c9AfBKsIujlEAURte7XEVI0xk_8DR4VTYk7N3c9fWWBuspQO7aCvqLN3xhmX0j6y2TDGzVzFjBF8QzCZvRFJDza-NyFq1n-fAE7VsP1twGS0MeuVhpE971J-9q6dVU4UTtem2YAdhGAExbVW_-DVfSonki0OfwhccEVlTumeMMzhRb3LKyRLkkoh7J2eyUVJW3qUHNluc0OitXYNSCO2DuFVVPc7MjscmeL48XKE5RVnehQJAo2c4dM26sVZuQ5coH0XbRA35lgt42GFcuQDZaug-5IVjtRa7Jrf4peJ6Wgsdl7OuTTJJtHLzubyCzODzS0xv4IU86OYpmrrc_5oY09EWIQcuddaLvTcV8kHuVEH8bjXeNY4LxTJvvMCeKcQbSzhNtCAy1Wfto8mV7ez_QsDD5XIgPWCWwkDkEMRGhW0WQl-vQLIvdK21owsvOeDZncAt3KCsLYn7lD7BateDWPnOjoMfaONDourZcOBGFErZVwmK3qYJBPCG4E4owkL4wfMg5Hpe36DNLZp3m3oxiz7_GL2aqLEaI1aTy5hA_oKdoyFStyrMxy8h0yyD_izZ6sd1LwBaJNTI7F0h4Gyesj_drKCk1kLk-0xbAQKw71hGokHmS6h8pUuSMcRCZ4yvr2too9AhFbZ_MdK565DJ7i3GKiieZOj9jNlBuNKKOWZDTZFj3r5FcjbAaPI8oFn3AlRcYk4wc3-KGPWzhzaeDKbhg-lk-PyogAPs4l7L1CDJFVkt9eYdoTQPwnoRyTO_SNXnx77zeJkH3HnQ7pQ_4ftK4gJDrxviEo19JwdtTSOavHTjlvBjMXfv1MnTGwDo-HiqYftFXhyJ3t5AqMUa6rsDwOvMkr9_kaowqPT0p4PEi3FVNCmmfYj_uWJo2dO0kgagtBA4itZVn6-CGgbtGhqRWlhH_rb1UqPBX1FokWQ5EA8qaolZq7c8AbPU2y6v_4iO4dq2pKcvKNlxjRTnCW6b9NmINvXghcRP11d0A7QhVen5fq2HQGuqA0BAMdwe8j-BY7o-7jKyu4amQPjOreVSiXAdgVAoQ6ssTmRDSGC206-UFCO0lVe7eWl5i5JFi5uD3ZCt5LDoo5ZVYXuJwJwVoa_3BdThyAa5ZwrD9rKcwgAS_KG1QiQ_7iGX2zKX0FEAgGxqiagPcyaGw4_x-aV6T8YxGtnRY8x78RqeMKR6JUtD4ELeE-0zZucZbXlxGEajdpiZ9wN6qcmVsJSnQPjnoXs95J73mqZ6BpopG4jMKPZcZCGHHh8LV-72t-mfek5X_I0Ni6NL_WvyqAt66NkgLCTQX1iaFdAVrXYTfKaD6R560iY1vkX0biqHrBiPS0OiFF14k1lPZNlIqO5wsZfIaw2uD522poyCEXtjxh6if-gIIq7TpFRugshKHTBJoTX9B506uuhBZ7fEjfSDzirmz3USCpL0be0gIWihk1scRPWRjPCpZSNc0JsmqZLf3wWIWb1Y7g7GQe9j3b6izBIV8aekJOmLLdOBL3VHKFSCvmHCgAxKGAlxwHcNMyt319P1or_zCP5okj1epyrJOWqzEhVEkCKfJNTZtRlCkrLH1_Njh77T_0G3ttxptqVju77dCBx4NedcXJJ2E9OnNrzFlZ8si09aTDxrpzkm1FLgZ6cuM7z1CmRKwtpw__CGWVMjRdLlHXlJBFVKGdPkanB-LLZQvq19TOoyp3idw9yeCvfrqd7gloQ917i_zbMHdQOiMLQ8kHxLGkd3jwdJjonUA13HDorfUULMcf4XXy22GqyKcMNvMYibY66Kr3cc0l0AeLHuxbai-ClwIhsnfN29p3EjLM1G_cqpm3yHAWlpXpqAyhX5y3gn4c85CdSwN8nhgdI8unLK1A9Z4qpItWGyxx1mJKkLDgCq5t-KfuGQMktiiVP49jFzx8ngZkxYDGj9Mune7O-7OWG1xfJxm7lapz0NUUm9S5uMzotGxbY1aIXuzk0yK4q7q8rTd4jKcIRZ8yOT-pYyGmv-1JDXGgsI0fvcYYfKGaVH9Z3ApnB8SuLmMRPLhuKA9CSImLXeDl4gfvog-NucCPjUFJKOTnY0aeL_dTZ9kcKBBJdntkUTn6llwMlINEUmwEJ8m2JSWytZUE2fYv1JFUEnswEE62B-408ibahaMyS6HyxU2uZZ-3OnshP3VZzymS5GGj3LqBdAP1groNiPuwxtHnB8vyc18oCo_CNUQDzyqW46CRmXeaBdu4xxqdHdxr7SVArwNmtiO5Wp1-pWFrWbkTrJIBsQ2vm3lY7SQUT39uwAPKnnPlTSbw3dO_EajyXbu7pzewKBe-Ro750138GYztukIQlA21UFx7Fp02479gmqd52oH1o4IGSTAbKS6air4O4MN0VUekkikfxSdYiXZ3s1xQIlZOeQTFEfzobf57Ev0ak9LC13kQ4IE9zjuq4HCgsPAznkf0dnpN-oAw1ZN0VqUIdtO4HQRsz8Z0P7awEqi0mssBLAwVW2fYBQ_VRHUr5gs5TPwQBbGeujFKS-x2gSJvYT9T8nFMvr6OnM6A1euacV0IN7fy5IhROT096QvbvBgHR8sRBn9qYa3f3JhD1jSYFWQVJpVU06zvK_LjcWC5gK5FrCMLIUDHoDOKFQhTcZVIbXw-6dfM8I21SXV77ynKqC77F7icd01ZaSLrCd2fprj8Yz7UfxM6GnF42uiC10vnSG775LrkCRPEj5HFZrZ04RsWMBWQ-2L8RLk69TNzs_n7hfmjKd6cAWDesM6xZDPt6x0JtqZKVF8oBS-21FkqOCo646bRlCuJRc9uwKEpKY1IqkXsO5kCfSBglYbHokF0o_aPRjKMf6gf4KKjbJ54DGh6U-mc_dxTIPiA-GjF_wtT7PRN-nQO-656cyF4wTPO4aS7eSYRC8akLeIq6m5OYhpWlW1ZDO1mpkUCfb7Y3Q5jkx1gOWhPiesAehBuMQo3V8G-hc66OmubGP6Fm7yPtvsAYL-EQ2gbEI4qdH0uKfI-wvqoxzIL2Ua6B5r50D-HkV1nmnjsfNr-DdDCkuWwqEsxDUDbmaF4136GfgBVJJUwdsZSyfX4ur3p3R0X-1a6q1QLHpwhqdCVROzmytN80pScpwvYCaHv43UH8RHvmDYAsZc_sBxkbO-lZJLGmCWvJABO6QoJxbMGXv-Vx9hmbxKqrbUzDvJRWjaHyNsSTQk19vmnZY-FCswrq9UludWLEwVoMiIAqAi187-Qw6610QMHskPH8aXrTy0rvBFyiNZVmQaCPqeuS1q-vbD5AfteC8pvTuZocP9IyeliH7l1LpTi6JIBR9jSxL-65MXLnYtowpDR4zSq5GVuzG6wwX9NRBAh4KxLJkSmYinAhpJ4R11_tBwhy6sMc8DfzjWMTFb8uDgnARNHe22Y8wBmYMGtPWOYSEO4GgeRX943eJmZyrfDk5GTW13b_Fzv598D5HW2d4P8dDrvENgfROFx9oEsUlpT_TCl3u3bC1iVqYXCXibjSKNRHE2x_toTucrkybKq6d2A3SDeNS8o6PHJlTE4rE50yuQDX5IybAg&cid=CAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT&rfl=2%2Chttps%253A%252F%252Fmyhealthreads.com%252F%240
142.250.74.98200 OK 12 kB URL HTTP/2 googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-Db-ZeJtmvdvHmqbfGq4W-3oramJEUMnZehNM7r9DzSt3K5j7RXpeWZ7Ed37H67tUkFn5aWsDuxYg-RRKk5J2jY4I15Q6GLSUbmPaK-uug_5zF-OaAlc1tVf_iAR6CzhPUhgrlYh6JpdQ8cCt2E2UDOu_DTLw7bckXpJl_Jsv-jo7YX5lo&cry=1&dbm_d=AKAmf-CRQD9htqrm6kLUkNHWciCG8vgIZcdSiojqR4eI0GGDw70QlrubizT-VYWtCBYv7aDY3gZTruoTVM5yZ8e7MzUO61lqi_xvlji72fB81_yDKytaWuhaheLh4yEGoWgPphV2fH9GwSy6c9AfBKsIujlEAURte7XEVI0xk_8DR4VTYk7N3c9fWWBuspQO7aCvqLN3xhmX0j6y2TDGzVzFjBF8QzCZvRFJDza-NyFq1n-fAE7VsP1twGS0MeuVhpE971J-9q6dVU4UTtem2YAdhGAExbVW_-DVfSonki0OfwhccEVlTumeMMzhRb3LKyRLkkoh7J2eyUVJW3qUHNluc0OitXYNSCO2DuFVVPc7MjscmeL48XKE5RVnehQJAo2c4dM26sVZuQ5coH0XbRA35lgt42GFcuQDZaug-5IVjtRa7Jrf4peJ6Wgsdl7OuTTJJtHLzubyCzODzS0xv4IU86OYpmrrc_5oY09EWIQcuddaLvTcV8kHuVEH8bjXeNY4LxTJvvMCeKcQbSzhNtCAy1Wfto8mV7ez_QsDD5XIgPWCWwkDkEMRGhW0WQl-vQLIvdK21owsvOeDZncAt3KCsLYn7lD7BateDWPnOjoMfaONDourZcOBGFErZVwmK3qYJBPCG4E4owkL4wfMg5Hpe36DNLZp3m3oxiz7_GL2aqLEaI1aTy5hA_oKdoyFStyrMxy8h0yyD_izZ6sd1LwBaJNTI7F0h4Gyesj_drKCk1kLk-0xbAQKw71hGokHmS6h8pUuSMcRCZ4yvr2too9AhFbZ_MdK565DJ7i3GKiieZOj9jNlBuNKKOWZDTZFj3r5FcjbAaPI8oFn3AlRcYk4wc3-KGPWzhzaeDKbhg-lk-PyogAPs4l7L1CDJFVkt9eYdoTQPwnoRyTO_SNXnx77zeJkH3HnQ7pQ_4ftK4gJDrxviEo19JwdtTSOavHTjlvBjMXfv1MnTGwDo-HiqYftFXhyJ3t5AqMUa6rsDwOvMkr9_kaowqPT0p4PEi3FVNCmmfYj_uWJo2dO0kgagtBA4itZVn6-CGgbtGhqRWlhH_rb1UqPBX1FokWQ5EA8qaolZq7c8AbPU2y6v_4iO4dq2pKcvKNlxjRTnCW6b9NmINvXghcRP11d0A7QhVen5fq2HQGuqA0BAMdwe8j-BY7o-7jKyu4amQPjOreVSiXAdgVAoQ6ssTmRDSGC206-UFCO0lVe7eWl5i5JFi5uD3ZCt5LDoo5ZVYXuJwJwVoa_3BdThyAa5ZwrD9rKcwgAS_KG1QiQ_7iGX2zKX0FEAgGxqiagPcyaGw4_x-aV6T8YxGtnRY8x78RqeMKR6JUtD4ELeE-0zZucZbXlxGEajdpiZ9wN6qcmVsJSnQPjnoXs95J73mqZ6BpopG4jMKPZcZCGHHh8LV-72t-mfek5X_I0Ni6NL_WvyqAt66NkgLCTQX1iaFdAVrXYTfKaD6R560iY1vkX0biqHrBiPS0OiFF14k1lPZNlIqO5wsZfIaw2uD522poyCEXtjxh6if-gIIq7TpFRugshKHTBJoTX9B506uuhBZ7fEjfSDzirmz3USCpL0be0gIWihk1scRPWRjPCpZSNc0JsmqZLf3wWIWb1Y7g7GQe9j3b6izBIV8aekJOmLLdOBL3VHKFSCvmHCgAxKGAlxwHcNMyt319P1or_zCP5okj1epyrJOWqzEhVEkCKfJNTZtRlCkrLH1_Njh77T_0G3ttxptqVju77dCBx4NedcXJJ2E9OnNrzFlZ8si09aTDxrpzkm1FLgZ6cuM7z1CmRKwtpw__CGWVMjRdLlHXlJBFVKGdPkanB-LLZQvq19TOoyp3idw9yeCvfrqd7gloQ917i_zbMHdQOiMLQ8kHxLGkd3jwdJjonUA13HDorfUULMcf4XXy22GqyKcMNvMYibY66Kr3cc0l0AeLHuxbai-ClwIhsnfN29p3EjLM1G_cqpm3yHAWlpXpqAyhX5y3gn4c85CdSwN8nhgdI8unLK1A9Z4qpItWGyxx1mJKkLDgCq5t-KfuGQMktiiVP49jFzx8ngZkxYDGj9Mune7O-7OWG1xfJxm7lapz0NUUm9S5uMzotGxbY1aIXuzk0yK4q7q8rTd4jKcIRZ8yOT-pYyGmv-1JDXGgsI0fvcYYfKGaVH9Z3ApnB8SuLmMRPLhuKA9CSImLXeDl4gfvog-NucCPjUFJKOTnY0aeL_dTZ9kcKBBJdntkUTn6llwMlINEUmwEJ8m2JSWytZUE2fYv1JFUEnswEE62B-408ibahaMyS6HyxU2uZZ-3OnshP3VZzymS5GGj3LqBdAP1groNiPuwxtHnB8vyc18oCo_CNUQDzyqW46CRmXeaBdu4xxqdHdxr7SVArwNmtiO5Wp1-pWFrWbkTrJIBsQ2vm3lY7SQUT39uwAPKnnPlTSbw3dO_EajyXbu7pzewKBe-Ro750138GYztukIQlA21UFx7Fp02479gmqd52oH1o4IGSTAbKS6air4O4MN0VUekkikfxSdYiXZ3s1xQIlZOeQTFEfzobf57Ev0ak9LC13kQ4IE9zjuq4HCgsPAznkf0dnpN-oAw1ZN0VqUIdtO4HQRsz8Z0P7awEqi0mssBLAwVW2fYBQ_VRHUr5gs5TPwQBbGeujFKS-x2gSJvYT9T8nFMvr6OnM6A1euacV0IN7fy5IhROT096QvbvBgHR8sRBn9qYa3f3JhD1jSYFWQVJpVU06zvK_LjcWC5gK5FrCMLIUDHoDOKFQhTcZVIbXw-6dfM8I21SXV77ynKqC77F7icd01ZaSLrCd2fprj8Yz7UfxM6GnF42uiC10vnSG775LrkCRPEj5HFZrZ04RsWMBWQ-2L8RLk69TNzs_n7hfmjKd6cAWDesM6xZDPt6x0JtqZKVF8oBS-21FkqOCo646bRlCuJRc9uwKEpKY1IqkXsO5kCfSBglYbHokF0o_aPRjKMf6gf4KKjbJ54DGh6U-mc_dxTIPiA-GjF_wtT7PRN-nQO-656cyF4wTPO4aS7eSYRC8akLeIq6m5OYhpWlW1ZDO1mpkUCfb7Y3Q5jkx1gOWhPiesAehBuMQo3V8G-hc66OmubGP6Fm7yPtvsAYL-EQ2gbEI4qdH0uKfI-wvqoxzIL2Ua6B5r50D-HkV1nmnjsfNr-DdDCkuWwqEsxDUDbmaF4136GfgBVJJUwdsZSyfX4ur3p3R0X-1a6q1QLHpwhqdCVROzmytN80pScpwvYCaHv43UH8RHvmDYAsZc_sBxkbO-lZJLGmCWvJABO6QoJxbMGXv-Vx9hmbxKqrbUzDvJRWjaHyNsSTQk19vmnZY-FCswrq9UludWLEwVoMiIAqAi187-Qw6610QMHskPH8aXrTy0rvBFyiNZVmQaCPqeuS1q-vbD5AfteC8pvTuZocP9IyeliH7l1LpTi6JIBR9jSxL-65MXLnYtowpDR4zSq5GVuzG6wwX9NRBAh4KxLJkSmYinAhpJ4R11_tBwhy6sMc8DfzjWMTFb8uDgnARNHe22Y8wBmYMGtPWOYSEO4GgeRX943eJmZyrfDk5GTW13b_Fzv598D5HW2d4P8dDrvENgfROFx9oEsUlpT_TCl3u3bC1iVqYXCXibjSKNRHE2x_toTucrkybKq6d2A3SDeNS8o6PHJlTE4rE50yuQDX5IybAg&cid=CAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT&rfl=2%2Chttps%253A%252F%252Fmyhealthreads.com%252F%240
IP 142.250.74.98:0
Hash 82878ec5c2db7bbb064b556762a4f116
e02d4d7e63c066584d2ea6c5fcea7df7920121cc
2097f06a49b957c61d0db6df4ebdbd3775b79c8c480924bf97d65cec3ded8783
GET /dbm/ad?dbm_c=AKAmf-Db-ZeJtmvdvHmqbfGq4W-3oramJEUMnZehNM7r9DzSt3K5j7RXpeWZ7Ed37H67tUkFn5aWsDuxYg-RRKk5J2jY4I15Q6GLSUbmPaK-uug_5zF-OaAlc1tVf_iAR6CzhPUhgrlYh6JpdQ8cCt2E2UDOu_DTLw7bckXpJl_Jsv-jo7YX5lo&cry=1&dbm_d=AKAmf-CRQD9htqrm6kLUkNHWciCG8vgIZcdSiojqR4eI0GGDw70QlrubizT-VYWtCBYv7aDY3gZTruoTVM5yZ8e7MzUO61lqi_xvlji72fB81_yDKytaWuhaheLh4yEGoWgPphV2fH9GwSy6c9AfBKsIujlEAURte7XEVI0xk_8DR4VTYk7N3c9fWWBuspQO7aCvqLN3xhmX0j6y2TDGzVzFjBF8QzCZvRFJDza-NyFq1n-fAE7VsP1twGS0MeuVhpE971J-9q6dVU4UTtem2YAdhGAExbVW_-DVfSonki0OfwhccEVlTumeMMzhRb3LKyRLkkoh7J2eyUVJW3qUHNluc0OitXYNSCO2DuFVVPc7MjscmeL48XKE5RVnehQJAo2c4dM26sVZuQ5coH0XbRA35lgt42GFcuQDZaug-5IVjtRa7Jrf4peJ6Wgsdl7OuTTJJtHLzubyCzODzS0xv4IU86OYpmrrc_5oY09EWIQcuddaLvTcV8kHuVEH8bjXeNY4LxTJvvMCeKcQbSzhNtCAy1Wfto8mV7ez_QsDD5XIgPWCWwkDkEMRGhW0WQl-vQLIvdK21owsvOeDZncAt3KCsLYn7lD7BateDWPnOjoMfaONDourZcOBGFErZVwmK3qYJBPCG4E4owkL4wfMg5Hpe36DNLZp3m3oxiz7_GL2aqLEaI1aTy5hA_oKdoyFStyrMxy8h0yyD_izZ6sd1LwBaJNTI7F0h4Gyesj_drKCk1kLk-0xbAQKw71hGokHmS6h8pUuSMcRCZ4yvr2too9AhFbZ_MdK565DJ7i3GKiieZOj9jNlBuNKKOWZDTZFj3r5FcjbAaPI8oFn3AlRcYk4wc3-KGPWzhzaeDKbhg-lk-PyogAPs4l7L1CDJFVkt9eYdoTQPwnoRyTO_SNXnx77zeJkH3HnQ7pQ_4ftK4gJDrxviEo19JwdtTSOavHTjlvBjMXfv1MnTGwDo-HiqYftFXhyJ3t5AqMUa6rsDwOvMkr9_kaowqPT0p4PEi3FVNCmmfYj_uWJo2dO0kgagtBA4itZVn6-CGgbtGhqRWlhH_rb1UqPBX1FokWQ5EA8qaolZq7c8AbPU2y6v_4iO4dq2pKcvKNlxjRTnCW6b9NmINvXghcRP11d0A7QhVen5fq2HQGuqA0BAMdwe8j-BY7o-7jKyu4amQPjOreVSiXAdgVAoQ6ssTmRDSGC206-UFCO0lVe7eWl5i5JFi5uD3ZCt5LDoo5ZVYXuJwJwVoa_3BdThyAa5ZwrD9rKcwgAS_KG1QiQ_7iGX2zKX0FEAgGxqiagPcyaGw4_x-aV6T8YxGtnRY8x78RqeMKR6JUtD4ELeE-0zZucZbXlxGEajdpiZ9wN6qcmVsJSnQPjnoXs95J73mqZ6BpopG4jMKPZcZCGHHh8LV-72t-mfek5X_I0Ni6NL_WvyqAt66NkgLCTQX1iaFdAVrXYTfKaD6R560iY1vkX0biqHrBiPS0OiFF14k1lPZNlIqO5wsZfIaw2uD522poyCEXtjxh6if-gIIq7TpFRugshKHTBJoTX9B506uuhBZ7fEjfSDzirmz3USCpL0be0gIWihk1scRPWRjPCpZSNc0JsmqZLf3wWIWb1Y7g7GQe9j3b6izBIV8aekJOmLLdOBL3VHKFSCvmHCgAxKGAlxwHcNMyt319P1or_zCP5okj1epyrJOWqzEhVEkCKfJNTZtRlCkrLH1_Njh77T_0G3ttxptqVju77dCBx4NedcXJJ2E9OnNrzFlZ8si09aTDxrpzkm1FLgZ6cuM7z1CmRKwtpw__CGWVMjRdLlHXlJBFVKGdPkanB-LLZQvq19TOoyp3idw9yeCvfrqd7gloQ917i_zbMHdQOiMLQ8kHxLGkd3jwdJjonUA13HDorfUULMcf4XXy22GqyKcMNvMYibY66Kr3cc0l0AeLHuxbai-ClwIhsnfN29p3EjLM1G_cqpm3yHAWlpXpqAyhX5y3gn4c85CdSwN8nhgdI8unLK1A9Z4qpItWGyxx1mJKkLDgCq5t-KfuGQMktiiVP49jFzx8ngZkxYDGj9Mune7O-7OWG1xfJxm7lapz0NUUm9S5uMzotGxbY1aIXuzk0yK4q7q8rTd4jKcIRZ8yOT-pYyGmv-1JDXGgsI0fvcYYfKGaVH9Z3ApnB8SuLmMRPLhuKA9CSImLXeDl4gfvog-NucCPjUFJKOTnY0aeL_dTZ9kcKBBJdntkUTn6llwMlINEUmwEJ8m2JSWytZUE2fYv1JFUEnswEE62B-408ibahaMyS6HyxU2uZZ-3OnshP3VZzymS5GGj3LqBdAP1groNiPuwxtHnB8vyc18oCo_CNUQDzyqW46CRmXeaBdu4xxqdHdxr7SVArwNmtiO5Wp1-pWFrWbkTrJIBsQ2vm3lY7SQUT39uwAPKnnPlTSbw3dO_EajyXbu7pzewKBe-Ro750138GYztukIQlA21UFx7Fp02479gmqd52oH1o4IGSTAbKS6air4O4MN0VUekkikfxSdYiXZ3s1xQIlZOeQTFEfzobf57Ev0ak9LC13kQ4IE9zjuq4HCgsPAznkf0dnpN-oAw1ZN0VqUIdtO4HQRsz8Z0P7awEqi0mssBLAwVW2fYBQ_VRHUr5gs5TPwQBbGeujFKS-x2gSJvYT9T8nFMvr6OnM6A1euacV0IN7fy5IhROT096QvbvBgHR8sRBn9qYa3f3JhD1jSYFWQVJpVU06zvK_LjcWC5gK5FrCMLIUDHoDOKFQhTcZVIbXw-6dfM8I21SXV77ynKqC77F7icd01ZaSLrCd2fprj8Yz7UfxM6GnF42uiC10vnSG775LrkCRPEj5HFZrZ04RsWMBWQ-2L8RLk69TNzs_n7hfmjKd6cAWDesM6xZDPt6x0JtqZKVF8oBS-21FkqOCo646bRlCuJRc9uwKEpKY1IqkXsO5kCfSBglYbHokF0o_aPRjKMf6gf4KKjbJ54DGh6U-mc_dxTIPiA-GjF_wtT7PRN-nQO-656cyF4wTPO4aS7eSYRC8akLeIq6m5OYhpWlW1ZDO1mpkUCfb7Y3Q5jkx1gOWhPiesAehBuMQo3V8G-hc66OmubGP6Fm7yPtvsAYL-EQ2gbEI4qdH0uKfI-wvqoxzIL2Ua6B5r50D-HkV1nmnjsfNr-DdDCkuWwqEsxDUDbmaF4136GfgBVJJUwdsZSyfX4ur3p3R0X-1a6q1QLHpwhqdCVROzmytN80pScpwvYCaHv43UH8RHvmDYAsZc_sBxkbO-lZJLGmCWvJABO6QoJxbMGXv-Vx9hmbxKqrbUzDvJRWjaHyNsSTQk19vmnZY-FCswrq9UludWLEwVoMiIAqAi187-Qw6610QMHskPH8aXrTy0rvBFyiNZVmQaCPqeuS1q-vbD5AfteC8pvTuZocP9IyeliH7l1LpTi6JIBR9jSxL-65MXLnYtowpDR4zSq5GVuzG6wwX9NRBAh4KxLJkSmYinAhpJ4R11_tBwhy6sMc8DfzjWMTFb8uDgnARNHe22Y8wBmYMGtPWOYSEO4GgeRX943eJmZyrfDk5GTW13b_Fzv598D5HW2d4P8dDrvENgfROFx9oEsUlpT_TCl3u3bC1iVqYXCXibjSKNRHE2x_toTucrkybKq6d2A3SDeNS8o6PHJlTE4rE50yuQDX5IybAg&cid=CAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT&rfl=2%2Chttps%253A%252F%252Fmyhealthreads.com%252F%240 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 08:28:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 11203
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 08:43:57 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7889b2bc6f932635fcaa5092a121abfd
cc1ed134e94daf140a77f71b8da33fefd495595e
c948939c415ef40a400e2be440171a10f55c821003fc4f5b67a2de73e00b5688
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/xbbe/pixel?d=CN-KGhDw3uOiAxiJsY3GATAB&v=APEucNUnKhyqM48Tz9Wd2jzSeklxl5sfVYNfGVNATU04DEwknAw7GSB-UcE8b5DqS6c0swB70o2BXKteY4QOVIr8yrhfuqKlVRq1zaqeRPHVRjcK9yvO70n6MlEdLROp-KyGn2sPt5pWwXVSicLLbjoz9rzBWnR5vGryMhq0q2XK4wIF8VPN28q2EUZ-EwPxRv2e0lZFFWPd_pKj1JIfALmh5_QI2FVaOw
142.250.74.98200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/xbbe/pixel?d=CN-KGhDw3uOiAxiJsY3GATAB&v=APEucNUnKhyqM48Tz9Wd2jzSeklxl5sfVYNfGVNATU04DEwknAw7GSB-UcE8b5DqS6c0swB70o2BXKteY4QOVIr8yrhfuqKlVRq1zaqeRPHVRjcK9yvO70n6MlEdLROp-KyGn2sPt5pWwXVSicLLbjoz9rzBWnR5vGryMhq0q2XK4wIF8VPN28q2EUZ-EwPxRv2e0lZFFWPd_pKj1JIfALmh5_QI2FVaOw
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xbbe/pixel?d=CN-KGhDw3uOiAxiJsY3GATAB&v=APEucNUnKhyqM48Tz9Wd2jzSeklxl5sfVYNfGVNATU04DEwknAw7GSB-UcE8b5DqS6c0swB70o2BXKteY4QOVIr8yrhfuqKlVRq1zaqeRPHVRjcK9yvO70n6MlEdLROp-KyGn2sPt5pWwXVSicLLbjoz9rzBWnR5vGryMhq0q2XK4wIF8VPN28q2EUZ-EwPxRv2e0lZFFWPd_pKj1JIfALmh5_QI2FVaOw HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 05 Dec 2022 08:28:57 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 08:43:57 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 05 Dec 2022 08:28:57 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-AuT34A5LoJicsvlGDjZYtdPYiDIIGi0Yn89q-9b0qdpHJc2bDlL2112rIa6dZBLgoh0BhpUp1Q_jqKIeAiPXSvDjJQmCVl0GOx76UnSTkKJNP4cEoM0-aQ3xysGEtvotY9nWKSdTZ0p_hm1ihdtS06qAsYR1YOpMT7EEEvGltLEjTixow&cry=1&dbm_d=AKAmf-AJlYDzKwLifDZWaHTdNtW0sxlZETOEkauCechzWMJpRCizJz3SWQbux0coBLF6UyRMCFGtYHbBp71WywrWE5MH_Dm0FhsKplGB2ghybVkX7z-8v3wiXN6tjxxjUlT5mSP0uLYu2KiLbzJV5lGp_1QdXn0MlTHlEsxQUMv7aszaB7bXQYUyOiU2A45hgzm1F-kWlJ75XDyGQT8P0sqJPsXXI1HW3FrS0ZOQLcSPTe72OJxfWUtKkak7_F3_aIjG2aFY47p4HiVUjqx5FVfgkFZr6e_CaRgQT9mGgCHf_04HeMp8bw75g-yJ6XvEWV9UQNi0-ctm2HQylh1fNAN9IF7hRYkrZMSbMqeJ078FTn0xNWrtUOU09Dg0epzBWcmWo5Nyv0II64sFdDqoatjWNkaQ9riKuCL8hXLNV7_X0LNGmPKIEjiLVUI_UNKgpYazp7oV1FcMT5rU0pI3eUUnBtqL0e1KfdohNgvsnE9ufOQg0E2k1NB1EdricMaBv4OqjmO-xZyX6soD7i10NdAC-M4SpZdcXJJpagDxifaw0dWu6M9dDoi-7ErY-BpnSsNacB0zntfVbZlkRg8HeGJ__1Df6twfwtQFSzwuSODayGj_B2FyfyCo_Xda1sh_XgKVZ8-BgKJ8KStIZ6a2RAg3jyORVPUw42aPXIG8tO1qJuNVlHA6gWf9_5t043j0TJTQEVVRjVE0XkVc5NAqipPIjiPCzhzF32pcWdnmVwTZwGg8-9OYq1Oaiahor_p2ZIgFbejKf8IN3kAxgFL2zTKBiDI0xeZ6m0yohhsoM4yeYG8Gomv4MffSfLYiLM68c9Lj1GjvM988wxPI0FmLBs5FU7lwWCwGYYkrO3DciGhsaKLekb4uN_zpfuQab4bieosG9FkN-elJuSabmAJB_2atFY9KVWYaYHb9v65JD_mK3Wo2JmGvbjpJxq-cha3jpGonOPzPTqN6olCs1uUTX5SIZiQY8hoSI2B-0PVGmNG5Ya9cz__f0oVcR1R-hVB5JWzar8vdLUsVJO_71eXtaNkCUfSszhyhw2WX2WQL36DEo7WzbHIlfQue0skLIgmroqX8RQjzFamSSJfqg4RAMXBDXF_2bWKsV6xeBD6L0l7DLbbblTiyzGjYTCL31XMcwWaD5AmRKkc6csnu1FKjAGqQ6Q9aFY1T4v708Et_UrXY03AZWtU07a6wU1xXDgXB8wGavqKDK17dnJjuwBPTAVoZRlbBv70QA1mQJoTSOUofagxjBYlZcyIHbhZlXrLTHxzZJyApmKv1kWpni_st9b2--BJKQ7CqXjqL9dsDpi0XejQ5Yo2TTXrD9e9hRwPsWkDm3zkZb9nfnsqcoChG8G4C3Nqjr4TBME6QEAkET_nGLtMtS4aHFPKZyFAHfpObltaPGPgMnqmgJSOpR7px3t56q4Ian8m8gbQBW7250Ev2fuoeroXrztArWsmg0paAdIcCs9GmPMVUKf_TctdggqqrJZfu7LZZqiVxZ81TyQYMyjgNBSoxzh7TXr0fkBYiqx4FdmZk8O7yzOPi4G8ftcIVyGUmejQRcLPgPpAjQIrDKzt755thiUdtDLxFaYtDTAzASskkMkfS3L1KK11CECLLx5onTbl-TvyQHXkVyCg91LNBlI_q3I_wUJwJsjLpD7HlgOqQyS8pg4sxrZLFXUIq2jEfOtZ5K-vpSgqMW_tYBzAFHkmkmQeCtPl4FTPeiQihf8mxQNjiHPy4_UvHw1n9DAO6sewXwqClaOXeFW66XOrAQAe3ircTTbWXm8VvlngD1evvd0gI2nMx2GZaMBvL2mC8ipLk-CEoQxj5XRO72ra47zfv55Q5KelopaBaX4FbMZmda4Jyv3JfoKw0540mRuuYpdX9lR9erPl_hcLuHb2twAuMBF-iebYgf18NmMC83OXD3JQhQUUF5GlYNDRt90jEwEP5N5RhMT_SV5n5PHP0S0e4wiAnX501kw-Tji2fGXJfHoIUkPcmpYuSoo2haguFWfpbFv_QpNCDyvxgdcuaRYMmlRV3Op-wERWq_gNWRgK1HLWWVGVZSfWMfq0RYuVBu63br-8oBMiQx-149fYwyzLlpE9x1C4qwFzo98aNBc3Kt0dN4HMT8V1zYuigbkzfdYP6N8fapNAi7n009c8QNKOsc5s-ag9oMxS0wJWpfLeqjh6TfgPkhai5dOe8EAkYEqSh62AQxombSZsZyRXh0WIBYNuGX8Ub1P5iRy7ooQFTRMyF5OhDbvdjiY-29gFGPFzcuu-SJI0nM9TxwrgcpK7bug3eCkaFYP0faeWvsB9jJlSL1nRdItYAHaKu2BILHC5Jq5o6UvzwEhCuJpeHVa-R1hENVnE2ox3UUSGsai7lS5Q01qMQq4rQ43NhyFdrTazuZhajjz0Mki7tw1nP4mEl15NcTe9jVIodSzuxXMxMkCisDdZY2XhLwoBIBZbEigU2l2ud7vr8ZHnI8ZxLX9EwlJCEwPXoRs-yLucd8HAR4Oz8ds5FFUt37bxf9ybRiyg3mwOHSiD0WzcOAlh5hgd8VwQKQYI88QhfsDcFp8uY0P4v98t4-OsPrQxSMknDJeNAIT-7bSg0zencXI9qd_xs79UzyYE5fwZEqSX3bjpDJ1JF2g3jB1DTFQYjcyG1VRnJR1_BletOy0odmYebK0oD6ccvlxyX9aVhho-3_ZZ8VszCxSW46R_oPvb6fTIQB43VOalSAm3BPyEG85jfOfDTj8mM3Z3W0GOfvcOcmteEFeuSudGk3QqrAG0elfVzQlok2S4MAhBMjhaOb8Ztg2cPNMjm3JzMuzWjqKmE3I6WHJEA2ymCv1IpX1NxDlVINs0VakVMtik0h1Vk3HAOh-ulXWXaDPpOVVz4ikUrnl9sq9nsxAy1EFROOpYfIcq6n0fbYr4Tnx527qglJZQcFrTjQzGvzwerf_RH-BRXrsNwIBpU2-hrxytxG1Y0SrGPATzsGZKpn3R3zmN5QpkxYkS1icWMPPUI80YFPLXccOSvKosChXn2VUpNkVUfSr7coql2f8knq6J6Ka5gWVLH911jEb1tN1qsoEEXMb7P1edtCgPIveUjLO_LpCJhCam83OMTAU9qgJKDIfY6DL9NJ-aajowRHBLIUY9vtDx_5YrBnkX72zRGG9uioGoe5qY05EbBm0-lzTsf1XK_dD0n7SSg6vCJHICuieSyWdeKukrwJ7OLqr5GjYHp8RzGluagG1H2JiTr-nH6kLv8QIbom46jYiu6KoSzxxn-2wDsBks5QBc9CPL55n2XNhbb4URBXWdyI8w3F6UdtCrbAPRUthIJC_41546wZ0BFQJdcZo2FTXK0qhQ2MvbaS5Yv6qnvpy6oD2YWiecCsmpC5Vmo18n5RXRCfsqoZWV2gXertk4IFu0pYNNScDZV1cUAdgNumVh9iItXHG6FH3jT5LW_GITji0o1ohKQdw6oZ7ayyidQk9TedB3s2_fnBgAKooEaxVjgqX0_RN5yeCYgFHqSo16LteNY4XbsODhrf9rx8kNsSRXdcz20RA9ygKDhihs2vKlv0wCWjsm2Yh5UVzh8GudY-xwRKLw2wD2GpSYr3u9neyYDt68ws_UQpka9KYzA9AZgbuhFoaRdh6OtUdmzdxSeHO7ByfcP01sDR8Sj22FbXrjCXtH63y0yxWxb-GSqhI5UNPjcMM6OTwzEgaUhd8Gs4YQ&cid=CAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT&rfl=2%2Chttps%253A%252F%252Fmyhealthreads.com%252F%240
