www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
192.124.249.104301 Moved Permanently 162 B URL HTTP/1.1 www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
IP 192.124.249.104:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET /article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/ HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Sucuri/Cloudproxy
Date: Sun, 23 Oct 2022 23:53:17 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
X-Sucuri-ID: 19004
Location: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash c9df6b36bf16969ac566c1b798362e4a
e56eff34815153ae019a4bf63eb9746dd9ae2e5b
33c1175144ab2be42c9de383f7893a6e60cd1f21f282eacb413d546331db3fa0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 23 Oct 2022 23:52:54 GMT
Expires: Mon, 24 Oct 2022 00:34:01 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FPqksZ-QoJZkU1zZdYimY53C_Py07_N_VwjBYBXFvyNnSeQ3lC9kVQ==
Age: 22
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c19f4a1def760c07cbc4aec1d0d6c050
6ad911a7c02f5e5fdd82fa86cae0453528d53a6d
750bba81910a4bbd78ab484ba03781a36459a0aec147d7c47424e9a9bf152b40
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "750BBA81910A4BBD78AB484BA03781A36459A0AEC147D7C47424E9A9BF152B40"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7884
Expires: Mon, 24 Oct 2022 02:04:40 GMT
Date: Sun, 23 Oct 2022 23:53:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ae56efd62a0d9249d98573172eb8b28b
5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28
82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6732
Expires: Mon, 24 Oct 2022 01:45:28 GMT
Date: Sun, 23 Oct 2022 23:53:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: D1JuQK+ddkZYi7jHHnKIvHASKbKeky9MV1bO5gkTy3lneSn6Ek6JNDPu5cN1/0OcfdZHfPOqJGw=
x-amz-request-id: Q5TF1DCCSYYS3BP6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 23 Oct 2022 23:38:10 GMT
age: 906
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 7686d8daae4e6d7953639c4499102f33
e6ce48bcffe9d9ee2a6c6d16a2284794ae2828c1
5da719c50c27760116664c9f2b9da0d9872b9b73c595be99588c2671194e6641
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 23 Oct 2022 23:53:16 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 23 Oct 2022 02:12:00 GMT
Expires: Mon, 24 Oct 2022 02:12:00 GMT
ETag: "e6ce48bcffe9d9ee2a6c6d16a2284794ae2828c1"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.sunstar.com.ph/theme_sunstar/images/lcp.svg
192.124.249.104200 OK 306 B URL HTTP/2 www.sunstar.com.ph/theme_sunstar/images/lcp.svg
IP 192.124.249.104:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (306), with no line terminators
Hash d7e3848208b8a53d5caa272c1e2116b7
5740aa3f2d1dd318c1a4c12ae4d1bfcc97e639b7
56ce9a9f71a8465359a676d95189390683de779bdc085f4fa9d48ec0651d9a5f
GET /theme_sunstar/images/lcp.svg HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:18 GMT
content-type: image/svg+xml
content-length: 306
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:35 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
etag: "61b6f8b7-132"
x-cache: Miss from cloudfront
via: 1.1 697a26790d3ab8292d8546ca9be87bbc.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: Uu4Apd-VlGI-WawPkA_9ZQh0ToHN9D1kMJssv3aHUMCXEU_DwZldkA==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 05ee461624e2ec37f65e859afe6543ba
b99dcb558535d3d35d140e730aeeb41587622b30
576b3bf619d0a152889cc44165a229ad0100ccc319cf4d9044b2f26d4b676658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 52b2db490d54a33bc200719a16ed34cb
71a788efd2e15f7267c8464b3bd813d022385316
72f6915abd4f0fc88372f7c447c48662fd18a517772f1a20965dd14123fa8995
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3412
Cache-Control: max-age=171648
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:17 GMT
Etag: "6355c219-118"
Expires: Tue, 25 Oct 2022 23:34:05 GMT
Last-Modified: Sun, 23 Oct 2022 22:37:13 GMT
Server: ECS (amb/6B87)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 52b2db490d54a33bc200719a16ed34cb
71a788efd2e15f7267c8464b3bd813d022385316
72f6915abd4f0fc88372f7c447c48662fd18a517772f1a20965dd14123fa8995
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3412
Cache-Control: max-age=171648
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:17 GMT
Etag: "6355c219-118"
Expires: Tue, 25 Oct 2022 23:34:05 GMT
Last-Modified: Sun, 23 Oct 2022 22:37:13 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 52b2db490d54a33bc200719a16ed34cb
71a788efd2e15f7267c8464b3bd813d022385316
72f6915abd4f0fc88372f7c447c48662fd18a517772f1a20965dd14123fa8995
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3412
Cache-Control: max-age=171648
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:17 GMT
Etag: "6355c219-118"
Expires: Tue, 25 Oct 2022 23:34:05 GMT
Last-Modified: Sun, 23 Oct 2022 22:37:13 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 23 Oct 2022 23:43:40 GMT
Cache-Control: max-age=3600
Expires: Sun, 23 Oct 2022 23:49:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aCwIw-t17AON3MmtwmlcSH498wiCn74vjTwLOI7kTO8rr6M8mqq9PQ==
Age: 577
www.googletagmanager.com/gtag/js?id=UA-308175-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-308175-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1588)
Hash 0d0d073a73e00f5b5a204e614e89a3ac
997be80014a15b4c62ce6c07237cba41be46d4af
9084a345751f09e0120f390f6cde6372cbd593443d287cf08fe1d9ddb237d678
GET /gtag/js?id=UA-308175-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 23 Oct 2022 23:53:17 GMT
expires: Sun, 23 Oct 2022 23:53:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44639
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 05ee461624e2ec37f65e859afe6543ba
b99dcb558535d3d35d140e730aeeb41587622b30
576b3bf619d0a152889cc44165a229ad0100ccc319cf4d9044b2f26d4b676658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 60d5d7cce6c32a6bdaf0d4c92ec93a1a
cd29edee660366b41749cfd206bdc08fb421449c
fb90c4cc44b32e4ca4a7d1533bbf4a2fd5c482dda5d232f1be2334f3cefbbb0e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2771
Cache-Control: max-age=118777
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:17 GMT
Etag: "6354f613-1d7"
Expires: Tue, 25 Oct 2022 08:52:54 GMT
Last-Modified: Sun, 23 Oct 2022 08:06:43 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
anymind360.com/js/3181/ats.js
151.101.2.133200 OK 34 kB URL HTTP/2 anymind360.com/js/3181/ats.js
IP 151.101.2.133:0
File type ASCII text, with very long lines (65392)
Hash a6462a563c13555744fcb51d54113b74
8e56e6a4264c36a38c20d32036084da9d0b353bf
ac0d3839b6eb7d1b2d89975147ddc03e7d7f251766c09741e68f50ac7b3d89a9
GET /js/3181/ats.js HTTP/1.1
Host: anymind360.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduxiroqEfjR-Djo0uu8kq_G-WfdWKYeGRGREftP_IEof00BJHrIqyoHn5hgk_d_ENBhZuZM1SU15Wxcsg2E7mFAxsQS0l50
x-goog-generation: 1663908799832241
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 34203
content-encoding: gzip
x-goog-hash: crc32c=axjzIA==, md5=pkYqVjwTVVdE/LUdVBE7dA==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
expires: Sat, 22 Oct 2022 23:13:07 GMT
last-modified: Fri, 23 Sep 2022 04:53:19 GMT
etag: "a6462a563c13555744fcb51d54113b74"
content-type: application/javascript; charset=UTF-8
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 23 Oct 2022 23:53:17 GMT
age: 88809
x-served-by: cache-tyo11969-TYO, cache-bma1678-BMA
x-cache: HIT, HIT
x-cache-hits: 101, 1
x-timer: S1666569197.300060,VS0,VE1
vary: Accept-Encoding
cache-control: max-age=1200
strict-transport-security: max-age=300
content-length: 34203
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/icomoon/icomoon.ttf?o7tww
192.124.249.104200 OK 3.4 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/icomoon/icomoon.ttf?o7tww
IP 192.124.249.104:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash c2a82f69b7fb62e527a4428c5f75b1fc
6a4b1ddb4fe78884e898d0cb1f61481e717cb806
228902e170dc5704804c8c3dffe0088d0d328c996faff5454f548ab11b5f59a1
GET /theme_sunstar/icomoon/icomoon.ttf?o7tww HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/theme_sunstar/css/general-styles.min.css?v=0.33
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1666569197.1.0.1666569197.0.0.0; _ga=GA1.1.2043095802.1666569197
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:18 GMT
content-type: application/octet-stream
content-length: 3432
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:35 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
etag: "61b6f8b7-d68"
x-cache: Miss from cloudfront
via: 1.1 80826ca6c4fd6005aeacf5a03c8d42e8.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: PsdDRiaet9pXKi53LHJirX-3kjIe1nkPEXgKWSJvUd-UMVamCmprRw==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/158497/6026/pwt.js
23.38.200.201200 OK 77 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/158497/6026/pwt.js
IP 23.38.200.201:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b7a0b8de3679d36b6deee0c0ecbe11b8
c883353328f7b611d6e025cba866391114932922
a573ebeb849d361c00040bd7c818c173ac284230d88f799e68274f66bb62d029
GET /AdServer/js/pwt/158497/6026/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 12 Nov 2021 07:43:05 GMT
etag: "17a1e9c-3d366-5d0929c129163"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: text/javascript
content-length: 77259
cache-control: max-age=127681
expires: Tue, 25 Oct 2022 11:21:18 GMT
date: Sun, 23 Oct 2022 23:53:17 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 23 Oct 2022 22:41:09 GMT
expires: Mon, 24 Oct 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 4328
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.160.51.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.51.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: U9SiVhMncX+QR7/oZBZHNw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xkyfQ4mvY+62GBmqW1iNRGCOImA=
cdn.adbro.me/ptag.js
172.67.38.130200 OK 47 kB IP 172.67.38.130:0
Hash 6a96a1359e701122c6987afc6210b03c
baaadb3b94e3b86f97baa1bc35fd338130197d7c
2573d1a370ba9ed1eac4c6e29286e286b33c8cf225b3258b95ab8f0c1c1873dc
GET /ptag.js HTTP/1.1
Host: cdn.adbro.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:17 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=137965
etag: W/"0ba148eade3d81:0"
last-modified: Wed, 19 Oct 2022 11:25:56 GMT
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 1327
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee642cbe030b55-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
anymind360.com/js/3181/prebid_2022_9_23_4_52_53.js
151.101.2.133200 OK 113 kB URL HTTP/2 anymind360.com/js/3181/prebid_2022_9_23_4_52_53.js
IP 151.101.2.133:0
File type ASCII text, with very long lines (65423)
Size 113 kB (112651 bytes)
Hash 697c137c235cdc68e8953f9391ea3fc0
5c06a81fe4652593b07c09d2bea2ef766916a04d
66aecd9f9d3e8aa0d6f406b5d23f83d4bc456e4daf5b02024872a410d2f3229d
GET /js/3181/prebid_2022_9_23_4_52_53.js HTTP/1.1
Host: anymind360.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvOK1YgnIOXHwjjItkEAk3sbtZ6lK1RfsBJ1nyrSKEtCJ-XHE3sIT5dCyjBsAMQ_gk-WezK_beI7CcykydLwuB08dOVQwEY
x-goog-generation: 1663908803958077
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 112651
content-encoding: gzip
x-goog-hash: crc32c=9o8jAw==, md5=aXwTfCNc3GjolT+Tkeo/wA==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
expires: Mon, 17 Oct 2022 07:42:34 GMT
last-modified: Fri, 23 Sep 2022 04:53:23 GMT
etag: "697c137c235cdc68e8953f9391ea3fc0"
content-type: application/javascript; charset=UTF-8
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 23 Oct 2022 23:53:17 GMT
age: 488393
x-served-by: cache-tyo11954-TYO, cache-bma1678-BMA
x-cache: HIT, HIT
x-cache-hits: 61, 1
x-timer: S1666569198.641652,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=300
cache-control: max-age=31536000, public
content-length: 112651
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 03d42e3245268a9d8f602cacf5a4404e
59b42c91ab2ec67086f549de3d47d45560b91fc7
6e88b2d135f33b12b5c8e244ea0ba75dc6acef16aeb0069a87141e49dd4b7ec9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sunstar.com.ph/js/owl.carousel.min.js?_=1666569196805
192.124.249.104200 OK 40 kB URL HTTP/2 www.sunstar.com.ph/js/owl.carousel.min.js?_=1666569196805
IP 192.124.249.104:0
File type ASCII text, with very long lines (32068)
Hash 687359b1b6c66894d0273ffbf625c7ef
9b728fa3e1bebefa6157055c291660ca3cd0b118
6511f163a20a997f8f74a77dbcb57338d8af09a8f71e11879930b9f83e018fb4
GET /js/owl.carousel.min.js?_=1666569196805 HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1666569197.1.0.1666569197.0.0.0; _ga=GA1.3.2043095802.1666569197; _gid=GA1.3.121813829.1666569197; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=88563221-1df8-497f-9e24-f968de2cb7c1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:18 GMT
content-type: application/javascript; charset=utf-8
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:37:47 GMT
etag: W/"61b6f84b-9dd1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b911c551065b8f78ad33b4c4564141be.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: ZAWS2fnmS1rppmapWpBmKSlgv6wv3JEi2LP51bsUw4VJF6u62IKcBg==
age: 1683631
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 03d42e3245268a9d8f602cacf5a4404e
59b42c91ab2ec67086f549de3d47d45560b91fc7
6e88b2d135f33b12b5c8e244ea0ba75dc6acef16aeb0069a87141e49dd4b7ec9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json
151.101.85.229200 OK 880 B URL HTTP/2 cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json
IP 151.101.85.229:0
File type JSON data\012- , ASCII text, with very long lines (1639), with no line terminators
Hash 3119e380ca185b4909c3815635505f76
0b787f4b40b6d6b6f9acd0545fb1c4aab87d3bfa
6c5add93b704d72dbaed89c3fcee301f23e92e1e955f99f48c018b96053fd191
GET /gh/prebid/currency-file@1/latest.json HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/json; charset=utf-8
x-jsd-version: 1.0.1502
x-jsd-version-type: version
etag: W/"667-2s8d11BLLHyIvnAtL3Fdys1mvPE"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 23 Oct 2022 23:53:17 GMT
age: 31940
x-served-by: cache-fra19153-FRA, cache-bma1648-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 880
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 56335a97842ddb0b409e41f73818de81
a9b9226a4308b03d9dc2fa66d354a4d3ae708ab2
b090146290863580413297727e4939551af4470eb1ec901f2c1121c942bbebe0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 23:23:24 GMT
Expires: Thu, 27 Oct 2022 23:23:23 GMT
Etag: "a9b9226a4308b03d9dc2fa66d354a4d3ae708ab2"
Cache-Control: max-age=343204,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ee642f98eeb50f-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 56335a97842ddb0b409e41f73818de81
a9b9226a4308b03d9dc2fa66d354a4d3ae708ab2
b090146290863580413297727e4939551af4470eb1ec901f2c1121c942bbebe0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 23:23:24 GMT
Expires: Thu, 27 Oct 2022 23:23:23 GMT
Etag: "a9b9226a4308b03d9dc2fa66d354a4d3ae708ab2"
Cache-Control: max-age=343204,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ee642f9affb509-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 56335a97842ddb0b409e41f73818de81
a9b9226a4308b03d9dc2fa66d354a4d3ae708ab2
b090146290863580413297727e4939551af4470eb1ec901f2c1121c942bbebe0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 23:23:24 GMT
Expires: Thu, 27 Oct 2022 23:23:23 GMT
Etag: "a9b9226a4308b03d9dc2fa66d354a4d3ae708ab2"
Cache-Control: max-age=343204,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ee642f98f0b50f-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 56335a97842ddb0b409e41f73818de81
a9b9226a4308b03d9dc2fa66d354a4d3ae708ab2
b090146290863580413297727e4939551af4470eb1ec901f2c1121c942bbebe0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 23:23:24 GMT
Expires: Thu, 27 Oct 2022 23:23:23 GMT
Etag: "a9b9226a4308b03d9dc2fa66d354a4d3ae708ab2"
Cache-Control: max-age=343204,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ee642f99c20b4d-OSL
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 8b4c63ec3d7a46d590ae8930de1b17b8
20cff8f1b312379a304b15b5510109d9f72a42f3
c8f499621d9e6c9e45163990effe9e1f9e9dcf18e3a336e869f7e7c85fa3a4b4
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "EEEA5332DC81F7E1474CFDB9547BB60EBF750230"
Expires: Mon, 24 Oct 2022 11:00:00 GMT