142.250.74.98200 OK 11 kB URL HTTP/2 googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-AuT34A5LoJicsvlGDjZYtdPYiDIIGi0Yn89q-9b0qdpHJc2bDlL2112rIa6dZBLgoh0BhpUp1Q_jqKIeAiPXSvDjJQmCVl0GOx76UnSTkKJNP4cEoM0-aQ3xysGEtvotY9nWKSdTZ0p_hm1ihdtS06qAsYR1YOpMT7EEEvGltLEjTixow&cry=1&dbm_d=AKAmf-AJlYDzKwLifDZWaHTdNtW0sxlZETOEkauCechzWMJpRCizJz3SWQbux0coBLF6UyRMCFGtYHbBp71WywrWE5MH_Dm0FhsKplGB2ghybVkX7z-8v3wiXN6tjxxjUlT5mSP0uLYu2KiLbzJV5lGp_1QdXn0MlTHlEsxQUMv7aszaB7bXQYUyOiU2A45hgzm1F-kWlJ75XDyGQT8P0sqJPsXXI1HW3FrS0ZOQLcSPTe72OJxfWUtKkak7_F3_aIjG2aFY47p4HiVUjqx5FVfgkFZr6e_CaRgQT9mGgCHf_04HeMp8bw75g-yJ6XvEWV9UQNi0-ctm2HQylh1fNAN9IF7hRYkrZMSbMqeJ078FTn0xNWrtUOU09Dg0epzBWcmWo5Nyv0II64sFdDqoatjWNkaQ9riKuCL8hXLNV7_X0LNGmPKIEjiLVUI_UNKgpYazp7oV1FcMT5rU0pI3eUUnBtqL0e1KfdohNgvsnE9ufOQg0E2k1NB1EdricMaBv4OqjmO-xZyX6soD7i10NdAC-M4SpZdcXJJpagDxifaw0dWu6M9dDoi-7ErY-BpnSsNacB0zntfVbZlkRg8HeGJ__1Df6twfwtQFSzwuSODayGj_B2FyfyCo_Xda1sh_XgKVZ8-BgKJ8KStIZ6a2RAg3jyORVPUw42aPXIG8tO1qJuNVlHA6gWf9_5t043j0TJTQEVVRjVE0XkVc5NAqipPIjiPCzhzF32pcWdnmVwTZwGg8-9OYq1Oaiahor_p2ZIgFbejKf8IN3kAxgFL2zTKBiDI0xeZ6m0yohhsoM4yeYG8Gomv4MffSfLYiLM68c9Lj1GjvM988wxPI0FmLBs5FU7lwWCwGYYkrO3DciGhsaKLekb4uN_zpfuQab4bieosG9FkN-elJuSabmAJB_2atFY9KVWYaYHb9v65JD_mK3Wo2JmGvbjpJxq-cha3jpGonOPzPTqN6olCs1uUTX5SIZiQY8hoSI2B-0PVGmNG5Ya9cz__f0oVcR1R-hVB5JWzar8vdLUsVJO_71eXtaNkCUfSszhyhw2WX2WQL36DEo7WzbHIlfQue0skLIgmroqX8RQjzFamSSJfqg4RAMXBDXF_2bWKsV6xeBD6L0l7DLbbblTiyzGjYTCL31XMcwWaD5AmRKkc6csnu1FKjAGqQ6Q9aFY1T4v708Et_UrXY03AZWtU07a6wU1xXDgXB8wGavqKDK17dnJjuwBPTAVoZRlbBv70QA1mQJoTSOUofagxjBYlZcyIHbhZlXrLTHxzZJyApmKv1kWpni_st9b2--BJKQ7CqXjqL9dsDpi0XejQ5Yo2TTXrD9e9hRwPsWkDm3zkZb9nfnsqcoChG8G4C3Nqjr4TBME6QEAkET_nGLtMtS4aHFPKZyFAHfpObltaPGPgMnqmgJSOpR7px3t56q4Ian8m8gbQBW7250Ev2fuoeroXrztArWsmg0paAdIcCs9GmPMVUKf_TctdggqqrJZfu7LZZqiVxZ81TyQYMyjgNBSoxzh7TXr0fkBYiqx4FdmZk8O7yzOPi4G8ftcIVyGUmejQRcLPgPpAjQIrDKzt755thiUdtDLxFaYtDTAzASskkMkfS3L1KK11CECLLx5onTbl-TvyQHXkVyCg91LNBlI_q3I_wUJwJsjLpD7HlgOqQyS8pg4sxrZLFXUIq2jEfOtZ5K-vpSgqMW_tYBzAFHkmkmQeCtPl4FTPeiQihf8mxQNjiHPy4_UvHw1n9DAO6sewXwqClaOXeFW66XOrAQAe3ircTTbWXm8VvlngD1evvd0gI2nMx2GZaMBvL2mC8ipLk-CEoQxj5XRO72ra47zfv55Q5KelopaBaX4FbMZmda4Jyv3JfoKw0540mRuuYpdX9lR9erPl_hcLuHb2twAuMBF-iebYgf18NmMC83OXD3JQhQUUF5GlYNDRt90jEwEP5N5RhMT_SV5n5PHP0S0e4wiAnX501kw-Tji2fGXJfHoIUkPcmpYuSoo2haguFWfpbFv_QpNCDyvxgdcuaRYMmlRV3Op-wERWq_gNWRgK1HLWWVGVZSfWMfq0RYuVBu63br-8oBMiQx-149fYwyzLlpE9x1C4qwFzo98aNBc3Kt0dN4HMT8V1zYuigbkzfdYP6N8fapNAi7n009c8QNKOsc5s-ag9oMxS0wJWpfLeqjh6TfgPkhai5dOe8EAkYEqSh62AQxombSZsZyRXh0WIBYNuGX8Ub1P5iRy7ooQFTRMyF5OhDbvdjiY-29gFGPFzcuu-SJI0nM9TxwrgcpK7bug3eCkaFYP0faeWvsB9jJlSL1nRdItYAHaKu2BILHC5Jq5o6UvzwEhCuJpeHVa-R1hENVnE2ox3UUSGsai7lS5Q01qMQq4rQ43NhyFdrTazuZhajjz0Mki7tw1nP4mEl15NcTe9jVIodSzuxXMxMkCisDdZY2XhLwoBIBZbEigU2l2ud7vr8ZHnI8ZxLX9EwlJCEwPXoRs-yLucd8HAR4Oz8ds5FFUt37bxf9ybRiyg3mwOHSiD0WzcOAlh5hgd8VwQKQYI88QhfsDcFp8uY0P4v98t4-OsPrQxSMknDJeNAIT-7bSg0zencXI9qd_xs79UzyYE5fwZEqSX3bjpDJ1JF2g3jB1DTFQYjcyG1VRnJR1_BletOy0odmYebK0oD6ccvlxyX9aVhho-3_ZZ8VszCxSW46R_oPvb6fTIQB43VOalSAm3BPyEG85jfOfDTj8mM3Z3W0GOfvcOcmteEFeuSudGk3QqrAG0elfVzQlok2S4MAhBMjhaOb8Ztg2cPNMjm3JzMuzWjqKmE3I6WHJEA2ymCv1IpX1NxDlVINs0VakVMtik0h1Vk3HAOh-ulXWXaDPpOVVz4ikUrnl9sq9nsxAy1EFROOpYfIcq6n0fbYr4Tnx527qglJZQcFrTjQzGvzwerf_RH-BRXrsNwIBpU2-hrxytxG1Y0SrGPATzsGZKpn3R3zmN5QpkxYkS1icWMPPUI80YFPLXccOSvKosChXn2VUpNkVUfSr7coql2f8knq6J6Ka5gWVLH911jEb1tN1qsoEEXMb7P1edtCgPIveUjLO_LpCJhCam83OMTAU9qgJKDIfY6DL9NJ-aajowRHBLIUY9vtDx_5YrBnkX72zRGG9uioGoe5qY05EbBm0-lzTsf1XK_dD0n7SSg6vCJHICuieSyWdeKukrwJ7OLqr5GjYHp8RzGluagG1H2JiTr-nH6kLv8QIbom46jYiu6KoSzxxn-2wDsBks5QBc9CPL55n2XNhbb4URBXWdyI8w3F6UdtCrbAPRUthIJC_41546wZ0BFQJdcZo2FTXK0qhQ2MvbaS5Yv6qnvpy6oD2YWiecCsmpC5Vmo18n5RXRCfsqoZWV2gXertk4IFu0pYNNScDZV1cUAdgNumVh9iItXHG6FH3jT5LW_GITji0o1ohKQdw6oZ7ayyidQk9TedB3s2_fnBgAKooEaxVjgqX0_RN5yeCYgFHqSo16LteNY4XbsODhrf9rx8kNsSRXdcz20RA9ygKDhihs2vKlv0wCWjsm2Yh5UVzh8GudY-xwRKLw2wD2GpSYr3u9neyYDt68ws_UQpka9KYzA9AZgbuhFoaRdh6OtUdmzdxSeHO7ByfcP01sDR8Sj22FbXrjCXtH63y0yxWxb-GSqhI5UNPjcMM6OTwzEgaUhd8Gs4YQ&cid=CAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT&rfl=2%2Chttps%253A%252F%252Fmyhealthreads.com%252F%240
IP 142.250.74.98:0
File type ASCII text, with very long lines (15208), with no line terminators
Hash 4fd78666b054af95777ec239a4d06db4
a250c088212f04148ab6999f5a4372ade4b342f9
1c14b042e1ce438a5ea0be68ab5fc461510898990989e13904eeea324dc97171
GET /dbm/ad?dbm_c=AKAmf-AuT34A5LoJicsvlGDjZYtdPYiDIIGi0Yn89q-9b0qdpHJc2bDlL2112rIa6dZBLgoh0BhpUp1Q_jqKIeAiPXSvDjJQmCVl0GOx76UnSTkKJNP4cEoM0-aQ3xysGEtvotY9nWKSdTZ0p_hm1ihdtS06qAsYR1YOpMT7EEEvGltLEjTixow&cry=1&dbm_d=AKAmf-AJlYDzKwLifDZWaHTdNtW0sxlZETOEkauCechzWMJpRCizJz3SWQbux0coBLF6UyRMCFGtYHbBp71WywrWE5MH_Dm0FhsKplGB2ghybVkX7z-8v3wiXN6tjxxjUlT5mSP0uLYu2KiLbzJV5lGp_1QdXn0MlTHlEsxQUMv7aszaB7bXQYUyOiU2A45hgzm1F-kWlJ75XDyGQT8P0sqJPsXXI1HW3FrS0ZOQLcSPTe72OJxfWUtKkak7_F3_aIjG2aFY47p4HiVUjqx5FVfgkFZr6e_CaRgQT9mGgCHf_04HeMp8bw75g-yJ6XvEWV9UQNi0-ctm2HQylh1fNAN9IF7hRYkrZMSbMqeJ078FTn0xNWrtUOU09Dg0epzBWcmWo5Nyv0II64sFdDqoatjWNkaQ9riKuCL8hXLNV7_X0LNGmPKIEjiLVUI_UNKgpYazp7oV1FcMT5rU0pI3eUUnBtqL0e1KfdohNgvsnE9ufOQg0E2k1NB1EdricMaBv4OqjmO-xZyX6soD7i10NdAC-M4SpZdcXJJpagDxifaw0dWu6M9dDoi-7ErY-BpnSsNacB0zntfVbZlkRg8HeGJ__1Df6twfwtQFSzwuSODayGj_B2FyfyCo_Xda1sh_XgKVZ8-BgKJ8KStIZ6a2RAg3jyORVPUw42aPXIG8tO1qJuNVlHA6gWf9_5t043j0TJTQEVVRjVE0XkVc5NAqipPIjiPCzhzF32pcWdnmVwTZwGg8-9OYq1Oaiahor_p2ZIgFbejKf8IN3kAxgFL2zTKBiDI0xeZ6m0yohhsoM4yeYG8Gomv4MffSfLYiLM68c9Lj1GjvM988wxPI0FmLBs5FU7lwWCwGYYkrO3DciGhsaKLekb4uN_zpfuQab4bieosG9FkN-elJuSabmAJB_2atFY9KVWYaYHb9v65JD_mK3Wo2JmGvbjpJxq-cha3jpGonOPzPTqN6olCs1uUTX5SIZiQY8hoSI2B-0PVGmNG5Ya9cz__f0oVcR1R-hVB5JWzar8vdLUsVJO_71eXtaNkCUfSszhyhw2WX2WQL36DEo7WzbHIlfQue0skLIgmroqX8RQjzFamSSJfqg4RAMXBDXF_2bWKsV6xeBD6L0l7DLbbblTiyzGjYTCL31XMcwWaD5AmRKkc6csnu1FKjAGqQ6Q9aFY1T4v708Et_UrXY03AZWtU07a6wU1xXDgXB8wGavqKDK17dnJjuwBPTAVoZRlbBv70QA1mQJoTSOUofagxjBYlZcyIHbhZlXrLTHxzZJyApmKv1kWpni_st9b2--BJKQ7CqXjqL9dsDpi0XejQ5Yo2TTXrD9e9hRwPsWkDm3zkZb9nfnsqcoChG8G4C3Nqjr4TBME6QEAkET_nGLtMtS4aHFPKZyFAHfpObltaPGPgMnqmgJSOpR7px3t56q4Ian8m8gbQBW7250Ev2fuoeroXrztArWsmg0paAdIcCs9GmPMVUKf_TctdggqqrJZfu7LZZqiVxZ81TyQYMyjgNBSoxzh7TXr0fkBYiqx4FdmZk8O7yzOPi4G8ftcIVyGUmejQRcLPgPpAjQIrDKzt755thiUdtDLxFaYtDTAzASskkMkfS3L1KK11CECLLx5onTbl-TvyQHXkVyCg91LNBlI_q3I_wUJwJsjLpD7HlgOqQyS8pg4sxrZLFXUIq2jEfOtZ5K-vpSgqMW_tYBzAFHkmkmQeCtPl4FTPeiQihf8mxQNjiHPy4_UvHw1n9DAO6sewXwqClaOXeFW66XOrAQAe3ircTTbWXm8VvlngD1evvd0gI2nMx2GZaMBvL2mC8ipLk-CEoQxj5XRO72ra47zfv55Q5KelopaBaX4FbMZmda4Jyv3JfoKw0540mRuuYpdX9lR9erPl_hcLuHb2twAuMBF-iebYgf18NmMC83OXD3JQhQUUF5GlYNDRt90jEwEP5N5RhMT_SV5n5PHP0S0e4wiAnX501kw-Tji2fGXJfHoIUkPcmpYuSoo2haguFWfpbFv_QpNCDyvxgdcuaRYMmlRV3Op-wERWq_gNWRgK1HLWWVGVZSfWMfq0RYuVBu63br-8oBMiQx-149fYwyzLlpE9x1C4qwFzo98aNBc3Kt0dN4HMT8V1zYuigbkzfdYP6N8fapNAi7n009c8QNKOsc5s-ag9oMxS0wJWpfLeqjh6TfgPkhai5dOe8EAkYEqSh62AQxombSZsZyRXh0WIBYNuGX8Ub1P5iRy7ooQFTRMyF5OhDbvdjiY-29gFGPFzcuu-SJI0nM9TxwrgcpK7bug3eCkaFYP0faeWvsB9jJlSL1nRdItYAHaKu2BILHC5Jq5o6UvzwEhCuJpeHVa-R1hENVnE2ox3UUSGsai7lS5Q01qMQq4rQ43NhyFdrTazuZhajjz0Mki7tw1nP4mEl15NcTe9jVIodSzuxXMxMkCisDdZY2XhLwoBIBZbEigU2l2ud7vr8ZHnI8ZxLX9EwlJCEwPXoRs-yLucd8HAR4Oz8ds5FFUt37bxf9ybRiyg3mwOHSiD0WzcOAlh5hgd8VwQKQYI88QhfsDcFp8uY0P4v98t4-OsPrQxSMknDJeNAIT-7bSg0zencXI9qd_xs79UzyYE5fwZEqSX3bjpDJ1JF2g3jB1DTFQYjcyG1VRnJR1_BletOy0odmYebK0oD6ccvlxyX9aVhho-3_ZZ8VszCxSW46R_oPvb6fTIQB43VOalSAm3BPyEG85jfOfDTj8mM3Z3W0GOfvcOcmteEFeuSudGk3QqrAG0elfVzQlok2S4MAhBMjhaOb8Ztg2cPNMjm3JzMuzWjqKmE3I6WHJEA2ymCv1IpX1NxDlVINs0VakVMtik0h1Vk3HAOh-ulXWXaDPpOVVz4ikUrnl9sq9nsxAy1EFROOpYfIcq6n0fbYr4Tnx527qglJZQcFrTjQzGvzwerf_RH-BRXrsNwIBpU2-hrxytxG1Y0SrGPATzsGZKpn3R3zmN5QpkxYkS1icWMPPUI80YFPLXccOSvKosChXn2VUpNkVUfSr7coql2f8knq6J6Ka5gWVLH911jEb1tN1qsoEEXMb7P1edtCgPIveUjLO_LpCJhCam83OMTAU9qgJKDIfY6DL9NJ-aajowRHBLIUY9vtDx_5YrBnkX72zRGG9uioGoe5qY05EbBm0-lzTsf1XK_dD0n7SSg6vCJHICuieSyWdeKukrwJ7OLqr5GjYHp8RzGluagG1H2JiTr-nH6kLv8QIbom46jYiu6KoSzxxn-2wDsBks5QBc9CPL55n2XNhbb4URBXWdyI8w3F6UdtCrbAPRUthIJC_41546wZ0BFQJdcZo2FTXK0qhQ2MvbaS5Yv6qnvpy6oD2YWiecCsmpC5Vmo18n5RXRCfsqoZWV2gXertk4IFu0pYNNScDZV1cUAdgNumVh9iItXHG6FH3jT5LW_GITji0o1ohKQdw6oZ7ayyidQk9TedB3s2_fnBgAKooEaxVjgqX0_RN5yeCYgFHqSo16LteNY4XbsODhrf9rx8kNsSRXdcz20RA9ygKDhihs2vKlv0wCWjsm2Yh5UVzh8GudY-xwRKLw2wD2GpSYr3u9neyYDt68ws_UQpka9KYzA9AZgbuhFoaRdh6OtUdmzdxSeHO7ByfcP01sDR8Sj22FbXrjCXtH63y0yxWxb-GSqhI5UNPjcMM6OTwzEgaUhd8Gs4YQ&cid=CAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT&rfl=2%2Chttps%253A%252F%252Fmyhealthreads.com%252F%240 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 08:28:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 11305
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 08:43:57 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
172.217.21.161200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (41057)
Hash 2f873064835eed23708bde2a16830216
7559437b82b9b761e02549d8d51f9e3571e5ed2c
0f5d00ac674cc34652997f2e0dd7fb6eb1a5b22010989c35a81cd7a388c84fdd
GET /rtv/012211060024000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12946
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:55 GMT
expires: Tue, 28 Nov 2023 18:08:55 GMT
cache-control: public, max-age=31536000
age: 570002
etag: "0bacd3f1ce38a7db"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/esp.js
104.22.52.86200 OK 17 kB URL HTTP/2 cdn.id5-sync.com/api/1.0/esp.js
IP 104.22.52.86:0
File type ASCII text, with very long lines (59374)
Hash 0439282a2fef6180eb6fcda7854f17fe
594f3b03235b94509259c53b2a7a508deafc7ebe
f06b11284968d6486120ae4e76a2cffe1913a0ecde5553727336b309633b1022
GET /api/1.0/esp.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:57 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: aYvx1CvZoW+jC0SWV8GDk58b+1v6FtaZO2lvKc6PNlRdteqgFNQlnkyjvJj+sWDx4Mlyoy6w6aw=
x-amz-request-id: 6QPMVSX1631H1C3W
last-modified: Thu, 24 Nov 2022 12:48:29 GMT
etag: W/"91dadf6b1eddd8d91a5cc2e3be5ea8cf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 2868
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 774b69485e27b529-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3ad43a7a8b270f41308175b62db5732a
12ba23791d4af270f78c4fcfc3fb09636398a651
cd9c4f87165c07494f088237baa4a4838772881e30a7d96bdf1f42a98b188894
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CD9C4F87165C07494F088237BAA4A4838772881E30A7D96BDF1F42A98B188894"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9276
Expires: Mon, 05 Dec 2022 11:03:33 GMT
Date: Mon, 05 Dec 2022 08:28:57 GMT
Connection: keep-alive
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
216.58.207.227200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 20:35:00 GMT
expires: Thu, 30 Nov 2023 20:35:00 GMT
cache-control: public, max-age=31536000
age: 388437
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
udmserve.net/udm/img.fetch?sid=15514;tid=23;ev=1;dt=6;refresh=2;cb=2547b2e74200a578;product=reel;trigger=reel;
68.71.249.118200 OK 1.5 kB URL HTTP/1.1 udmserve.net/udm/img.fetch?sid=15514;tid=23;ev=1;dt=6;refresh=2;cb=2547b2e74200a578;product=reel;trigger=reel;
IP 68.71.249.118:0
File type ASCII text, with very long lines (10112)
Hash 4dbd3da990920a1e6e877457ebed57ae
d02c0f29bae068e653e0beb1dc131bb3fca80168
d79c178cb0802f94b9423f39d6f438b0eba34bdeae2ab6ec04227759bfeb9c60
GET /udm/img.fetch?sid=15514;tid=23;ev=1;dt=6;refresh=2;cb=2547b2e74200a578;product=reel;trigger=reel; HTTP/1.1
Host: udmserve.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Connection: Keep-Alive
Content-Encoding: gzip
Content-Type: application/x-javascript
Expires: 0
P3p: NOI DSP CURa ADMa DEVa PSAa PSDa OUR IND UNI COM NAV INT
Pragma: no-cache
Set-Cookie: udmts=1670228937.0; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:28:57 GMT; Secure; SameSite=None
dt=A43E9B0B-9147-3FBE-8974-16C6D59E65BF; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:28:57 GMT; Secure; SameSite=None
Date: Mon, 05 Dec 2022 08:28:57 GMT
Content-Length: 1543
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
216.58.211.1200 OK 7.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1540)
Hash d22e40b1bc4f1b0f1727b96a0f32f7dd
57030c5040f0013120cca1e77fe38af35d4610e0
6f6d3797f9b19ffcd2f416a7566a58cf70fd4fb0ab17dec03fa5b690c6939494
GET /pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7458
x-xss-protection: 0
date: Mon, 05 Dec 2022 05:12:02 GMT
expires: Mon, 19 Dec 2022 05:12:02 GMT
cache-control: public, max-age=1209600
age: 11815
etag: 16870613375306414947
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/images/adchoices/icon.png
216.58.211.1200 OK 295 B URL HTTP/2 tpc.googlesyndication.com/pagead/images/adchoices/icon.png
IP 216.58.211.1:0
File type PNG image data, 15 x 15, 16-bit/color RGBA, non-interlaced\012- data
Hash d848a2953307aa510bdad31f5bf84671
e9d6d8daa9255f99e4e778ff4c4b47806bdb18c1
7fd59024b6ca83f11f7a3448ec148309a13b705725716df134f699e60a96eb1b
GET /pagead/images/adchoices/icon.png HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
server: cafe
content-length: 295
x-xss-protection: 0
date: Sun, 04 Dec 2022 16:03:23 GMT
expires: Mon, 05 Dec 2022 16:03:23 GMT
cache-control: public, max-age=86400
age: 59134
etag: 426692510519060060
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eb4a83dbb7b375e0b8756ef1d69d0b5b
196e4c458274ae8f53d71cac6b29610e928e8ec8
6489deb3feafb50c5fb70a8c4df3cce20267ff757b0d15c3f9443c667f81c65d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/images/adchoices/pl.png
216.58.211.1200 OK 2.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/images/adchoices/pl.png
IP 216.58.211.1:0
File type PNG image data, 146 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash f4832430b7f9a9aa394c01b330b78fe3
cd9885801fde277cb4cc3bf05541dc690982dda7
4b39caec1f495c3bc9c1e8b5809c065ba6e6d1c5f9f4f6ec7afb775c2c5618ad
GET /pagead/images/adchoices/pl.png HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
server: cafe
content-length: 2240
x-xss-protection: 0
date: Mon, 05 Dec 2022 06:30:02 GMT
expires: Tue, 06 Dec 2022 06:30:02 GMT
cache-control: public, max-age=86400
age: 7135
etag: 5381677441185547000
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
id5-sync.com/api/esp/increment?counter=no-config
141.95.33.111204 0 B URL HTTP/1.1 id5-sync.com/api/esp/increment?counter=no-config
IP 141.95.33.111:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/esp/increment?counter=no-config HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
date: Mon, 05 Dec 2022 08:28:57 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ad.360yield.com/ul_cb/server_match?partner_id=1782&r=https%3A%2F%2Fudmserve.net%2Fudm%2Ffetch.pix%3Fdt%3D1%3Bcb%3D0.8887872%3Bidid%3D%7BPUB_USER_ID%7D
18.194.50.14200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/server_match?partner_id=1782&r=https%3A%2F%2Fudmserve.net%2Fudm%2Ffetch.pix%3Fdt%3D1%3Bcb%3D0.8887872%3Bidid%3D%7BPUB_USER_ID%7D
IP 18.194.50.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/server_match?partner_id=1782&r=https%3A%2F%2Fudmserve.net%2Fudm%2Ffetch.pix%3Fdt%3D1%3Bcb%3D0.8887872%3Bidid%3D%7BPUB_USER_ID%7D HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:57 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1701
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://myhealthreads.com
cache-control: max-age=0, private, must-revalidate
date: Mon, 05 Dec 2022 08:28:56 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.24.0&cb=73280483998&lsavail=0
178.250.0.165200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.24.0&cb=73280483998&lsavail=0
IP 178.250.0.165:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=7.24.0&cb=73280483998&lsavail=0 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 992
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:56 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://myhealthreads.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
216.58.207.226200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 216.58.207.226:0
File type ASCII text, with very long lines (3505)
Hash ca57a2dee741fcb5c26204d54254d941
8c9ad16e50db0a268ecdd55a4bdcbb43d320a96b
0bd2d4c3f5c52381fa0a7ce37bc60fcc9f94e4ffbf643c94559f9ad2fa1c646a
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 48508
date: Mon, 05 Dec 2022 08:28:57 GMT
expires: Mon, 05 Dec 2022 08:28:57 GMT
cache-control: private, max-age=3000
etag: "1669811598765935"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 118edf25c40fce1dee0b9f0498ba1f85
79c896716db646c722eb824c8a404a64f3f656e3
ff998e9568166570e5e46b8ede299560c88e7b8e317aa61ae59b3781f03e0b58
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF998E9568166570E5E46B8EDE299560C88E7B8E317AA61AE59B3781F03E0B58"
Last-Modified: Mon, 05 Dec 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2250
Expires: Mon, 05 Dec 2022 09:06:27 GMT
Date: Mon, 05 Dec 2022 08:28:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 118edf25c40fce1dee0b9f0498ba1f85
79c896716db646c722eb824c8a404a64f3f656e3
ff998e9568166570e5e46b8ede299560c88e7b8e317aa61ae59b3781f03e0b58
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF998E9568166570E5E46B8EDE299560C88E7B8E317AA61AE59B3781F03E0B58"
Last-Modified: Mon, 05 Dec 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2250
Expires: Mon, 05 Dec 2022 09:06:27 GMT
Date: Mon, 05 Dec 2022 08:28:57 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2e388f1ab4ec88104f57cf23944ee684
39178c45ed645709cc388d5790b1b58a3272a62f
e33b88f6f77d90b65a8fed943a45623e51f1efbdae401a1652f24be68408dba0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
udmserve.net/udm/fetch.pix?dt=1;cb=0.8887872;indx=0
68.71.249.118200 OK 43 B URL HTTP/1.1 udmserve.net/udm/fetch.pix?dt=1;cb=0.8887872;indx=0
IP 68.71.249.118:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /udm/fetch.pix?dt=1;cb=0.8887872;indx=0 HTTP/1.1
Host: udmserve.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=43200
Connection: Keep-Alive
Content-Type: image/gif
Date: Mon, 05 Dec 2022 08:28:57 GMT
Content-Length: 43
ib.adnxs.com/ut/v3/prebid
37.252.171.149200 OK 262 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.149:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 28681030b56d402f95edacbf32c1bfb3
82f7fa935e088c0e4a866ad77eb04b809e975994
1d762a65ba1da332b592d1ad4c987d15179cf7415e0fe963eb8530e8352d0171
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 931
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Mon, 05 Dec 2022 08:28:57 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 262
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://myhealthreads.com
AN-X-Request-Uuid: 9f1d1dd4-a449-412a-b781-ceef0e9acf97
Set-Cookie: icu=ChgI-7AlEAoYASABKAEwyde2nAY4AUABSAEQyde2nAYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 05-Mar-2023 08:28:57 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=1072509346204916028; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 05-Mar-2023 08:28:57 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
www.google.com/pagead/drt/ui
216.58.207.228302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP 216.58.207.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 05 Dec 2022 08:28:57 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
hal9000.redintelligence.net/zone/p4vicekg7740?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCtSMNyKuNY7HuJ5eZ7AP1_LHYA8m5opxpzLzNztUP8C4QASCVm8ohYMOEgICYGMgBCakCRL-0GpessT6oAwGqBPQBT9BIDWG5ngL0NGqLxE5Ji9WI2iYuiMXdY3EzVtn_zk6uUQw9WtXLkpZBcAO9_a7UpPfb1smGQubSlGzacRAVYGoBI8GnzUwPSgpsJo1r4mu6GJoPp0R79vHT9ldYXgul71os6KJa8sWxyOsa3sRrDc1Fiyw2iMuadh1JKOZyYlmHcdVyZ4PxFVbv_zOPUVZdVkrOT3SAPjCy3sjBOnVp75eWUeRP5K9609zQrhtp0IzwxZE2FYeitbCMRFhZiFEO0cSGRjXKtlL8sltpktJUjFzUtPp2Pl01R1eACH-Hm59BrN7aH58rYN4wwyFRPmAr9NnRosAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjkxMTcxOTAwMjUzMjYwMIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT%26sig%3DAOD64_32F6izrFhyjDHYKkUGwtj5DxdevQ%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-BKQ3O0HnwkIzji47mJnz-Sm60imWGBIAUspzTRGSCxp5duURXzioKov0SQ7qEwnqVOIk7K1fJrD86uVUzt8VQNBlH0UZE_3spLjbq-wSnAoB0mk1nBKr9LEzNAfQbIGvmQ6ZsnIkxGTVoYfBLgtckeWjqgJo13S8YaYjW6KfrEM64FZvU%26cry%3D1%26dbm_d%3DAKAmf-BKuzjQ3obeOqdFvTzQ14VLffijG92xfJboipyFFXlrdBXFPmwLaRU79Nej_-bB0SF_tChMOGBQMByDj26-7yMKSeJE7C8u_g1lXaP91VJKh60xGJ8Tcy7JVYDqDrVDCQZN0-cvUJyHe3vX54_ru7JJFFiG4XlnrOxB-UJ-cRNswWhP04sg9RLDfdQ4QWaZioReSdbWAyicP0QTszsCI4AbDvxstcf4Q-sFq2oHgjLgcCRuBI8daV36BtX7-4TgFAM6FgK3ElUMCD1w_jR7LR87TE3ZfV-QLZC1yA66M6bQBEVWOQeYt0QwiPMD8szfcQXkg6WZ2i8Fg6FgHY8Fn2zmamOXodl5SzSefCJM-kbpiQBJ_oPIFxt5yjSLmVXGS_UrGa8lnv41femyMlRc-UiMaPdZa2Fw1k8RKVhYUa_oPTOtA3r3KN5R8lwgqJU-dKHhm65GwNsUUZjNWfE7Ig72OatCTiif8TC2oX9vvmenoQ5qp-SI7xe2yxOeUK1v0g74NJmZNFW3WsXwTDHxtvql9g-ysEW68a0UeH1I5YDySQzfNgOnHyybg8oOcLuzLvakuaM4zPNKTVntZyxRDVSvMVEsng%26adurl%3D