Last-Modified: Sun, 23 Oct 2022 23:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 998
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75ee64300c9db4ff-OSL
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fc7d1ac9393880b9069386a956c61e2b
312677aecd9a13630927a67efb15c4f16799f379
402f0b88b88b62826255b61d4f355f46cc334399410fdd73ccf632c7c81257ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6256
Cache-Control: max-age=133434
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Etag: "635521b8-116"
Expires: Tue, 25 Oct 2022 12:57:12 GMT
Last-Modified: Sun, 23 Oct 2022 11:12:56 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 5122d017171e1fa02081ddc57aeab33a
e4d32a9c78fdfc0509ce32eae35609712d84e5fb
be909aee80732c50ead924658ff49236c08edeac77ce96f075e9a6df85e2b499
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4731
Cache-Control: max-age=145211
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Etag: "635555ae-139"
Expires: Tue, 25 Oct 2022 16:13:29 GMT
Last-Modified: Sun, 23 Oct 2022 14:54:38 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 313
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 23:53:18 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Accept-Encoding,Origin,Accept-Language,X-CSRF-Token,x-unruly-override
access-control-max-age: 1728000
content-type: text/plain charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 23:53:18 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Accept-Encoding,Origin,Accept-Language,X-CSRF-Token,x-unruly-override
access-control-max-age: 1728000
content-type: text/plain charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e35e4233b1780784cda197032200f5ba
f2fab38e2060bb2e71bddf3c13f6858fd60ac794
7a3520ce6b51ca855bb41e1667f3ddf1371c6d6c4984f9c1b935c912d7e058c0
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2830
Cache-Control: max-age=139718
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Etag: "635547a6-1d7"
Expires: Tue, 25 Oct 2022 14:41:56 GMT
Last-Modified: Sun, 23 Oct 2022 13:54:46 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 23:53:18 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Accept-Encoding,Origin,Accept-Language,X-CSRF-Token,x-unruly-override
access-control-max-age: 1728000
content-type: text/plain charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash ad989f1caf2f7b9a5b17b800bf97c0cd
45413ae8154042954eee18d5ec6c9a30457c1ae2
7684954b0289f7e1d3a4400c4cd57d81cd0c5b0179698ddd5c26e30d317269d2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2865
Cache-Control: max-age=97622
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Etag: "6354a313-13a"
Expires: Tue, 25 Oct 2022 03:00:20 GMT
Last-Modified: Sun, 23 Oct 2022 02:12:35 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bc250fae830d49e7538a7410bae758cc
a15949442619deb5f47006ddb843da2e0626f26f
7c8b2ddd899df95d9fb886b7f14feee01d56ca873a2131f205150aba024c47f0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6143
Cache-Control: max-age=93360
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Etag: "6354859f-1d7"
Expires: Tue, 25 Oct 2022 01:49:18 GMT
Last-Modified: Sun, 23 Oct 2022 00:06:55 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
prg-apac.smartadserver.com/prebid/v1
185.86.137.32200 OK 0 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.137.32:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 470
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sun, 23 Oct 2022 23:53:17 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg-apac.smartadserver.com/prebid/v1
185.86.137.32200 OK 0 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.137.32:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 469
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sun, 23 Oct 2022 23:53:17 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ib.adnxs.com/ut/v3/prebid
37.252.173.215200 OK 53 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.173.215:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 383f9c4be349dffa576501d3bb905192
00ca8d8ed02e204dd27d5aa0309cd8e7fc514a47
a68a70f7be9281f3f7148b38d7f5971f1dc946d3034a40e55021d0fb6fb78d73
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3183
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 53
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.sunstar.com.ph
AN-X-Request-Uuid: 41ccd81a-7b8c-4871-a46e-690dd44d4421
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
adasia-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=395a3d73-7a50-48d5-a0e7-d000efde914b%2Ce77feba6-3125-47bc-82e0-fcc51e7ccd50%2C1a2aab20-b6a7-4c47-84e6-3b6b9313cba1%2C2ace4b31-8d16-4785-8814-f9501d3c79b2&nocache=1666569197540&schain=1.0%2C1!anymanager.io%2C3181%2C1%2C%2C%2C&aus=300x250%2C336x280%2C728x90%2C1x1%7C728x90%2C640x360%2C300x250%2C336x280%7C728x90%2C300x250%2C336x280%2C640x360%7C300x250%2C336x280%2C728x90%2C640x360&divids=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-5%2Cats-insert_ads-9&aucs=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-5%2Cats-insert_ads-9&auid=542526078%2C542526081%2C542526086%2C557079868
35.244.159.8200 OK 78 B URL HTTP/2 adasia-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=395a3d73-7a50-48d5-a0e7-d000efde914b%2Ce77feba6-3125-47bc-82e0-fcc51e7ccd50%2C1a2aab20-b6a7-4c47-84e6-3b6b9313cba1%2C2ace4b31-8d16-4785-8814-f9501d3c79b2&nocache=1666569197540&schain=1.0%2C1!anymanager.io%2C3181%2C1%2C%2C%2C&aus=300x250%2C336x280%2C728x90%2C1x1%7C728x90%2C640x360%2C300x250%2C336x280%7C728x90%2C300x250%2C336x280%2C640x360%7C300x250%2C336x280%2C728x90%2C640x360&divids=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-5%2Cats-insert_ads-9&aucs=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-5%2Cats-insert_ads-9&auid=542526078%2C542526081%2C542526086%2C557079868
IP 35.244.159.8:0
File type JSON data\012- , ASCII text
Hash 6e40d8ed490e980c545d94df02f715ed
194546b1d8b92a5e1d929b4b447501eae88128bc
1d97bde02040734ff05627e4a1052085d9dc34805cb057a23e9b90a81a2dd84d
GET /w/1.0/arj?ju=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=395a3d73-7a50-48d5-a0e7-d000efde914b%2Ce77feba6-3125-47bc-82e0-fcc51e7ccd50%2C1a2aab20-b6a7-4c47-84e6-3b6b9313cba1%2C2ace4b31-8d16-4785-8814-f9501d3c79b2&nocache=1666569197540&schain=1.0%2C1!anymanager.io%2C3181%2C1%2C%2C%2C&aus=300x250%2C336x280%2C728x90%2C1x1%7C728x90%2C640x360%2C300x250%2C336x280%7C728x90%2C300x250%2C336x280%2C640x360%7C300x250%2C336x280%2C728x90%2C640x360&divids=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-5%2Cats-insert_ads-9&aucs=ats-insert_ads-2%2Cats-insert_ads-3%2Cats-insert_ads-5%2Cats-insert_ads-9&auid=542526078%2C542526081%2C542526086%2C557079868 HTTP/1.1
Host: adasia-d.openx.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Sun, 23 Oct 2022 23:53:18 GMT
content-type: application/json
content-length: 78
content-encoding: gzip
cache-control: private, max-age=0, no-cache
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prg-apac.smartadserver.com/prebid/v1
185.86.137.32200 OK 0 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.137.32:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 469
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sun, 23 Oct 2022 23:53:17 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c4a212995b4b6d47dd07618ce87ec9bf
dce3eb02b94660816c547ad644eba65801a43b79
f1530da36248fbde4fc20dd05c27f63c08ef726f3c4b78c8ed528c63ae0fccf4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6137
Cache-Control: max-age=123930
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Etag: "6354fd0f-1d7"
Expires: Tue, 25 Oct 2022 10:18:48 GMT
Last-Modified: Sun, 23 Oct 2022 08:36:31 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
prg-apac.smartadserver.com/prebid/v1
185.86.137.32200 OK 0 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.137.32:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 469
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sun, 23 Oct 2022 23:53:17 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1167
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 23:53:18 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1167
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 23:53:18 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1167
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 23:53:18 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?profileId=207&av=34&wv=6.29.2&cb=57211509601
178.250.2.131200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=6.29.2&cb=57211509601
IP 178.250.2.131:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=6.29.2&cb=57211509601 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2054
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:17 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://www.sunstar.com.ph
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
a.teads.tv/hb/bid-request
23.38.201.50200 OK 42 B URL HTTP/2 a.teads.tv/hb/bid-request
IP 23.38.201.50:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f646cd677a5283a600e1ca73c499877
979e9d54fa7ac635da0fb855a8ba40a0f74fe76e
d6e5f108622c778ca6bc5d246637b9a73585a670d46e15493b89f2915806174a
POST /hb/bid-request HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 708
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64
content-encoding: gzip
content-length: 42
vary: Accept-Encoding
expires: Sun, 23 Oct 2022 23:53:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 23 Oct 2022 23:53:18 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 282 B IP 104.18.32.68:0
Hash 203cd03a099435a6a36d3c63916adb18
200cd422f3f755b53d5ed1d872e6dc49c4b01b50
2fa15df103b84866e6304b0fbe687aafad7d28e7586c91417a1dcf5bceb424f8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/ocsp-response
Content-Length: 282
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 16:09:12 GMT
Expires: Fri, 28 Oct 2022 16:09:11 GMT
Etag: "200cd422f3f755b53d5ed1d872e6dc49c4b01b50"
Cache-Control: max-age=403552,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ee64308970b50f-OSL
htlb.casalemedia.com/openrtb/pbjs?s=503783&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%225604cd44cf1e23c%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A6%2C%22msi%22%3A6%2C%22mfu%22%3A0%2C%22bu%22%3A4%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A4%2C%22ren%22%3Afalse%2C%22version%22%3A%226.29.2%22%2C%22userIds%22%3A%5B%5D%2C%22url%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%2C%22err%22%3A%7B%222%22%3A1%7D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%225866930f0a3dfbf%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897294902%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22336x280%22%7D%7D%2C%7B%22w%22%3A1%2C%22h%22%3A1%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%221x1%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%2259a677b386605c98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%226314c6380aa5a578%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22336x280%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22640x360%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%22%7D%7D%2C%7B%22id%22%3A%22641e8ecb2099d12%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50%22%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22anymanager.io%22%2C%22sid%22%3A%223181%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%7D
104.18.18.126200 OK 37 B URL HTTP/2 htlb.casalemedia.com/openrtb/pbjs?s=503783&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%225604cd44cf1e23c%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A6%2C%22msi%22%3A6%2C%22mfu%22%3A0%2C%22bu%22%3A4%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A4%2C%22ren%22%3Afalse%2C%22version%22%3A%226.29.2%22%2C%22userIds%22%3A%5B%5D%2C%22url%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%2C%22err%22%3A%7B%222%22%3A1%7D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%225866930f0a3dfbf%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897294902%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22336x280%22%7D%7D%2C%7B%22w%22%3A1%2C%22h%22%3A1%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%221x1%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%2259a677b386605c98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%226314c6380aa5a578%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22336x280%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22640x360%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%22%7D%7D%2C%7B%22id%22%3A%22641e8ecb2099d12%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50%22%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22anymanager.io%22%2C%22sid%22%3A%223181%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%7D
IP 104.18.18.126:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8464e00ea78cda43666af7f281611d28
882118c163a713a2fe414cab13e62cbd92d605d9
be9a9804ef4d56173cb090c5930a0fcd29e4f13135c949a8405102c393e9eae4
GET /openrtb/pbjs?s=503783&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%225604cd44cf1e23c%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A6%2C%22msi%22%3A6%2C%22mfu%22%3A0%2C%22bu%22%3A4%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A4%2C%22ren%22%3Afalse%2C%22version%22%3A%226.29.2%22%2C%22userIds%22%3A%5B%5D%2C%22url%22%3A%22https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F%22%2C%22err%22%3A%7B%222%22%3A1%7D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%225866930f0a3dfbf%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897294902%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22336x280%22%7D%7D%2C%7B%22w%22%3A1%2C%22h%22%3A1%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%221x1%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%2259a677b386605c98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2221897299747%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%22%7D%7D%2C%7B%22id%22%3A%226314c6380aa5a578%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222067763013%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22300x250%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22336x280%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%22640x360%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%22%7D%7D%2C%7B%22id%22%3A%22641e8ecb2099d12%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%2C%7B%22w%22%3A640%2C%22h%22%3A360%2C%22ext%22%3A%7B%22siteID%22%3A%22503783%22%2C%22sid%22%3A%2222214609758%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50%22%7D%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22anymanager.io%22%2C%22sid%22%3A%223181%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%7D HTTP/1.1
Host: htlb.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:18 GMT
content-type: application/json
content-length: 37
cf-ray: 75ee64302f28b4f4-OSL
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
pragma: no-cache
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 56335a97842ddb0b409e41f73818de81
a9b9226a4308b03d9dc2fa66d354a4d3ae708ab2
b090146290863580413297727e4939551af4470eb1ec901f2c1121c942bbebe0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 23:23:24 GMT
Expires: Thu, 27 Oct 2022 23:23:23 GMT
Etag: "a9b9226a4308b03d9dc2fa66d354a4d3ae708ab2"
Cache-Control: max-age=343204,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ee642f9b00b509-OSL
prg-apac.smartadserver.com/prebid/v1
185.86.137.32200 OK 453 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.137.32:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash eda12071cd0556410473a79ad5413350
cbc3a11f633dc27337b31fb55a4804debb11d4f1
b3e1544f773475ca02ec671a7657724b8b752d0c52465d478ea21e4603a791d6
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 464
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sun, 23 Oct 2022 23:53:17 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12960%3b%24o%3d99999; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
vs=342459=5159513; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
pid=2119513086180252061; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638021659981568081&o=1; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e35e4233b1780784cda197032200f5ba
f2fab38e2060bb2e71bddf3c13f6858fd60ac794
7a3520ce6b51ca855bb41e1667f3ddf1371c6d6c4984f9c1b935c912d7e058c0
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2830
Cache-Control: max-age=139718
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Etag: "635547a6-1d7"
Expires: Tue, 25 Oct 2022 14:41:56 GMT
Last-Modified: Sun, 23 Oct 2022 13:54:46 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/23/389840.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 953 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/23/389840.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 30x18, components 3\012- data
Hash 9e7663b2d9173ddaaa8733b04f9c06ac
f4b62e563945810c954bd7f6de2836d1b3f2e0ee
9698015da129aba99d20cbcf9490f75b3f79ba6b464e8d6729a0644f07c4eb12
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/23/389840.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:17 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1292
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 61754
last-modified: Sun, 23 Oct 2022 06:44:03 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CrrtMf0qudt4em4WsAW%2FsXX%2FEyV%2B147v753hiYqpxB9bj7pFFKI5UjsW4fyZecg42%2FD%2FwS28XoqsuYbGF22o8vdMTEnph00FcS5LwgOkcdUuKCFRLEB36AFCQqcGbBvfB%2BkQAMam"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee642a4e87b50f-OSL
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-NKNB9VQZRL>m=2oeaj0&_p=26888712&cid=2043095802.1666569197&ul=en-us&sr=1280x1024&_s=1&sid=1666569197&sct=1&seg=0&dl=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&dt=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-NKNB9VQZRL>m=2oeaj0&_p=26888712&cid=2043095802.1666569197&ul=en-us&sr=1280x1024&_s=1&sid=1666569197&sct=1&seg=0&dl=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&dt=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NKNB9VQZRL>m=2oeaj0&_p=26888712&cid=2043095802.1666569197&ul=en-us&sr=1280x1024&_s=1&sid=1666569197&sct=1&seg=0&dl=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&dt=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.sunstar.com.ph
date: Sun, 23 Oct 2022 23:53:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2565
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache, no-store, must-revalidate
date: Sun, 23 Oct 2022 23:53:17 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fc7d1ac9393880b9069386a956c61e2b
312677aecd9a13630927a67efb15c4f16799f379
402f0b88b88b62826255b61d4f355f46cc334399410fdd73ccf632c7c81257ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4292
Cache-Control: max-age=131470
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Etag: "635521b8-116"
Expires: Tue, 25 Oct 2022 12:24:28 GMT
Last-Modified: Sun, 23 Oct 2022 11:12:56 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17692&site_id=396196&zone_id=2211426%3B2211428%3B2395606%3B2395582&size_id=15&alt_size_ids=2%2C16%2C221%3B2%2C16%2C198%3B2%2C16%2C198%3B2%2C16%2C198&rp_schain=1.0,1!anymanager.io,3181,1,,,&rf=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&tg_i.pbadslot=ats-insert_ads-2%3Bats-insert_ads-3%3Bats-insert_ads-5%3Bats-insert_ads-9&tk_flint=pbjs_lite_v6.29.2&x_source.tid=395a3d73-7a50-48d5-a0e7-d000efde914b%3Be77feba6-3125-47bc-82e0-fcc51e7ccd50%3B1a2aab20-b6a7-4c47-84e6-3b6b9313cba1%3B2ace4b31-8d16-4785-8814-f9501d3c79b2&l_pb_bid_id=19ebb1ec63a63b58%3B202807a01f0ce338%3B216c3b54627f2888%3B221171fb66cfdaf8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50&slots=4&rand=0.02632450925249641
213.19.162.31200 OK 623 B URL HTTP/1.1 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17692&site_id=396196&zone_id=2211426%3B2211428%3B2395606%3B2395582&size_id=15&alt_size_ids=2%2C16%2C221%3B2%2C16%2C198%3B2%2C16%2C198%3B2%2C16%2C198&rp_schain=1.0,1!anymanager.io,3181,1,,,&rf=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&tg_i.pbadslot=ats-insert_ads-2%3Bats-insert_ads-3%3Bats-insert_ads-5%3Bats-insert_ads-9&tk_flint=pbjs_lite_v6.29.2&x_source.tid=395a3d73-7a50-48d5-a0e7-d000efde914b%3Be77feba6-3125-47bc-82e0-fcc51e7ccd50%3B1a2aab20-b6a7-4c47-84e6-3b6b9313cba1%3B2ace4b31-8d16-4785-8814-f9501d3c79b2&l_pb_bid_id=19ebb1ec63a63b58%3B202807a01f0ce338%3B216c3b54627f2888%3B221171fb66cfdaf8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50&slots=4&rand=0.02632450925249641
IP 213.19.162.31:0
File type JSON data\012- , ASCII text, with very long lines (623), with no line terminators
Hash d575a369e946489de1b4d87f8399d18b
92defd7aa5d1ef659f4e6817899c29e3bbdcd6ae
b7f524198c5adc7f393715a9220f98887b54e6c7a23cb6bf4162f82b9a62147f
GET /a/api/fastlane.json?account_id=17692&site_id=396196&zone_id=2211426%3B2211428%3B2395606%3B2395582&size_id=15&alt_size_ids=2%2C16%2C221%3B2%2C16%2C198%3B2%2C16%2C198%3B2%2C16%2C198&rp_schain=1.0,1!anymanager.io,3181,1,,,&rf=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&tg_i.pbadslot=ats-insert_ads-2%3Bats-insert_ads-3%3Bats-insert_ads-5%3Bats-insert_ads-9&tk_flint=pbjs_lite_v6.29.2&x_source.tid=395a3d73-7a50-48d5-a0e7-d000efde914b%3Be77feba6-3125-47bc-82e0-fcc51e7ccd50%3B1a2aab20-b6a7-4c47-84e6-3b6b9313cba1%3B2ace4b31-8d16-4785-8814-f9501d3c79b2&l_pb_bid_id=19ebb1ec63a63b58%3B202807a01f0ce338%3B216c3b54627f2888%3B221171fb66cfdaf8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid1_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid2_728x90%2F%2F640x360%2F%2F300x250%2F%2F336x280%2F%2F320x50%2F%2F320x100%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid3_336x280%2F%2F300x250%2F%2F728x90%3B%2F21622890900%2C1012712%2FPH_sunstar.com.ph_res_article_mid4_728x90%2F%2F300x250%2F%2F336x280%2F%2F300x250%2F%2F320x100%2F%2F320x50&slots=4&rand=0.02632450925249641 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.4
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/json
Content-Length: 623
Connection: keep-alive
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.sunstar.com.ph
Pragma: no-cache
Vary: Accept-Encoding
Set-Cookie: khaos=L9M09RA3-5-3A95; Domain=.rubiconproject.com; Path=/; Expires=Mon, 23-Oct-2023 23:53:18 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qq/ks/fVKVLTe9DtVM30fCgkDxvUryvwKKoo7GPSO62di1dB8aBR4ayL1MIU4jowJLgcRgjl6EitaTfV3L7jjjb3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Mon, 23-Oct-2023 23:53:18 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=L9M09RA3-5-3A95; Domain=.rubiconproject.com; Path=/; Expires=Mon, 23-Oct-2023 23:53:18 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qq/ks/fVKVLTe9DtVM30fCgkDxvUryvwKKoo7GPSO62di1dB8aBR4ayL1MIU4jowJLgcRgjl6EitaTfV3L7jjjb3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Mon, 23-Oct-2023 23:53:18 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=L9M09RA3-5-3A95; Domain=.rubiconproject.com; Path=/; Expires=Mon, 23-Oct-2023 23:53:18 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qq/ks/fVKVLTe9DtVM30fCgkDxvUryvwKKoo7GPSO62di1dB8aBR4ayL1MIU4jowJLgcRgjl6EitaTfV3L7jjjb3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Mon, 23-Oct-2023 23:53:18 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=L9M09RA3-5-3A95; Domain=.rubiconproject.com; Path=/; Expires=Mon, 23-Oct-2023 23:53:18 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qq/ks/fVKVLTe9DtVM30fCgkDxvUryvwKKoo7GPSO62di1dB8aBR4ayL1MIU4jowJLgcRgjl6EitaTfV3L7jjjb3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Mon, 23-Oct-2023 23:53:18 GMT; Max-Age=31536000; SameSite=None; Secure
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
prebid.ad.smaato.net/oapi/prebid
52.30.155.175400 Bad Request 0 B URL HTTP/2 prebid.ad.smaato.net/oapi/prebid
IP 52.30.155.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /oapi/prebid HTTP/1.1
Host: prebid.ad.smaato.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 858
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Sun, 23 Oct 2022 23:53:18 GMT
content-length: 0
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-expose-headers: X-SMT-DivId,X-SMT-SessionId,X-SMT-ADTYPE,X-SMT-Impression-Measurement,X-SMT-MESSAGE,X-SMT-Expires
x-smt-sessionid: bb091e2d-5e6f-8eb2-a457-a014dfebc4ec
x-smt-message: GDPR inventory not enabled for Application. Please contact your Account Manager.
server: SOMA
X-Firefox-Spdy: h2
prg-apac.smartadserver.com/prebid/v1
185.86.137.32200 OK 496 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.137.32:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (820), with no line terminators
Hash 126e9482d03446c597d32c877d86eb95
6d8ae15ff3332ddfaf5376f53bcf6d352f5ab6df
43922896422c87c1dd3f8da84f76495f23bbf2fe6c7b2aee67335c994ce589cd
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 465
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sun, 23 Oct 2022 23:53:17 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12960%3b%24o%3d99999; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
vs=342459=5159513; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
pid=3072029080293529895; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638021659981973647&o=1; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg-apac.smartadserver.com/prebid/v1
185.86.137.32200 OK 486 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.137.32:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (831), with no line terminators
Hash 91f442589156274e98278ed9b92e3e68
081e004b6b30b8caf5e890fe7b77b1764989d1f3
2f567f0abef0c56ddf569faead4ca5a4b3b6bd3e407190ea64c3ad126d20229f
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 469
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sun, 23 Oct 2022 23:53:17 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12960%3b%24o%3d99999; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
vs=342459=5159513; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
pid=891206732205840783; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638021659981970643&o=1; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg-apac.smartadserver.com/prebid/v1
185.86.137.32200 OK 569 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.137.32:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1211), with no line terminators
Hash e2626e21ed2fe3cb8c198349c3e2ede9
915d8dda9a65f0362e8a038a072ae09685c05327
73a7f05f1d5f53ee832cbd62d4073cb49b10a240749f4854c98b0f575febe178
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 472
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sun, 23 Oct 2022 23:53:17 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12960%3b%24o%3d99999; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
vs=342459=5159513; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
pid=3252189115681134929; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638021659981895634&o=1; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prebid.ad.smaato.net/oapi/prebid
52.30.155.175400 Bad Request 0 B URL HTTP/2 prebid.ad.smaato.net/oapi/prebid
IP 52.30.155.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /oapi/prebid HTTP/1.1
Host: prebid.ad.smaato.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 858
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Sun, 23 Oct 2022 23:53:18 GMT
content-length: 0
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-expose-headers: X-SMT-DivId,X-SMT-SessionId,X-SMT-ADTYPE,X-SMT-Impression-Measurement,X-SMT-MESSAGE,X-SMT-Expires
x-smt-sessionid: 030bc28e-007b-474d-7666-9e92e9461181
x-smt-message: GDPR inventory not enabled for Application. Please contact your Account Manager.
server: SOMA
X-Firefox-Spdy: h2
prg-apac.smartadserver.com/prebid/v1
185.86.137.32200 OK 512 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.137.32:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1013), with no line terminators
Hash 172eba8289033fa12ccd5ae54d66ccc4
fa3e1bbe5c7a029d1a5b7f1aa4a26bf1deafbb33
b07d1bc64d153414dba1d6c371c624b9d05584dc87cf76bb9a321574211f5c52
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 472
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sun, 23 Oct 2022 23:53:17 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12960%3b%24o%3d99999; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
vs=342459=5159513; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
pid=3890217317934618932; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638021659982041184&o=1; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1167
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 23:53:18 GMT
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 57dc56f8f07cb935b86a63bf48a3a505
33d9e56f94eb3735c73eec4d686b9a7e087bdac8
058a3162325cc75dc17aa1cf526c63e5b431f4993a3a41081378b3ab965e7e5b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 22 Oct 2022 07:45:27 GMT
Expires: Sat, 29 Oct 2022 07:45:26 GMT
Etag: "33d9e56f94eb3735c73eec4d686b9a7e087bdac8"
Cache-Control: max-age=459727,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ee64306962b50f-OSL
prg-apac.smartadserver.com/prebid/v1
185.86.137.32200 OK 592 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.137.32:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1008), with no line terminators
Hash 703c27df408970fe7ed5dcaaa634bb70
11d1e7f6bf6987702b7c7ea0b1ac1da2e46393c3
0ef4d67066e8dd503c2c073f9cdaa0f1502c2325fdca9e033f65f6397383539b
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 471
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sun, 23 Oct 2022 23:53:17 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12960%3b%24o%3d99999; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
vs=342459=5159513; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
pid=516791553722734985; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638021659982542469&o=1; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.sectigo.com/
104.18.32.68200 OK 282 B IP 104.18.32.68:0
Hash 203cd03a099435a6a36d3c63916adb18
200cd422f3f755b53d5ed1d872e6dc49c4b01b50
2fa15df103b84866e6304b0fbe687aafad7d28e7586c91417a1dcf5bceb424f8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/ocsp-response
Content-Length: 282
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 16:09:12 GMT
Expires: Fri, 28 Oct 2022 16:09:11 GMT
Etag: "200cd422f3f755b53d5ed1d872e6dc49c4b01b50"
Cache-Control: max-age=403552,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ee64306b4db509-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 282 B IP 104.18.32.68:0
Hash 203cd03a099435a6a36d3c63916adb18
200cd422f3f755b53d5ed1d872e6dc49c4b01b50
2fa15df103b84866e6304b0fbe687aafad7d28e7586c91417a1dcf5bceb424f8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:18 GMT
Content-Type: application/ocsp-response
Content-Length: 282
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 16:09:12 GMT
Expires: Fri, 28 Oct 2022 16:09:11 GMT
Etag: "200cd422f3f755b53d5ed1d872e6dc49c4b01b50"
Cache-Control: max-age=403552,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ee64309a200b4d-OSL
prebid.ad.smaato.net/oapi/prebid
52.30.155.175400 Bad Request 0 B URL HTTP/2 prebid.ad.smaato.net/oapi/prebid
IP 52.30.155.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /oapi/prebid HTTP/1.1
Host: prebid.ad.smaato.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 854
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Sun, 23 Oct 2022 23:53:18 GMT
content-length: 0
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-expose-headers: X-SMT-DivId,X-SMT-SessionId,X-SMT-ADTYPE,X-SMT-Impression-Measurement,X-SMT-MESSAGE,X-SMT-Expires
x-smt-sessionid: 2e612a10-357c-e971-c386-d2fad2a2a006
x-smt-message: GDPR inventory not enabled for Application. Please contact your Account Manager.
server: SOMA
X-Firefox-Spdy: h2
prebid.ad.smaato.net/oapi/prebid
52.30.155.175400 Bad Request 0 B URL HTTP/2 prebid.ad.smaato.net/oapi/prebid
IP 52.30.155.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /oapi/prebid HTTP/1.1
Host: prebid.ad.smaato.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 857
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Sun, 23 Oct 2022 23:53:18 GMT
content-length: 0
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-expose-headers: X-SMT-DivId,X-SMT-SessionId,X-SMT-ADTYPE,X-SMT-Impression-Measurement,X-SMT-MESSAGE,X-SMT-Expires
x-smt-sessionid: ea7b0e57-3212-f96f-2aa9-a05bf16143a2
x-smt-message: GDPR inventory not enabled for Application. Please contact your Account Manager.