46.4.10.49200 OK 4.2 kB URL HTTP/1.1 hal9000.redintelligence.net/zone/p4vicekg7740?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCtSMNyKuNY7HuJ5eZ7AP1_LHYA8m5opxpzLzNztUP8C4QASCVm8ohYMOEgICYGMgBCakCRL-0GpessT6oAwGqBPQBT9BIDWG5ngL0NGqLxE5Ji9WI2iYuiMXdY3EzVtn_zk6uUQw9WtXLkpZBcAO9_a7UpPfb1smGQubSlGzacRAVYGoBI8GnzUwPSgpsJo1r4mu6GJoPp0R79vHT9ldYXgul71os6KJa8sWxyOsa3sRrDc1Fiyw2iMuadh1JKOZyYlmHcdVyZ4PxFVbv_zOPUVZdVkrOT3SAPjCy3sjBOnVp75eWUeRP5K9609zQrhtp0IzwxZE2FYeitbCMRFhZiFEO0cSGRjXKtlL8sltpktJUjFzUtPp2Pl01R1eACH-Hm59BrN7aH58rYN4wwyFRPmAr9NnRosAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjkxMTcxOTAwMjUzMjYwMIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT%26sig%3DAOD64_32F6izrFhyjDHYKkUGwtj5DxdevQ%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-BKQ3O0HnwkIzji47mJnz-Sm60imWGBIAUspzTRGSCxp5duURXzioKov0SQ7qEwnqVOIk7K1fJrD86uVUzt8VQNBlH0UZE_3spLjbq-wSnAoB0mk1nBKr9LEzNAfQbIGvmQ6ZsnIkxGTVoYfBLgtckeWjqgJo13S8YaYjW6KfrEM64FZvU%26cry%3D1%26dbm_d%3DAKAmf-BKuzjQ3obeOqdFvTzQ14VLffijG92xfJboipyFFXlrdBXFPmwLaRU79Nej_-bB0SF_tChMOGBQMByDj26-7yMKSeJE7C8u_g1lXaP91VJKh60xGJ8Tcy7JVYDqDrVDCQZN0-cvUJyHe3vX54_ru7JJFFiG4XlnrOxB-UJ-cRNswWhP04sg9RLDfdQ4QWaZioReSdbWAyicP0QTszsCI4AbDvxstcf4Q-sFq2oHgjLgcCRuBI8daV36BtX7-4TgFAM6FgK3ElUMCD1w_jR7LR87TE3ZfV-QLZC1yA66M6bQBEVWOQeYt0QwiPMD8szfcQXkg6WZ2i8Fg6FgHY8Fn2zmamOXodl5SzSefCJM-kbpiQBJ_oPIFxt5yjSLmVXGS_UrGa8lnv41femyMlRc-UiMaPdZa2Fw1k8RKVhYUa_oPTOtA3r3KN5R8lwgqJU-dKHhm65GwNsUUZjNWfE7Ig72OatCTiif8TC2oX9vvmenoQ5qp-SI7xe2yxOeUK1v0g74NJmZNFW3WsXwTDHxtvql9g-ysEW68a0UeH1I5YDySQzfNgOnHyybg8oOcLuzLvakuaM4zPNKTVntZyxRDVSvMVEsng%26adurl%3D
IP 46.4.10.49:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1765), with CRLF line terminators
Hash f30ae6645318beaad9aff4a16243e52b
024ff9426e25b57cdcfedd6608afd4a27ac7bec1
06343a48d54091e2fda1d89558c5521b7b569950eb684849ae39786b586fcde3
GET /zone/p4vicekg7740?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCtSMNyKuNY7HuJ5eZ7AP1_LHYA8m5opxpzLzNztUP8C4QASCVm8ohYMOEgICYGMgBCakCRL-0GpessT6oAwGqBPQBT9BIDWG5ngL0NGqLxE5Ji9WI2iYuiMXdY3EzVtn_zk6uUQw9WtXLkpZBcAO9_a7UpPfb1smGQubSlGzacRAVYGoBI8GnzUwPSgpsJo1r4mu6GJoPp0R79vHT9ldYXgul71os6KJa8sWxyOsa3sRrDc1Fiyw2iMuadh1JKOZyYlmHcdVyZ4PxFVbv_zOPUVZdVkrOT3SAPjCy3sjBOnVp75eWUeRP5K9609zQrhtp0IzwxZE2FYeitbCMRFhZiFEO0cSGRjXKtlL8sltpktJUjFzUtPp2Pl01R1eACH-Hm59BrN7aH58rYN4wwyFRPmAr9NnRosAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjkxMTcxOTAwMjUzMjYwMIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT%26sig%3DAOD64_32F6izrFhyjDHYKkUGwtj5DxdevQ%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-BKQ3O0HnwkIzji47mJnz-Sm60imWGBIAUspzTRGSCxp5duURXzioKov0SQ7qEwnqVOIk7K1fJrD86uVUzt8VQNBlH0UZE_3spLjbq-wSnAoB0mk1nBKr9LEzNAfQbIGvmQ6ZsnIkxGTVoYfBLgtckeWjqgJo13S8YaYjW6KfrEM64FZvU%26cry%3D1%26dbm_d%3DAKAmf-BKuzjQ3obeOqdFvTzQ14VLffijG92xfJboipyFFXlrdBXFPmwLaRU79Nej_-bB0SF_tChMOGBQMByDj26-7yMKSeJE7C8u_g1lXaP91VJKh60xGJ8Tcy7JVYDqDrVDCQZN0-cvUJyHe3vX54_ru7JJFFiG4XlnrOxB-UJ-cRNswWhP04sg9RLDfdQ4QWaZioReSdbWAyicP0QTszsCI4AbDvxstcf4Q-sFq2oHgjLgcCRuBI8daV36BtX7-4TgFAM6FgK3ElUMCD1w_jR7LR87TE3ZfV-QLZC1yA66M6bQBEVWOQeYt0QwiPMD8szfcQXkg6WZ2i8Fg6FgHY8Fn2zmamOXodl5SzSefCJM-kbpiQBJ_oPIFxt5yjSLmVXGS_UrGa8lnv41femyMlRc-UiMaPdZa2Fw1k8RKVhYUa_oPTOtA3r3KN5R8lwgqJU-dKHhm65GwNsUUZjNWfE7Ig72OatCTiif8TC2oX9vvmenoQ5qp-SI7xe2yxOeUK1v0g74NJmZNFW3WsXwTDHxtvql9g-ysEW68a0UeH1I5YDySQzfNgOnHyybg8oOcLuzLvakuaM4zPNKTVntZyxRDVSvMVEsng%26adurl%3D HTTP/1.1
Host: hal9000.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 08:28:57 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4165
Connection: close
Content-Type: text/html; charset=UTF-8
hal9000.redintelligence.net/zone/p4vicekg7740?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCMYXiyKuNY-vkKJe3YJGDk-AFybminGnMvM3O1Q_wLhABIJWbyiFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE-gFP0G3fYfxCFW2sY-YRoAXjhHekQE-NDtekl_ke4EzWMb0pFB7B_4pGFGLFKyyVAM_NMOy2MGb1tivGnEaT5ZGfXP7m4_j8V-NZoQ7lL5VtwZhKQyqBhMf3NmbvBX2vBkPTPeKe2FgpXKI7QqYDewMs0jI3QD761IJxzg8VcBPKzr1VoSFEwFzieo_ZjbVkcDYG3u0zyWabMjsQ_syudsWCmu6mYN8ggMitk6dzBnjjfxc5vjKDodKED8wcdhukuE0sjcnpVONTANFliSInsBlNN3ggvief1sqWwLsUw4m2vsl7QnhUF_wmhDrKT9Si4Av_dmX5du56icKswATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBA8ggbYWR4LXN1YnN5bi0yOTExNzE5MDAyNTMyNjAwgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT%26sig%3DAOD64_0OEJiM3z6ewjnE9v4ANBU9Ev2QWA%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-APvt6thdcrl20sCnYyp1vodIrbDmdNxApTQ2sC4RQHC5WOzb4bR4qkiFgs7a52PuYyrb63LRp9AAkuGDY2RP0fWSwXxBvtEA6xzFQB2U340GvMP7X2bi-VVClIGVwvt1D-eoiLx1rnfIyXPnfw_z9CNStJV77xMLPk6OCPL3YFn3EsVQc%26cry%3D1%26dbm_d%3DAKAmf-AwIVTG-zOioNixslif9ZcnM9GUxv7jeQkVXR10UOXlZZwQanin7GV2DjZdOd-ENOo1Sct65NYcN4Gy-r-Em8cFfIjZ_BiRMBIVJNhCb-s-FdjFLw1IOkKVOFJ8DE4zMca5MOGH8uA7nnR3qRJVkXD4_qbXdP6QLYv_ltpqRii9AyF4_SuL8adnUosaDyWkovtO1QIRDyjhuLCUtrdpLnf8GrLu73WwrWqfK3fwMuo7ZLEIt89MzeMVtswZXWxxgn5HKO7UXu1urNP9nk3150f7t1Kg_W31iDmtPh9syTGA-8AEy-UgKp9XMKeyyyZAy6MxXbU3Dk1TKKZ6RoKbb2SK8K4QMs1x1tvz0V013Y3Dg9_3W6ZMS-sooXGoEiyMFMpUiN2H_9jItDVJS8g3giquYDlffLxpLzaQ5J3M5zVAx1HoQdOZW0hG0cl-g9ThO-txHz38JCXNqZYMCVNzEe8b0ZIe1fhOayHJ2ugt4ZpAUs4k26FBa5ktKk1HCWzkVPjtBBY30ckLzB_zD7UCDfDUyQob3g8ye5-iYLxjmp7XR5Zi8kF7u44NVLBHMRyJGErd2k96zfVNUDpNZwYem46HydO9Bg%26adurl%3D
46.4.10.49200 OK 4.2 kB URL HTTP/1.1 hal9000.redintelligence.net/zone/p4vicekg7740?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCMYXiyKuNY-vkKJe3YJGDk-AFybminGnMvM3O1Q_wLhABIJWbyiFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE-gFP0G3fYfxCFW2sY-YRoAXjhHekQE-NDtekl_ke4EzWMb0pFB7B_4pGFGLFKyyVAM_NMOy2MGb1tivGnEaT5ZGfXP7m4_j8V-NZoQ7lL5VtwZhKQyqBhMf3NmbvBX2vBkPTPeKe2FgpXKI7QqYDewMs0jI3QD761IJxzg8VcBPKzr1VoSFEwFzieo_ZjbVkcDYG3u0zyWabMjsQ_syudsWCmu6mYN8ggMitk6dzBnjjfxc5vjKDodKED8wcdhukuE0sjcnpVONTANFliSInsBlNN3ggvief1sqWwLsUw4m2vsl7QnhUF_wmhDrKT9Si4Av_dmX5du56icKswATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBA8ggbYWR4LXN1YnN5bi0yOTExNzE5MDAyNTMyNjAwgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT%26sig%3DAOD64_0OEJiM3z6ewjnE9v4ANBU9Ev2QWA%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-APvt6thdcrl20sCnYyp1vodIrbDmdNxApTQ2sC4RQHC5WOzb4bR4qkiFgs7a52PuYyrb63LRp9AAkuGDY2RP0fWSwXxBvtEA6xzFQB2U340GvMP7X2bi-VVClIGVwvt1D-eoiLx1rnfIyXPnfw_z9CNStJV77xMLPk6OCPL3YFn3EsVQc%26cry%3D1%26dbm_d%3DAKAmf-AwIVTG-zOioNixslif9ZcnM9GUxv7jeQkVXR10UOXlZZwQanin7GV2DjZdOd-ENOo1Sct65NYcN4Gy-r-Em8cFfIjZ_BiRMBIVJNhCb-s-FdjFLw1IOkKVOFJ8DE4zMca5MOGH8uA7nnR3qRJVkXD4_qbXdP6QLYv_ltpqRii9AyF4_SuL8adnUosaDyWkovtO1QIRDyjhuLCUtrdpLnf8GrLu73WwrWqfK3fwMuo7ZLEIt89MzeMVtswZXWxxgn5HKO7UXu1urNP9nk3150f7t1Kg_W31iDmtPh9syTGA-8AEy-UgKp9XMKeyyyZAy6MxXbU3Dk1TKKZ6RoKbb2SK8K4QMs1x1tvz0V013Y3Dg9_3W6ZMS-sooXGoEiyMFMpUiN2H_9jItDVJS8g3giquYDlffLxpLzaQ5J3M5zVAx1HoQdOZW0hG0cl-g9ThO-txHz38JCXNqZYMCVNzEe8b0ZIe1fhOayHJ2ugt4ZpAUs4k26FBa5ktKk1HCWzkVPjtBBY30ckLzB_zD7UCDfDUyQob3g8ye5-iYLxjmp7XR5Zi8kF7u44NVLBHMRyJGErd2k96zfVNUDpNZwYem46HydO9Bg%26adurl%3D
IP 46.4.10.49:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1771), with CRLF line terminators
Hash 0f9bdf5638c2fbeeae951b22d4f6ab13
c679fcd5da33fb8086e7b669ab2bec67f4313bfe
949d60821dcfcff9ef9be785077f1223919bf38919ae12dcf9ee21d4b8b6a121
GET /zone/p4vicekg7740?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCMYXiyKuNY-vkKJe3YJGDk-AFybminGnMvM3O1Q_wLhABIJWbyiFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE-gFP0G3fYfxCFW2sY-YRoAXjhHekQE-NDtekl_ke4EzWMb0pFB7B_4pGFGLFKyyVAM_NMOy2MGb1tivGnEaT5ZGfXP7m4_j8V-NZoQ7lL5VtwZhKQyqBhMf3NmbvBX2vBkPTPeKe2FgpXKI7QqYDewMs0jI3QD761IJxzg8VcBPKzr1VoSFEwFzieo_ZjbVkcDYG3u0zyWabMjsQ_syudsWCmu6mYN8ggMitk6dzBnjjfxc5vjKDodKED8wcdhukuE0sjcnpVONTANFliSInsBlNN3ggvief1sqWwLsUw4m2vsl7QnhUF_wmhDrKT9Si4Av_dmX5du56icKswATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBA8ggbYWR4LXN1YnN5bi0yOTExNzE5MDAyNTMyNjAwgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT%26sig%3DAOD64_0OEJiM3z6ewjnE9v4ANBU9Ev2QWA%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-APvt6thdcrl20sCnYyp1vodIrbDmdNxApTQ2sC4RQHC5WOzb4bR4qkiFgs7a52PuYyrb63LRp9AAkuGDY2RP0fWSwXxBvtEA6xzFQB2U340GvMP7X2bi-VVClIGVwvt1D-eoiLx1rnfIyXPnfw_z9CNStJV77xMLPk6OCPL3YFn3EsVQc%26cry%3D1%26dbm_d%3DAKAmf-AwIVTG-zOioNixslif9ZcnM9GUxv7jeQkVXR10UOXlZZwQanin7GV2DjZdOd-ENOo1Sct65NYcN4Gy-r-Em8cFfIjZ_BiRMBIVJNhCb-s-FdjFLw1IOkKVOFJ8DE4zMca5MOGH8uA7nnR3qRJVkXD4_qbXdP6QLYv_ltpqRii9AyF4_SuL8adnUosaDyWkovtO1QIRDyjhuLCUtrdpLnf8GrLu73WwrWqfK3fwMuo7ZLEIt89MzeMVtswZXWxxgn5HKO7UXu1urNP9nk3150f7t1Kg_W31iDmtPh9syTGA-8AEy-UgKp9XMKeyyyZAy6MxXbU3Dk1TKKZ6RoKbb2SK8K4QMs1x1tvz0V013Y3Dg9_3W6ZMS-sooXGoEiyMFMpUiN2H_9jItDVJS8g3giquYDlffLxpLzaQ5J3M5zVAx1HoQdOZW0hG0cl-g9ThO-txHz38JCXNqZYMCVNzEe8b0ZIe1fhOayHJ2ugt4ZpAUs4k26FBa5ktKk1HCWzkVPjtBBY30ckLzB_zD7UCDfDUyQob3g8ye5-iYLxjmp7XR5Zi8kF7u44NVLBHMRyJGErd2k96zfVNUDpNZwYem46HydO9Bg%26adurl%3D HTTP/1.1
Host: hal9000.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 08:28:57 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4174
Connection: close
Content-Type: text/html; charset=UTF-8
trc-events.taboola.com/1226092/log/3/unip?en=pre_d_eng_tb&tos=1874&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670228934942&vi=1670228933045&ri=92450b893b86fbaf370d529687352f82&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1226092/log/3/unip?en=pre_d_eng_tb&tos=1874&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670228934942&vi=1670228933045&ri=92450b893b86fbaf370d529687352f82&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1226092/log/3/unip?en=pre_d_eng_tb&tos=1874&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670228934942&vi=1670228933045&ri=92450b893b86fbaf370d529687352f82&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Dec 2022 08:28:57 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1334487/log/3/unip?en=pre_d_eng_tb&tos=1875&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670228934942&vi=1670228933045&ri=5d5343e27bccb62e05620d018010ce1f&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1334487/log/3/unip?en=pre_d_eng_tb&tos=1875&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670228934942&vi=1670228933045&ri=5d5343e27bccb62e05620d018010ce1f&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1334487/log/3/unip?en=pre_d_eng_tb&tos=1875&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670228934942&vi=1670228933045&ri=5d5343e27bccb62e05620d018010ce1f&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Dec 2022 08:28:57 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
hal90005.redintelligence.net/request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=03571f7f53&subid=&uid=f04e669281adbaf8&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCtSMNyKuNY7HuJ5eZ7AP1_LHYA8m5opxpzLzNztUP8C4QASCVm8ohYMOEgICYGMgBCakCRL-0GpessT6oAwGqBPQBT9BIDWG5ngL0NGqLxE5Ji9WI2iYuiMXdY3EzVtn_zk6uUQw9WtXLkpZBcAO9_a7UpPfb1smGQubSlGzacRAVYGoBI8GnzUwPSgpsJo1r4mu6GJoPp0R79vHT9ldYXgul71os6KJa8sWxyOsa3sRrDc1Fiyw2iMuadh1JKOZyYlmHcdVyZ4PxFVbv_zOPUVZdVkrOT3SAPjCy3sjBOnVp75eWUeRP5K9609zQrhtp0IzwxZE2FYeitbCMRFhZiFEO0cSGRjXKtlL8sltpktJUjFzUtPp2Pl01R1eACH-Hm59BrN7aH58rYN4wwyFRPmAr9NnRosAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjkxMTcxOTAwMjUzMjYwMIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT%26sig%3DAOD64_32F6izrFhyjDHYKkUGwtj5DxdevQ%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-BKQ3O0HnwkIzji47mJnz-Sm60imWGBIAUspzTRGSCxp5duURXzioKov0SQ7qEwnqVOIk7K1fJrD86uVUzt8VQNBlH0UZE_3spLjbq-wSnAoB0mk1nBKr9LEzNAfQbIGvmQ6ZsnIkxGTVoYfBLgtckeWjqgJo13S8YaYjW6KfrEM64FZvU%26cry%3D1%26dbm_d%3DAKAmf-BKuzjQ3obeOqdFvTzQ14VLffijG92xfJboipyFFXlrdBXFPmwLaRU79Nej_-bB0SF_tChMOGBQMByDj26-7yMKSeJE7C8u_g1lXaP91VJKh60xGJ8Tcy7JVYDqDrVDCQZN0-cvUJyHe3vX54_ru7JJFFiG4XlnrOxB-UJ-cRNswWhP04sg9RLDfdQ4QWaZioReSdbWAyicP0QTszsCI4AbDvxstcf4Q-sFq2oHgjLgcCRuBI8daV36BtX7-4TgFAM6FgK3ElUMCD1w_jR7LR87TE3ZfV-QLZC1yA66M6bQBEVWOQeYt0QwiPMD8szfcQXkg6WZ2i8Fg6FgHY8Fn2zmamOXodl5SzSefCJM-kbpiQBJ_oPIFxt5yjSLmVXGS_UrGa8lnv41femyMlRc-UiMaPdZa2Fw1k8RKVhYUa_oPTOtA3r3KN5R8lwgqJU-dKHhm65GwNsUUZjNWfE7Ig72OatCTiif8TC2oX9vvmenoQ5qp-SI7xe2yxOeUK1v0g74NJmZNFW3WsXwTDHxtvql9g-ysEW68a0UeH1I5YDySQzfNgOnHyybg8oOcLuzLvakuaM4zPNKTVntZyxRDVSvMVEsng%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=3178938249013&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
138.201.63.165302 Found 0 B URL HTTP/1.1 hal90005.redintelligence.net/request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=03571f7f53&subid=&uid=f04e669281adbaf8&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCtSMNyKuNY7HuJ5eZ7AP1_LHYA8m5opxpzLzNztUP8C4QASCVm8ohYMOEgICYGMgBCakCRL-0GpessT6oAwGqBPQBT9BIDWG5ngL0NGqLxE5Ji9WI2iYuiMXdY3EzVtn_zk6uUQw9WtXLkpZBcAO9_a7UpPfb1smGQubSlGzacRAVYGoBI8GnzUwPSgpsJo1r4mu6GJoPp0R79vHT9ldYXgul71os6KJa8sWxyOsa3sRrDc1Fiyw2iMuadh1JKOZyYlmHcdVyZ4PxFVbv_zOPUVZdVkrOT3SAPjCy3sjBOnVp75eWUeRP5K9609zQrhtp0IzwxZE2FYeitbCMRFhZiFEO0cSGRjXKtlL8sltpktJUjFzUtPp2Pl01R1eACH-Hm59BrN7aH58rYN4wwyFRPmAr9NnRosAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjkxMTcxOTAwMjUzMjYwMIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT%26sig%3DAOD64_32F6izrFhyjDHYKkUGwtj5DxdevQ%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-BKQ3O0HnwkIzji47mJnz-Sm60imWGBIAUspzTRGSCxp5duURXzioKov0SQ7qEwnqVOIk7K1fJrD86uVUzt8VQNBlH0UZE_3spLjbq-wSnAoB0mk1nBKr9LEzNAfQbIGvmQ6ZsnIkxGTVoYfBLgtckeWjqgJo13S8YaYjW6KfrEM64FZvU%26cry%3D1%26dbm_d%3DAKAmf-BKuzjQ3obeOqdFvTzQ14VLffijG92xfJboipyFFXlrdBXFPmwLaRU79Nej_-bB0SF_tChMOGBQMByDj26-7yMKSeJE7C8u_g1lXaP91VJKh60xGJ8Tcy7JVYDqDrVDCQZN0-cvUJyHe3vX54_ru7JJFFiG4XlnrOxB-UJ-cRNswWhP04sg9RLDfdQ4QWaZioReSdbWAyicP0QTszsCI4AbDvxstcf4Q-sFq2oHgjLgcCRuBI8daV36BtX7-4TgFAM6FgK3ElUMCD1w_jR7LR87TE3ZfV-QLZC1yA66M6bQBEVWOQeYt0QwiPMD8szfcQXkg6WZ2i8Fg6FgHY8Fn2zmamOXodl5SzSefCJM-kbpiQBJ_oPIFxt5yjSLmVXGS_UrGa8lnv41femyMlRc-UiMaPdZa2Fw1k8RKVhYUa_oPTOtA3r3KN5R8lwgqJU-dKHhm65GwNsUUZjNWfE7Ig72OatCTiif8TC2oX9vvmenoQ5qp-SI7xe2yxOeUK1v0g74NJmZNFW3WsXwTDHxtvql9g-ysEW68a0UeH1I5YDySQzfNgOnHyybg8oOcLuzLvakuaM4zPNKTVntZyxRDVSvMVEsng%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=3178938249013&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
IP 138.201.63.165:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=03571f7f53&subid=&uid=f04e669281adbaf8&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCtSMNyKuNY7HuJ5eZ7AP1_LHYA8m5opxpzLzNztUP8C4QASCVm8ohYMOEgICYGMgBCakCRL-0GpessT6oAwGqBPQBT9BIDWG5ngL0NGqLxE5Ji9WI2iYuiMXdY3EzVtn_zk6uUQw9WtXLkpZBcAO9_a7UpPfb1smGQubSlGzacRAVYGoBI8GnzUwPSgpsJo1r4mu6GJoPp0R79vHT9ldYXgul71os6KJa8sWxyOsa3sRrDc1Fiyw2iMuadh1JKOZyYlmHcdVyZ4PxFVbv_zOPUVZdVkrOT3SAPjCy3sjBOnVp75eWUeRP5K9609zQrhtp0IzwxZE2FYeitbCMRFhZiFEO0cSGRjXKtlL8sltpktJUjFzUtPp2Pl01R1eACH-Hm59BrN7aH58rYN4wwyFRPmAr9NnRosAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjkxMTcxOTAwMjUzMjYwMIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT%26sig%3DAOD64_32F6izrFhyjDHYKkUGwtj5DxdevQ%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-BKQ3O0HnwkIzji47mJnz-Sm60imWGBIAUspzTRGSCxp5duURXzioKov0SQ7qEwnqVOIk7K1fJrD86uVUzt8VQNBlH0UZE_3spLjbq-wSnAoB0mk1nBKr9LEzNAfQbIGvmQ6ZsnIkxGTVoYfBLgtckeWjqgJo13S8YaYjW6KfrEM64FZvU%26cry%3D1%26dbm_d%3DAKAmf-BKuzjQ3obeOqdFvTzQ14VLffijG92xfJboipyFFXlrdBXFPmwLaRU79Nej_-bB0SF_tChMOGBQMByDj26-7yMKSeJE7C8u_g1lXaP91VJKh60xGJ8Tcy7JVYDqDrVDCQZN0-cvUJyHe3vX54_ru7JJFFiG4XlnrOxB-UJ-cRNswWhP04sg9RLDfdQ4QWaZioReSdbWAyicP0QTszsCI4AbDvxstcf4Q-sFq2oHgjLgcCRuBI8daV36BtX7-4TgFAM6FgK3ElUMCD1w_jR7LR87TE3ZfV-QLZC1yA66M6bQBEVWOQeYt0QwiPMD8szfcQXkg6WZ2i8Fg6FgHY8Fn2zmamOXodl5SzSefCJM-kbpiQBJ_oPIFxt5yjSLmVXGS_UrGa8lnv41femyMlRc-UiMaPdZa2Fw1k8RKVhYUa_oPTOtA3r3KN5R8lwgqJU-dKHhm65GwNsUUZjNWfE7Ig72OatCTiif8TC2oX9vvmenoQ5qp-SI7xe2yxOeUK1v0g74NJmZNFW3WsXwTDHxtvql9g-ysEW68a0UeH1I5YDySQzfNgOnHyybg8oOcLuzLvakuaM4zPNKTVntZyxRDVSvMVEsng%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=3178938249013&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0 HTTP/1.1
Host: hal90005.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Mon, 05 Dec 2022 08:28:57 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 05 Dec 2022 08:28:57 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=020a061429f1dca6; expires=Sun, 05-Mar-2023 08:28:57 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
Location: request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=03571f7f53&subid=&uid=f04e669281adbaf8&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCtSMNyKuNY7HuJ5eZ7AP1_LHYA8m5opxpzLzNztUP8C4QASCVm8ohYMOEgICYGMgBCakCRL-0GpessT6oAwGqBPQBT9BIDWG5ngL0NGqLxE5Ji9WI2iYuiMXdY3EzVtn_zk6uUQw9WtXLkpZBcAO9_a7UpPfb1smGQubSlGzacRAVYGoBI8GnzUwPSgpsJo1r4mu6GJoPp0R79vHT9ldYXgul71os6KJa8sWxyOsa3sRrDc1Fiyw2iMuadh1JKOZyYlmHcdVyZ4PxFVbv_zOPUVZdVkrOT3SAPjCy3sjBOnVp75eWUeRP5K9609zQrhtp0IzwxZE2FYeitbCMRFhZiFEO0cSGRjXKtlL8sltpktJUjFzUtPp2Pl01R1eACH-Hm59BrN7aH58rYN4wwyFRPmAr9NnRosAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjkxMTcxOTAwMjUzMjYwMIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT%26sig%3DAOD64_32F6izrFhyjDHYKkUGwtj5DxdevQ%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-BKQ3O0HnwkIzji47mJnz-Sm60imWGBIAUspzTRGSCxp5duURXzioKov0SQ7qEwnqVOIk7K1fJrD86uVUzt8VQNBlH0UZE_3spLjbq-wSnAoB0mk1nBKr9LEzNAfQbIGvmQ6ZsnIkxGTVoYfBLgtckeWjqgJo13S8YaYjW6KfrEM64FZvU%26cry%3D1%26dbm_d%3DAKAmf-BKuzjQ3obeOqdFvTzQ14VLffijG92xfJboipyFFXlrdBXFPmwLaRU79Nej_-bB0SF_tChMOGBQMByDj26-7yMKSeJE7C8u_g1lXaP91VJKh60xGJ8Tcy7JVYDqDrVDCQZN0-cvUJyHe3vX54_ru7JJFFiG4XlnrOxB-UJ-cRNswWhP04sg9RLDfdQ4QWaZioReSdbWAyicP0QTszsCI4AbDvxstcf4Q-sFq2oHgjLgcCRuBI8daV36BtX7-4TgFAM6FgK3ElUMCD1w_jR7LR87TE3ZfV-QLZC1yA66M6bQBEVWOQeYt0QwiPMD8szfcQXkg6WZ2i8Fg6FgHY8Fn2zmamOXodl5SzSefCJM-kbpiQBJ_oPIFxt5yjSLmVXGS_UrGa8lnv41femyMlRc-UiMaPdZa2Fw1k8RKVhYUa_oPTOtA3r3KN5R8lwgqJU-dKHhm65GwNsUUZjNWfE7Ig72OatCTiif8TC2oX9vvmenoQ5qp-SI7xe2yxOeUK1v0g74NJmZNFW3WsXwTDHxtvql9g-ysEW68a0UeH1I5YDySQzfNgOnHyybg8oOcLuzLvakuaM4zPNKTVntZyxRDVSvMVEsng%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=3178938249013&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