server: SOMA
X-Firefox-Spdy: h2
prg-apac.smartadserver.com/prebid/v1
185.86.137.32200 OK 508 B URL HTTP/1.1 prg-apac.smartadserver.com/prebid/v1
IP 185.86.137.32:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1020), with no line terminators
Hash a1d58755e63667df3786b62e0052c41d
156133ee1afe114ca355cff26bbe67d112fa36b3
9f55434c8e33afb84cccc176b33b17617e5fbf1c20a9e86d2f3f54134eb3423c
POST /prebid/v1 HTTP/1.1
Host: prg-apac.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 470
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sun, 23 Oct 2022 23:53:18 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12960%3b%24o%3d99999; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
vs=342459=5159513; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
pid=5535612077782129039; expires=Mon, 23 Oct 2023 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638021659981799931&o=1; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Mon, 24 Oct 2022 23:53:18 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-308175-1&cid=2043095802.1666569197&jid=219883495&gjid=768299970&_gid=121813829.1666569197&_u=YADAAUAAAAAAACAAI~&z=169232153
173.194.222.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-308175-1&cid=2043095802.1666569197&jid=219883495&gjid=768299970&_gid=121813829.1666569197&_u=YADAAUAAAAAAACAAI~&z=169232153
IP 173.194.222.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-308175-1&cid=2043095802.1666569197&jid=219883495&gjid=768299970&_gid=121813829.1666569197&_u=YADAAUAAAAAAACAAI~&z=169232153 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.sunstar.com.ph
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 23 Oct 2022 23:53:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
go.trvdp.com/init/5620.js
143.204.55.18200 OK 5.8 kB URL HTTP/2 go.trvdp.com/init/5620.js
IP 143.204.55.18:0
File type ASCII text, with very long lines (5845), with no line terminators
Hash 80c8685af100d8c9c57f97f193cc6947
d4fffa312ce86b07a465ceea578e1389fe0228bc
73eeeef4aae38ab9250c17da31aa8669dac1c4e1c8123589a9215ae6fe727db5
GET /init/5620.js HTTP/1.1
Host: go.trvdp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5845
date: Sun, 29 May 2022 06:31:12 GMT
last-modified: Sun, 01 May 2022 12:05:47 GMT
etag: "80c8685af100d8c9c57f97f193cc6947"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q_YPs-TcGVtqQPOUyjlu9Q6xc-GFXNVmtCvbaRQcj3yQNWiU9c2LWw==
age: 12763327
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4db1e2a30c82c0ccc424718f6d5656e1
a7b34cd14cb1b934ebcfdcd635e0c09b36824331
5cd5426ef1b527f81e060510b8684313acf5aba276fe41a592011d86b8d92e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7dbe328751574db3465bc8c4f745a487
661ca1463bea33b14bec8f6669dacb2f1ffb78c1
95b3e76c084b00b1d5ca6e02551a48d645b0eae239313b46cfb3468d62b08193
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 23 Oct 2022 23:53:18 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.sunstar.com.ph
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.sunstar.com.ph
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 23 Oct 2022 23:53:18 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4db1e2a30c82c0ccc424718f6d5656e1
a7b34cd14cb1b934ebcfdcd635e0c09b36824331
5cd5426ef1b527f81e060510b8684313acf5aba276fe41a592011d86b8d92e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7dbe328751574db3465bc8c4f745a487
661ca1463bea33b14bec8f6669dacb2f1ffb78c1
95b3e76c084b00b1d5ca6e02551a48d645b0eae239313b46cfb3468d62b08193
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bed68ee568e74be152402c71cbf26510
38092ae53739e8ee13362c84df108bad734c4b64
26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5813
Expires: Mon, 24 Oct 2022 01:30:11 GMT
Date: Sun, 23 Oct 2022 23:53:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bed68ee568e74be152402c71cbf26510
38092ae53739e8ee13362c84df108bad734c4b64
26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5813
Expires: Mon, 24 Oct 2022 01:30:11 GMT
Date: Sun, 23 Oct 2022 23:53:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 772-513, spot sensor temperature 0.000000, unit celsius, color scheme 1, calibration: offset 0.000000, slope 241254190455726276608.000000\012- data
Hash 88436497b6fe5e22155afc45e9e8fe3e
5004575548d76d878a7f27bb3fc4a9a10e8f6909
304c2388dd96c82582d490cd473174b11eac53bf408a29ed78e23d77139ef243
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13962
x-amzn-requestid: 84f8b505-da9d-421c-b00a-3d6407aac332
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDQETqoAMFwxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b547-566c7abb12b09a565be85833;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: N-R8_VOQSIhikiT-qqPi0ABMoZnr234hdcdinyzBath9A8M6aUZ37A==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:54:05 GMT
age: 7153
etag: "5004575548d76d878a7f27bb3fc4a9a10e8f6909"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe87578f5-db38-4350-a6ac-22b0577d75a1.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe87578f5-db38-4350-a6ac-22b0577d75a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 548cc254725b085a0794f02585db37f6
69ebcb96188f5e3f6355aabecbe925e26ff00668
09906078ef781e283e939b86e3ee34665ed5df4524a9af4be26f7106a8cab836
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe87578f5-db38-4350-a6ac-22b0577d75a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7435
x-amzn-requestid: fd538694-534d-4938-bebc-1131c0bb7c62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB1HWdIAMFuSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-2f9210cb5a6a28a71b130497;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GFV2nCltq7Zg9MXGD96a5ajF-Kih-yNwv2rQC8Omlyla0UQ01TYkmw==
via: 1.1 58f9a50682bb94842197f3e957919c60.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:03:39 GMT
age: 6579
etag: "69ebcb96188f5e3f6355aabecbe925e26ff00668"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e8944f-330b-4c84-abef-bb7192d06408.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e8944f-330b-4c84-abef-bb7192d06408.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00bb08d0e8d45c0b0daf65ed676f35fa
0e189c28df7add54e092ea9cb101b0fab7d9024d
e2968bade1033fb2b73d28b8a04bcffa5262bd222bf9748bdcb923ef2b1b6416
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e8944f-330b-4c84-abef-bb7192d06408.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5440
x-amzn-requestid: e05d1f8e-78e3-4eb6-bebd-3f7a07894e3b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aYvLoGV3IAMFyPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63535f17-29fac13e0fec920c04885288;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 03:10:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CEKwEtZe8zx8csLPMAPg55UXZ5ArKwMUt9RGyi2ICz1YptGqog8_Lg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 03:44:04 GMT
age: 72554
etag: "0e189c28df7add54e092ea9cb101b0fab7d9024d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa538fb-7cd1-41f1-aacd-b9ff42991b8b.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa538fb-7cd1-41f1-aacd-b9ff42991b8b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72d843f94f06a00091ded227a40f24f7
7becba083c646f4715513e07d297ebc56f9d22ab
407d2ea28f44456af3f0f7b7f594703b08d15a5d682756bcad17de85dce65cd7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa538fb-7cd1-41f1-aacd-b9ff42991b8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8361
x-amzn-requestid: 23942897-d28e-4661-b941-1c8eb5ae9735
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelO4E4BIAMFcpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b592-4df057fb403df49841961951;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:46 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ybm5nbcEOMZT4vaC5dx7ji-VXg11O3AUZFfE42y418bv-QU0ntK_MQ==
via: 1.1 b637bd7696854d7acbf96132dcf53200.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:46:36 GMT
age: 7602
etag: "7becba083c646f4715513e07d297ebc56f9d22ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b92737-5f66-4330-9aa5-1885995d84b4.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b92737-5f66-4330-9aa5-1885995d84b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d881fb3b144fe90b2b4b5c59fee9fe3a
96535af6614ca397cf4110f49c8475a36a74d03b
6071a97c48b67fd18a8e0a25de5dd0ac9ac412a73cbd6f6f7c604effff4f14d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b92737-5f66-4330-9aa5-1885995d84b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6401a444-ca94-4ea9-b475-4b85c7ae51f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aeljXFdsoAMFWzQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b615-25144e6f2e49d2e23222d2ce;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:45:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fekj21cZ8QM3XI5tDoLd5WXac4ysNY7PyvmLfyGOhNWRfn5Fw53bjQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:01:47 GMT
etag: "96535af6614ca397cf4110f49c8475a36a74d03b"
content-type: image/jpeg
age: 6691
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9782993-f413-4e6d-95c2-333fbe657f63.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9782993-f413-4e6d-95c2-333fbe657f63.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2e664fa8596d38b4f74c45198a1d034
71daf3c8a99c89c8437645e97c7f14dd10d02d30
8f2cba60d7770cdfb781bfb95c33d9da1b03cab9ed5354b8a79d86e22b489663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9782993-f413-4e6d-95c2-333fbe657f63.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10565
x-amzn-requestid: 77d1f33a-cf70-44b9-a589-0cdadbea8d82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB0FDBoAMFvFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-2a30ebbb731766f675647a98;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MAguR4SfghsNzQUE6EIpLZ2bnc8yu8-YToIKS9mUCW6NhLLXtBjNew==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:56:14 GMT
age: 7024
etag: "71daf3c8a99c89c8437645e97c7f14dd10d02d30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
142.250.74.65200 OK 3.1 kB URL HTTP/2 e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5835)
Hash 3fa5e95a358d660ddb3c45769ae1357f
5f6164fbaf8cfbccfd061b00ae48dedfc16bbcd9
d32f4b680031c0e11222eb17385aa9d3b11d2903b05bff34c3d4eb6292631137
GET /safeframe/1-0-38/html/container.html HTTP/1.1
Host: e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 3108
date: Sun, 23 Oct 2022 23:53:18 GMT
expires: Mon, 23 Oct 2023 23:53:18 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 02 Mar 2021 20:17:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash aaa80dd51eaef47c83770b112b9e286c
bfd081a3ad2267e522a20b45695cd8a0860b4ad3
049ff9ce34cf51144dd1c80c0155d98ef0fa3c50234431de3c3c691624f840bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-308175-1&cid=2043095802.1666569197&jid=219883495&_u=YADAAUAAAAAAACAAI~&z=1004750364
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-308175-1&cid=2043095802.1666569197&jid=219883495&_u=YADAAUAAAAAAACAAI~&z=1004750364
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-308175-1&cid=2043095802.1666569197&jid=219883495&_u=YADAAUAAAAAAACAAI~&z=1004750364 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 23 Oct 2022 23:53:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stg.truvidplayer.com/p.php?sid=1273&wid=5620&cb=6103.0235026286355&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F
54.230.111.109200 OK 2.0 kB URL HTTP/2 stg.truvidplayer.com/p.php?sid=1273&wid=5620&cb=6103.0235026286355&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F
IP 54.230.111.109:0
Hash d839f73c8c01c34abfc84688d76bbae6
80b2f08164fd23de9295aed21bd2481044fee605
f71e99b66f4c7ce4a972aaaca093aaec56b6d83787bff243ceff382ad81a9409
GET /p.php?sid=1273&wid=5620&cb=6103.0235026286355&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F HTTP/1.1
Host: stg.truvidplayer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Sun, 23 Oct 2022 23:53:18 GMT
server: nginx
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vTlseQfkOtPDrNXtR73m0I2p4dN3AtLLYEqsIUp5J9fQQJpuB3Gcag==
X-Firefox-Spdy: h2
s.trvdp.com/scripts/v5.765/ins.js
54.230.111.50200 OK 154 kB URL HTTP/2 s.trvdp.com/scripts/v5.765/ins.js
IP 54.230.111.50:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65496), with no line terminators
Size 154 kB (154455 bytes)
Hash 44eecc2c6c42283cb90e85926f26916c
6cf10b43e8f0464d51745f89b743986d1e0f944a
a18642fa236fd09a714143fad2f4afe399581e2e85d45b5113076fa0bea554f2
GET /scripts/v5.765/ins.js HTTP/1.1
Host: s.trvdp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 28 Jul 2022 17:35:56 GMT
last-modified: Wed, 27 Jul 2022 11:38:00 GMT
etag: W/"63ce8648eb8c1582aa2f96deec2797e7"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kjc8u9t2yoRCbx2-pKgsHXWCKBkF0e65l_hzwXLDQhhO06k9oPJ-vQ==
age: 7539443
X-Firefox-Spdy: h2
src.trvdp.com/images/3536f86330e6f7df73f7041da13cb87c92fc78c5_2.jpg
143.204.55.33200 OK 42 kB URL HTTP/2 src.trvdp.com/images/3536f86330e6f7df73f7041da13cb87c92fc78c5_2.jpg
IP 143.204.55.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2560x2559, segment length 16, comment: "Lavc58.20.104", baseline, precision 8, 853x480, components 3\012- data
Hash ccb1bf1c56a3844d5290ab548e2d1cdb
747fd16dae0e084e451b986f8864ecbe41ee63a9
1cd2e8c202319462af768d00c18138dadc2334c824a0b494b6acc3735a7955fd
GET /images/3536f86330e6f7df73f7041da13cb87c92fc78c5_2.jpg HTTP/1.1
Host: src.trvdp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 42426
date: Fri, 15 Jul 2022 00:03:19 GMT
last-modified: Thu, 20 Aug 2020 11:47:29 GMT
etag: "ccb1bf1c56a3844d5290ab548e2d1cdb"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BDnhbqLcICghlsYSsqoZlsQXVupsjdKlUZWAoEHufr66NRl5kd_A1w==
age: 8725801
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e192ba11a69a64386984b803139a3973
4c03c5bcaecb636fa37939f43678cd00de92a365
20598d27f29a2c4b909fbc8e9e02f1a79e5a32e47c0e3a2763400ebd2fa57aa3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4c236f4ca13cd8fafc580bceb0995642
b6a7de7a8d994ed2cfb5ac74b6d7703de515ecdb
671228953eba5b2678df03acebb493e411752c6f5f72ff7f1e485032241d4aeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sun, 23 Oct 2022 23:53:19 GMT
expires: Sun, 23 Oct 2022 23:53:19 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.138200 OK 130 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (2831)
Size 130 kB (129663 bytes)
Hash 2b385dc5e778a8548784aefeb4db2918
8207aedcecd317358ddc44548307b67e60bb396d
45376dbbd6b12039ce01a9d4e32b00bb927162efbf19b53d198534c6ec565a48
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 129663
date: Sun, 23 Oct 2022 23:53:19 GMT