hal900022.redintelligence.net/request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=fcb60e5a18&subid=&uid=23ec9e890c1276ed&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCMYXiyKuNY-vkKJe3YJGDk-AFybminGnMvM3O1Q_wLhABIJWbyiFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE-gFP0G3fYfxCFW2sY-YRoAXjhHekQE-NDtekl_ke4EzWMb0pFB7B_4pGFGLFKyyVAM_NMOy2MGb1tivGnEaT5ZGfXP7m4_j8V-NZoQ7lL5VtwZhKQyqBhMf3NmbvBX2vBkPTPeKe2FgpXKI7QqYDewMs0jI3QD761IJxzg8VcBPKzr1VoSFEwFzieo_ZjbVkcDYG3u0zyWabMjsQ_syudsWCmu6mYN8ggMitk6dzBnjjfxc5vjKDodKED8wcdhukuE0sjcnpVONTANFliSInsBlNN3ggvief1sqWwLsUw4m2vsl7QnhUF_wmhDrKT9Si4Av_dmX5du56icKswATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBA8ggbYWR4LXN1YnN5bi0yOTExNzE5MDAyNTMyNjAwgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT%26sig%3DAOD64_0OEJiM3z6ewjnE9v4ANBU9Ev2QWA%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-APvt6thdcrl20sCnYyp1vodIrbDmdNxApTQ2sC4RQHC5WOzb4bR4qkiFgs7a52PuYyrb63LRp9AAkuGDY2RP0fWSwXxBvtEA6xzFQB2U340GvMP7X2bi-VVClIGVwvt1D-eoiLx1rnfIyXPnfw_z9CNStJV77xMLPk6OCPL3YFn3EsVQc%26cry%3D1%26dbm_d%3DAKAmf-AwIVTG-zOioNixslif9ZcnM9GUxv7jeQkVXR10UOXlZZwQanin7GV2DjZdOd-ENOo1Sct65NYcN4Gy-r-Em8cFfIjZ_BiRMBIVJNhCb-s-FdjFLw1IOkKVOFJ8DE4zMca5MOGH8uA7nnR3qRJVkXD4_qbXdP6QLYv_ltpqRii9AyF4_SuL8adnUosaDyWkovtO1QIRDyjhuLCUtrdpLnf8GrLu73WwrWqfK3fwMuo7ZLEIt89MzeMVtswZXWxxgn5HKO7UXu1urNP9nk3150f7t1Kg_W31iDmtPh9syTGA-8AEy-UgKp9XMKeyyyZAy6MxXbU3Dk1TKKZ6RoKbb2SK8K4QMs1x1tvz0V013Y3Dg9_3W6ZMS-sooXGoEiyMFMpUiN2H_9jItDVJS8g3giquYDlffLxpLzaQ5J3M5zVAx1HoQdOZW0hG0cl-g9ThO-txHz38JCXNqZYMCVNzEe8b0ZIe1fhOayHJ2ugt4ZpAUs4k26FBa5ktKk1HCWzkVPjtBBY30ckLzB_zD7UCDfDUyQob3g8ye5-iYLxjmp7XR5Zi8kF7u44NVLBHMRyJGErd2k96zfVNUDpNZwYem46HydO9Bg%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=6795136536509&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
144.76.104.53302 Found 0 B URL HTTP/1.1 hal900022.redintelligence.net/request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=fcb60e5a18&subid=&uid=23ec9e890c1276ed&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCMYXiyKuNY-vkKJe3YJGDk-AFybminGnMvM3O1Q_wLhABIJWbyiFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE-gFP0G3fYfxCFW2sY-YRoAXjhHekQE-NDtekl_ke4EzWMb0pFB7B_4pGFGLFKyyVAM_NMOy2MGb1tivGnEaT5ZGfXP7m4_j8V-NZoQ7lL5VtwZhKQyqBhMf3NmbvBX2vBkPTPeKe2FgpXKI7QqYDewMs0jI3QD761IJxzg8VcBPKzr1VoSFEwFzieo_ZjbVkcDYG3u0zyWabMjsQ_syudsWCmu6mYN8ggMitk6dzBnjjfxc5vjKDodKED8wcdhukuE0sjcnpVONTANFliSInsBlNN3ggvief1sqWwLsUw4m2vsl7QnhUF_wmhDrKT9Si4Av_dmX5du56icKswATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBA8ggbYWR4LXN1YnN5bi0yOTExNzE5MDAyNTMyNjAwgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT%26sig%3DAOD64_0OEJiM3z6ewjnE9v4ANBU9Ev2QWA%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-APvt6thdcrl20sCnYyp1vodIrbDmdNxApTQ2sC4RQHC5WOzb4bR4qkiFgs7a52PuYyrb63LRp9AAkuGDY2RP0fWSwXxBvtEA6xzFQB2U340GvMP7X2bi-VVClIGVwvt1D-eoiLx1rnfIyXPnfw_z9CNStJV77xMLPk6OCPL3YFn3EsVQc%26cry%3D1%26dbm_d%3DAKAmf-AwIVTG-zOioNixslif9ZcnM9GUxv7jeQkVXR10UOXlZZwQanin7GV2DjZdOd-ENOo1Sct65NYcN4Gy-r-Em8cFfIjZ_BiRMBIVJNhCb-s-FdjFLw1IOkKVOFJ8DE4zMca5MOGH8uA7nnR3qRJVkXD4_qbXdP6QLYv_ltpqRii9AyF4_SuL8adnUosaDyWkovtO1QIRDyjhuLCUtrdpLnf8GrLu73WwrWqfK3fwMuo7ZLEIt89MzeMVtswZXWxxgn5HKO7UXu1urNP9nk3150f7t1Kg_W31iDmtPh9syTGA-8AEy-UgKp9XMKeyyyZAy6MxXbU3Dk1TKKZ6RoKbb2SK8K4QMs1x1tvz0V013Y3Dg9_3W6ZMS-sooXGoEiyMFMpUiN2H_9jItDVJS8g3giquYDlffLxpLzaQ5J3M5zVAx1HoQdOZW0hG0cl-g9ThO-txHz38JCXNqZYMCVNzEe8b0ZIe1fhOayHJ2ugt4ZpAUs4k26FBa5ktKk1HCWzkVPjtBBY30ckLzB_zD7UCDfDUyQob3g8ye5-iYLxjmp7XR5Zi8kF7u44NVLBHMRyJGErd2k96zfVNUDpNZwYem46HydO9Bg%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=6795136536509&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
IP 144.76.104.53:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=fcb60e5a18&subid=&uid=23ec9e890c1276ed&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCMYXiyKuNY-vkKJe3YJGDk-AFybminGnMvM3O1Q_wLhABIJWbyiFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE-gFP0G3fYfxCFW2sY-YRoAXjhHekQE-NDtekl_ke4EzWMb0pFB7B_4pGFGLFKyyVAM_NMOy2MGb1tivGnEaT5ZGfXP7m4_j8V-NZoQ7lL5VtwZhKQyqBhMf3NmbvBX2vBkPTPeKe2FgpXKI7QqYDewMs0jI3QD761IJxzg8VcBPKzr1VoSFEwFzieo_ZjbVkcDYG3u0zyWabMjsQ_syudsWCmu6mYN8ggMitk6dzBnjjfxc5vjKDodKED8wcdhukuE0sjcnpVONTANFliSInsBlNN3ggvief1sqWwLsUw4m2vsl7QnhUF_wmhDrKT9Si4Av_dmX5du56icKswATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBA8ggbYWR4LXN1YnN5bi0yOTExNzE5MDAyNTMyNjAwgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT%26sig%3DAOD64_0OEJiM3z6ewjnE9v4ANBU9Ev2QWA%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-APvt6thdcrl20sCnYyp1vodIrbDmdNxApTQ2sC4RQHC5WOzb4bR4qkiFgs7a52PuYyrb63LRp9AAkuGDY2RP0fWSwXxBvtEA6xzFQB2U340GvMP7X2bi-VVClIGVwvt1D-eoiLx1rnfIyXPnfw_z9CNStJV77xMLPk6OCPL3YFn3EsVQc%26cry%3D1%26dbm_d%3DAKAmf-AwIVTG-zOioNixslif9ZcnM9GUxv7jeQkVXR10UOXlZZwQanin7GV2DjZdOd-ENOo1Sct65NYcN4Gy-r-Em8cFfIjZ_BiRMBIVJNhCb-s-FdjFLw1IOkKVOFJ8DE4zMca5MOGH8uA7nnR3qRJVkXD4_qbXdP6QLYv_ltpqRii9AyF4_SuL8adnUosaDyWkovtO1QIRDyjhuLCUtrdpLnf8GrLu73WwrWqfK3fwMuo7ZLEIt89MzeMVtswZXWxxgn5HKO7UXu1urNP9nk3150f7t1Kg_W31iDmtPh9syTGA-8AEy-UgKp9XMKeyyyZAy6MxXbU3Dk1TKKZ6RoKbb2SK8K4QMs1x1tvz0V013Y3Dg9_3W6ZMS-sooXGoEiyMFMpUiN2H_9jItDVJS8g3giquYDlffLxpLzaQ5J3M5zVAx1HoQdOZW0hG0cl-g9ThO-txHz38JCXNqZYMCVNzEe8b0ZIe1fhOayHJ2ugt4ZpAUs4k26FBa5ktKk1HCWzkVPjtBBY30ckLzB_zD7UCDfDUyQob3g8ye5-iYLxjmp7XR5Zi8kF7u44NVLBHMRyJGErd2k96zfVNUDpNZwYem46HydO9Bg%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=6795136536509&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0 HTTP/1.1
Host: hal900022.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Mon, 05 Dec 2022 08:28:57 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 05 Dec 2022 08:28:57 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=594a98d6f0f4acda; expires=Sun, 05-Mar-2023 08:28:57 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
Location: request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=fcb60e5a18&subid=&uid=23ec9e890c1276ed&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCMYXiyKuNY-vkKJe3YJGDk-AFybminGnMvM3O1Q_wLhABIJWbyiFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE-gFP0G3fYfxCFW2sY-YRoAXjhHekQE-NDtekl_ke4EzWMb0pFB7B_4pGFGLFKyyVAM_NMOy2MGb1tivGnEaT5ZGfXP7m4_j8V-NZoQ7lL5VtwZhKQyqBhMf3NmbvBX2vBkPTPeKe2FgpXKI7QqYDewMs0jI3QD761IJxzg8VcBPKzr1VoSFEwFzieo_ZjbVkcDYG3u0zyWabMjsQ_syudsWCmu6mYN8ggMitk6dzBnjjfxc5vjKDodKED8wcdhukuE0sjcnpVONTANFliSInsBlNN3ggvief1sqWwLsUw4m2vsl7QnhUF_wmhDrKT9Si4Av_dmX5du56icKswATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBA8ggbYWR4LXN1YnN5bi0yOTExNzE5MDAyNTMyNjAwgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT%26sig%3DAOD64_0OEJiM3z6ewjnE9v4ANBU9Ev2QWA%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-APvt6thdcrl20sCnYyp1vodIrbDmdNxApTQ2sC4RQHC5WOzb4bR4qkiFgs7a52PuYyrb63LRp9AAkuGDY2RP0fWSwXxBvtEA6xzFQB2U340GvMP7X2bi-VVClIGVwvt1D-eoiLx1rnfIyXPnfw_z9CNStJV77xMLPk6OCPL3YFn3EsVQc%26cry%3D1%26dbm_d%3DAKAmf-AwIVTG-zOioNixslif9ZcnM9GUxv7jeQkVXR10UOXlZZwQanin7GV2DjZdOd-ENOo1Sct65NYcN4Gy-r-Em8cFfIjZ_BiRMBIVJNhCb-s-FdjFLw1IOkKVOFJ8DE4zMca5MOGH8uA7nnR3qRJVkXD4_qbXdP6QLYv_ltpqRii9AyF4_SuL8adnUosaDyWkovtO1QIRDyjhuLCUtrdpLnf8GrLu73WwrWqfK3fwMuo7ZLEIt89MzeMVtswZXWxxgn5HKO7UXu1urNP9nk3150f7t1Kg_W31iDmtPh9syTGA-8AEy-UgKp9XMKeyyyZAy6MxXbU3Dk1TKKZ6RoKbb2SK8K4QMs1x1tvz0V013Y3Dg9_3W6ZMS-sooXGoEiyMFMpUiN2H_9jItDVJS8g3giquYDlffLxpLzaQ5J3M5zVAx1HoQdOZW0hG0cl-g9ThO-txHz38JCXNqZYMCVNzEe8b0ZIe1fhOayHJ2ugt4ZpAUs4k26FBa5ktKk1HCWzkVPjtBBY30ckLzB_zD7UCDfDUyQob3g8ye5-iYLxjmp7XR5Zi8kF7u44NVLBHMRyJGErd2k96zfVNUDpNZwYem46HydO9Bg%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=6795136536509&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
udmserve.net/udm/fetch.pix?dt=1;apnid=0;cb=0.8887872
68.71.249.118200 OK 43 B URL HTTP/1.1 udmserve.net/udm/fetch.pix?dt=1;apnid=0;cb=0.8887872
IP 68.71.249.118:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /udm/fetch.pix?dt=1;apnid=0;cb=0.8887872 HTTP/1.1
Host: udmserve.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=43200
Connection: Keep-Alive
Content-Type: image/gif
Date: Mon, 05 Dec 2022 08:28:57 GMT
Content-Length: 43
hal90005.redintelligence.net/request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=03571f7f53&subid=&uid=f04e669281adbaf8&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCtSMNyKuNY7HuJ5eZ7AP1_LHYA8m5opxpzLzNztUP8C4QASCVm8ohYMOEgICYGMgBCakCRL-0GpessT6oAwGqBPQBT9BIDWG5ngL0NGqLxE5Ji9WI2iYuiMXdY3EzVtn_zk6uUQw9WtXLkpZBcAO9_a7UpPfb1smGQubSlGzacRAVYGoBI8GnzUwPSgpsJo1r4mu6GJoPp0R79vHT9ldYXgul71os6KJa8sWxyOsa3sRrDc1Fiyw2iMuadh1JKOZyYlmHcdVyZ4PxFVbv_zOPUVZdVkrOT3SAPjCy3sjBOnVp75eWUeRP5K9609zQrhtp0IzwxZE2FYeitbCMRFhZiFEO0cSGRjXKtlL8sltpktJUjFzUtPp2Pl01R1eACH-Hm59BrN7aH58rYN4wwyFRPmAr9NnRosAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjkxMTcxOTAwMjUzMjYwMIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT%26sig%3DAOD64_32F6izrFhyjDHYKkUGwtj5DxdevQ%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-BKQ3O0HnwkIzji47mJnz-Sm60imWGBIAUspzTRGSCxp5duURXzioKov0SQ7qEwnqVOIk7K1fJrD86uVUzt8VQNBlH0UZE_3spLjbq-wSnAoB0mk1nBKr9LEzNAfQbIGvmQ6ZsnIkxGTVoYfBLgtckeWjqgJo13S8YaYjW6KfrEM64FZvU%26cry%3D1%26dbm_d%3DAKAmf-BKuzjQ3obeOqdFvTzQ14VLffijG92xfJboipyFFXlrdBXFPmwLaRU79Nej_-bB0SF_tChMOGBQMByDj26-7yMKSeJE7C8u_g1lXaP91VJKh60xGJ8Tcy7JVYDqDrVDCQZN0-cvUJyHe3vX54_ru7JJFFiG4XlnrOxB-UJ-cRNswWhP04sg9RLDfdQ4QWaZioReSdbWAyicP0QTszsCI4AbDvxstcf4Q-sFq2oHgjLgcCRuBI8daV36BtX7-4TgFAM6FgK3ElUMCD1w_jR7LR87TE3ZfV-QLZC1yA66M6bQBEVWOQeYt0QwiPMD8szfcQXkg6WZ2i8Fg6FgHY8Fn2zmamOXodl5SzSefCJM-kbpiQBJ_oPIFxt5yjSLmVXGS_UrGa8lnv41femyMlRc-UiMaPdZa2Fw1k8RKVhYUa_oPTOtA3r3KN5R8lwgqJU-dKHhm65GwNsUUZjNWfE7Ig72OatCTiif8TC2oX9vvmenoQ5qp-SI7xe2yxOeUK1v0g74NJmZNFW3WsXwTDHxtvql9g-ysEW68a0UeH1I5YDySQzfNgOnHyybg8oOcLuzLvakuaM4zPNKTVntZyxRDVSvMVEsng%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=3178938249013&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
138.201.63.165200 OK 514 B URL HTTP/1.1 hal90005.redintelligence.net/request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=03571f7f53&subid=&uid=f04e669281adbaf8&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCtSMNyKuNY7HuJ5eZ7AP1_LHYA8m5opxpzLzNztUP8C4QASCVm8ohYMOEgICYGMgBCakCRL-0GpessT6oAwGqBPQBT9BIDWG5ngL0NGqLxE5Ji9WI2iYuiMXdY3EzVtn_zk6uUQw9WtXLkpZBcAO9_a7UpPfb1smGQubSlGzacRAVYGoBI8GnzUwPSgpsJo1r4mu6GJoPp0R79vHT9ldYXgul71os6KJa8sWxyOsa3sRrDc1Fiyw2iMuadh1JKOZyYlmHcdVyZ4PxFVbv_zOPUVZdVkrOT3SAPjCy3sjBOnVp75eWUeRP5K9609zQrhtp0IzwxZE2FYeitbCMRFhZiFEO0cSGRjXKtlL8sltpktJUjFzUtPp2Pl01R1eACH-Hm59BrN7aH58rYN4wwyFRPmAr9NnRosAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjkxMTcxOTAwMjUzMjYwMIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT%26sig%3DAOD64_32F6izrFhyjDHYKkUGwtj5DxdevQ%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-BKQ3O0HnwkIzji47mJnz-Sm60imWGBIAUspzTRGSCxp5duURXzioKov0SQ7qEwnqVOIk7K1fJrD86uVUzt8VQNBlH0UZE_3spLjbq-wSnAoB0mk1nBKr9LEzNAfQbIGvmQ6ZsnIkxGTVoYfBLgtckeWjqgJo13S8YaYjW6KfrEM64FZvU%26cry%3D1%26dbm_d%3DAKAmf-BKuzjQ3obeOqdFvTzQ14VLffijG92xfJboipyFFXlrdBXFPmwLaRU79Nej_-bB0SF_tChMOGBQMByDj26-7yMKSeJE7C8u_g1lXaP91VJKh60xGJ8Tcy7JVYDqDrVDCQZN0-cvUJyHe3vX54_ru7JJFFiG4XlnrOxB-UJ-cRNswWhP04sg9RLDfdQ4QWaZioReSdbWAyicP0QTszsCI4AbDvxstcf4Q-sFq2oHgjLgcCRuBI8daV36BtX7-4TgFAM6FgK3ElUMCD1w_jR7LR87TE3ZfV-QLZC1yA66M6bQBEVWOQeYt0QwiPMD8szfcQXkg6WZ2i8Fg6FgHY8Fn2zmamOXodl5SzSefCJM-kbpiQBJ_oPIFxt5yjSLmVXGS_UrGa8lnv41femyMlRc-UiMaPdZa2Fw1k8RKVhYUa_oPTOtA3r3KN5R8lwgqJU-dKHhm65GwNsUUZjNWfE7Ig72OatCTiif8TC2oX9vvmenoQ5qp-SI7xe2yxOeUK1v0g74NJmZNFW3WsXwTDHxtvql9g-ysEW68a0UeH1I5YDySQzfNgOnHyybg8oOcLuzLvakuaM4zPNKTVntZyxRDVSvMVEsng%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=3178938249013&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
IP 138.201.63.165:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 9c792ed9ff56102f133045c80893e03b
3477e038611384b30c6a649dfb2bf52e08390cd9
2e4cb4e6c79c1f0a5ba6e2a69570854ac55bce02eec34cf7361e2b1602c80fc5
GET /request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=03571f7f53&subid=&uid=f04e669281adbaf8&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCtSMNyKuNY7HuJ5eZ7AP1_LHYA8m5opxpzLzNztUP8C4QASCVm8ohYMOEgICYGMgBCakCRL-0GpessT6oAwGqBPQBT9BIDWG5ngL0NGqLxE5Ji9WI2iYuiMXdY3EzVtn_zk6uUQw9WtXLkpZBcAO9_a7UpPfb1smGQubSlGzacRAVYGoBI8GnzUwPSgpsJo1r4mu6GJoPp0R79vHT9ldYXgul71os6KJa8sWxyOsa3sRrDc1Fiyw2iMuadh1JKOZyYlmHcdVyZ4PxFVbv_zOPUVZdVkrOT3SAPjCy3sjBOnVp75eWUeRP5K9609zQrhtp0IzwxZE2FYeitbCMRFhZiFEO0cSGRjXKtlL8sltpktJUjFzUtPp2Pl01R1eACH-Hm59BrN7aH58rYN4wwyFRPmAr9NnRosAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQPIIG2FkeC1zdWJzeW4tMjkxMTcxOTAwMjUzMjYwMIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9GIKOofRhJMKVuiwYppy5rjplCQ7XJCz30hu_TEdMkZHtcNHQfE2-mjTfARvTHphgyJsx0wsY9-i5ttUsZo1EWTsjFG5QobMYASAT%26sig%3DAOD64_32F6izrFhyjDHYKkUGwtj5DxdevQ%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-BKQ3O0HnwkIzji47mJnz-Sm60imWGBIAUspzTRGSCxp5duURXzioKov0SQ7qEwnqVOIk7K1fJrD86uVUzt8VQNBlH0UZE_3spLjbq-wSnAoB0mk1nBKr9LEzNAfQbIGvmQ6ZsnIkxGTVoYfBLgtckeWjqgJo13S8YaYjW6KfrEM64FZvU%26cry%3D1%26dbm_d%3DAKAmf-BKuzjQ3obeOqdFvTzQ14VLffijG92xfJboipyFFXlrdBXFPmwLaRU79Nej_-bB0SF_tChMOGBQMByDj26-7yMKSeJE7C8u_g1lXaP91VJKh60xGJ8Tcy7JVYDqDrVDCQZN0-cvUJyHe3vX54_ru7JJFFiG4XlnrOxB-UJ-cRNswWhP04sg9RLDfdQ4QWaZioReSdbWAyicP0QTszsCI4AbDvxstcf4Q-sFq2oHgjLgcCRuBI8daV36BtX7-4TgFAM6FgK3ElUMCD1w_jR7LR87TE3ZfV-QLZC1yA66M6bQBEVWOQeYt0QwiPMD8szfcQXkg6WZ2i8Fg6FgHY8Fn2zmamOXodl5SzSefCJM-kbpiQBJ_oPIFxt5yjSLmVXGS_UrGa8lnv41femyMlRc-UiMaPdZa2Fw1k8RKVhYUa_oPTOtA3r3KN5R8lwgqJU-dKHhm65GwNsUUZjNWfE7Ig72OatCTiif8TC2oX9vvmenoQ5qp-SI7xe2yxOeUK1v0g74NJmZNFW3WsXwTDHxtvql9g-ysEW68a0UeH1I5YDySQzfNgOnHyybg8oOcLuzLvakuaM4zPNKTVntZyxRDVSvMVEsng%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=3178938249013&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1 HTTP/1.1
Host: hal90005.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Connection: keep-alive
Cookie: 8lcfmzhxc8d6_uid=594a98d6f0f4acda
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 08:28:57 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 05 Dec 2022 08:28:57 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=594a98d6f0f4acda; expires=Sun, 05-Mar-2023 08:28:57 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
X-NEORY-SubId: 83548700037157904438340012164005
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 514
Connection: close
Content-Type: application/x-javascript; charset=utf-8
hal900022.redintelligence.net/request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=fcb60e5a18&subid=&uid=23ec9e890c1276ed&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCMYXiyKuNY-vkKJe3YJGDk-AFybminGnMvM3O1Q_wLhABIJWbyiFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE-gFP0G3fYfxCFW2sY-YRoAXjhHekQE-NDtekl_ke4EzWMb0pFB7B_4pGFGLFKyyVAM_NMOy2MGb1tivGnEaT5ZGfXP7m4_j8V-NZoQ7lL5VtwZhKQyqBhMf3NmbvBX2vBkPTPeKe2FgpXKI7QqYDewMs0jI3QD761IJxzg8VcBPKzr1VoSFEwFzieo_ZjbVkcDYG3u0zyWabMjsQ_syudsWCmu6mYN8ggMitk6dzBnjjfxc5vjKDodKED8wcdhukuE0sjcnpVONTANFliSInsBlNN3ggvief1sqWwLsUw4m2vsl7QnhUF_wmhDrKT9Si4Av_dmX5du56icKswATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBA8ggbYWR4LXN1YnN5bi0yOTExNzE5MDAyNTMyNjAwgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT%26sig%3DAOD64_0OEJiM3z6ewjnE9v4ANBU9Ev2QWA%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-APvt6thdcrl20sCnYyp1vodIrbDmdNxApTQ2sC4RQHC5WOzb4bR4qkiFgs7a52PuYyrb63LRp9AAkuGDY2RP0fWSwXxBvtEA6xzFQB2U340GvMP7X2bi-VVClIGVwvt1D-eoiLx1rnfIyXPnfw_z9CNStJV77xMLPk6OCPL3YFn3EsVQc%26cry%3D1%26dbm_d%3DAKAmf-AwIVTG-zOioNixslif9ZcnM9GUxv7jeQkVXR10UOXlZZwQanin7GV2DjZdOd-ENOo1Sct65NYcN4Gy-r-Em8cFfIjZ_BiRMBIVJNhCb-s-FdjFLw1IOkKVOFJ8DE4zMca5MOGH8uA7nnR3qRJVkXD4_qbXdP6QLYv_ltpqRii9AyF4_SuL8adnUosaDyWkovtO1QIRDyjhuLCUtrdpLnf8GrLu73WwrWqfK3fwMuo7ZLEIt89MzeMVtswZXWxxgn5HKO7UXu1urNP9nk3150f7t1Kg_W31iDmtPh9syTGA-8AEy-UgKp9XMKeyyyZAy6MxXbU3Dk1TKKZ6RoKbb2SK8K4QMs1x1tvz0V013Y3Dg9_3W6ZMS-sooXGoEiyMFMpUiN2H_9jItDVJS8g3giquYDlffLxpLzaQ5J3M5zVAx1HoQdOZW0hG0cl-g9ThO-txHz38JCXNqZYMCVNzEe8b0ZIe1fhOayHJ2ugt4ZpAUs4k26FBa5ktKk1HCWzkVPjtBBY30ckLzB_zD7UCDfDUyQob3g8ye5-iYLxjmp7XR5Zi8kF7u44NVLBHMRyJGErd2k96zfVNUDpNZwYem46HydO9Bg%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=6795136536509&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
144.76.104.53200 OK 513 B URL HTTP/1.1 hal900022.redintelligence.net/request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=fcb60e5a18&subid=&uid=23ec9e890c1276ed&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCMYXiyKuNY-vkKJe3YJGDk-AFybminGnMvM3O1Q_wLhABIJWbyiFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE-gFP0G3fYfxCFW2sY-YRoAXjhHekQE-NDtekl_ke4EzWMb0pFB7B_4pGFGLFKyyVAM_NMOy2MGb1tivGnEaT5ZGfXP7m4_j8V-NZoQ7lL5VtwZhKQyqBhMf3NmbvBX2vBkPTPeKe2FgpXKI7QqYDewMs0jI3QD761IJxzg8VcBPKzr1VoSFEwFzieo_ZjbVkcDYG3u0zyWabMjsQ_syudsWCmu6mYN8ggMitk6dzBnjjfxc5vjKDodKED8wcdhukuE0sjcnpVONTANFliSInsBlNN3ggvief1sqWwLsUw4m2vsl7QnhUF_wmhDrKT9Si4Av_dmX5du56icKswATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBA8ggbYWR4LXN1YnN5bi0yOTExNzE5MDAyNTMyNjAwgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT%26sig%3DAOD64_0OEJiM3z6ewjnE9v4ANBU9Ev2QWA%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-APvt6thdcrl20sCnYyp1vodIrbDmdNxApTQ2sC4RQHC5WOzb4bR4qkiFgs7a52PuYyrb63LRp9AAkuGDY2RP0fWSwXxBvtEA6xzFQB2U340GvMP7X2bi-VVClIGVwvt1D-eoiLx1rnfIyXPnfw_z9CNStJV77xMLPk6OCPL3YFn3EsVQc%26cry%3D1%26dbm_d%3DAKAmf-AwIVTG-zOioNixslif9ZcnM9GUxv7jeQkVXR10UOXlZZwQanin7GV2DjZdOd-ENOo1Sct65NYcN4Gy-r-Em8cFfIjZ_BiRMBIVJNhCb-s-FdjFLw1IOkKVOFJ8DE4zMca5MOGH8uA7nnR3qRJVkXD4_qbXdP6QLYv_ltpqRii9AyF4_SuL8adnUosaDyWkovtO1QIRDyjhuLCUtrdpLnf8GrLu73WwrWqfK3fwMuo7ZLEIt89MzeMVtswZXWxxgn5HKO7UXu1urNP9nk3150f7t1Kg_W31iDmtPh9syTGA-8AEy-UgKp9XMKeyyyZAy6MxXbU3Dk1TKKZ6RoKbb2SK8K4QMs1x1tvz0V013Y3Dg9_3W6ZMS-sooXGoEiyMFMpUiN2H_9jItDVJS8g3giquYDlffLxpLzaQ5J3M5zVAx1HoQdOZW0hG0cl-g9ThO-txHz38JCXNqZYMCVNzEe8b0ZIe1fhOayHJ2ugt4ZpAUs4k26FBa5ktKk1HCWzkVPjtBBY30ckLzB_zD7UCDfDUyQob3g8ye5-iYLxjmp7XR5Zi8kF7u44NVLBHMRyJGErd2k96zfVNUDpNZwYem46HydO9Bg%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=6795136536509&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
IP 144.76.104.53:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 62c1aa3542dada3e32e1ae8d89819098
8b0b499a2a7470104de3082c9b3625d74dd4c44d
e991c2de6451e4489ca06fef967b6b6c17db63ed80afffb5a771ee571a744cc3
GET /request.php?zone=p4vicekg7740&nw=20&renderingType=javascript&namespace=fcb60e5a18&subid=&uid=23ec9e890c1276ed&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=336x280&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCMYXiyKuNY-vkKJe3YJGDk-AFybminGnMvM3O1Q_wLhABIJWbyiFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE-gFP0G3fYfxCFW2sY-YRoAXjhHekQE-NDtekl_ke4EzWMb0pFB7B_4pGFGLFKyyVAM_NMOy2MGb1tivGnEaT5ZGfXP7m4_j8V-NZoQ7lL5VtwZhKQyqBhMf3NmbvBX2vBkPTPeKe2FgpXKI7QqYDewMs0jI3QD761IJxzg8VcBPKzr1VoSFEwFzieo_ZjbVkcDYG3u0zyWabMjsQ_syudsWCmu6mYN8ggMitk6dzBnjjfxc5vjKDodKED8wcdhukuE0sjcnpVONTANFliSInsBlNN3ggvief1sqWwLsUw4m2vsl7QnhUF_wmhDrKT9Si4Av_dmX5du56icKswATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBA8ggbYWR4LXN1YnN5bi0yOTExNzE5MDAyNTMyNjAwgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADq26N9-vu5Ro4zkQfwagInj3mwrOXX9Q1BefpZed7Z7TZuiltRwid2txBYHhrbclLIdzm1Tjmxvabr_c5h9K6NVASiQn8IpoymGl0YASAT%26sig%3DAOD64_0OEJiM3z6ewjnE9v4ANBU9Ev2QWA%26client%3Dca-pub-3831894559014614%26dbm_c%3DAKAmf-APvt6thdcrl20sCnYyp1vodIrbDmdNxApTQ2sC4RQHC5WOzb4bR4qkiFgs7a52PuYyrb63LRp9AAkuGDY2RP0fWSwXxBvtEA6xzFQB2U340GvMP7X2bi-VVClIGVwvt1D-eoiLx1rnfIyXPnfw_z9CNStJV77xMLPk6OCPL3YFn3EsVQc%26cry%3D1%26dbm_d%3DAKAmf-AwIVTG-zOioNixslif9ZcnM9GUxv7jeQkVXR10UOXlZZwQanin7GV2DjZdOd-ENOo1Sct65NYcN4Gy-r-Em8cFfIjZ_BiRMBIVJNhCb-s-FdjFLw1IOkKVOFJ8DE4zMca5MOGH8uA7nnR3qRJVkXD4_qbXdP6QLYv_ltpqRii9AyF4_SuL8adnUosaDyWkovtO1QIRDyjhuLCUtrdpLnf8GrLu73WwrWqfK3fwMuo7ZLEIt89MzeMVtswZXWxxgn5HKO7UXu1urNP9nk3150f7t1Kg_W31iDmtPh9syTGA-8AEy-UgKp9XMKeyyyZAy6MxXbU3Dk1TKKZ6RoKbb2SK8K4QMs1x1tvz0V013Y3Dg9_3W6ZMS-sooXGoEiyMFMpUiN2H_9jItDVJS8g3giquYDlffLxpLzaQ5J3M5zVAx1HoQdOZW0hG0cl-g9ThO-txHz38JCXNqZYMCVNzEe8b0ZIe1fhOayHJ2ugt4ZpAUs4k26FBa5ktKk1HCWzkVPjtBBY30ckLzB_zD7UCDfDUyQob3g8ye5-iYLxjmp7XR5Zi8kF7u44NVLBHMRyJGErd2k96zfVNUDpNZwYem46HydO9Bg%26adurl%3D&documentReferer=https%3A%2F%2Fd5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-40%2Fhtml%2Fcontainer.html&ancestorOrigins=null&random=6795136536509&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1 HTTP/1.1
Host: hal900022.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Connection: keep-alive
Cookie: 8lcfmzhxc8d6_uid=594a98d6f0f4acda
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 08:28:57 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 05 Dec 2022 08:28:57 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=594a98d6f0f4acda; expires=Sun, 05-Mar-2023 08:28:57 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
X-NEORY-SubId: 46628100029157104438340012164022
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 513
Connection: close
Content-Type: application/x-javascript; charset=utf-8
hal90005.redintelligence.net/request_content.php?s=83548700037157904438340012164005&a=36db895e
138.201.63.165200 OK 1.4 kB URL HTTP/1.1 hal90005.redintelligence.net/request_content.php?s=83548700037157904438340012164005&a=36db895e
IP 138.201.63.165:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 495343fae6f1e5371159500df2d2e119
0ccfbabff89458430c3c7f65897421f8dce4735b
cf7fbba1841064ac9b8776ba70bdd91cd443cda3b85405f3112499e2ab368cd5
GET /request_content.php?s=83548700037157904438340012164005&a=36db895e HTTP/1.1
Host: hal90005.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Cookie: 8lcfmzhxc8d6_uid=594a98d6f0f4acda
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 08:28:58 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 05 Dec 2022 08:28:58 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1413
Connection: close
Content-Type: text/html; charset=utf-8
hal900022.redintelligence.net/request_content.php?s=46628100029157104438340012164022&a=72cccd7e
144.76.104.53200 OK 1.4 kB URL HTTP/1.1 hal900022.redintelligence.net/request_content.php?s=46628100029157104438340012164022&a=72cccd7e
IP 144.76.104.53:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 7bda847240f01897deb79bc466765e22
f91da2d3154da7a705118b21fc8785546dfde147
db351b3e981e11a5600f4a1d144ec1411e8f1bc5514efac99393917c01e6ce69
GET /request_content.php?s=46628100029157104438340012164022&a=72cccd7e HTTP/1.1
Host: hal900022.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d5ee471b378cb2682aa4d7503dc23c83.safeframe.googlesyndication.com/
Cookie: 8lcfmzhxc8d6_uid=594a98d6f0f4acda
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 08:28:58 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 05 Dec 2022 08:28:58 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1414
Connection: close
Content-Type: text/html; charset=utf-8
hal90005.redintelligence.net/viewability?s=83548700037157904438340012164005&a=a96465a2&vb=m
138.201.63.165200 OK 0 B URL HTTP/1.1 hal90005.redintelligence.net/viewability?s=83548700037157904438340012164005&a=a96465a2&vb=m
IP 138.201.63.165:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /viewability?s=83548700037157904438340012164005&a=a96465a2&vb=m HTTP/1.1
Host: hal90005.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal90005.redintelligence.net/request_content.php?s=83548700037157904438340012164005&a=36db895e
Cookie: 8lcfmzhxc8d6_uid=594a98d6f0f4acda
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 08:28:58 GMT
Server: Apache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
hal900022.redintelligence.net/viewability?s=46628100029157104438340012164022&a=d9ecf560&vb=m
144.76.104.53200 OK 0 B URL HTTP/1.1 hal900022.redintelligence.net/viewability?s=46628100029157104438340012164022&a=d9ecf560&vb=m
IP 144.76.104.53:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /viewability?s=46628100029157104438340012164022&a=d9ecf560&vb=m HTTP/1.1
Host: hal900022.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900022.redintelligence.net/request_content.php?s=46628100029157104438340012164022&a=72cccd7e
Cookie: 8lcfmzhxc8d6_uid=594a98d6f0f4acda
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 08:28:58 GMT
Server: Apache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
cdn.contentspread.net/24i/content/soberfb/EN/S-336x280.gif
85.114.131.233200 OK 79 kB URL HTTP/1.1 cdn.contentspread.net/24i/content/soberfb/EN/S-336x280.gif
IP 85.114.131.233:0
ASN #24961 myLoc managed IT AG
File type GIF image data, version 89a, 336 x 280\012- data
Hash 2d8f4084666e5bd2e4b050d82b791c0e
1f9f90f623398be4f3b4c198c602ca127243d4e3
0a946d52ac8890900833e2996c926ddabba3d9aa7dd4d9d7a1b4e5cd1db8dd34
GET /24i/content/soberfb/EN/S-336x280.gif HTTP/1.1
Host: cdn.contentspread.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal90005.redintelligence.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Dec 2022 08:28:58 GMT
Content-Type: image/gif
Content-Length: 79127
Last-Modified: Mon, 23 Jul 2018 15:19:52 GMT
Connection: close
ETag: "5b55f218-13517"
Accept-Ranges: bytes
whazugho.com/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Content-Type: application/json
Origin: https://myhealthreads.com
Content-Length: 725
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:58 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 85d5dd5a342b3d241e35008d0ec11b5b
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/explore-more.20221204-5-RELEASE.es6.js
151.101.193.44200 OK 6.6 kB URL HTTP/2 cdn.taboola.com/libtrc/explore-more.20221204-5-RELEASE.es6.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (22837)
Hash 2ebb8642ec92e03ba402613d0bbadca1
b7e89964922530eb570b378f30eba0fa656de9c6
4c013b9c36cb6f5bb1fcbbcefe823c6981085ca3b3104582aca9d4279f79e5f6
GET /libtrc/explore-more.20221204-5-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: yqehblRS6L6WVL9ZFCXPQOmouS+gkYX6omlTfXVTI6vEhDVW4BYzPXGzqzlWg1cx9Uz4G79QoDw=
x-amz-request-id: 37P9B0NDDGF51W1W
x-amz-replication-status: PENDING
last-modified: Sun, 04 Dec 2022 12:45:25 GMT
etag: "d7d1fc13382b22c946930372a27e100f"
x-amz-version-id: z77C4ZZPnXRZtcfLIpRtxDB9z1EGXm63
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:58 GMT
via: 1.1 varnish
age: 54
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 14
x-timer: S1670228939.615363,VS0,VE0
cache-control: private,max-age=14400
vary: Accept-Encoding
abp: 47
content-length: 6613
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/feed-card-placeholder.20221204-5-RELEASE.es6.js
151.101.193.44200 OK 1.3 kB URL HTTP/2 cdn.taboola.com/libtrc/feed-card-placeholder.20221204-5-RELEASE.es6.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (4627)
Hash 6ac883a44effb23b1cc16d9bb573455a
c48fbda1702a6029585fdaacf9bfda1b6c25bac8
0d447561c1915c38f8180e13fd7c0610e1c3a4d4e4da8b0f496fa7b4d94158ff
GET /libtrc/feed-card-placeholder.20221204-5-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ukh3VC808rNQZrzkzLMfjxqlDA7/Kcgogd6MlS45rrsMVEGpklKtHEudS2MXN0kHrmmJ6v2dHA0=
x-amz-request-id: AV84Y0546PNP91Q1
x-amz-replication-status: PENDING
last-modified: Sun, 04 Dec 2022 12:45:28 GMT
etag: "9ee00c15f0de0f80c58917b2d0d719e0"
x-amz-version-id: LW8693.qgLkJVu2s_DJv9gl6XSR25imX
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:58 GMT
via: 1.1 varnish
age: 87
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 32
x-timer: S1670228939.615513,VS0,VE0
cache-control: private,max-age=14400
vary: Accept-Encoding
abp: 47
content-length: 1263
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/cta-component.20221204-5-RELEASE.es6.js
151.101.193.44200 OK 5.1 kB URL HTTP/2 cdn.taboola.com/libtrc/cta-component.20221204-5-RELEASE.es6.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (18924)
Hash 9b7cf542cdd2fc4a076a02d37dff71fc
e20ed06224647b5a57809e1cd8623e1358d0516a
472681407a0b437ec853b421e0c919a98a46838e7fd60c610e81d76dcd200997
GET /libtrc/cta-component.20221204-5-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: iBdvQgrpqB9hFnXEXocil/IPLxo9kTfrCNauB+inDV3bDvv7T6k1XT5Pz7YGdL0YbXvEa/NcVC0=
x-amz-request-id: BM2J3DBSD3EJF0FS
x-amz-replication-status: PENDING
last-modified: Sun, 04 Dec 2022 12:45:18 GMT
etag: "3d57420ee8058c5dd7c6af7bcddf9500"
x-amz-version-id: GX.y_qek13qzszMknBMEjodlNkqXuW62
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:58 GMT
via: 1.1 varnish
age: 99
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 40
x-timer: S1670228939.631255,VS0,VE0
cache-control: private,max-age=14400
vary: Accept-Encoding
abp: 47
content-length: 5107
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/userx.20221204-5-RELEASE.es6.js
151.101.193.44200 OK 5.4 kB URL HTTP/2 cdn.taboola.com/libtrc/userx.20221204-5-RELEASE.es6.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (17842)
Hash 1bf1dea253cd98940ce69c484846d6a1
10eb6e66d08a1b9d47b907bdab99ce62df1ac64e
a1400b6b985663284e06ff193ae67a058ac4a941c0e39a0459fbdbae5f2b8bec
GET /libtrc/userx.20221204-5-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: JqZ/yLM48O7O463Ttm8xU7mzkvETfxvwt7FKlLjm6luzENqOF69dXlL97srYZ1cLMuNLK64Qayk=
x-amz-request-id: F6G6YAPYQQ205QRS
x-amz-replication-status: PENDING
last-modified: Sun, 04 Dec 2022 12:46:15 GMT
etag: "f257084fa5d40369fd5095838cc508c9"
x-amz-version-id: t5qY8CKRUH4Gm3ODbJJbfrati21qr3EK
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:58 GMT
via: 1.1 varnish
age: 50
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 6
x-timer: S1670228939.633935,VS0,VE0
cache-control: private,max-age=14400
vary: Accept-Encoding
abp: 47
content-length: 5398
X-Firefox-Spdy: h2
tags.crwdcntrl.net/lt/c/16576/sync.min.js
54.230.111.122200 OK 21 kB URL HTTP/2 tags.crwdcntrl.net/lt/c/16576/sync.min.js
IP 54.230.111.122:0
Hash d533b1eb6802c8dc8eefa7c5c121b405
f8bb30d6d33f437bebdd22bda6f3790e81fa60e6
bfe5e3312335f7c6564c73dd45d080d85de761115c9ade8e97a003231f9335b3
GET /lt/c/16576/sync.min.js HTTP/1.1
Host: tags.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Mon, 21 Nov 2022 18:55:24 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sun, 04 Dec 2022 12:55:13 GMT
cache-control: max-age: 86400
etag: W/"51c5af7d71728569b41d03503fff2de7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZSF5X3BplJqt_pSB0E_mQTqusHZLle6fN7qBvXUgsSowb0eoMRnT1A==
age: 70424
X-Firefox-Spdy: h2
bid.underdog.media/edge-logo-white.png
54.230.111.115200 OK 16 kB URL HTTP/2 bid.underdog.media/edge-logo-white.png
IP 54.230.111.115:0
File type PNG image data, 217 x 80, 8-bit/color RGBA, interlaced\012- data
Hash 876f68d4ff152e17573c3a8f3cc1a580
f908f85dd1a2231e0f555ecb192b37a24c6c31c7
d443235c5040b9e5a2461f69bcef0930f5820c356830bb0c59a4953d16f8a59e
GET /edge-logo-white.png HTTP/1.1
Host: bid.underdog.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 15804
last-modified: Tue, 17 Nov 2020 21:08:31 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 27 Nov 2022 02:56:09 GMT
cache-control: max-age=2592000
etag: "876f68d4ff152e17573c3a8f3cc1a580"
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: o7T0ivD_B9RVhqiYslsJgSdSYyf35hNMHnnfCPg8YXaYpRtQFcJ__Q==
age: 711172
X-Firefox-Spdy: h2
id5-sync.com/g/v2/1113.json
141.95.33.111200 216 B URL HTTP/1.1 id5-sync.com/g/v2/1113.json
IP 141.95.33.111:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 230c22e70f67c1c5311ace92bbd3e120
c6e6e860f54c8f57ae724213f4c443fbf0b69841
bbe6d5b406a19a113e18a9133dedfe00b9ac9d11ca5d2c8ed404da362b3a6c94
POST /g/v2/1113.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 431
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Mon, 05 Dec 2022 08:28:58 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
il-trc-events.taboola.com/robustdigital-myheathreads/log/3/supply-feature?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22event_type%22%3A%22EXPLORE_MORE%22%2C%22event_state%22%3A%22ADOPTED%22%2C%22event_value%22%3A%22%22%2C%22event_msg%22%3A%22%22%2C%22event_key%22%3A%22%22%7D&tim=08%3A28%3A56.014&id=4867&llvl=2&cv=20221204-5-RELEASE&
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/robustdigital-myheathreads/log/3/supply-feature?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22event_type%22%3A%22EXPLORE_MORE%22%2C%22event_state%22%3A%22ADOPTED%22%2C%22event_value%22%3A%22%22%2C%22event_msg%22%3A%22%22%2C%22event_key%22%3A%22%22%7D&tim=08%3A28%3A56.014&id=4867&llvl=2&cv=20221204-5-RELEASE&
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /robustdigital-myheathreads/log/3/supply-feature?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22event_type%22%3A%22EXPLORE_MORE%22%2C%22event_state%22%3A%22ADOPTED%22%2C%22event_value%22%3A%22%22%2C%22event_msg%22%3A%22%22%2C%22event_key%22%3A%22%22%7D&tim=08%3A28%3A56.014&id=4867&llvl=2&cv=20221204-5-RELEASE& HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Dec 2022 08:28:58 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/theia-post-slider/js/tps.js?ver=2.0.0
207.246.105.151200 OK 9.0 kB URL HTTP/2 myhealthreads.com/wp-content/plugins/theia-post-slider/js/tps.js?ver=2.0.0
IP 207.246.105.151:0
File type ASCII text, with very long lines (1850)
Hash 4f36b32a9b61a1b55da200dc5448087c
776b81cbaf6d803acf194be90549b4ccc0fece80
4bada5dc167fffa89f3a4b906b82edd64d6df13f5ef4560da2fefd3f2822e96e
GET /wp-content/plugins/theia-post-slider/js/tps.js?ver=2.0.0 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 12:38:30 GMT
vary: Accept-Encoding
etag: W/"636cf0c6-8e0c"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
udmserve.net/udm/img.fetch?sid=15514;tid=1;dt=7;p=1;mid=43264;zzz=1;version=v2.16.2;cb=0.26684798154845224;refresh=2;style=reel;vis=visible;traffic_info=%7B%7D
68.71.249.118200 OK 0 B URL HTTP/1.1 udmserve.net/udm/img.fetch?sid=15514;tid=1;dt=7;p=1;mid=43264;zzz=1;version=v2.16.2;cb=0.26684798154845224;refresh=2;style=reel;vis=visible;traffic_info=%7B%7D
IP 68.71.249.118:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /udm/img.fetch?sid=15514;tid=1;dt=7;p=1;mid=43264;zzz=1;version=v2.16.2;cb=0.26684798154845224;refresh=2;style=reel;vis=visible;traffic_info=%7B%7D HTTP/1.1
Host: udmserve.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Type: application/x-javascript
Expires: -1d
P3p: NOI DSP CURa ADMa DEVa PSAa PSDa OUR IND UNI COM NAV INT
Set-Cookie: udmts=1670228938.0; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:28:58 GMT; Secure; SameSite=None
dt=32A26D48-69D8-3369-B917-8601DEEAE584; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:28:58 GMT; Secure; SameSite=None
geode=63794996938:91.90.42.154:578:C11093:D578270:S11348:no:oslo:ZZ:00000:broadband:?:?; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:28:58 GMT; Secure; SameSite=None
Date: Mon, 05 Dec 2022 08:28:58 GMT
Content-Length: 0
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-sharethrough_ym_rbd_n-MediaNet_cnv_sovrn_n-Outbrain
67.220.226.232302 Found 0 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-sharethrough_ym_rbd_n-MediaNet_cnv_sovrn_n-Outbrain
IP 67.220.226.232:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-sharethrough_ym_rbd_n-MediaNet_cnv_sovrn_n-Outbrain HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Mon, 05 Dec 2022 08:28:58 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: 0DCMMDNCJ099A89WD63X
Set-Cookie: ad-id=A3JbrhtWaky9pBU3ZkPnZVs|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 08:28:58 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-sharethrough_ym_rbd_n-MediaNet_cnv_sovrn_n-Outbrain&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
il-trc-events.taboola.com/robustdigital-myheathreads/log/3/supply-feature?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22event_type%22%3A%22EXPLORE_MORE%22%2C%22event_state%22%3A%22CLICKABLE%22%2C%22event_value%22%3A%22tblOriginalState%3A%20true%22%2C%22event_msg%22%3A%22back%20button%20enabled%2C%20history%20changed.%22%2C%22event_key%22%3A%22%22%7D&tim=08%3A28%3A56.292&id=1293&llvl=2&cv=20221204-5-RELEASE&
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/robustdigital-myheathreads/log/3/supply-feature?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22event_type%22%3A%22EXPLORE_MORE%22%2C%22event_state%22%3A%22CLICKABLE%22%2C%22event_value%22%3A%22tblOriginalState%3A%20true%22%2C%22event_msg%22%3A%22back%20button%20enabled%2C%20history%20changed.%22%2C%22event_key%22%3A%22%22%7D&tim=08%3A28%3A56.292&id=1293&llvl=2&cv=20221204-5-RELEASE&
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /robustdigital-myheathreads/log/3/supply-feature?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22event_type%22%3A%22EXPLORE_MORE%22%2C%22event_state%22%3A%22CLICKABLE%22%2C%22event_value%22%3A%22tblOriginalState%3A%20true%22%2C%22event_msg%22%3A%22back%20button%20enabled%2C%20history%20changed.%22%2C%22event_key%22%3A%22%22%7D&tim=08%3A28%3A56.292&id=1293&llvl=2&cv=20221204-5-RELEASE& HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Dec 2022 08:28:58 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-sharethrough_ym_rbd_n-MediaNet_cnv_sovrn_n-Outbrain&dcc=t
67.220.226.232200 OK 64 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-sharethrough_ym_rbd_n-MediaNet_cnv_sovrn_n-Outbrain&dcc=t
IP 67.220.226.232:0
File type HTML document, ASCII text
Hash be99f9f8ced5e5eb1f9721d861712f89
4291ee98f7ce20471796ec89961abb1acb2af1d8
f17fe415b91a13ea86b93344389e18c996384323ca3c2f4267b18c96b8314a12
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-sharethrough_ym_rbd_n-MediaNet_cnv_sovrn_n-Outbrain&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Mon, 05 Dec 2022 08:28:58 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 64
Connection: keep-alive
x-amz-rid: SWT1MN6CF6EJCFRA00G4
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
il-trc-events.taboola.com/robustdigital-myheathreads/log/3/supply-feature?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22event_type%22%3A%22EXPLORE_MORE%22%2C%22event_state%22%3A%22AVAILABLE%22%2C%22event_value%22%3A%22%22%2C%22event_msg%22%3A%22%22%2C%22event_key%22%3A%22%22%7D&tim=08%3A28%3A56.288&id=4693&llvl=2&cv=20221204-5-RELEASE&