expires: Sun, 23 Oct 2022 23:53:19 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 23 Oct 2022 03:01:56 GMT
expires: Mon, 23 Oct 2023 03:01:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 75083
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
p.trvdp.com/pixel.gif?e=8Ol0Gos/dn15MCZ8bbdBW+8Xp2Ck1KD11L9AAKufjmrKYU3MsizOFwa92lz9oxlnlqcFPA+B0l+DMVbciiyLbaGSIAPTMqXqW0FnmtrLoHI9dGDw9NuooF7bMNnupL2t802f0qFtT4kQ4MzsNGn4xkHeEHI4/wAJhpgfvcUD/PrbCssTHAQMFf9VT/pvZlQ+Pi/ZB8YD1a6Q2hO1CpuedowEGGcIO/A3rVCZKsgu472WemEAK8cKAtL+W7D84AuF
100.24.214.75204 No Content 0 B URL HTTP/2 p.trvdp.com/pixel.gif?e=8Ol0Gos/dn15MCZ8bbdBW+8Xp2Ck1KD11L9AAKufjmrKYU3MsizOFwa92lz9oxlnlqcFPA+B0l+DMVbciiyLbaGSIAPTMqXqW0FnmtrLoHI9dGDw9NuooF7bMNnupL2t802f0qFtT4kQ4MzsNGn4xkHeEHI4/wAJhpgfvcUD/PrbCssTHAQMFf9VT/pvZlQ+Pi/ZB8YD1a6Q2hO1CpuedowEGGcIO/A3rVCZKsgu472WemEAK8cKAtL+W7D84AuF
IP 100.24.214.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?e=8Ol0Gos/dn15MCZ8bbdBW+8Xp2Ck1KD11L9AAKufjmrKYU3MsizOFwa92lz9oxlnlqcFPA+B0l+DMVbciiyLbaGSIAPTMqXqW0FnmtrLoHI9dGDw9NuooF7bMNnupL2t802f0qFtT4kQ4MzsNGn4xkHeEHI4/wAJhpgfvcUD/PrbCssTHAQMFf9VT/pvZlQ+Pi/ZB8YD1a6Q2hO1CpuedowEGGcIO/A3rVCZKsgu472WemEAK8cKAtL+W7D84AuF HTTP/1.1
Host: p.trvdp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 23:53:19 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/4mrVcEvSub4
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/4mrVcEvSub4
IP 142.250.74.3:0
Hash 3f3c0963d614376440dc7dff384fa486
576faee280a5d70cd8a648326487033c15eaa7d6
73350326cde5ad816a926c5d421db459afcb0b5b81fb192fb0842d47a336be86
POST /s/gts1d4/4mrVcEvSub4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
oa.openxcdn.net/esp.js
34.102.146.192200 OK 7.9 kB IP 34.102.146.192:0
File type ASCII text, with very long lines (24615), with no line terminators
Hash df5542b88bc0e368c6999754a5b9e2ba
54f17142faeb7c882fee3bf67d537733e75e43ae
b82da9703a35c5436f9e47711f5b95d5357f02d590cb39dba99355b9b073561f
GET /esp.js HTTP/1.1
Host: oa.openxcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtXsihSIn-juE2xi3HCUfoDHbh2sjzJJEUjN58pMCUFSOHS-iOTo4e134B0mYgaxb9tRoVBHb7W7nQJhTwwSuHf5g
x-goog-generation: 1622140251693895
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7927
content-encoding: gzip
x-goog-hash: crc32c=f21hYg==, md5=31VCuIvA42jGmZdUpbniug==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7927
server: UploadServer
date: Sat, 22 Oct 2022 16:03:05 GMT
expires: Sun, 22 Oct 2023 16:03:05 GMT
cache-control: no-transform
age: 114614
last-modified: Thu, 27 May 2021 18:30:51 GMT
etag: "df5542b88bc0e368c6999754a5b9e2ba"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=truvid&endpoint=us-east
2.21.206.244301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=truvid&endpoint=us-east
IP 2.21.206.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=truvid&endpoint=us-east HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=truvid&endpoint=us-east
date: Sun, 23 Oct 2022 23:53:19 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/4mrVcEvSub4
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/4mrVcEvSub4
IP 142.250.74.3:0
Hash 3f3c0963d614376440dc7dff384fa486
576faee280a5d70cd8a648326487033c15eaa7d6
73350326cde5ad816a926c5d421db459afcb0b5b81fb192fb0842d47a336be86
POST /s/gts1d4/4mrVcEvSub4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
eus.rubiconproject.com/usync.html?p=truvid&endpoint=us-east
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=truvid&endpoint=us-east
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=truvid&endpoint=us-east HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 14 Dec 2021 23:07:59 GMT
ETag: "40014-119-5d32342a551c0"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Sun, 23 Oct 2022 23:53:19 GMT
Connection: keep-alive
Vary: Accept-Encoding
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.130200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.130:0
File type ASCII text, with very long lines (3502)
Hash 6c2c63267761d8c4ba9b942285af1c7b
ab3ec2bef8bd96c11825750a32f7329ed1b8a9b7
8f8ddd950720d607c6e62539b2e0781ba3a283df23ea35d55fb6b261202d0db0
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 47476
date: Sun, 23 Oct 2022 23:53:19 GMT
expires: Sun, 23 Oct 2022 23:53:19 GMT
cache-control: private, max-age=3000
etag: "1666179788250400"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 34c65764ca99ace7b0dc8fcb23ceb2e5
8f1a8172355819057e6f20ee81dd32a2be37db37
25ee320c9359e4ef8f3eaa8e013c858ae9ba1748613bf5bf068b2f54ea8fe844
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=110933
Date: Sun, 23 Oct 2022 23:53:19 GMT
Etag: "6354db77-1d7"
Expires: Tue, 25 Oct 2022 06:42:12 GMT
Last-Modified: Sun, 23 Oct 2022 06:13:11 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sD7wXaNV-dyG3wGw503j967hdgyYw8xzg_p5Ngw-p-yFkyXXo_cbWw==
Age: 1741
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 2449a65f8583827ecb2b90348fa897c8
1de1aa5b39aa726df55e940a125d4853bfd2fab3
c2b077f7c9898de34506c5a9bea0acbb6f535a713e23431d511a49abf0ece089
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=94026
Date: Sun, 23 Oct 2022 23:53:19 GMT
Etag: "635490d7-1d7"
Expires: Tue, 25 Oct 2022 02:00:25 GMT
Last-Modified: Sun, 23 Oct 2022 00:54:47 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BJ5fx9wWhSXZ_yLSXwH7WM4cxqBnw0edeiUGp49bvAzjC0XkRM0Eqg==
Age: 3938
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 30d3f69dcdb8ca56789d09ffc93a3537
3c634c5f9e546ea9c84551af39bf271b0f97dedb
410f1b37a4475b6e3700a0ca0b4fbb1b2d79f5d73807afb016c2433a154f0d37
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134973
Date: Sun, 23 Oct 2022 23:53:19 GMT
Etag: "63552a31-1d7"
Expires: Tue, 25 Oct 2022 13:22:52 GMT
Last-Modified: Sun, 23 Oct 2022 11:49:05 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: D0qq5U9NeXJQTGNBNhpwFC_jxhwA3hKTfB_e3NHpIcEyh18rt-XSpg==
Age: 5627
prod.uidapi.com/static/js/uid2-sdk-0.0.1b.js
18.190.138.48200 OK 4.6 kB URL HTTP/2 prod.uidapi.com/static/js/uid2-sdk-0.0.1b.js
IP 18.190.138.48:0
Hash 7747e0c9f34f29a45e4d017f274eb548
7e76ff577f2173d74c208f7efda09cd670fedc58
2a79d9d59e4c07752c78abc5f0243cecb939729e0728f347671fcd3a219e9b3f
GET /static/js/uid2-sdk-0.0.1b.js HTTP/1.1
Host: prod.uidapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:19 GMT
content-type: application/javascript
content-length: 4559
accept-ranges: bytes
cache-control: public, max-age=86400
last-modified: Tue, 17 May 2022 17:30:07 GMT
vary: accept-encoding
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
142.250.74.10200 OK 888 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
IP 142.250.74.10:0
Hash 2c156a03bd40143ca4dda319826fa882
b4cfbca317f323970bde318c6765552077ef20a9
b14f54a6c1687b037ec5dd0a452343147595088b1ecfe36929a58de518556500
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 23 Oct 2022 23:53:19 GMT
date: Sun, 23 Oct 2022 23:53:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e.trvdp.com/p.gif?m=injectmacrosErr,5620,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,TW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjA=,aHR0cHM6Ly93d3cuc3Vuc3Rhci5jb20ucGgvYXJ0aWNsZS8xODAzNTA5L2NhZ2F5YW4tZGUtb3JvL29waW5pb24vaXMtbW9iaWxlLWxlZ2VuZHMtZ29vZC8=
34.204.113.169204 No Content 0 B URL HTTP/2 e.trvdp.com/p.gif?m=injectmacrosErr,5620,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,TW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjA=,aHR0cHM6Ly93d3cuc3Vuc3Rhci5jb20ucGgvYXJ0aWNsZS8xODAzNTA5L2NhZ2F5YW4tZGUtb3JvL29waW5pb24vaXMtbW9iaWxlLWxlZ2VuZHMtZ29vZC8=
IP 34.204.113.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p.gif?m=injectmacrosErr,5620,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,TW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjA=,aHR0cHM6Ly93d3cuc3Vuc3Rhci5jb20ucGgvYXJ0aWNsZS8xODAzNTA5L2NhZ2F5YW4tZGUtb3JvL29waW5pb24vaXMtbW9iaWxlLWxlZ2VuZHMtZ29vZC8= HTTP/1.1
Host: e.trvdp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 23:53:20 GMT
server: nginx/1.6.2
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d0629ba648e20f0028fdc68b5fb9de58
5d7f0090cdb659492b19d26078f187c51ca767bc
8701b4512fb854a1556e413169ffebe51c0f2c17571e14e679eaf4a84fcb7ff7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8701B4512FB854A1556E413169FFEBE51C0F2C17571E14E679EAF4A84FCB7FF7"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5530
Expires: Mon, 24 Oct 2022 01:25:30 GMT
Date: Sun, 23 Oct 2022 23:53:20 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e3ae8884dbbabf14b5929dbc3b512794
de6193115a075ac52ce357860db2e2ef9a83be8f
b28c05d5d828380e6afebdb13654fa0c2acdd6a074df31f17930612195eae656
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 47d8e82ce4bda6bdc81608323bc75573
80143e781ef3f11d181c921f595e54c2e0f68820
e25d75f2078934947f8f3143dc88b0e55b7244652a4d4882f5f848f4c5073714
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5833
Cache-Control: max-age=154242
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:20 GMT
Etag: "635574a9-139"
Expires: Tue, 25 Oct 2022 18:44:02 GMT
Last-Modified: Sun, 23 Oct 2022 17:06:49 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 313
invstatic101.creativecdn.com/encrypted-signals/encrypted-tag-g.js
34.96.70.87200 OK 1.3 kB URL HTTP/2 invstatic101.creativecdn.com/encrypted-signals/encrypted-tag-g.js
IP 34.96.70.87:0
File type ASCII text, with very long lines (1178)
Hash f5bc066f146e3dbb049aa6c86c7012e6
efa97d857c263b3b3672e2ffa630af6e2625d84b
23bc1d893ce2d2f30b68e549aa3cb991c2a7b7dd87e3df67d9fbb6a8dd113bf8
GET /encrypted-signals/encrypted-tag-g.js HTTP/1.1
Host: invstatic101.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv5CyoB1JKvJeBPbxmj8fFTkT2Rfn8eZqfYD-wgGWFMRL6Io4BX2Hd54_3rblaFKJXmWeMeE56I41IpscdsCJhB5H34APcA
x-goog-generation: 1659113709880056
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1258
x-goog-hash: crc32c=6QojvA==, md5=9bwGbxRuPbsEmqbIbHAS5g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1258
server: UploadServer
via: 1.1 google
date: Sun, 23 Oct 2022 22:55:55 GMT
expires: Sun, 23 Oct 2022 23:55:55 GMT
cache-control: public, max-age=3600
age: 3445
last-modified: Fri, 29 Jul 2022 16:55:09 GMT
etag: "f5bc066f146e3dbb049aa6c86c7012e6"
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 438c144f788c4dbd86bcd21b82327c82
528219a165de22c7850e7e5532118508ae8cf4ed
a8260da7801366796fb90e21b13e0d4ba2887ee19b117485f8aeca803e2d2f14
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Thu, 27 Oct 2022 20:09:27 GMT
ETag: "528219a165de22c7850e7e5532118508ae8cf4ed"
Last-Modified: Sun, 23 Oct 2022 20:09:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 508
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75ee643cdaa9b4ff-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5c8b4a1844e77b28d7cc337242b84f2b
525a7386c1ccc34300826458caa1e57803d7f8aa
d7b8f7777a161571f7ecf1684acbffa1f7293590f345c6dafbc4fd74d0bb47e7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2391
Cache-Control: max-age=121996
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:20 GMT
Etag: "63550425-117"
Expires: Tue, 25 Oct 2022 09:46:36 GMT
Last-Modified: Sun, 23 Oct 2022 09:06:45 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
s0.2mdn.net/instream/video/client.js
142.250.74.70200 OK 17 kB URL HTTP/2 s0.2mdn.net/instream/video/client.js
IP 142.250.74.70:0
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Sun, 23 Oct 2022 23:53:20 GMT
expires: Sun, 23 Oct 2022 23:53:20 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 9.5 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18097)
Hash aeaa0bbf44a86e731521fd1a5014fe73
f1e5097bada39ecc55f2653c8026b4a48f25d34f
7aba7fe9165ef68e0c5828677611e7e1c302e2ad21a9b112f623389282b8ab5c
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?p=truvid&endpoint=us-east
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Mon, 17 Oct 2022 18:37:59 GMT
Content-Encoding: gzip
Content-Length: 9456
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=55632
Expires: Mon, 24 Oct 2022 15:20:32 GMT
Date: Sun, 23 Oct 2022 23:53:20 GMT
Connection: keep-alive
Vary: Accept-Encoding
static.criteo.net/js/ld/publishertag.ids.js
178.250.2.130200 OK 13 kB URL HTTP/2 static.criteo.net/js/ld/publishertag.ids.js
IP 178.250.2.130:0
Hash 781ceabad95a039c9179d98dd352f82d
58efd25c44a0bf867942b00b282e655b2de9a5e2
aabeb3a63f3072d3d94d3205c73f8ae362774ff2a544662c96876ebc530058f2
GET /js/ld/publishertag.ids.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: text/javascript
last-modified: Sat, 01 Oct 2022 02:55:29 GMT
etag: W/"6337ac21-9c1f"
expires: Mon, 24 Oct 2022 23:53:20 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
oajs.openx.net/esp?url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&rid=esp
34.120.135.53200 OK 2 B URL HTTP/2 oajs.openx.net/esp?url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&rid=esp
IP 34.120.135.53:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /esp?url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&rid=esp HTTP/1.1
Host: oajs.openx.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-powered-by: Express
access-control-allow-origin: https://www.sunstar.com.ph
vary: Origin
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
content-length: 2
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
date: Sun, 23 Oct 2022 23:53:20 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
match.adsrvr.org/track/rid?ttd_pid=pubmatic&fmt=json
3.33.220.150200 OK 63 B URL HTTP/2 match.adsrvr.org/track/rid?ttd_pid=pubmatic&fmt=json
IP 3.33.220.150:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 658fa5c09f0017278f338ae790128174
df095e9dc5445d4b09a21974d6849eccfe5161c5
7770d1aa447bcc3a7034173c9cb30b6c842ae6c4897271689afe8f3ff687b142
GET /track/rid?ttd_pid=pubmatic&fmt=json HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: application/json; charset=utf-8
content-length: 63
cache-control: private
expires: Tue, 22 Nov 2022 23:53:20 GMT
vary: Origin
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Content-Length, Content-Encoding, Vary, Cache-Control, Accept
x-aspnet-version: 4.0.30319
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e3ae8884dbbabf14b5929dbc3b512794
de6193115a075ac52ce357860db2e2ef9a83be8f
b28c05d5d828380e6afebdb13654fa0c2acdd6a074df31f17930612195eae656
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
id.sharedid.org/lib/pubcid.min.js
34.208.243.53200 OK 732 B URL HTTP/2 id.sharedid.org/lib/pubcid.min.js
IP 34.208.243.53:0
File type ASCII text, with very long lines (693)
Hash e6147523b7396aad764a752dfc6be7f7