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/robustdigital-myheathreads/log/3/supply-feature?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22event_type%22%3A%22EXPLORE_MORE%22%2C%22event_state%22%3A%22AVAILABLE%22%2C%22event_value%22%3A%22%22%2C%22event_msg%22%3A%22%22%2C%22event_key%22%3A%22%22%7D&tim=08%3A28%3A56.288&id=4693&llvl=2&cv=20221204-5-RELEASE&
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /robustdigital-myheathreads/log/3/supply-feature?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22event_type%22%3A%22EXPLORE_MORE%22%2C%22event_state%22%3A%22AVAILABLE%22%2C%22event_value%22%3A%22%22%2C%22event_msg%22%3A%22%22%2C%22event_key%22%3A%22%22%7D&tim=08%3A28%3A56.288&id=4693&llvl=2&cv=20221204-5-RELEASE& HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Dec 2022 08:28:58 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
il-trc-events.taboola.com/robustdigital-myheathreads/log/3/abtests?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22explore-more%22%2C%22type%22%3A%22header%20found%22%2C%22eventTime%22%3A1670228936290%7D&tim=08%3A28%3A56.290&id=5046&llvl=2&cv=20221204-5-RELEASE&
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/robustdigital-myheathreads/log/3/abtests?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22explore-more%22%2C%22type%22%3A%22header%20found%22%2C%22eventTime%22%3A1670228936290%7D&tim=08%3A28%3A56.290&id=5046&llvl=2&cv=20221204-5-RELEASE&
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /robustdigital-myheathreads/log/3/abtests?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22explore-more%22%2C%22type%22%3A%22header%20found%22%2C%22eventTime%22%3A1670228936290%7D&tim=08%3A28%3A56.290&id=5046&llvl=2&cv=20221204-5-RELEASE& HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Dec 2022 08:28:58 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
il-trc-events.taboola.com/robustdigital-myheathreads/log/3/abtests?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22explore-more%22%2C%22type%22%3A%22explore-more-available%22%2C%22eventTime%22%3A1670228936312%7D&tim=08%3A28%3A56.313&id=1886&llvl=2&cv=20221204-5-RELEASE&
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/robustdigital-myheathreads/log/3/abtests?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22explore-more%22%2C%22type%22%3A%22explore-more-available%22%2C%22eventTime%22%3A1670228936312%7D&tim=08%3A28%3A56.313&id=1886&llvl=2&cv=20221204-5-RELEASE&
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /robustdigital-myheathreads/log/3/abtests?route=AM:IL:V<i=aa_test_for_monitoring_ctrl&ri=12218536302cf5bb682ffff0837cad12&sd=v2_e8978023ae55cf8e1951e0ea61cb62c9_7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148_1670228936_1670228936_CNawjgYQ87VOGLXzm4vOMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&pi=/korean-15-crazy-useful-things&wi=-7018680131440952861&pt=text&vi=1670228933045&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22explore-more%22%2C%22type%22%3A%22explore-more-available%22%2C%22eventTime%22%3A1670228936312%7D&tim=08%3A28%3A56.313&id=1886&llvl=2&cv=20221204-5-RELEASE& HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Dec 2022 08:28:58 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
udmserve.net/udm/img.fetch?sid=15514;tid=1;dt=7;p=1;rri=1670228936159_719548_91.90.42.154;mid=43264;zzz=1;version=v2.16.2;cb=0.9603728572111154;session=1;style=slider;vis=visible;traffic_info=%7B%7D;
68.71.249.118200 OK 0 B URL HTTP/1.1 udmserve.net/udm/img.fetch?sid=15514;tid=1;dt=7;p=1;rri=1670228936159_719548_91.90.42.154;mid=43264;zzz=1;version=v2.16.2;cb=0.9603728572111154;session=1;style=slider;vis=visible;traffic_info=%7B%7D;
IP 68.71.249.118:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /udm/img.fetch?sid=15514;tid=1;dt=7;p=1;rri=1670228936159_719548_91.90.42.154;mid=43264;zzz=1;version=v2.16.2;cb=0.9603728572111154;session=1;style=slider;vis=visible;traffic_info=%7B%7D; HTTP/1.1
Host: udmserve.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Type: application/x-javascript
Expires: -1d
P3p: NOI DSP CURa ADMa DEVa PSAa PSDa OUR IND UNI COM NAV INT
Set-Cookie: udmts=1670228938.0; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:28:58 GMT; Secure; SameSite=None
dt=03573A55-68C7-3095-92AF-C246DD3523D2; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:28:58 GMT; Secure; SameSite=None
geode=63794996938:91.90.42.154:578:C11093:D578270:S11348:no:oslo:ZZ:00000:broadband:?:?; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:28:58 GMT; Secure; SameSite=None
Date: Mon, 05 Dec 2022 08:28:58 GMT
Content-Length: 0
gum.criteo.com/syncframe?origin=rtus&topUrl=myhealthreads.com
178.250.0.157200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=myhealthreads.com
IP 178.250.0.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 2cf12a61c5f3f23abe6f26d2181f908c
7cc44e27a14d87f3a8180a7b3a99f6fbc52f99c8
f0b7a85374c53a3a5e3dc9074aa1587df2e43cbd4835cb777f23ae7492cf2041
GET /syncframe?origin=rtus&topUrl=myhealthreads.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:58 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=995d15e8-87b7-45f8-9fbd-2d340a0f4f62; expires=Sat, 30 Dec 2023 08:28:58 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 919617
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6e1df49a4f3feca426dd7b8dca939bbe.jpg
151.101.193.44200 OK 18 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6e1df49a4f3feca426dd7b8dca939bbe.jpg
IP 151.101.193.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash db82737381e44504ea99ce3f4879ecf5
c8185d68f05cf8304d66534988f8a661c89aeea1
9b39f6afb58504fe63ce11dd998d22b2de3a68eed2b6022f81e86697a80ac65f
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6e1df49a4f3feca426dd7b8dca939bbe.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 497899765180235433444108138851767910416,459052303457394366171479749282851127576,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 497899765180235433444108138851767910416,459052303457394366171479749282851127576,29ecf9b93bbf306179626feeda1fab70
etag: "1a25be0ae2e09895b204906c1ea87b32"
last-modified: Sat, 15 Oct 2022 18:44:56 GMT
req-referer: https://10210150157.basketball.cbssports.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 1568b7698826780b032799e2446620e7
x-envoy-upstream-service-time: 97
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb202
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:59 GMT
age: 2512486
x-served-by: cache-iad-kiad7000082-IAD, cache-iad-kiad7000024-IAD, cache-lax10680-LGB, cache-iad-kjyo7100121-IAD, cache-bma1643-BMA
x-cache: MISS, HIT, HIT, HIT, HIT
x-cache-hits: 0, 2, 1, 28, 42
x-timer: S1670228939.172733,VS0,VE0
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/6e1df49a4f3feca426dd7b8dca939bbe.jpg
x-vcl-time-ms: 0
content-length: 17986
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.ibb.co/PMsByhf/Untitled-design-4.png
151.101.193.44200 OK 13 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.ibb.co/PMsByhf/Untitled-design-4.png
IP 151.101.193.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2a7ef190201fc0f47b547a68e68a84fd
a18667f5f5b39e32664f87878f8d08d6c2257482
e166f992aad5d67c4e3df2a7ef236a693a1b0731a257459f5b81f8c1520e1bb2
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.ibb.co/PMsByhf/Untitled-design-4.png HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 487162476531458489843398520959864332831,459052303457394366171479749282851127576,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 487162476531458489843398520959864332831,459052303457394366171479749282851127576,29ecf9b93bbf306179626feeda1fab70
etag: "ba1298198c243770f37f1678db0366a8"
last-modified: Fri, 30 Sep 2022 19:59:51 GMT
req-referer: https://weather.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: c8a44860d6b9013adbb06dd4f3e3299e
x-envoy-upstream-service-time: 1462
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb802
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:59 GMT
age: 4730133
x-served-by: cache-iad-kjyo7100076-IAD, cache-iad-kcgs7200065-IAD, cache-lga21937-LGA, cache-iad-kiad7000121-IAD, cache-bma1643-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 91, 1
x-timer: S1670228939.173887,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.ibb.co/PMsByhf/Untitled-design-4.png
x-vcl-time-ms: 1
content-length: 13170
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/11068fdcec090be4b110eb55cce26b79.jpg
151.101.193.44200 OK 9.3 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/11068fdcec090be4b110eb55cce26b79.jpg
IP 151.101.193.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6d86a94cda1dcdc0ce4ffe4a0bdcc7e9
9c5165fc7511b13d0a7e43bf2f2cf05374b0e9e9
3be5e97c4112c14ef16fd03f97e9f2c93a5f0372bdab1b7f2f5f39fbe5831114
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/11068fdcec090be4b110eb55cce26b79.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 425893681186110537216644360044419288639,459052303457394366171479749282851127576,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 425893681186110537216644360044419288639,459052303457394366171479749282851127576,29ecf9b93bbf306179626feeda1fab70
etag: "57b36d99900430a7244524ff76e0df95"
expiration: expiry-date="Fri, 28 Oct 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Tue, 27 Sep 2022 14:47:04 GMT
req-referer: https://www.wanderoam.com/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 161
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb201
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:59 GMT
age: 3947827
x-served-by: cache-iad-kiad7000133-IAD, cache-iad-kiad7000070-IAD, cache-bur-kbur8200048-BUR, cache-iad-kjyo7100030-IAD, cache-bma1643-BMA
x-cache: MISS, MISS, HIT, HIT, HIT
x-cache-hits: 0, 0, 1, 58, 1
x-timer: S1670228939.178536,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_234%2Cw_280%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/11068fdcec090be4b110eb55cce26b79.jpg
x-vcl-time-ms: 1
content-length: 9312
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash ee00ac7a24f2be13f49a39c476f9f707
98a87636f9dbd123b21b0c4adf164c68603da8ba
6edf8fd4b338be0cfa4ce5fd22a6adc145f0f47576447a03c277bea70a43a5eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4554
Cache-Control: max-age=96491
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:59 GMT
Etag: "638c6fec-139"
Expires: Tue, 06 Dec 2022 11:17:10 GMT
Last-Modified: Sun, 04 Dec 2022 10:01:16 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash ee00ac7a24f2be13f49a39c476f9f707
98a87636f9dbd123b21b0c4adf164c68603da8ba
6edf8fd4b338be0cfa4ce5fd22a6adc145f0f47576447a03c277bea70a43a5eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4562
Cache-Control: max-age=96499
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:59 GMT
Etag: "638c6fec-139"
Expires: Tue, 06 Dec 2022 11:17:18 GMT
Last-Modified: Sun, 04 Dec 2022 10:01:16 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash a9f82178f4a7dccd4bf4fb84170e3fa7
54ad9cb2fd1e5c31a13ac377b445de55ec7df58a
3b826b406a9db81555b54fad48ebecaf45414ef3119e0be8635c54a02615ec88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4407
Cache-Control: max-age=124069
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:28:59 GMT
Etag: "638cdc39-139"
Expires: Tue, 06 Dec 2022 18:56:48 GMT
Last-Modified: Sun, 04 Dec 2022 17:43:21 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:59 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=hCOr1V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czg2Wm8yS0ZXSEpuUWk5YTZLQTd2QSUyQlk2QUFjbDdjT0JjS1B4RjFZcVBhYw; expires=Sat, 30 Dec 2023 08:28:59 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 199678
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://myhealthreads.com/
Origin: https://myhealthreads.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:59 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://myhealthreads.com
server-processing-duration-in-ticks: 409032
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 9.1 kB URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash af706043dd1279876730c5d85c7e50ed
fa2089f0fc8edc92d6669d81fe4fbaaf9f066a0b
43150b3fe30eee70768c14c4dd360e39d68a97d4b9482dbe6d0f10afdbd1b6f2
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
x-crto-bundle: uj1PLl9SZzNFV1JLUSUyRmhsdU1jWTNmSzRHbHN1cmY1dUFTd0Y0VmR3ODZIRUhOcE5DdU43QlB4VlElMkZQdEdkMnRtSXZ1MkVZbmQ5JTJGMTFzQndkWTFJa3BFVlJwVUZQeUllVXp4b2w2UTVlYXRMN25OSmRkWHQ0bjNGSjhycmE4YXdsU3FReXVZMndRUFJ0amw1elBlOTdKNHc5ZVElM0QlM0Q
Origin: https://myhealthreads.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:59 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://myhealthreads.com
server-processing-duration-in-ticks: 2160206
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 490 B IP 178.250.0.157:0
Hash a6d0e40ae9c21898772b24722f9b569c
63c7fb9865f03632d1cbe2a5d66af8d991d500df
194b48de11d2b0b315c7c9727359b12aeff7f776c7c307509ad2adea7503bea9
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=hCOr1V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czg2Wm8yS0ZXSEpuUWk5YTZLQTd2QSUyQlk2QUFjbDdjT0JjS1B4RjFZcVBhYw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:58 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=6ya4Xl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czg2Wm8yS0ZXSEpuUWk5YTZLQTd2QSUyRldVN00lMkJRVnJUb3NhajdnUyUyRndvY0U; expires=Sat, 30 Dec 2023 08:28:59 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 359113
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
151.101.193.44200 OK 254 B URL HTTP/2 cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
IP 151.101.193.44:0
File type PNG image data, 12 x 12, 8-bit gray+alpha, non-interlaced\012- data
Hash dfa7b52c86e56bd67fa4002f6ed19854
7df722645482433c2b5c8d8ab4272a9874592f27
f68019eb4b4e5933301d4ee75969e0cb94ed8333bf514630fa749eb9c3e483c9
GET /libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: c3AK0F63Rmz1U+ZkwDZRH6hJiJRTGpZB8kTBPWz0vwbg9siBxtMOH8aEqr1NtVeNHtLhLAVUR9E=
x-amz-request-id: 4JKSR0YA3KVH073N
x-amz-replication-status: COMPLETED
last-modified: Wed, 24 Jun 2015 07:14:11 GMT
etag: "dfa7b52c86e56bd67fa4002f6ed19854"
x-amz-meta-s3cmd-attrs: uid:0/gname:root/uname:root/gid:0/mode:33188/mtime:1377415166/atime:1435052450/md5:dfa7b52c86e56bd67fa4002f6ed19854/ctime:1422381567
x-amz-version-id: hL.cyLD7Q4TL5ceY.7JQwF9m5IYI8mkC
content-type: image/png
server: AmazonS3
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:59 GMT
via: 1.1 varnish
age: 3375
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 380
x-timer: S1670228940.977556,VS0,VE0
cache-control: private,max-age=31536000
abp: 47
content-length: 254
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.108200 OK 39 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.108:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 79903dd532ba3066d416ef93e2becd91
84607dda30e6378b591f179e6471ada71b79a389
72a38d494f5a42ca7d278095aea36d3df1297e1fbd8673008ba5307a28a8feb5
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:58 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 116485
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
trc.taboola.com/robustdigital-myheathreads/log/3/bulk?route=AM%3AIL%3AV<i=aa_test_for_monitoring_ctrl&bulkSize=7
151.101.193.44204 No Content 0 B URL HTTP/2 trc.taboola.com/robustdigital-myheathreads/log/3/bulk?route=AM%3AIL%3AV<i=aa_test_for_monitoring_ctrl&bulkSize=7
IP 151.101.193.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /robustdigital-myheathreads/log/3/bulk?route=AM%3AIL%3AV<i=aa_test_for_monitoring_ctrl&bulkSize=7 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 16429
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:29:00 GMT
via: 1.1 varnish
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670228940.065841,VS0,VE110
x-vcl-time-ms: 110
X-Firefox-Spdy: h2
trc-events.taboola.com/1226092/log/3/unip?en=pre_d_eng_tb&tos=4876&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670228937943&vi=1670228933045&ri=92450b893b86fbaf370d529687352f82&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1226092/log/3/unip?en=pre_d_eng_tb&tos=4876&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670228937943&vi=1670228933045&ri=92450b893b86fbaf370d529687352f82&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1226092/log/3/unip?en=pre_d_eng_tb&tos=4876&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670228937943&vi=1670228933045&ri=92450b893b86fbaf370d529687352f82&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Dec 2022 08:29:00 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1334487/log/3/unip?en=pre_d_eng_tb&tos=4877&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670228937945&vi=1670228933045&ri=5d5343e27bccb62e05620d018010ce1f&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1334487/log/3/unip?en=pre_d_eng_tb&tos=4877&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670228937945&vi=1670228933045&ri=5d5343e27bccb62e05620d018010ce1f&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1334487/log/3/unip?en=pre_d_eng_tb&tos=4877&scd=46&ssd=1&est=1670228933055&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670228937945&vi=1670228933045&ri=5d5343e27bccb62e05620d018010ce1f&ui=7b292daf-26c7-4b1f-88bc-bbd8b33327b6-tucta873148&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Dec 2022 08:29:00 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
cdn.taboola.com/scripts/cds-pips.js
151.101.193.44200 OK 1.3 kB URL HTTP/2 cdn.taboola.com/scripts/cds-pips.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (3545), with no line terminators
Hash 780c5c514014519ce276709f515905a0
04fe86d00b9c9077effe05171d066d243ecab221
015db06150b62ad2ad533883652174ebb6f07e24a7147fdac01a0ccd266e3f30
GET /scripts/cds-pips.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2KBeU0d7OyPXtZDYUoIqlTBmhGhsve90tjYoemCxISjKQrNgcxT28sPXVt5KfJt+6r7dFoJgA8g=
x-amz-request-id: NFWGDQGY1WQ95XHE
x-amz-replication-status: COMPLETED
last-modified: Wed, 12 Oct 2022 13:57:57 GMT
etag: "383fa66d2a0a09f4a6e64a9593ad43bb"
x-amz-version-id: z5FoayaLm_Bvew3pbkytkoHczFCvkPwT
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:29:00 GMT
via: 1.1 varnish
age: 1467
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 2205
x-timer: S1670228941.599140,VS0,VE0
vary: Accept-Encoding
abp: 47
cache-control: private, max-age=3600
content-length: 1340
X-Firefox-Spdy: h2
pips.taboola.com/
151.101.129.44200 OK 4 B IP 151.101.129.44:0
File type ASCII text, with no line terminators
Hash 6c3e226b4d4795d518ab341b0824ec29
eef19c54306daa69eda49c0272623bdb5e2b341f
fb329000228cc5a24c264c57139de8bf854fc86fc18bf1c04ab61a2b5cb4b921
GET / HTTP/1.1
Host: pips.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
access-control-allow-methods: GET
access-control-allow-origin: https://myhealthreads.com