22b6719bfb0fe1aaad21fb3511f130e83839ab56
a5230196df9a4e9f6382c504668862efc8e25c1ec093c7dc997fbedb4b3ec54e
GET /lib/pubcid.min.js HTTP/1.1
Host: id.sharedid.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: application/javascript
content-length: 732
accept-ranges: bytes
cache-control: public, max-age=86400
last-modified: Sun, 23 Oct 2022 06:33:51 GMT
vary: accept-encoding
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.prebid.123.js
178.250.2.130200 OK 30 kB URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.123.js
IP 178.250.2.130:0
File type ASCII text, with very long lines (65354)
Hash 0bb42f428598b6e28682fa1f261606c9
d86335d7ca358b608747ca7ca83312d59866a3b7
bc2130275662e32df6f1e2befe4d93026685094273440ce0f311937c0edcbd57
GET /js/ld/publishertag.prebid.123.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: text/javascript
last-modified: Tue, 03 May 2022 11:21:03 GMT
etag: W/"6271101f-15b58"
expires: Mon, 24 Oct 2022 23:53:20 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
a.vdo.ai/core/v-sunstar-ph/vdo.ai.js
172.64.104.3200 OK 4.8 kB URL HTTP/2 a.vdo.ai/core/v-sunstar-ph/vdo.ai.js
IP 172.64.104.3:0
File type ASCII text, with very long lines (12394)
Hash 42305bff77a05e0a513fddb726940a65
ecbdffeda25666f12adfe6411b0c007291df5c94
cfaea89bd7fc3d24028185a2aa88e730d670ec9a591c96d01a798108a95db90e
GET /core/v-sunstar-ph/vdo.ai.js HTTP/1.1
Host: a.vdo.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
vdo-server: Tag2
cache-control: public, max-age=1800
x-varnish: 6636348 24054826
via: 1.1 varnish-v4
x-cache: HIT
cf-cache-status: EXPIRED
last-modified: Sun, 23 Oct 2022 23:49:40 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z04xZG7fAuTTFtyoVu%2FCbz439UsUxGT%2BLJwXTKexyKye%2B1%2FovU9vExeRweQiKXG4U3iVfpc5B2av%2FSoIs0gINNBvImcygCp0uQhcFtneaGMHzs5kDrvlnxHVfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75ee643d3a1176f6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cb8aad979b4e2c4a3be745780f4e3309
9ea271da17d6a4e586631b103895a57481e13465
f2c75509874f180e3aa2269854350264f9bfc970c9c0165bb6705b90d2a7696c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F2C75509874F180E3AA2269854350264F9BFC970C9C0165BB6705B90D2A7696C"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4103
Expires: Mon, 24 Oct 2022 01:01:43 GMT
Date: Sun, 23 Oct 2022 23:53:20 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5c8b4a1844e77b28d7cc337242b84f2b
525a7386c1ccc34300826458caa1e57803d7f8aa
d7b8f7777a161571f7ecf1684acbffa1f7293590f345c6dafbc4fd74d0bb47e7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1876
Cache-Control: max-age=121481
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:20 GMT
Etag: "63550425-117"
Expires: Tue, 25 Oct 2022 09:38:01 GMT
Last-Modified: Sun, 23 Oct 2022 09:06:45 GMT
Server: ECS (amb/6B8D)
X-Cache: HIT
Content-Length: 279
cnt.trvdp.com/js/1273/5620.js
143.204.55.46304 Not Modified 0 B URL HTTP/2 cnt.trvdp.com/js/1273/5620.js
IP 143.204.55.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/1273/5620.js HTTP/1.1
Host: cnt.trvdp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Tue, 12 Oct 2021 09:44:40 GMT
If-None-Match: W/"062653e50bad07fbc15c5dc16e4d3e5a"
TE: trailers
HTTP/2 304 Not Modified
date: Sun, 23 Oct 2022 23:53:20 GMT
etag: W/"062653e50bad07fbc15c5dc16e4d3e5a"
server: AmazonS3
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J2qu2kYVQtjYIWC5fWz2PDfF5uKLFEd6RGh9FVaKwRT7PRAYHpN4fQ==
age: 10260869
X-Firefox-Spdy: h2
id5-sync.com/api/esp/increment?counter=no-config
141.95.98.64204 0 B URL HTTP/1.1 id5-sync.com/api/esp/increment?counter=no-config
IP 141.95.98.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/esp/increment?counter=no-config HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
date: Sun, 23 Oct 2022 23:53:19 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
bcp.crwdcntrl.net/6/map
52.16.152.32200 OK 20 B IP 52.16.152.32:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f8089d3c3cfdce3daf1e6aca3ead0fca
4dd3088b06555895c671a8b1146152c4ec0dc275
ab612e26357285522cbacea29b729bfdff3b7342c75ee9438ab83a27ce4b297e
POST /6/map HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 50
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: application/json;charset=utf-8
content-length: 20
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.18.38
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
x-consent: absent
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/ZFN7Ya_5DP8
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/ZFN7Ya_5DP8
IP 142.250.74.3:0
Hash fa5494f47db90f25e951b0aa01608fe6
8d07247c48b9b5959a28e07be88c9a9bcb1daa2e
784266a3f7c870876e644a6793231070e1cf1bc25ef7d357a1cc257c9593e7ac
POST /s/gts1d4/ZFN7Ya_5DP8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/ZFN7Ya_5DP8
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/ZFN7Ya_5DP8
IP 142.250.74.3:0
Hash fa5494f47db90f25e951b0aa01608fe6
8d07247c48b9b5959a28e07be88c9a9bcb1daa2e
784266a3f7c870876e644a6793231070e1cf1bc25ef7d357a1cc257c9593e7ac
POST /s/gts1d4/ZFN7Ya_5DP8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ffbfbd6d5d1e91af3c02313339eed0d0
df6457b655ac278fe32f3015bba4cff22dae5b2d
1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ffbfbd6d5d1e91af3c02313339eed0d0
df6457b655ac278fe32f3015bba4cff22dae5b2d
1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tags.crwdcntrl.net/lt/c/16589/sync.min.js
54.230.111.122200 OK 9.7 kB URL HTTP/2 tags.crwdcntrl.net/lt/c/16589/sync.min.js
IP 54.230.111.122:0
Hash edcd4250afef8aa94641da4015085825
deb0e9e080665bd6acd27d0f5f268ff91b12736b
09bddba68ded76f8913e43d39ba5df33033291aa1bcfcb85dce9903d06b30b64
GET /lt/c/16589/sync.min.js HTTP/1.1
Host: tags.crwdcntrl.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Fri, 21 Oct 2022 16:32:12 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sun, 23 Oct 2022 16:35:07 GMT
cache-control: max-age: 86400
etag: W/"a576cab5f14785e90bbbb12b6ee95a83"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: a2sJ_UD_MELIEURb_jxyYVY1-mZGeCXos6M1XrzWjQ4-0Wen4igSrQ==
age: 26294
X-Firefox-Spdy: h2
esp.rtbhouse.com/encrypt
35.190.39.111200 OK 2 B IP 35.190.39.111:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /encrypt HTTP/1.1
Host: esp.rtbhouse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin
access-control-allow-methods: POST, GET
access-control-max-age: 600
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-headers: content-type
content-type: text/plain; charset=utf-8
x-cloud-trace-context: cb7d92006e8f4c1df09c57ba003605dc
date: Sun, 23 Oct 2022 23:53:20 GMT
server: Google Frontend
content-length: 2
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/images/icons/material/system/2x/settings_grey600_24dp.png
142.250.74.163200 OK 604 B URL HTTP/2 www.gstatic.com/images/icons/material/system/2x/settings_grey600_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 7bd42e5a35b5fb3ff852d6ea9191ca83
8a141eb392a05a2dea3dcd83b97940ef70a81ebc
5c4a713ee4250851232be9f9f68d41586be39b299528cfc7266e0b0e7e582e1b
GET /images/icons/material/system/2x/settings_grey600_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 23 Oct 2022 20:44:02 GMT
expires: Mon, 23 Oct 2023 20:44:02 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 11358
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/fed584b8ce81e04d8838584f2ea59ee6.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.163200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/fed584b8ce81e04d8838584f2ea59ee6.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.163:0
File type ASCII text, with very long lines (1792)
Hash 77c7d768b349d525b71cbc5cf587ae6d
0dc6fe965cdf9f506b50e64b8dfb19883e623239
c33f0c2616a6066fddcde73210ed0d448dac8b4149f3c7c2247c68faaff64128
GET /mysidia/fed584b8ce81e04d8838584f2ea59ee6.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 13787
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 23:57:50 GMT
expires: Tue, 17 Jan 2023 23:57:50 GMT
cache-control: public, max-age=7776000
age: 345330
last-modified: Wed, 12 Oct 2022 23:46:29 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
esp.rtbhouse.com/encrypt
35.190.39.111200 OK 285 B IP 35.190.39.111:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 20abba1deaed0e332aee371f07cab894
cdb91864003f9776b59250ca7d3e599241d5e087
f98db99b86ae6215971c2f2cf6132a4c34bda7e17626babfd4445cfc948f80f6
POST /encrypt HTTP/1.1
Host: esp.rtbhouse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Content-Type: application/json
Origin: https://www.sunstar.com.ph
Content-Length: 211
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-credentials: true
x-cloud-trace-context: a866fcd8d8586efc4c395278131ee20d
date: Sun, 23 Oct 2022 23:53:20 GMT
server: Google Frontend
content-length: 285
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/css/general-styles.min.css?v=0.33
192.124.249.104200 OK 2.0 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/css/general-styles.min.css?v=0.33
IP 192.124.249.104:0
File type ASCII text, with very long lines (3284)
Hash 254ec003b0cdab2d6949c8edac9045a8
4953d721f41ef9a8559d180a1640318ddf0f19e5
c08cc67c42920425a1b3d9540c8078e6778656e18987b2bb63e797c42c3bb36e
GET /theme_sunstar/css/general-styles.min.css?v=0.33 HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:18 GMT
content-type: text/css
x-sucuri-id: 19004
last-modified: Tue, 04 Oct 2022 11:51:00 GMT
etag: W/"633c1e24-cc5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80826ca6c4fd6005aeacf5a03c8d42e8.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: hZx_2qlDBMasiNKSyIOvt3MNvWnFBH79UVu4-DInlPrbBuRLQxkAYg==
age: 1631330
x-sucuri-cache: HIT
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/23/389842.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 945 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/23/389842.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 30x18, components 3\012- data
Hash 308651fb16da4204985018af587d60e1
1e1fe8ca2b3ab9f48ab50e9059370b3398bf3591
4e581f821c5f39f8988ede8e3d3dc2dcd1f667415600c0f929d919d79b3999a3
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/23/389842.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:17 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1242
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 61754
last-modified: Sun, 23 Oct 2022 06:44:03 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RSFOtUQ81Ch4CyzaMSIMCWJB7Xd65w8FHdC78GckWDQgrK8RnfbmEwjN3Z7zrXtZ8rVe0Ot2cqc3dGMshReE1dRyL756T4lBZEb6nswJ45iZTk4EoqE%2FYAz6x2XTonu1y8fxhlh3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee642a4e84b50f-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ffbfbd6d5d1e91af3c02313339eed0d0
df6457b655ac278fe32f3015bba4cff22dae5b2d
1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/ZFN7Ya_5DP8
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/ZFN7Ya_5DP8
IP 142.250.74.3:0
Hash fa5494f47db90f25e951b0aa01608fe6
8d07247c48b9b5959a28e07be88c9a9bcb1daa2e
784266a3f7c870876e644a6793231070e1cf1bc25ef7d357a1cc257c9593e7ac
POST /s/gts1d4/ZFN7Ya_5DP8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gum.criteo.com/syncframe?origin=publishertagids&topUrl=www.sunstar.com.ph
178.250.0.157200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?origin=publishertagids&topUrl=www.sunstar.com.ph
IP 178.250.0.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash a107c5e83c054067ba03b192280b8fc9
1f3bd59146cb5ffbca71eb390f5b736c53100e64
3cc08da3c1aa4a009c90f0f29b9f8391e43f2cfdd3282c77d4a5b0191283f400
GET /syncframe?origin=publishertagids&topUrl=www.sunstar.com.ph HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=ed22f2dd-9b75-4802-9373-d456cc36a55d; expires=Fri, 17 Nov 2023 23:53:20 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 642260
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 30df748b306a94c51b8a55c480430192
e7688be895be2144709a5a59bc8be2b246345d7f
c6f280b9542c0ec739bfc1e2adf5759a3670c27e585a6bda9f54824d09b84cb0
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "C6F280B9542C0EC739BFC1E2ADF5759A3670C27E585A6BDA9F54824D09B84CB0"
Last-Modified: Sun, 23 Oct 2022 18:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=1478
Expires: Mon, 24 Oct 2022 00:17:58 GMT
Date: Sun, 23 Oct 2022 23:53:20 GMT
Connection: keep-alive
pixel-us-east.rubiconproject.com/exchange/sync.php?p=truvid
8.43.72.97204 No Content 0 B URL HTTP/1.1 pixel-us-east.rubiconproject.com/exchange/sync.php?p=truvid
IP 8.43.72.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=truvid HTTP/1.1
Host: pixel-us-east.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 636a4452fa95aad32992c06634d4089f
Content-Type: image/gif
eu.sportradarserving.com/content/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA/
3.121.191.244302 Moved Temporarily 0 B URL HTTP/1.1 eu.sportradarserving.com/content/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA/
IP 3.121.191.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /content/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA/ HTTP/1.1
Host: eu.sportradarserving.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 23 Oct 2022 23:53:20 GMT
Location: https://eu.sportradarserving.com/ul_cb/content/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA/
Set-Cookie: zuuid=06e501ae-0b68-4907-80b1-4e22c7532eab; path=/; expires=Mon, 23-Oct-2023 23:53:20 GMT; domain=sportradarserving.com; samesite=none; secure
c=1666569200; path=/; expires=Mon, 23-Oct-2023 23:53:20 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1666569200; path=/; expires=Mon, 23-Oct-2023 23:53:20 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 293aef73ed556f6b68b055473832cae2
946a41f06a31e4ca37f81d900616be13ef43a749
1d788765b519775588fc59b82a19b3d1d689f9a8a21b7551573d4f7d31108bd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5631
Cache-Control: max-age=103634
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:21 GMT
Etag: "6354afc4-138"
Expires: Tue, 25 Oct 2022 04:40:35 GMT
Last-Modified: Sun, 23 Oct 2022 03:06:44 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 312
eu.sportradarserving.com/ul_cb/content/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA/
3.121.191.244200 OK 3.5 kB URL HTTP/1.1 eu.sportradarserving.com/ul_cb/content/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA/
IP 3.121.191.244:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (7674)
Hash 9035af959d198f6a3e4d4a61b27a9c67
30bc445bda92b24534580d6b32950fad6f289cba
632cc2073e0c7c736be14f2a9996a339eb0793b58c8f26beaa44e5cc24b55afd