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:29:00 GMT
via: 1.1 varnish
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 0
cache-control: no-store
content-length: 4
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 7d6fc12b56a98cf23a1ffc768497aea2
9c4b8f5a3332d37a08a9cc0aaa73e13318fbadba
f793f10b9b4276c9b38dc2752938f50937208e94b7f9d76e180003e80d9d6700
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4469
Cache-Control: max-age=138528
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 08:29:00 GMT
Etag: "638d1477-13a"
Expires: Tue, 06 Dec 2022 22:57:48 GMT
Last-Modified: Sun, 04 Dec 2022 21:43:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 314
udmserve.net/udm/img.fetch?sid=15514;tid=1;dt=6;cb=534ddd35a6b89508;trigger=public_reload;refresh=2;trigger=ref_aft_def_standard;
68.71.249.118200 OK 7.0 kB URL HTTP/1.1 udmserve.net/udm/img.fetch?sid=15514;tid=1;dt=6;cb=534ddd35a6b89508;trigger=public_reload;refresh=2;trigger=ref_aft_def_standard;
IP 68.71.249.118:0
File type ASCII text, with very long lines (18139)
Hash 01afe634485ca78050f84ad2251496f1
b750fb1a37dc566ac3dc7488461ff2e7211a1334
7bdcf4c5113bdb93159ae2f1c2f43bd06a849334107663582f835f2edfcda5b7
GET /udm/img.fetch?sid=15514;tid=1;dt=6;cb=534ddd35a6b89508;trigger=public_reload;refresh=2;trigger=ref_aft_def_standard; HTTP/1.1
Host: udmserve.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Connection: Keep-Alive
Content-Encoding: gzip
Content-Type: application/x-javascript
Expires: 0
P3p: NOI DSP CURa ADMa DEVa PSAa PSDa OUR IND UNI COM NAV INT
Pragma: no-cache
Set-Cookie: udmts=1670228940.0; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:29:00 GMT; Secure; SameSite=None
dt=688981B3-1ED8-3BDE-B578-9091DFA52680; Path=/; Domain=udmserve.net; Expires=Tue, 05 Dec 2023 08:29:00 GMT; Secure; SameSite=None
Date: Mon, 05 Dec 2022 08:29:00 GMT
Transfer-Encoding: chunked
static.criteo.net/js/ld/publishertag.prebid.js
178.250.2.130200 OK 30 kB URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.js
IP 178.250.2.130:0
File type ASCII text, with very long lines (65354)
Hash 1e81f0c646ccc75fe6d9423738290103
51b7e1e9097fb2614b112c2ba47ef231db783190
090c332f8c779802b9e4ae59ac881c86d67d0628dcd5074a7b77517d0bdf0523
GET /js/ld/publishertag.prebid.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:29:01 GMT
content-type: text/javascript
last-modified: Mon, 24 Oct 2022 11:21:19 GMT
etag: W/"6356752f-16294"
expires: Tue, 06 Dec 2022 08:29:01 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?ptv=132&profileId=185&av=34&wv=7.24.0&bundle=uj1PLl9SZzNFV1JLUSUyRmhsdU1jWTNmSzRHbHN1cmY1dUFTd0Y0VmR3ODZIRUhOcE5DdU43QlB4VlElMkZQdEdkMnRtSXZ1MkVZbmQ5JTJGMTFzQndkWTFJa3BFVlJwVUZQeUllVXp4b2w2UTVlYXRMN25OSmRkWHQ0bjNGSjhycmE4YXdsU3FReXVZMndRUFJ0amw1elBlOTdKNHc5ZVElM0QlM0Q&cb=18718837388
178.250.0.165200 OK 249 B URL HTTP/2 bidder.criteo.com/cdb?ptv=132&profileId=185&av=34&wv=7.24.0&bundle=uj1PLl9SZzNFV1JLUSUyRmhsdU1jWTNmSzRHbHN1cmY1dUFTd0Y0VmR3ODZIRUhOcE5DdU43QlB4VlElMkZQdEdkMnRtSXZ1MkVZbmQ5JTJGMTFzQndkWTFJa3BFVlJwVUZQeUllVXp4b2w2UTVlYXRMN25OSmRkWHQ0bjNGSjhycmE4YXdsU3FReXVZMndRUFJ0amw1elBlOTdKNHc5ZVElM0QlM0Q&cb=18718837388
IP 178.250.0.165:0
File type JSON data\012- , ASCII text, with very long lines (455), with no line terminators
Hash 925dd33541e4f67231712af51d9a713e
2a03de3d5d46ac02954122d1609de6e2697922b5
44ef158821a2600dfb5b4b650809379b8904f39e0025b9e901f531e58ac8a012
POST /cdb?ptv=132&profileId=185&av=34&wv=7.24.0&bundle=uj1PLl9SZzNFV1JLUSUyRmhsdU1jWTNmSzRHbHN1cmY1dUFTd0Y0VmR3ODZIRUhOcE5DdU43QlB4VlElMkZQdEdkMnRtSXZ1MkVZbmQ5JTJGMTFzQndkWTFJa3BFVlJwVUZQeUllVXp4b2w2UTVlYXRMN25OSmRkWHQ0bjNGSjhycmE4YXdsU3FReXVZMndRUFJ0amw1elBlOTdKNHc5ZVElM0QlM0Q&cb=18718837388 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1772
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:29:00 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://myhealthreads.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 249
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.prebid.132.js
178.250.2.130200 OK 35 kB URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.132.js
IP 178.250.2.130:0
Hash c632cb9a5c8c5f1dba1bd4317724e091
910c28ada9bff37bfd2323c502b47f51f5423743
6497585d2bee0f2c53ed4f2646eb8f31b7a300130e07303dd2ca6375646a6fc9
GET /js/ld/publishertag.prebid.132.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:29:00 GMT
content-type: text/javascript
last-modified: Mon, 24 Oct 2022 11:21:19 GMT
etag: W/"6356752f-16294"
expires: Tue, 06 Dec 2022 08:29:00 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=publishertag&domain=myhealthreads.com&sn=FirefoxSyncframe&so=3&topUrl=myhealthreads.com&bundle=uj1PLl9SZzNFV1JLUSUyRmhsdU1jWTNmSzRHbHN1cmY1dUFTd0Y0VmR3ODZIRUhOcE5DdU43QlB4VlElMkZQdEdkMnRtSXZ1MkVZbmQ5JTJGMTFzQndkWTFJa3BFVlJwVUZQeUllVXp4b2w2UTVlYXRMN25OSmRkWHQ0bjNGSjhycmE4YXdsU3FReXVZMndRUFJ0amw1elBlOTdKNHc5ZVElM0QlM0Q&info=RNuaa180M0RITmhlJTJCZkMwOUJGQlhaMUN2czg2Wm8yS0ZXSEpuUWk5YTZLQTd2QSUyRlpIU3NVSldWRTBjaVd0U0lCTnFsRQ&idsd=567194643,-617539913&cw=1&lsw=1
178.250.0.157200 OK 1.8 kB URL HTTP/2 gum.criteo.com/sid/json?origin=publishertag&domain=myhealthreads.com&sn=FirefoxSyncframe&so=3&topUrl=myhealthreads.com&bundle=uj1PLl9SZzNFV1JLUSUyRmhsdU1jWTNmSzRHbHN1cmY1dUFTd0Y0VmR3ODZIRUhOcE5DdU43QlB4VlElMkZQdEdkMnRtSXZ1MkVZbmQ5JTJGMTFzQndkWTFJa3BFVlJwVUZQeUllVXp4b2w2UTVlYXRMN25OSmRkWHQ0bjNGSjhycmE4YXdsU3FReXVZMndRUFJ0amw1elBlOTdKNHc5ZVElM0QlM0Q&info=RNuaa180M0RITmhlJTJCZkMwOUJGQlhaMUN2czg2Wm8yS0ZXSEpuUWk5YTZLQTd2QSUyRlpIU3NVSldWRTBjaVd0U0lCTnFsRQ&idsd=567194643,-617539913&cw=1&lsw=1
IP 178.250.0.157:0
Hash 54d9f807987983b257b106590836e6cd
18197b34f92aaa307db2e842710ea6560b3de9c8
a6ad3599ca67d4e873f1bf43eb7fdf6a0eb5750ca91b45f5389c7240d10f6607
GET /sid/json?origin=publishertag&domain=myhealthreads.com&sn=FirefoxSyncframe&so=3&topUrl=myhealthreads.com&bundle=uj1PLl9SZzNFV1JLUSUyRmhsdU1jWTNmSzRHbHN1cmY1dUFTd0Y0VmR3ODZIRUhOcE5DdU43QlB4VlElMkZQdEdkMnRtSXZ1MkVZbmQ5JTJGMTFzQndkWTFJa3BFVlJwVUZQeUllVXp4b2w2UTVlYXRMN25OSmRkWHQ0bjNGSjhycmE4YXdsU3FReXVZMndRUFJ0amw1elBlOTdKNHc5ZVElM0QlM0Q&info=RNuaa180M0RITmhlJTJCZkMwOUJGQlhaMUN2czg2Wm8yS0ZXSEpuUWk5YTZLQTd2QSUyRlpIU3NVSldWRTBjaVd0U0lCTnFsRQ&idsd=567194643,-617539913&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=publishertag&topUrl=myhealthreads.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:29:01 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 830056
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
match.adsrvr.org/track/rid?ttd_pid=1324mj4&fmt=json
15.197.193.217200 OK 63 B URL HTTP/2 match.adsrvr.org/track/rid?ttd_pid=1324mj4&fmt=json
IP 15.197.193.217:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a35ceb38d32db491d2dfb7703b683c6f
580d436f5fc216c8447d9d226b67d55bebc932cb
b370f2fe4e3a164f9d6f72abacacef2b32330aa8029ec7a985dc6cef902584ec
GET /track/rid?ttd_pid=1324mj4&fmt=json HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:29:01 GMT
content-type: application/json; charset=utf-8
content-length: 63
cache-control: private
expires: Wed, 04 Jan 2023 08:29:01 GMT
vary: Origin
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Content-Length, Content-Encoding, Vary, Cache-Control, Accept
x-aspnet-version: 4.0.30319
X-Firefox-Spdy: h2
bidder.criteo.com/csm/events
178.250.0.165204 No Content 0 B URL HTTP/2 bidder.criteo.com/csm/events
IP 178.250.0.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csm/events HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 266
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 05 Dec 2022 08:29:01 GMT
vary: Origin
server: Finatra
timing-allow-origin: *
access-control-allow-origin: https://myhealthreads.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
lax1-ib.adnxs.com/ab?an_audit=0&referrer=https%3A%2F%2Fmyhealthreads.com%2F&e=wqT_3QKEMfBMhBgAAAMA1gAFAQjM17acBhDxpJ_Nr5fByw4YsZirp-f3xpcoKjYJvFetTPilzD8Rk4rG2t9ZyD8ZAAAAQArX8z8hk4rG2t9ZyD8pvFcJJNAxuB6F61G4vj8woPD3DDjCPUDlHkhlUKGf6SRY5sChAWAAaOm_xAF4_-YDgAEBigEDVVNEkgUG9HUBmAGsAqAB-gGoAQGwAQC4AQLAAQXIAQLQAQnYAQDgAQDwAQDYAtD9AuACr8Q96gIaaHR0cHM6Ly9teWhlYWx0aHJlYWRzLmNvbS_yAg0KBkhFSUdIVBIDMjUw8gIMCgVXSURUSBIDMzAw8gIhCgZMT0FERVISF3JlbmRlcl9wb3N0X2Fkc192MS5odG1s8gIXCgpJRlJBTUVfS0VZEgkyMTA5Nzg0NjfyApMVCgtQUkVfU0NSSVBUUxKDFTxzY3JpcHQ-KGZ1bmN0aW9uKCl7LyoKCiBDb3B5cmlnaHQgVGhlIENsb3N1cmUgTGlicmFyeSBBdXRob3JzLgogU1BEWC1MaWNlbnNlLUlkZW50aWZpZXI6IEFwYWNoZS0yLjAKKi8KdmFyIGg9dGhpc3x8c2VsZjt2YXIgaz1BcnJheS5wcm90b3R5cGUuaW5kZXhPZj9mdW5jdGlvbihhLGMpe3JldHVybiBBcnJheS5wcm90b3R5cGURLVAuY2FsbChhLGMsdm9pZCAwKX06ZnUuPwBwaWYoInN0cmluZyI9PT10eXBlb2YgYSlyZXR1cm4RGgAhFRpIY3x8MSE9Yy5sZW5ndGg_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_YToVVzxxdWVyeVNlbGVjdG9yKCdbDSUAPQFEDF0nKX1FHSxyPVJlZ0V4cCgiXmiB7-A_Oi8vKFxcd3wtKStcXC5jZG5cXC5hbXBwcm9qZWN0XFwuKG5ldHxvcmcpKFxcP3wvfCQpIik7CmZtywQgdBXgAGgFYQxjPVtdBQkEZD0Bxgw7ZG97QXsYYj1hO3RyeQUMAGVBkxhlPSEhYiYmASRQIT1iLmxvY2F0aW9uLmhyZWYpYjp7AS2QbChiLmZvbyk7ZT0hMDticmVhayBifWNhdGNoKG0pe31lPSExfQFeCGY9ZRkXAGYBFgxpZihmKXkAZz5eAAw7ZD1idR8h9DVCJHJlZmVycmVyfHwBlyR9ZWxzZSBnPWQsDcsAYynfMG5ldyB1KGd8fCIiKSkF1RRhPWIucGEh1BmGAGEF_0x9fXdoaWxlKGEmJmIhPWEpO2I9MIWpAGGVynQtMTtiPD1hOysrYiljW2JdLmRlcHRoPWEtYjtiPWghKzkeAa41KjhhbmNlc3Rvck9yaWdpbnNuHACtDAA9HXUAKaEvFGE9MTthPLFUTDsrK2EpZz1jW2FdLGcudXJsfHwoBQguQgE6dgAUW2EtCjFdIQwYLGcuaD0hMAHjKSIAaBmrIdVl5QBnJRYlAgRkPTIEARwwPD1kOy0tZKGsSGY9Y1tkXSwhZyYmci50ZXN0KGYBjyApJiYoZz1mKSwFDiwmJiFmLmgpe2I9ZjtFGwB9DV0AZBXmBCYmAcwBOwQ7MEFlJVoIJiZkBUgBGwgpO2MFrRB2KGIsZ7XoFGMuZz9jLgX6DDpjLmkBQAB9sfMEIHahoRwpe3RoaXMuaUHVAQkIZz1jGSIAdR0iCHVybBEkFGg9ISFjOwUvBYglCr36AHd1SRR0KCksYz3Z3jgiPyIpO3NldFRpbWVvdXQuFAhB_QBk2XMYZD8uMDE6ZEE1RCEoTWF0aC5yYW5kb20oKT5kKWkPDGI9cSghpAAiZf80Oi8vIisoYiYmInRydWWBawBiVmsEOC1yY2QiKT8icGFnZWFkMs2dEHN5bmRpabkgLWNuLmNvbSI6ZiMABSAMKSsiLwlFeC9nZW5fMjA0P2lkPWpjYSZqYz03NyZ2ZXJzaW9uPSKFRQxlPShlAbEMKSYmZVqZAA0xMCIpfHwidW5rbm93biJh41wrZSsiJnNhbXBsZT0iK2Q7Yj13aW5kb3cFWABmOTQUZj8hMTpmITM0ZT1iLm5hdmlnYXRvcikyDgBQLnVzZXJBZ2VudCxlPS9DaHJvbWUvSZsgZSkmJiEvRWRnGREcPyEwOiExO2VhkxVRMC5zZW5kQmVhY29uPwodaR0YJChkKTpwKGIsZCwiRQgJnggpfX0O4ggWqggoIDA8PWM_YS5zdWIWPwkcKDAsYyk6YX0J4AwucmZsLugHDTVoZW5jb2RlVVJJQ29tcG9uZW50KHcoKSl9O30p6cFBmhQpOwo8L3PFmGw-8gLJAgoKRVhUUkFfVEFHUxK6AjxkaXYgc3R5IVIMcG9zaaGxZDogYWJzb2x1dGU7IGxlZnQ6IDBweDsgdG9wDQpkdmlzaWJpbGl0eTogaGlkZGVuOyI-PGltZyDhS1WHSRRKWQJBNg0eLjICFGF3YmlkJgUG8IZfYj1BS0FtZi1BU091UkNZLWs0XzJDb1hnUEtzUHVmSER5czNkVW9YY09yYlNsdUlPLTF1Vld3OVhYNXRaS0Nhc01TUDNSMVFUOTI1SnBYYmNRWTNaM1FHSnVBN3hPZ3FLTmNxUSIgYm9yZGVyPTAgd2lkdGg9MSBoZWlnaHQ9MSBhbHQ9IiIxGqhkaXNwbGF5Om5vbmUiPjwvZGl2PvICmQEKDFBPU1RfU0NSSVBUUxKIATxzJWo2CAEW9glQYWRzLmcuZG91YmxlY2xpY2submV0MQY8eGJmZV9iYWNrZmlsbC5qcwFlLbUNUwA-nSQkIHtyM3B4KCcyMRpwDBwnKTt9KSgpOz3qEIQRChBIAZ00UE9SVF9QQVJBTVMS7xCRI4qUAChhZGZldGNoP2FkXw7KC_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-oBCr8BaHR0cHM6Ly9wYWdlUnoMriEKLEZ1UjhEWm4weXRZVA6bEvReAUlFdjFEMnlWbWhoX2otOWtoWG40cGRzMXladlVETDNHbDJaaDgwM0F5UVI5ZjUyNEpfWkxxSUIyOGZGR3VZWEgwUkx1ZTNjUm8zZyZwcj0xMDoke0FVQ1RJT05fUFJJQ0V9GhMxMDUxMzE0MjM5MTEzMjUzNDg5Igg3NzIyMTc5MyoEMzk0MToBMMADrALIAwDYAwDgAwDoAwD4AwOABACSBAkvb3BlbnJ0YjKYBACiBAw5MS45MC40Mi4xNTSoBACyBAwIABAAGAAgADAAOAC4BADABADIBADaBAIIAeAEAPAEoZ_pJIgFAZgFAKAF9YOcp-mBi6czqgUTNjgyNjIxODEzODQzMjk0MzI4McAFAMkFAAAAAAAA8D_SBQkJAAAAAAAAAADYBQHgBQHwBao4-gUECAAQAJAGAJgGALgGAMEGAAAAAAAA8D_QBu6PAdoGFgoQAAAAAAAAAAAAAAk-oBAAGADgBgHyBgIIAIAHAYgHAKAHAaoHDDE0Mzk4MzIzOTgwMboHDwgAASkFyDDlFUAAyAf_5gPSBw0JCUUAAAVHCNoHBgknaOAHAOoHAggA8AfM9QuKCAIQAJUIAACAP5gIAQ..&s=384742c46722bcbf674935d538cb449a210fd42a&pp=0.19024
104.254.151.69200 OK 7.5 kB URL HTTP/1.1 lax1-ib.adnxs.com/ab?an_audit=0&referrer=https%3A%2F%2Fmyhealthreads.com%2F&e=wqT_3QKEMfBMhBgAAAMA1gAFAQjM17acBhDxpJ_Nr5fByw4YsZirp-f3xpcoKjYJvFetTPilzD8Rk4rG2t9ZyD8ZAAAAQArX8z8hk4rG2t9ZyD8pvFcJJNAxuB6F61G4vj8woPD3DDjCPUDlHkhlUKGf6SRY5sChAWAAaOm_xAF4_-YDgAEBigEDVVNEkgUG9HUBmAGsAqAB-gGoAQGwAQC4AQLAAQXIAQLQAQnYAQDgAQDwAQDYAtD9AuACr8Q96gIaaHR0cHM6Ly9teWhlYWx0aHJlYWRzLmNvbS_yAg0KBkhFSUdIVBIDMjUw8gIMCgVXSURUSBIDMzAw8gIhCgZMT0FERVISF3JlbmRlcl9wb3N0X2Fkc192MS5odG1s8gIXCgpJRlJBTUVfS0VZEgkyMTA5Nzg0NjfyApMVCgtQUkVfU0NSSVBUUxKDFTxzY3JpcHQ-KGZ1bmN0aW9uKCl7LyoKCiBDb3B5cmlnaHQgVGhlIENsb3N1cmUgTGlicmFyeSBBdXRob3JzLgogU1BEWC1MaWNlbnNlLUlkZW50aWZpZXI6IEFwYWNoZS0yLjAKKi8KdmFyIGg9dGhpc3x8c2VsZjt2YXIgaz1BcnJheS5wcm90b3R5cGUuaW5kZXhPZj9mdW5jdGlvbihhLGMpe3JldHVybiBBcnJheS5wcm90b3R5cGURLVAuY2FsbChhLGMsdm9pZCAwKX06ZnUuPwBwaWYoInN0cmluZyI9PT10eXBlb2YgYSlyZXR1cm4RGgAhFRpIY3x8MSE9Yy5sZW5ndGg_LTE6YRFrUChjLDApO2Zvcih2YXIgZD0wO2Q8YQ0pXDtkKyspaWYoZCBpbiBhJiZhW2RdPT09Yw1oCCBkOwlxDC0xfTsRoDggbChhKXtsWyIgIl0oYSkNIgggYX0JEwA9ESgIKCl7HTUAbgE1BGE9Ce44PT09YT9kb2N1bWVudDphFUMkLmNyZWF0ZUVsZQEZGCgiaW1nIikdRQBwJTJwZCl7YS5nb29nbGVfaW1hZ2VfcmVxdWVzdHN8fChaGgAQPVtdKTshABRiPW4oYS4RfAQpOwH9BCl7ARoAZS66ABkXBGY9WlMASCxnPWsoZixiKTswPD1nJiZBcnIy6gEUc3BsaWNlKel0ZixnLDEpfWIucmVtb3ZlRXZlbnRMaXN0ZW5lciYmUhcANCgibG9hZCIsZSwhMSk7UiMAYjoAEGVycm9yDTsYfTtiLmFkZEJzAD4UAD5wAD4gAAFtPhQAACg2agAcYi5zcmM9YztaMQEYLnB1c2goYi7RAQRxKCl8BGE9MZIgLmN1cnJlbnRTZeNNGgAoMjkCLG51bGw6YSkmJiI3N2EdbGEuZ2V0QXR0cmlidXRlKCJkYXRhLWpjIik_YToVVzxxdWVyeVNlbGVjdG9yKCdbDSUAPQFEDF0nKX1FHSxyPVJlZ0V4cCgiXmiB7-A_Oi8vKFxcd3wtKStcXC5jZG5cXC5hbXBwcm9qZWN0XFwuKG5ldHxvcmcpKFxcP3wvfCQpIik7CmZtywQgdBXgAGgFYQxjPVtdBQkEZD0Bxgw7ZG97QXsYYj1hO3RyeQUMAGVBkxhlPSEhYiYmASRQIT1iLmxvY2F0aW9uLmhyZWYpYjp7AS2QbChiLmZvbyk7ZT0hMDticmVhayBifWNhdGNoKG0pe31lPSExfQFeCGY9ZRkXAGYBFgxpZihmKXkAZz5eAAw7ZD1idR8h9DVCJHJlZmVycmVyfHwBlyR9ZWxzZSBnPWQsDcsAYynfMG5ldyB1KGd8fCIiKSkF1RRhPWIucGEh1BmGAGEF_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_QBk2XMYZD8uMDE6ZEE1RCEoTWF0aC5yYW5kb20oKT5kKWkPDGI9cSghpAAiZf80Oi8vIisoYiYmInRydWWBawBiVmsEOC1yY2QiKT8icGFnZWFkMs2dEHN5bmRpabkgLWNuLmNvbSI6ZiMABSAMKSsiLwlFeC9nZW5fMjA0P2lkPWpjYSZqYz03NyZ2ZXJzaW9uPSKFRQxlPShlAbEMKSYmZVqZAA0xMCIpfHwidW5rbm93biJh41wrZSsiJnNhbXBsZT0iK2Q7Yj13aW5kb3cFWABmOTQUZj8hMTpmITM0ZT1iLm5hdmlnYXRvcikyDgBQLnVzZXJBZ2VudCxlPS9DaHJvbWUvSZsgZSkmJiEvRWRnGREcPyEwOiExO2VhkxVRMC5zZW5kQmVhY29uPwodaR0YJChkKTpwKGIsZCwiRQgJnggpfX0O4ggWqggoIDA8PWM_YS5zdWIWPwkcKDAsYyk6YX0J4AwucmZsLugHDTVoZW5jb2RlVVJJQ29tcG9uZW50KHcoKSl9O30p6cFBmhQpOwo8L3PFmGw-8gLJAgoKRVhUUkFfVEFHUxK6AjxkaXYgc3R5IVIMcG9zaaGxZDogYWJzb2x1dGU7IGxlZnQ6IDBweDsgdG9wDQpkdmlzaWJpbGl0eTogaGlkZGVuOyI-PGltZyDhS1WHSRRKWQJBNg0eLjICFGF3YmlkJgUG8IZfYj1BS0FtZi1BU091UkNZLWs0XzJDb1hnUEtzUHVmSER5czNkVW9YY09yYlNsdUlPLTF1Vld3OVhYNXRaS0Nhc01TUDNSMVFUOTI1SnBYYmNRWTNaM1FHSnVBN3hPZ3FLTmNxUSIgYm9yZGVyPTAgd2lkdGg9MSBoZWlnaHQ9MSBhbHQ9IiIxGqhkaXNwbGF5Om5vbmUiPjwvZGl2PvICmQEKDFBPU1RfU0NSSVBUUxKIATxzJWo2CAEW9glQYWRzLmcuZG91YmxlY2xpY2submV0MQY8eGJmZV9iYWNrZmlsbC5qcwFlLbUNUwA-nSQkIHtyM3B4KCcyMRpwDBwnKTt9KSgpOz3qEIQRChBIAZ00UE9SVF9QQVJBTVMS7xCRI4qUAChhZGZldGNoP2FkXw7KC_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-oBCr8BaHR0cHM6Ly9wYWdlUnoMriEKLEZ1UjhEWm4weXRZVA6bEvReAUlFdjFEMnlWbWhoX2otOWtoWG40cGRzMXladlVETDNHbDJaaDgwM0F5UVI5ZjUyNEpfWkxxSUIyOGZGR3VZWEgwUkx1ZTNjUm8zZyZwcj0xMDoke0FVQ1RJT05fUFJJQ0V9GhMxMDUxMzE0MjM5MTEzMjUzNDg5Igg3NzIyMTc5MyoEMzk0MToBMMADrALIAwDYAwDgAwDoAwD4AwOABACSBAkvb3BlbnJ0YjKYBACiBAw5MS45MC40Mi4xNTSoBACyBAwIABAAGAAgADAAOAC4BADABADIBADaBAIIAeAEAPAEoZ_pJIgFAZgFAKAF9YOcp-mBi6czqgUTNjgyNjIxODEzODQzMjk0MzI4McAFAMkFAAAAAAAA8D_SBQkJAAAAAAAAAADYBQHgBQHwBao4-gUECAAQAJAGAJgGALgGAMEGAAAAAAAA8D_QBu6PAdoGFgoQAAAAAAAAAAAAAAk-oBAAGADgBgHyBgIIAIAHAYgHAKAHAaoHDDE0Mzk4MzIzOTgwMboHDwgAASkFyDDlFUAAyAf_5gPSBw0JCUUAAAVHCNoHBgknaOAHAOoHAggA8AfM9QuKCAIQAJUIAACAP5gIAQ..&s=384742c46722bcbf674935d538cb449a210fd42a&pp=0.19024
IP 104.254.151.69:0
File type exported SGML document, ASCII text, with very long lines (17861), with no line terminators
Hash db9255f3595dce5b6d9860a1061cbb50
b965fda6e0201b716ef3ca20070cf20f5b515226
573d6f5ec5cb598e0c309a5a8865fbc02f024838c3596509e0d97bf68de688bd
GET /ab?an_audit=0&referrer=https%3A%2F%2Fmyhealthreads.com%2F&e=wqT_3QKEMfBMhBgAAAMA1gAFAQjM17acBhDxpJ_Nr5fByw4YsZirp-f3xpcoKjYJvFetTPilzD8Rk4rG2t9ZyD8ZAAAAQArX8z8hk4rG2t9ZyD8pvFcJJNAxuB6F61G4vj8woPD3DDjCPUDlHkhlUKGf6SRY5sChAWAAaOm_xAF4_-YDgAEBigEDVVNEkgUG9HUBmAGsAqAB-gGoAQGwAQC4AQLAAQXIAQLQAQnYAQDgAQDwAQDYAtD9AuACr8Q96gIaaHR0cHM6Ly9teWhlYWx0aHJlYWRzLmNvbS_yAg0KBkhFSUdIVBIDMjUw8gIMCgVXSURUSBIDMzAw8gIhCgZMT0FERVISF3JlbmRlcl9wb3N0X2Fkc192MS5odG1s8gIXCgpJRlJBTUVfS0VZEgkyMTA5Nzg0NjfyApMVCgtQUkVfU0NSSVBUUxKDFTxzY3JpcHQ-KGZ1bmN0aW9uKCl7LyoKCiBDb3B5cmlnaHQgVGhlIENsb3N1cmUgTGlicmFyeSBBdXRob3JzLgogU1BEWC1MaWNlbnNlLUlkZW50aWZpZXI6IEFwYWNoZS0yLjAKKi8KdmFyIGg9dGhpc3x8c2VsZjt2YXIgaz1BcnJheS5wcm90b3R5cGUuaW5kZXhPZj9mdW5jdGlvbihhLGMpe3JldHVybiBBcnJheS5wcm90b3R5cGURLVAuY2FsbChhLGMsdm9pZCAwKX06ZnUuPwBwaWYoInN0cmluZyI9PT10eXBlb2YgYSlyZXR1cm4RGgAhFRpIY3x8MSE9Yy5sZW5ndGg_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_YToVVzxxdWVyeVNlbGVjdG9yKCdbDSUAPQFEDF0nKX1FHSxyPVJlZ0V4cCgiXmiB7-A_Oi8vKFxcd3wtKStcXC5jZG5cXC5hbXBwcm9qZWN0XFwuKG5ldHxvcmcpKFxcP3wvfCQpIik7CmZtywQgdBXgAGgFYQxjPVtdBQkEZD0Bxgw7ZG97QXsYYj1hO3RyeQUMAGVBkxhlPSEhYiYmASRQIT1iLmxvY2F0aW9uLmhyZWYpYjp7AS2QbChiLmZvbyk7ZT0hMDticmVhayBifWNhdGNoKG0pe31lPSExfQFeCGY9ZRkXAGYBFgxpZihmKXkAZz5eAAw7ZD1idR8h9DVCJHJlZmVycmVyfHwBlyR9ZWxzZSBnPWQsDcsAYynfMG5ldyB1KGd8fCIiKSkF1RRhPWIucGEh1BmGAGEF_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_QBk2XMYZD8uMDE6ZEE1RCEoTWF0aC5yYW5kb20oKT5kKWkPDGI9cSghpAAiZf80Oi8vIisoYiYmInRydWWBawBiVmsEOC1yY2QiKT8icGFnZWFkMs2dEHN5bmRpabkgLWNuLmNvbSI6ZiMABSAMKSsiLwlFeC9nZW5fMjA0P2lkPWpjYSZqYz03NyZ2ZXJzaW9uPSKFRQxlPShlAbEMKSYmZVqZAA0xMCIpfHwidW5rbm93biJh41wrZSsiJnNhbXBsZT0iK2Q7Yj13aW5kb3cFWABmOTQUZj8hMTpmITM0ZT1iLm5hdmlnYXRvcikyDgBQLnVzZXJBZ2VudCxlPS9DaHJvbWUvSZsgZSkmJiEvRWRnGREcPyEwOiExO2VhkxVRMC5zZW5kQmVhY29uPwodaR0YJChkKTpwKGIsZCwiRQgJnggpfX0O4ggWqggoIDA8PWM_YS5zdWIWPwkcKDAsYyk6YX0J4AwucmZsLugHDTVoZW5jb2RlVVJJQ29tcG9uZW50KHcoKSl9O30p6cFBmhQpOwo8L3PFmGw-8gLJAgoKRVhUUkFfVEFHUxK6AjxkaXYgc3R5IVIMcG9zaaGxZDogYWJzb2x1dGU7IGxlZnQ6IDBweDsgdG9wDQpkdmlzaWJpbGl0eTogaGlkZGVuOyI-PGltZyDhS1WHSRRKWQJBNg0eLjICFGF3YmlkJgUG8IZfYj1BS0FtZi1BU091UkNZLWs0XzJDb1hnUEtzUHVmSER5czNkVW9YY09yYlNsdUlPLTF1Vld3OVhYNXRaS0Nhc01TUDNSMVFUOTI1SnBYYmNRWTNaM1FHSnVBN3hPZ3FLTmNxUSIgYm9yZGVyPTAgd2lkdGg9MSBoZWlnaHQ9MSBhbHQ9IiIxGqhkaXNwbGF5Om5vbmUiPjwvZGl2PvICmQEKDFBPU1RfU0NSSVBUUxKIATxzJWo2CAEW9glQYWRzLmcuZG91YmxlY2xpY2submV0MQY8eGJmZV9iYWNrZmlsbC5qcwFlLbUNUwA-nSQkIHtyM3B4KCcyMRpwDBwnKTt9KSgpOz3qEIQRChBIAZ00UE9SVF9QQVJBTVMS7xCRI4qUAChhZGZldGNoP2FkXw7KC_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-oBCr8BaHR0cHM6Ly9wYWdlUnoMriEKLEZ1UjhEWm4weXRZVA6bEvReAUlFdjFEMnlWbWhoX2otOWtoWG40cGRzMXladlVETDNHbDJaaDgwM0F5UVI5ZjUyNEpfWkxxSUIyOGZGR3VZWEgwUkx1ZTNjUm8zZyZwcj0xMDoke0FVQ1RJT05fUFJJQ0V9GhMxMDUxMzE0MjM5MTEzMjUzNDg5Igg3NzIyMTc5MyoEMzk0MToBMMADrALIAwDYAwDgAwDoAwD4AwOABACSBAkvb3BlbnJ0YjKYBACiBAw5MS45MC40Mi4xNTSoBACyBAwIABAAGAAgADAAOAC4BADABADIBADaBAIIAeAEAPAEoZ_pJIgFAZgFAKAF9YOcp-mBi6czqgUTNjgyNjIxODEzODQzMjk0MzI4McAFAMkFAAAAAAAA8D_SBQkJAAAAAAAAAADYBQHgBQHwBao4-gUECAAQAJAGAJgGALgGAMEGAAAAAAAA8D_QBu6PAdoGFgoQAAAAAAAAAAAAAAk-oBAAGADgBgHyBgIIAIAHAYgHAKAHAaoHDDE0Mzk4MzIzOTgwMboHDwgAASkFyDDlFUAAyAf_5gPSBw0JCUUAAAVHCNoHBgknaOAHAOoHAggA8AfM9QuKCAIQAJUIAACAP5gIAQ..&s=384742c46722bcbf674935d538cb449a210fd42a&pp=0.19024 HTTP/1.1