GET /ul_cb/content/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA/ HTTP/1.1
Host: eu.sportradarserving.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Connection: keep-alive
Cookie: zuuid=06e501ae-0b68-4907-80b1-4e22c7532eab; c=1666569200; zuuid_lu=1666569200
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Sun, 23 Oct 2022 23:53:20 GMT
Set-Cookie: zuuid=06e501ae-0b68-4907-80b1-4e22c7532eab; path=/; expires=Mon, 23-Oct-2023 23:53:20 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1666569200; path=/; expires=Mon, 23-Oct-2023 23:53:20 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Mon, 23-Oct-2023 23:53:20 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1666569200; path=/; expires=Mon, 23-Oct-2023 23:53:20 GMT; domain=sportradarserving.com; samesite=none; secure
pvc2=V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA,T3cRMeP_ERiIzlulIpmbuA,Cj92kdK9nT67kfeTfOeeUg,PbZcFjawvb6Zn23m-08Nsg,Cj92kdK9nT67kfeTfOeeUg,YmyTZ1vFo29tL1j9wmDaaA,Cj92kdK9nT67kfeTfOeeUg,X3gLSgRoVrUKVlWmoTRpsw,Cj92kdK9nT67kfeTfOeeUg,qzKrtqdfkfQac9oiMO5Nog,Cj92kdK9nT67kfeTfOeeUg,XJJol6znw-dErtVqydBD_w,Cj92kdK9nT67kfeTfOeeUg,jbubDwFAfY_SSH8CIpXHcA,Cj92kdK9nT67kfeTfOeeUg,MMNUJJAqLASCtIIDumAhJA,Cj92kdK9nT67kfeTfOeeUg,ffNVJRu0DPmJkcU1NVtipw,Cj92kdK9nT67kfeTfOeeUg; path=/; expires=Mon, 23-Oct-2023 23:53:20 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 3459
Connection: keep-alive
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:20 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=Tq14z180M0RITmhlJTJCZkMwOUJGQlhaMUN2czJ6Tng3MmNiSWpZM0o2cDB0bWo0ciUyRk55Z0hHUCUyQlJyUzNQWGpENENiUDVt; expires=Fri, 17 Nov 2023 23:53:21 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 263234
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c13213af96fc5bafa37593a161bd96d4
2a292020f5a4fcd04444d1ce6a1b393bafff82c9
d5cb2d8846a89b70e0d87a7eb516efdcd739ea12b243b0bca12acf4eeb7cd2a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1201
Cache-Control: max-age=120450
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:21 GMT
Etag: "635502c2-139"
Expires: Tue, 25 Oct 2022 09:20:51 GMT
Last-Modified: Sun, 23 Oct 2022 09:00:50 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 313
analytics.vdo.ai/logger
172.64.105.3200 OK 5.2 kB IP 172.64.105.3:0
Hash 164e24b82fdaf959f43bcfa83dc504e2
0221af783e2317298e53790a864eccf825d44ede
e7623b2094c1e0ca45d6931fe41194cf825b07e064554ded31371d5f1c7c0b34
POST /logger HTTP/1.1
Host: analytics.vdo.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 203
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: text/html
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZeLJ5eqYhP3403Av%2FnvgakANK%2BNVMyMDbNnFX59AeEPTLoh44XfiilC%2BHtzBZMmEq7kBIpAA0PAyj199A1KEGOqZdXsh1wvrIxmW4di4N35poFJ6U06b8Hhy4Q%2FCV%2B13vi61"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75ee643fdee67711-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ssb-euw1.smartadserver.com/api/imp?callerid=3&rtb=1&rtbnid=2060&rtbbid=7613540042823420221&rtbh=d036b0d6828380e3675a8b05df4a510be39f2a2e&rtblt=638021659998860571&rtbet=0&rtbptnid=31&cftgid=67c5a96c05a1
89.149.192.67200 OK 0 B URL HTTP/1.1 ssb-euw1.smartadserver.com/api/imp?callerid=3&rtb=1&rtbnid=2060&rtbbid=7613540042823420221&rtbh=d036b0d6828380e3675a8b05df4a510be39f2a2e&rtblt=638021659998860571&rtbet=0&rtbptnid=31&cftgid=67c5a96c05a1
IP 89.149.192.67:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/imp?callerid=3&rtb=1&rtbnid=2060&rtbbid=7613540042823420221&rtbh=d036b0d6828380e3675a8b05df4a510be39f2a2e&rtblt=638021659998860571&rtbet=0&rtbptnid=31&cftgid=67c5a96c05a1 HTTP/1.1
Host: ssb-euw1.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
date: Sun, 23 Oct 2022 23:53:20 GMT
ssb-eu-secure-11.smartadserver.com/api/event?bid=1&callerid=3&bidh=d036b0d6828380e3675a8b05df4a510be39f2a2e&bidid=7613540042823420221&bidenv=0&bidtime=638021659998860571&bidnwid=2060&actionid=70
81.17.55.163200 OK 0 B URL HTTP/1.1 ssb-eu-secure-11.smartadserver.com/api/event?bid=1&callerid=3&bidh=d036b0d6828380e3675a8b05df4a510be39f2a2e&bidid=7613540042823420221&bidenv=0&bidtime=638021659998860571&bidnwid=2060&actionid=70
IP 81.17.55.163:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/event?bid=1&callerid=3&bidh=d036b0d6828380e3675a8b05df4a510be39f2a2e&bidid=7613540042823420221&bidenv=0&bidtime=638021659998860571&bidnwid=2060&actionid=70 HTTP/1.1
Host: ssb-eu-secure-11.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
date: Sun, 23 Oct 2022 23:53:21 GMT
go.trvdp.com/init/5620.js
143.204.55.18304 Not Modified 0 B URL HTTP/2 go.trvdp.com/init/5620.js
IP 143.204.55.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /init/5620.js HTTP/1.1
Host: go.trvdp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Sun, 01 May 2022 12:05:47 GMT
If-None-Match: "80c8685af100d8c9c57f97f193cc6947"
TE: trailers
HTTP/2 304 Not Modified
date: Sun, 29 May 2022 06:31:12 GMT
last-modified: Sun, 01 May 2022 12:05:47 GMT
etag: "80c8685af100d8c9c57f97f193cc6947"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lTIkNI03dreQbtlGenwcqBmh3kAH7tTO5qfKOXGsrTSlJlavXKSi4A==
age: 12763330
X-Firefox-Spdy: h2
eu.sportradarserving.com/youronlinechoices_icon.png
3.121.191.244200 OK 1.3 kB URL HTTP/1.1 eu.sportradarserving.com/youronlinechoices_icon.png
IP 3.121.191.244:0
File type PNG image data, 19 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 06500e222cb4c36f129c357ffef7ad59
1bd74219c7467e46782c9f6d13797b7253e58d4b
30c065c5189582302f1fc91edd7f8c99956f6f8bd6c4b242081f41ab1c772b08
GET /youronlinechoices_icon.png HTTP/1.1
Host: eu.sportradarserving.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.sportradarserving.com/ul_cb/content/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA/
Cookie: zuuid=06e501ae-0b68-4907-80b1-4e22c7532eab; c=1666569200; zuuid_lu=1666569200; zuuid_k=1; zuuid_k_lu=1666569200; pvc2=V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA,T3cRMeP_ERiIzlulIpmbuA,Cj92kdK9nT67kfeTfOeeUg,PbZcFjawvb6Zn23m-08Nsg,Cj92kdK9nT67kfeTfOeeUg,YmyTZ1vFo29tL1j9wmDaaA,Cj92kdK9nT67kfeTfOeeUg,X3gLSgRoVrUKVlWmoTRpsw,Cj92kdK9nT67kfeTfOeeUg,qzKrtqdfkfQac9oiMO5Nog,Cj92kdK9nT67kfeTfOeeUg,XJJol6znw-dErtVqydBD_w,Cj92kdK9nT67kfeTfOeeUg,jbubDwFAfY_SSH8CIpXHcA,Cj92kdK9nT67kfeTfOeeUg,MMNUJJAqLASCtIIDumAhJA,Cj92kdK9nT67kfeTfOeeUg,ffNVJRu0DPmJkcU1NVtipw,Cj92kdK9nT67kfeTfOeeUg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Date: Sun, 23 Oct 2022 23:53:21 GMT
ETag: 16662573541319
Last-Modified: Thu, 20 Oct 2022 09:15:54 GMT
Content-Length: 1319
Connection: keep-alive
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssLmKLcDeevEmXz89aAAAewzC9823mIyU6D9vz-88oYSNxi3rX2O2htpOK_BHZAU2X2vspEW9H2ld22lDUSu8XUvbPtox9KjqkRH1gUm2ODG0UXJDnUfRzydnQvsmgFPcLVzixQTg6FCm5R6aFQoHJc9uyNPNmpK5vjilyXjhit2NXqVWTPf7QNt_TlPJGzCBAjZA2IbIw2PSMWgIvGUiyiNbQkQ2NSslBtl5Yd2iWL7PDXYyGCgAKcv1jygWzeeCtf0DXEkluun3Z7tN7a7TRj2eJTufe4Il8WRtSZbwrqhE4Rn54UYDgqoJw9u-kMbK3-y4CFpWrFFEndFxyqGAF3aTrx0-zCECv5K7vcbzUElWlmYWJoWzMjO5eaS5JfCTXC9YeBcw6NvhZD6JnoN2ZtmyxlcmNLTX3dMmCvu_9D4T7kfbj4JLeFGiOz5HEQFwFtlM6qY_Lcfaa2_9D8pMx2tdtGerOMqdYJDYvmzDGWW_RELd-JXr0tsB-pdeq-UNWKc0zi4zpQgPvnYBX8w0PzYvSDDOziNN9WtGIOBeWfWUDq3iy5ZQSvl7q1U7ssT17r2_gSWfBiSdDHcWiJMdMljxAJw6gK0hznOt_4ZHcCUGA9o6VvrjD1bdbwSrd4qV-0n7zn2NewH4MNajOdqQuW7u_CiH0NApdkOngQvqklVyjCW-kSkeB5syzRCk_b0sjOH87fHWB7XdSKtVwQFVWQiWyXYhow6wSp7LgZTIPN0PVtgmFBvXOUhisEQ3kFgmZAS5KFHfLBw9IQDB3tFFGmxKJuoWP2iE6BugrQnaK9df3TVdIXl7KTJL_9L3vjRet73e7zywwo0OcuuTzLqMAmcZ8dBvZIR0iKX2MGPCGDQCtRfz8-gbkHfnrTdxguqBYlCidRo1LQ8iYBybnsCOKBDd9X4m1moUafifZI9IIYA7aGc6qB-AL5sfayZgKt7JoN7Je1GqZcaWs7KnYbvlpimXzGKhjMcdOpVHLPHEKwQ-uNjZK8mzGu2wSz1lx3citnMJdgP-vaxA_B2xLBoGdP9d2ghWT5zsIWasR9-vBd4HdKf3UIVWaqx-CIbcvpZpMukOzk6jOGR64jq7sB6leYt8eVgIo0m8KXaV6B_87IVYs1fWIKaIVLlnkVp7sDKOhRFxvtd101kC4tH5nxIS2g6rzBZRooh9s&sai=AMfl-YQqKNJA-LjwsdlBv6dxmDx8G2P_BMBLbXmEu1AT3KaJHhWBQ_Ldr3Qfdq2x59MEs878RWGe5sEvqRytd8d1e-ML9a5pvzHCkl-0L97GhQKfDq8uv6tDg6L_iA_6O_gXVGVjpeZjkakZER-zvS7L&sig=Cg0ArKJSzNJXHdEdzr5oEAE&cid=CAQSPwDq26N9CGEVSJ5uNlySXqL0JpRglAdi21wZ4jxwciArNksXG_T2kKwcn2qeWji4nOlUcUje7oYhKPkz-13VzxgBIA4&id=lidar2&mcvt=1308&p=748,279,998,579&mtos=0,1308,1308,1308,1308&tos=0,1308,0,0,0&v=20221019&bin=7&avms=nio&bs=0,0&mc=0.76&if=1&vu=1&app=0&itpl=2&adk=2756445904&rs=4&la=0&cr=0&vs=4&r=v&rst=1666569199220&rpt=801&isd=0&lsd=0&met=mue&wmsd=0
142.250.74.34200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssLmKLcDeevEmXz89aAAAewzC9823mIyU6D9vz-88oYSNxi3rX2O2htpOK_BHZAU2X2vspEW9H2ld22lDUSu8XUvbPtox9KjqkRH1gUm2ODG0UXJDnUfRzydnQvsmgFPcLVzixQTg6FCm5R6aFQoHJc9uyNPNmpK5vjilyXjhit2NXqVWTPf7QNt_TlPJGzCBAjZA2IbIw2PSMWgIvGUiyiNbQkQ2NSslBtl5Yd2iWL7PDXYyGCgAKcv1jygWzeeCtf0DXEkluun3Z7tN7a7TRj2eJTufe4Il8WRtSZbwrqhE4Rn54UYDgqoJw9u-kMbK3-y4CFpWrFFEndFxyqGAF3aTrx0-zCECv5K7vcbzUElWlmYWJoWzMjO5eaS5JfCTXC9YeBcw6NvhZD6JnoN2ZtmyxlcmNLTX3dMmCvu_9D4T7kfbj4JLeFGiOz5HEQFwFtlM6qY_Lcfaa2_9D8pMx2tdtGerOMqdYJDYvmzDGWW_RELd-JXr0tsB-pdeq-UNWKc0zi4zpQgPvnYBX8w0PzYvSDDOziNN9WtGIOBeWfWUDq3iy5ZQSvl7q1U7ssT17r2_gSWfBiSdDHcWiJMdMljxAJw6gK0hznOt_4ZHcCUGA9o6VvrjD1bdbwSrd4qV-0n7zn2NewH4MNajOdqQuW7u_CiH0NApdkOngQvqklVyjCW-kSkeB5syzRCk_b0sjOH87fHWB7XdSKtVwQFVWQiWyXYhow6wSp7LgZTIPN0PVtgmFBvXOUhisEQ3kFgmZAS5KFHfLBw9IQDB3tFFGmxKJuoWP2iE6BugrQnaK9df3TVdIXl7KTJL_9L3vjRet73e7zywwo0OcuuTzLqMAmcZ8dBvZIR0iKX2MGPCGDQCtRfz8-gbkHfnrTdxguqBYlCidRo1LQ8iYBybnsCOKBDd9X4m1moUafifZI9IIYA7aGc6qB-AL5sfayZgKt7JoN7Je1GqZcaWs7KnYbvlpimXzGKhjMcdOpVHLPHEKwQ-uNjZK8mzGu2wSz1lx3citnMJdgP-vaxA_B2xLBoGdP9d2ghWT5zsIWasR9-vBd4HdKf3UIVWaqx-CIbcvpZpMukOzk6jOGR64jq7sB6leYt8eVgIo0m8KXaV6B_87IVYs1fWIKaIVLlnkVp7sDKOhRFxvtd101kC4tH5nxIS2g6rzBZRooh9s&sai=AMfl-YQqKNJA-LjwsdlBv6dxmDx8G2P_BMBLbXmEu1AT3KaJHhWBQ_Ldr3Qfdq2x59MEs878RWGe5sEvqRytd8d1e-ML9a5pvzHCkl-0L97GhQKfDq8uv6tDg6L_iA_6O_gXVGVjpeZjkakZER-zvS7L&sig=Cg0ArKJSzNJXHdEdzr5oEAE&cid=CAQSPwDq26N9CGEVSJ5uNlySXqL0JpRglAdi21wZ4jxwciArNksXG_T2kKwcn2qeWji4nOlUcUje7oYhKPkz-13VzxgBIA4&id=lidar2&mcvt=1308&p=748,279,998,579&mtos=0,1308,1308,1308,1308&tos=0,1308,0,0,0&v=20221019&bin=7&avms=nio&bs=0,0&mc=0.76&if=1&vu=1&app=0&itpl=2&adk=2756445904&rs=4&la=0&cr=0&vs=4&r=v&rst=1666569199220&rpt=801&isd=0&lsd=0&met=mue&wmsd=0
IP 142.250.74.34:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjssLmKLcDeevEmXz89aAAAewzC9823mIyU6D9vz-88oYSNxi3rX2O2htpOK_BHZAU2X2vspEW9H2ld22lDUSu8XUvbPtox9KjqkRH1gUm2ODG0UXJDnUfRzydnQvsmgFPcLVzixQTg6FCm5R6aFQoHJc9uyNPNmpK5vjilyXjhit2NXqVWTPf7QNt_TlPJGzCBAjZA2IbIw2PSMWgIvGUiyiNbQkQ2NSslBtl5Yd2iWL7PDXYyGCgAKcv1jygWzeeCtf0DXEkluun3Z7tN7a7TRj2eJTufe4Il8WRtSZbwrqhE4Rn54UYDgqoJw9u-kMbK3-y4CFpWrFFEndFxyqGAF3aTrx0-zCECv5K7vcbzUElWlmYWJoWzMjO5eaS5JfCTXC9YeBcw6NvhZD6JnoN2ZtmyxlcmNLTX3dMmCvu_9D4T7kfbj4JLeFGiOz5HEQFwFtlM6qY_Lcfaa2_9D8pMx2tdtGerOMqdYJDYvmzDGWW_RELd-JXr0tsB-pdeq-UNWKc0zi4zpQgPvnYBX8w0PzYvSDDOziNN9WtGIOBeWfWUDq3iy5ZQSvl7q1U7ssT17r2_gSWfBiSdDHcWiJMdMljxAJw6gK0hznOt_4ZHcCUGA9o6VvrjD1bdbwSrd4qV-0n7zn2NewH4MNajOdqQuW7u_CiH0NApdkOngQvqklVyjCW-kSkeB5syzRCk_b0sjOH87fHWB7XdSKtVwQFVWQiWyXYhow6wSp7LgZTIPN0PVtgmFBvXOUhisEQ3kFgmZAS5KFHfLBw9IQDB3tFFGmxKJuoWP2iE6BugrQnaK9df3TVdIXl7KTJL_9L3vjRet73e7zywwo0OcuuTzLqMAmcZ8dBvZIR0iKX2MGPCGDQCtRfz8-gbkHfnrTdxguqBYlCidRo1LQ8iYBybnsCOKBDd9X4m1moUafifZI9IIYA7aGc6qB-AL5sfayZgKt7JoN7Je1GqZcaWs7KnYbvlpimXzGKhjMcdOpVHLPHEKwQ-uNjZK8mzGu2wSz1lx3citnMJdgP-vaxA_B2xLBoGdP9d2ghWT5zsIWasR9-vBd4HdKf3UIVWaqx-CIbcvpZpMukOzk6jOGR64jq7sB6leYt8eVgIo0m8KXaV6B_87IVYs1fWIKaIVLlnkVp7sDKOhRFxvtd101kC4tH5nxIS2g6rzBZRooh9s&sai=AMfl-YQqKNJA-LjwsdlBv6dxmDx8G2P_BMBLbXmEu1AT3KaJHhWBQ_Ldr3Qfdq2x59MEs878RWGe5sEvqRytd8d1e-ML9a5pvzHCkl-0L97GhQKfDq8uv6tDg6L_iA_6O_gXVGVjpeZjkakZER-zvS7L&sig=Cg0ArKJSzNJXHdEdzr5oEAE&cid=CAQSPwDq26N9CGEVSJ5uNlySXqL0JpRglAdi21wZ4jxwciArNksXG_T2kKwcn2qeWji4nOlUcUje7oYhKPkz-13VzxgBIA4&id=lidar2&mcvt=1308&p=748,279,998,579&mtos=0,1308,1308,1308,1308&tos=0,1308,0,0,0&v=20221019&bin=7&avms=nio&bs=0,0&mc=0.76&if=1&vu=1&app=0&itpl=2&adk=2756445904&rs=4&la=0&cr=0&vs=4&r=v&rst=1666569199220&rpt=801&isd=0&lsd=0&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Sun, 23 Oct 2022 23:53:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/mxoWbFvua2o
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/mxoWbFvua2o
IP 142.250.74.3:0
Hash d121230d4527bbf917d497862152c116
3b7f6b2421ed4069d257284bafbf76ec242709f5
859e54056c7ed0a440aa510a92a816c5ec58c8befc13fb955a2172e743671dbb
POST /s/gts1d4/mxoWbFvua2o HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/Bz2q3fRhivk
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Bz2q3fRhivk
IP 142.250.74.3:0
Hash 328a8f475ba9d1267371639e6b40260e
8d88f86b8358400f141f8499be8cdfca266a7589
693515666e8bb205a93abb7d3c3e4c0ed829b8451dca04ca39008afb1201d252
POST /s/gts1d4/Bz2q3fRhivk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tags.feedad.com/1/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=06e501ae-0b68-4907-80b1-4e22c7532eab
216.239.38.21200 OK 42 B URL HTTP/2 tags.feedad.com/1/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=06e501ae-0b68-4907-80b1-4e22c7532eab
IP 216.239.38.21:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /1/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=06e501ae-0b68-4907-80b1-4e22c7532eab HTTP/1.1
Host: tags.feedad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.sportradarserving.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
set-cookie: fa_8461718b-151b-486e-8ea2-a9b349f07f98_u=06e501ae-0b68-4907-80b1-4e22c7532eab; Domain=.feedad.com; Path=/; Max-Age=2592000; HttpOnly; SameSite=None; Secure
x-cloud-trace-context: c70f8dcf435032bc3413b7122307ca8b
date: Sun, 23 Oct 2022 23:53:21 GMT
server: Google Frontend
content-length: 42
expires: Sun, 23 Oct 2022 23:53:21 GMT
cache-control: private
X-Firefox-Spdy: h2
api.feedad.com/1.1/web/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=06e501ae-0b68-4907-80b1-4e22c7532eab
216.239.32.21200 OK 42 B URL HTTP/2 api.feedad.com/1.1/web/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=06e501ae-0b68-4907-80b1-4e22c7532eab
IP 216.239.32.21:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /1.1/web/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=06e501ae-0b68-4907-80b1-4e22c7532eab HTTP/1.1
Host: api.feedad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.sportradarserving.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
set-cookie: fa_8461718b-151b-486e-8ea2-a9b349f07f98_u=06e501ae-0b68-4907-80b1-4e22c7532eab; Domain=.feedad.com; Path=/; Max-Age=2592000; HttpOnly; SameSite=None; Secure
x-cloud-trace-context: ef2b03e45cc8385f5281795b0d6c05eb
date: Sun, 23 Oct 2022 23:53:21 GMT