Host: lax1-ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Mon, 05 Dec 2022 08:29:02 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
X-Creative-ID: 77221793
AN-X-Request-Uuid: c384cc49-43e1-44de-a6d1-638158f1aca2
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2C$MwW(BX!]tbP6j2F-XstGt!@DX)$hMd); SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 05-Mar-2023 08:29:02 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 900.bm-nginx-loadbalancer.mgmt.lax1.adnexus.net; adnxs.com
Content-Encoding: gzip
whazugho.com/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Content-Type: application/json
Origin: https://myhealthreads.com
Content-Length: 409
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:29:02 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 94ed73d9d13031619b2596a191a3e8ca
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
acdn.adnxs.com/dmp/async_usersync.html?gdpr=0&seller_id=7874&pub_id=2190427
2.18.172.187200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html?gdpr=0&seller_id=7874&pub_id=2190427
IP 2.18.172.187:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html?gdpr=0&seller_id=7874&pub_id=2190427 HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: "623de86a-cf34"
Unused62: 8096267
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Length: 17053
Cache-Control: max-age=86402
Expires: Tue, 06 Dec 2022 08:29:04 GMT
Date: Mon, 05 Dec 2022 08:29:02 GMT
Connection: keep-alive
Vary: Accept-Encoding
my.rtmark.net/gid.js?pub=0&userId=8b8125ef7ebf4249b611955b3d259a27&zoneId=3358181&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&userId=8b8125ef7ebf4249b611955b3d259a27&zoneId=3358181&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash e80016cc28e8144bd1a4c9c3a8d39b37
6e1e00ceea6549292680730e51ab9fc328fb1e4f
4c5d8f376a8b7c3a1727531a0264892144e6f7314ba8ac78cd0d20fe3b34bcb9
GET /gid.js?pub=0&userId=8b8125ef7ebf4249b611955b3d259a27&zoneId=3358181&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Origin: https://myhealthreads.com
Connection: keep-alive
Cookie: ID=661ffa2a07bd4f34acd152f49532fd53
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:29:02 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://myhealthreads.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=661ffa2a07bd4f34acd152f49532fd53; expires=Tue, 05 Dec 2023 08:29:02 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/theia-post-slider/css/font-theme.css?ver=2.0.0
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/plugins/theia-post-slider/css/font-theme.css?ver=2.0.0
IP 207.246.105.151:0
GET /wp-content/plugins/theia-post-slider/css/font-theme.css?ver=2.0.0 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 12:38:30 GMT
vary: Accept-Encoding
etag: W/"636cf0c6-bd6"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
live.demand.supply/up.js
104.16.133.22200 OK 0 B IP 104.16.133.22:0
GET /up.js HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 774b69368897b529-OSL
age: 702
cache-control: max-age=1200,must-revalidate,stale-while-revalidate=3600
etag: W/"6316a80b3121dbf6f742f3af28b0486f-ssl-df"
link: <https://live.demand.supply/impl.v16.2.0.js>; rel=preload; as=script,<https://live.demand.supply/p4/v16-2-0/bXloZWFsdGhyZWFkcy5jb20v>; rel=preload; as=script
set-cookie: demandSupplyTi=a92b20a4-d3c2-44e5-90b5-5096070a1197; demandSupplyTc = null; demandSupplyTcI = null; SameSite=None; Secure; Max-Age=63072000
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=9344
timing-allow-origin: *
x-nf-request-id: 01GJNAF964DMKBTFA8MHGQWFYX
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/theia-post-slider/js/main.js?ver=2.0.0
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/plugins/theia-post-slider/js/main.js?ver=2.0.0
IP 207.246.105.151:0
GET /wp-content/plugins/theia-post-slider/js/main.js?ver=2.0.0 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 12:38:30 GMT
vary: Accept-Encoding
etag: W/"636cf0c6-40c"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 207.246.105.151:0
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 12:42:26 GMT
vary: Accept-Encoding
etag: W/"636cf1b2-26d1"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/related-posts-thumbnails/assets/css/front.css?ver=1.9.0
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/plugins/related-posts-thumbnails/assets/css/front.css?ver=1.9.0
IP 207.246.105.151:0
GET /wp-content/plugins/related-posts-thumbnails/assets/css/front.css?ver=1.9.0 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 12:42:32 GMT
vary: Accept-Encoding
etag: W/"636cf1b8-102f"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
whazugho.com/pfe/current/universal.min.js?v=3.1.409
139.45.197.250200 OK 0 B URL HTTP/2 whazugho.com/pfe/current/universal.min.js?v=3.1.409
IP 139.45.197.250:0
GET /pfe/current/universal.min.js?v=3.1.409 HTTP/1.1
Host: whazugho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Origin: https://myhealthreads.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:55 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 15:42:47 GMT
etag: W/"6388cb77-18c6c"
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-includes/js/wp-emoji-release.min.js?ver=02f418ea69eb1388ebd096360019ef64
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-includes/js/wp-emoji-release.min.js?ver=02f418ea69eb1388ebd096360019ef64
IP 207.246.105.151:0
GET /wp-includes/js/wp-emoji-release.min.js?ver=02f418ea69eb1388ebd096360019ef64 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 13:09:25 GMT
vary: Accept-Encoding
etag: W/"636cf805-48b9"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 207.246.105.151:0
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 12:42:26 GMT
vary: Accept-Encoding
etag: W/"636cf1b2-3016"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=9.1
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=9.1
IP 207.246.105.151:0
GET /wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=9.1 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 12:30:06 GMT
vary: Accept-Encoding
etag: W/"636ceece-33118"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/uploads/2022/10/MyHealthReads-544-x-180-px-1-2-60x60.png
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/uploads/2022/10/MyHealthReads-544-x-180-px-1-2-60x60.png
IP 207.246.105.151:0
GET /wp-content/uploads/2022/10/MyHealthReads-544-x-180-px-1-2-60x60.png HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:55 GMT
content-type: image/png
content-length: 2502
last-modified: Thu, 13 Oct 2022 14:27:41 GMT
etag: "6348205d-9c6"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
bid.underdog.media/udm-r3_v2.16.2.js
54.230.111.115200 OK 0 B URL HTTP/2 bid.underdog.media/udm-r3_v2.16.2.js
IP 54.230.111.115:0
GET /udm-r3_v2.16.2.js HTTP/1.1
Host: bid.underdog.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 176811
date: Tue, 22 Nov 2022 19:41:16 GMT
last-modified: Tue, 22 Nov 2022 19:41:03 GMT
etag: "e63cfdf5ac627e211df35b9db9a5a116"
cache-control: max-age=2592000
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UQQ4T4kX20L7Bt-YEmuqg7czXrkP9QlDVCAaDUK9VkosjJGymIptdg==
age: 1082860
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.7.0
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.7.0
IP 207.246.105.151:0
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.7.0 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 13:17:30 GMT
vary: Accept-Encoding
etag: W/"636cf9ea-76878"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
trc.taboola.com/robustdigital-myheathreads/trc/3/json?tim=08%3A28%3A53.229<i=aa_test_for_monitoring_ctrl&data=%7B%22id%22%3A923%2C%22ii%22%3A%22%2Fkorean-15-crazy-useful-things%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1670153272968%2C%22vi%22%3A1670228933045%2C%22cv%22%3A%2220221204-5-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22pev%22%3A8050%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%22%2C%22vpi%22%3A%22%2Fkorean-15-crazy-useful-things%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1268%2C%22dh%22%3A2018%2C%22nsid%22%3A%22robustdigital%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A3%2C%22uim%22%3A%22thumbnails-des-mob%3Apub%3Drobustdigital%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%20Unit%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%20Unit%22%2C%22cd%22%3A1704%2C%22mw%22%3A696%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fkorean-15-crazy-useful-things%2CBelow%20Article%20Thumbnails%20Unit%3Dthumbnails-des-mob%3Apub%3Drobustdigital%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22aa_test_for_monitoring_ctrl%22%7D&llvl=2
151.101.193.44200 OK 0 B URL HTTP/2 trc.taboola.com/robustdigital-myheathreads/trc/3/json?tim=08%3A28%3A53.229<i=aa_test_for_monitoring_ctrl&data=%7B%22id%22%3A923%2C%22ii%22%3A%22%2Fkorean-15-crazy-useful-things%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1670153272968%2C%22vi%22%3A1670228933045%2C%22cv%22%3A%2220221204-5-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22pev%22%3A8050%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%22%2C%22vpi%22%3A%22%2Fkorean-15-crazy-useful-things%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1268%2C%22dh%22%3A2018%2C%22nsid%22%3A%22robustdigital%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A3%2C%22uim%22%3A%22thumbnails-des-mob%3Apub%3Drobustdigital%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%20Unit%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%20Unit%22%2C%22cd%22%3A1704%2C%22mw%22%3A696%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fkorean-15-crazy-useful-things%2CBelow%20Article%20Thumbnails%20Unit%3Dthumbnails-des-mob%3Apub%3Drobustdigital%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22aa_test_for_monitoring_ctrl%22%7D&llvl=2
IP 151.101.193.44:0
GET /robustdigital-myheathreads/trc/3/json?tim=08%3A28%3A53.229<i=aa_test_for_monitoring_ctrl&data=%7B%22id%22%3A923%2C%22ii%22%3A%22%2Fkorean-15-crazy-useful-things%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1670153272968%2C%22vi%22%3A1670228933045%2C%22cv%22%3A%2220221204-5-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22pev%22%3A8050%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%22%2C%22vpi%22%3A%22%2Fkorean-15-crazy-useful-things%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1268%2C%22dh%22%3A2018%2C%22nsid%22%3A%22robustdigital%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A3%2C%22uim%22%3A%22thumbnails-des-mob%3Apub%3Drobustdigital%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%20Unit%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%20Unit%22%2C%22cd%22%3A1704%2C%22mw%22%3A696%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fkorean-15-crazy-useful-things%2CBelow%20Article%20Thumbnails%20Unit%3Dthumbnails-des-mob%3Apub%3Drobustdigital%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22aa_test_for_monitoring_ctrl%22%7D&llvl=2 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://myhealthreads.com
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:56 GMT
via: 1.1 varnish
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670228937.585134,VS0,VE287
vary: Accept-Encoding
x-vcl-time-ms: 287
X-Firefox-Spdy: h2
trc.taboola.com/1334487/trc/3/json?tim=1670228933232&data=%7B%22id%22%3A282%2C%22ii%22%3A%22%2Fkorean-15-crazy-useful-things%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670228933045%2C%22cv%22%3A%2220221124-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%3F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dmyhealthreadscom-sc1%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670228933073%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%22%2C%22tos%22%3A5%2C%22ssd%22%3A1%2C%22scd%22%3A46%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.193.44200 OK 0 B URL HTTP/2 trc.taboola.com/1334487/trc/3/json?tim=1670228933232&data=%7B%22id%22%3A282%2C%22ii%22%3A%22%2Fkorean-15-crazy-useful-things%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670228933045%2C%22cv%22%3A%2220221124-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%3F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dmyhealthreadscom-sc1%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670228933073%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%22%2C%22tos%22%3A5%2C%22ssd%22%3A1%2C%22scd%22%3A46%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.193.44:0
GET /1334487/trc/3/json?tim=1670228933232&data=%7B%22id%22%3A282%2C%22ii%22%3A%22%2Fkorean-15-crazy-useful-things%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670228933045%2C%22cv%22%3A%2220221124-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%3F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dmyhealthreadscom-sc1%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670228933073%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F%22%2C%22tos%22%3A5%2C%22ssd%22%3A1%2C%22scd%22%3A46%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 08:28:56 GMT
via: 1.1 varnish
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670228937.578014,VS0,VE102
vary: Accept-Encoding
x-vcl-time-ms: 102
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=9e241c87ee8782e8f19bb886a935e653
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=9e241c87ee8782e8f19bb886a935e653
IP 207.246.105.151:0
GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=9e241c87ee8782e8f19bb886a935e653 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 12:38:30 GMT
vary: Accept-Encoding
etag: W/"636cf0c6-111dc"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/themes/Newspaper/style.css?ver=02f418ea69eb1388ebd096360019ef64
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/themes/Newspaper/style.css?ver=02f418ea69eb1388ebd096360019ef64
IP 207.246.105.151:0
GET /wp-content/themes/Newspaper/style.css?ver=02f418ea69eb1388ebd096360019ef64 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 12:30:06 GMT
vary: Accept-Encoding
etag: W/"636ceece-122146"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.166200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.166:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:56 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "nAbmxtqHqaYrwBiADJAeFg=="
expires: Mon, 12 Dec 2022 08:28:56 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.108200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.108:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:29:00 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 100501
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/plugins/post-redirection/public/assets/js/pr_public_script.js?ver=1.0.0
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/plugins/post-redirection/public/assets/js/pr_public_script.js?ver=1.0.0
IP 207.246.105.151:0
GET /wp-content/plugins/post-redirection/public/assets/js/pr_public_script.js?ver=1.0.0 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 12:38:30 GMT
vary: Accept-Encoding
etag: W/"636cf0c6-81f"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-includes/css/dist/block-library/style.min.css?ver=02f418ea69eb1388ebd096360019ef64
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-includes/css/dist/block-library/style.min.css?ver=02f418ea69eb1388ebd096360019ef64
IP 207.246.105.151:0
GET /wp-includes/css/dist/block-library/style.min.css?ver=02f418ea69eb1388ebd096360019ef64 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 22:37:39 GMT
vary: Accept-Encoding
etag: W/"637414b3-172a9"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
myhealthreads.com/wp-content/themes/Newspaper-child/style.css?ver=9.1
207.246.105.151200 OK 0 B URL HTTP/2 myhealthreads.com/wp-content/themes/Newspaper-child/style.css?ver=9.1
IP 207.246.105.151:0
GET /wp-content/themes/Newspaper-child/style.css?ver=9.1 HTTP/1.1
Host: myhealthreads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myhealthreads.com/korean-15-crazy-useful-things/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:54 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 12:30:06 GMT
vary: Accept-Encoding
etag: W/"636ceece-38"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.154200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.154:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 08:28:58 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 80111
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn.itskiddien.club/?rb=4FeIkaUf3ZEpHkX3h9Fq4b4QzYFa2otoYy-J43l2BfFPn5UotSge8wLNDtJT7LKciAH4b3qNr3OnLnc6pLdg-VMkJtvtESjqBjfAxjnB1BE6b4p3FKPIXO2Ef1vs1s8O_E9N6leZ8zzfkzYib93kCU_iTnKV13iLnVIQ3d0uR-jAghUri_5KmtsL-Plm3_kxBd99cPxh3EAoy6U88OMJEcgUAwjpLJBXFS6nmJBV8C6BIX7Ckr5P0w%3D%3D&request_ab2=96003&zoneid=5532722&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.458.0&bs=b3f5290e-ba7c-4865-97cb-8db568d5d9b0&userId=661ffa2a07bd4f34acd152f49532fd53&m=link
139.45.197.236200 OK 0 B URL HTTP/2 cdn.itskiddien.club/?rb=4FeIkaUf3ZEpHkX3h9Fq4b4QzYFa2otoYy-J43l2BfFPn5UotSge8wLNDtJT7LKciAH4b3qNr3OnLnc6pLdg-VMkJtvtESjqBjfAxjnB1BE6b4p3FKPIXO2Ef1vs1s8O_E9N6leZ8zzfkzYib93kCU_iTnKV13iLnVIQ3d0uR-jAghUri_5KmtsL-Plm3_kxBd99cPxh3EAoy6U88OMJEcgUAwjpLJBXFS6nmJBV8C6BIX7Ckr5P0w%3D%3D&request_ab2=96003&zoneid=5532722&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.458.0&bs=b3f5290e-ba7c-4865-97cb-8db568d5d9b0&userId=661ffa2a07bd4f34acd152f49532fd53&m=link
IP 139.45.197.236:0
GET /?rb=4FeIkaUf3ZEpHkX3h9Fq4b4QzYFa2otoYy-J43l2BfFPn5UotSge8wLNDtJT7LKciAH4b3qNr3OnLnc6pLdg-VMkJtvtESjqBjfAxjnB1BE6b4p3FKPIXO2Ef1vs1s8O_E9N6leZ8zzfkzYib93kCU_iTnKV13iLnVIQ3d0uR-jAghUri_5KmtsL-Plm3_kxBd99cPxh3EAoy6U88OMJEcgUAwjpLJBXFS6nmJBV8C6BIX7Ckr5P0w%3D%3D&request_ab2=96003&zoneid=5532722&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fmyhealthreads.com%2Fkorean-15-crazy-useful-things%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.458.0&bs=b3f5290e-ba7c-4865-97cb-8db568d5d9b0&userId=661ffa2a07bd4f34acd152f49532fd53&m=link HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myhealthreads.com/
Origin: https://myhealthreads.com
Connection: keep-alive
Cookie: OAID=661ffa2a07bd4f34acd152f49532fd53; oaidts=1670228936
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 08:28:56 GMT
content-type: application/json
x-trace-id: d4088a359319ef58d3e36acb9f583470
access-control-allow-origin: https://myhealthreads.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=661ffa2a07bd4f34acd152f49532fd53; expires=Tue, 05 Dec 2023 08:28:56 GMT; path=/; secure; SameSite=None
oaidts=1670228936; expires=Tue, 05 Dec 2023 08:28:56 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Mon, 12 Dec 2022 08:28:56 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2