server: Google Frontend
content-length: 42
expires: Sun, 23 Oct 2022 23:53:21 GMT
cache-control: private
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash e6644dad184878983f13f523a52d9c1c
1486a8d7ccde5e7215098b04a31cf4b75216c9ca
162d821189331abc0920557f3e61b097158c3005ed9a3ea4b5a1925fd2089104
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 23 Oct 2022 23:53:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 23 Oct 2022 22:34:53 GMT
Expires: Mon, 24 Oct 2022 22:34:53 GMT
ETag: "1486a8d7ccde5e7215098b04a31cf4b75216c9ca"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv-KrjDaRw_DAT09SfG8ffc40CV-wJFq5eSzrALcRlDalavvP_BdFaUyS8WQzN17zEdTovFgnQK_mf5_DcGiEDFAptqfAEKA2svMOFDj392GlYOt9CJ&sig=Cg0ArKJSzMT2NaEt0hh7EAE&id=lidar2&mcvt=1094&p=889,1267,890,1268&mtos=1094,1094,1094,1094,1094&tos=1094,0,0,0,0&v=20221019&bin=7&avms=nio&bs=1268,939&mc=1&vu=1&app=0&itpl=19&adk=2466855600&rs=4&la=0&cr=0&vs=4&r=v&rst=1666569200169&rpt=411&isd=0&lsd=0&met=ce&wmsd=0
142.250.74.34200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv-KrjDaRw_DAT09SfG8ffc40CV-wJFq5eSzrALcRlDalavvP_BdFaUyS8WQzN17zEdTovFgnQK_mf5_DcGiEDFAptqfAEKA2svMOFDj392GlYOt9CJ&sig=Cg0ArKJSzMT2NaEt0hh7EAE&id=lidar2&mcvt=1094&p=889,1267,890,1268&mtos=1094,1094,1094,1094,1094&tos=1094,0,0,0,0&v=20221019&bin=7&avms=nio&bs=1268,939&mc=1&vu=1&app=0&itpl=19&adk=2466855600&rs=4&la=0&cr=0&vs=4&r=v&rst=1666569200169&rpt=411&isd=0&lsd=0&met=ce&wmsd=0
IP 142.250.74.34:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsv-KrjDaRw_DAT09SfG8ffc40CV-wJFq5eSzrALcRlDalavvP_BdFaUyS8WQzN17zEdTovFgnQK_mf5_DcGiEDFAptqfAEKA2svMOFDj392GlYOt9CJ&sig=Cg0ArKJSzMT2NaEt0hh7EAE&id=lidar2&mcvt=1094&p=889,1267,890,1268&mtos=1094,1094,1094,1094,1094&tos=1094,0,0,0,0&v=20221019&bin=7&avms=nio&bs=1268,939&mc=1&vu=1&app=0&itpl=19&adk=2466855600&rs=4&la=0&cr=0&vs=4&r=v&rst=1666569200169&rpt=411&isd=0&lsd=0&met=ce&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunstar.com.ph/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Sun, 23 Oct 2022 23:53:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
142.250.74.70200 OK 38 kB URL HTTP/2 s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
IP 142.250.74.70:0
File type ASCII text, with very long lines (3095)
Hash 4f9b890a6c4cfbbfd0fb7eff98bf4dde
2db204fb0ee448842b40f84463234ea496763130
8e0d4c67a688228e1ba10b1e1dc367c078edf7e9bc35be0bd4ae8c0ce980647c
GET /879366/express_html_inpage_rendering_lib_200_276.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.sportradarserving.com
Connection: keep-alive
Referer: https://eu.sportradarserving.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 37872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 23 Oct 2022 20:22:42 GMT
expires: Mon, 24 Oct 2022 20:22:42 GMT
cache-control: public, max-age=86400
age: 12639
last-modified: Wed, 02 Mar 2022 23:07:26 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
eu.sportradarserving.com/mimp/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA
3.121.191.244200 OK 43 B URL HTTP/1.1 eu.sportradarserving.com/mimp/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA
IP 3.121.191.244:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /mimp/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA HTTP/1.1
Host: eu.sportradarserving.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.sportradarserving.com/ul_cb/content/V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA/
Cookie: zuuid=06e501ae-0b68-4907-80b1-4e22c7532eab; c=1666569200; zuuid_lu=1666569200; zuuid_k=1; zuuid_k_lu=1666569200; pvc2=V6qb4keQMJovMIjAg71nPM1hAZ9HIioEs2F3VxkdxLEuN4miVjcs9g9EQSwmZv0hKAIq5ANvqDHFBBHr81h08VBiZMV-lC1u9Gh3iNPEUsRutxIl6g_NZVG7PFrpjmlqj469iCSiCMCSsSyInNTOd4SjGwPBDXiHgTxc3R-PfDac-cI82vvHa7ZVFYXOxGslj8kN6t7iNljsqz0eYUdRqtY7puvHDc9_Y26hBpFhsQVaL7ls2gkIxOTxIgYlp3I_yeTt8TnnYYehnG6x5_3L9J3cbOw2Sy017WDut0TfdYvr9d0TXdoJ3npuGgRdbEYO6hA63aJiy6SdWp4DPoDVvK3jEiA8gu3mfFonGLRpJobXGJu-TxmdjmMPX4_k7zy8A5QTV3V7SovDV4xbjVzd-U1wbb1tJtDdusCeje0lToWDGTlgvNr6_aQS6UIeB9i6nDL1MxhAvzTfJLX7x7HHEMSwvcZU3yXzb_aRc0f7XjdI_wRKpR1RKFtdHGihkac3qdzCfIsj3Xo7hGXmX7ZgnV-ViB15hbYVTj1O526cFekEpOQkASV3c6E-wiLWXjjSnKHryOz7h45OjDIQzb5crX_AK7LDCJNyDcHj0E8aUDiLYwWlT0xZszU0pnnMIXUXKLxobBi15Jq_96YkrJN36ATcBJ_u8fs8nxq58T6h4BQK9TY_fMspPcXX9q_YJPaXaMN9FvXLVqKzeSfeKhUqYBnWOvIBosHPEDpuBN8BJXADoeapcB8NNz2244y6xSLgV8PSnDRrHfJmPmwWRF2fSoUsaRcEc-Darb4tjWLYxnM0z0v_ZLd2QbTiCDSgvVkN8tuKrNYOO2CN5zXNX1X0TGq4xlzl_2ZMvHDFFvRg59kFFj7S2N4cgcrMIsW3yYBqwdkzwbQMqjfKVNrcCVMa_W_BFOR_q1wCcll8DvRQNP1_hfTLWgw528mcpzzSeGO7VET_VTuUK5tQZu3cf8WRtBl36OrovzXE_xUqG3Ki1FAeutZ9HGCPOAqubNCyp8fzFoJ1DGEPWY_gqirT_vC9OqnkOo33SYj5OmQZX728qK1GVF4Ixy6-PhoFrLz0FPdNXiF1YKjG9ORD8yoYMpiuojrV6OrVibO8blmKvKITqD3P0cOv7soXQYrRQBi4fVHnwTlyBrDD55QTRBx_eH7YFNpj01kbH1r5JHD7uyrMDF9yqrfPvYUq7p1v-jh0cCU1jTWRo3JxtgWqKW0Tb6RQQyZyadRqyA,T3cRMeP_ERiIzlulIpmbuA,Cj92kdK9nT67kfeTfOeeUg,PbZcFjawvb6Zn23m-08Nsg,Cj92kdK9nT67kfeTfOeeUg,YmyTZ1vFo29tL1j9wmDaaA,Cj92kdK9nT67kfeTfOeeUg,X3gLSgRoVrUKVlWmoTRpsw,Cj92kdK9nT67kfeTfOeeUg,qzKrtqdfkfQac9oiMO5Nog,Cj92kdK9nT67kfeTfOeeUg,XJJol6znw-dErtVqydBD_w,Cj92kdK9nT67kfeTfOeeUg,jbubDwFAfY_SSH8CIpXHcA,Cj92kdK9nT67kfeTfOeeUg,MMNUJJAqLASCtIIDumAhJA,Cj92kdK9nT67kfeTfOeeUg,ffNVJRu0DPmJkcU1NVtipw,Cj92kdK9nT67kfeTfOeeUg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Sun, 23 Oct 2022 23:53:22 GMT
Content-Length: 43
Connection: keep-alive
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 4812221c8b2265b222a617b636acc3d9
22ba6a70e4ea0cec017866a7fdd384d7206fcd2d
1f18c512eaa65b90abbed54f7caa3ff8dd3532a13a59ed4f411099048b119cf9
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 23 Oct 2022 23:53:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 23 Oct 2022 22:25:01 GMT
Expires: Mon, 24 Oct 2022 22:25:01 GMT
ETag: "22ba6a70e4ea0cec017866a7fdd384d7206fcd2d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash de1fd7cc16bb30747dac964808ff7fe1
0290474a088508d4bad7189127d756c90ba3b104
08d79f4402b1892964f03eeedf95bb5329e5bbe5529a0d5aa8a439be65361c63
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136044
Date: Sun, 23 Oct 2022 23:53:22 GMT
Etag: "63552d0a-1d7"
Expires: Tue, 25 Oct 2022 13:40:46 GMT
Last-Modified: Sun, 23 Oct 2022 12:01:14 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: agtKHBlCTtTbnJXc1klRTtZhobl2mTMrxGVj0c-LsCkNRkPYRlGUVw==
Age: 5972
h5.vdo.ai/media_file/v-sunstar-ph/source/uploads/thumbnails/166540311194634408e71fcd7.png
15.235.42.79200 OK 51 kB URL HTTP/1.1 h5.vdo.ai/media_file/v-sunstar-ph/source/uploads/thumbnails/166540311194634408e71fcd7.png
IP 15.235.42.79:0
File type PNG image data, 320 x 180, 8-bit/color RGB, non-interlaced\012- data
Hash b4aed8ab4e97d8d7504646b27f6016d1
1cdf0fd2a85a7b2052dc018a98e20d60c07e92aa
705f0d4808144616befb30060e32acfba9fb2f92987f0ee8c177fff63973327f
GET /media_file/v-sunstar-ph/source/uploads/thumbnails/166540311194634408e71fcd7.png HTTP/1.1
Host: h5.vdo.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 23 Oct 2022 23:53:21 GMT
Content-Type: image/png
Content-Length: 50858
Last-Modified: Mon, 10 Oct 2022 11:58:33 GMT
Connection: keep-alive
ETag: "634408e9-c6aa"
Expires: Mon, 23 Oct 2023 23:53:21 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
s.trvdp.com/scripts/v5.761/ins.js
54.230.111.50200 OK 200 kB URL HTTP/2 s.trvdp.com/scripts/v5.761/ins.js
IP 54.230.111.50:0
Size 200 kB (200234 bytes)
Hash 955ca3441643b805b6c7271fb46469c2
892ea7300b5f11061f1e9c7c71df7a4642cd36ef
3757930ef098271764cf3f13732ee40036f62e610c3a273133df493216dbca64
GET /scripts/v5.761/ins.js HTTP/1.1
Host: s.trvdp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 04:01:00 GMT
last-modified: Thu, 07 Jul 2022 16:19:45 GMT
etag: W/"8286a07bcd2e7fe3f15dd3a949360e7b"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N1CBJ6I9wr2md_X5Yq3Bj39EECY97V72-xS76mSkjza5HvwNalAUzQ==
age: 4045943
X-Firefox-Spdy: h2
t.myvisualiq.net/impression_pixel?pt=i&r=3700013501&et=i&ago=212&ao=788&advt=5273038&pi=319008210&ad=516518806&si=6832873&aca=26729300&ci=173440209&chnl=-7&sz=1833&vndr=115
18.185.229.247302 Moved Temporarily 0 B URL HTTP/1.1 t.myvisualiq.net/impression_pixel?pt=i&r=3700013501&et=i&ago=212&ao=788&advt=5273038&pi=319008210&ad=516518806&si=6832873&aca=26729300&ci=173440209&chnl=-7&sz=1833&vndr=115
IP 18.185.229.247:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /impression_pixel?pt=i&r=3700013501&et=i&ago=212&ao=788&advt=5273038&pi=319008210&ad=516518806&si=6832873&aca=26729300&ci=173440209&chnl=-7&sz=1833&vndr=115 HTTP/1.1
Host: t.myvisualiq.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.sportradarserving.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 23 Oct 2022 23:53:22 GMT
Location: https://t.myvisualiq.net/ul_cb/impression_pixel?pt=i&r=3700013501&et=i&ago=212&ao=788&advt=5273038&pi=319008210&ad=516518806&si=6832873&aca=26729300&ci=173440209&chnl=-7&sz=1833&vndr=115
Set-Cookie: tuuid=ca8a6f0b-923d-44ed-8214-c990ffcd8368; path=/; expires=Tue, 22-Oct-2024 23:53:22 GMT; domain=.myvisualiq.net
c=1666569202; path=/; expires=Tue, 22-Oct-2024 23:53:22 GMT; domain=.myvisualiq.net
tuuid_lu=1666569202; path=/; expires=Tue, 22-Oct-2024 23:53:22 GMT; domain=.myvisualiq.net
Content-Length: 0
Connection: keep-alive
www.youtube.com/iframe_api
216.58.207.238200 OK 958 B URL HTTP/2 www.youtube.com/iframe_api
IP 216.58.207.238:0
File type ASCII text, with very long lines (509)
Hash 6e140140ee6810857a859604715cf658
26d964eae95d7dba957b3f24a36240afa360a446
840876e596d5a325bf6a4c18f78f6eee6c8755b0291335b9bca78e20b1cfcfe8
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sun, 23 Oct 2022 23:53:21 GMT
date: Sun, 23 Oct 2022 23:53:21 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=eDASoLvYpRc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Q4AqXrn-EtI; Domain=.youtube.com; Expires=Fri, 21-Apr-2023 23:53:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+041; expires=Tue, 22-Oct-2024 23:53:21 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=1&user_id=06e501ae-0b68-4907-80b1-4e22c7532eab
3.123.169.180302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=1&user_id=06e501ae-0b68-4907-80b1-4e22c7532eab
IP 3.123.169.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=1&user_id=06e501ae-0b68-4907-80b1-4e22c7532eab HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.sportradarserving.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 23 Oct 2022 23:53:22 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=1&user_id=06e501ae-0b68-4907-80b1-4e22c7532eab
Set-Cookie: tuuid=6ddb3f52-bf21-4043-b49b-af7e55a1203c; path=/; expires=Mon, 23-Oct-2023 23:53:22 GMT; domain=.bidswitch.net; samesite=none; secure
c=1666569202; path=/; expires=Mon, 23-Oct-2023 23:53:22 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1666569202; path=/; expires=Mon, 23-Oct-2023 23:53:22 GMT; domain=.bidswitch.net; samesite=none; secure
c=1666569202; path=/; expires=Mon, 23-Oct-2023 23:53:22 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
t.myvisualiq.net/ul_cb/impression_pixel?pt=i&r=3700013501&et=i&ago=212&ao=788&advt=5273038&pi=319008210&ad=516518806&si=6832873&aca=26729300&ci=173440209&chnl=-7&sz=1833&vndr=115
18.185.229.247200 OK 43 B URL HTTP/1.1 t.myvisualiq.net/ul_cb/impression_pixel?pt=i&r=3700013501&et=i&ago=212&ao=788&advt=5273038&pi=319008210&ad=516518806&si=6832873&aca=26729300&ci=173440209&chnl=-7&sz=1833&vndr=115
IP 18.185.229.247:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/impression_pixel?pt=i&r=3700013501&et=i&ago=212&ao=788&advt=5273038&pi=319008210&ad=516518806&si=6832873&aca=26729300&ci=173440209&chnl=-7&sz=1833&vndr=115 HTTP/1.1
Host: t.myvisualiq.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eu.sportradarserving.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
cross-origin-resource-policy: cross-origin
Date: Sun, 23 Oct 2022 23:53:22 GMT
Content-Length: 43
Connection: keep-alive
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=1&user_id=06e501ae-0b68-4907-80b1-4e22c7532eab
3.123.169.180302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=1&user_id=06e501ae-0b68-4907-80b1-4e22c7532eab
IP 3.123.169.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=1&user_id=06e501ae-0b68-4907-80b1-4e22c7532eab HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eu.sportradarserving.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 23 Oct 2022 23:53:22 GMT
Location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=06e501ae-0b68-4907-80b1-4e22c7532eab&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5216bbf73f1a70324dffb9d097c37ece
3127c6f778cdbd783fcdfa688242d04d4f65c7e7
a627763cda86c6cbbd59f9ce9c1bb84bc75ed671e7c96a8a6c08f059025c4014
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5688
Cache-Control: max-age=98676
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:22 GMT
Etag: "63549c2e-1d7"
Expires: Tue, 25 Oct 2022 03:17:58 GMT
Last-Modified: Sun, 23 Oct 2022 01:43:10 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
host.adcropper.com/BetssonGroup/Betsson/SiteOdds/NO/160x600/index.html
35.201.99.35200 OK 70 kB URL HTTP/2 host.adcropper.com/BetssonGroup/Betsson/SiteOdds/NO/160x600/index.html
IP 35.201.99.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14757)
Hash 77ef32078a828065a12548ba6bb4cb82
001e920598b439c958e8ed5fa33ff6726c8cf501
44792561a84e888ec13eb5d522c69489846b5cf1ced68f8ebda536c6069b2374
GET /BetssonGroup/Betsson/SiteOdds/NO/160x600/index.html HTTP/1.1
Host: host.adcropper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s0.2mdn.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtOOJxVcY7KR7ptrn7h8lKI2cRhnf89RuCfn_biBAa-uQOUNuVOWniStvSV6s4ds3yZAksR1c_cS4BZS_a-8Dm2O7oKyyh1
x-goog-generation: 1654761563938344
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 70241
x-goog-hash: crc32c=mTNCcw==, md5=d+8yB4qCgGWhJUi6a7TLgg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 70241
access-control-allow-origin: *
server: UploadServer
date: Sun, 23 Oct 2022 23:16:00 GMT
expires: Mon, 24 Oct 2022 00:16:00 GMT
cache-control: public, max-age=3600
age: 2242
last-modified: Thu, 09 Jun 2022 07:59:23 GMT
etag: "77ef32078a828065a12548ba6bb4cb82"
content-type: text/html
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5216bbf73f1a70324dffb9d097c37ece
3127c6f778cdbd783fcdfa688242d04d4f65c7e7
a627763cda86c6cbbd59f9ce9c1bb84bc75ed671e7c96a8a6c08f059025c4014
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5738
Cache-Control: max-age=98726
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:22 GMT
Etag: "63549c2e-1d7"
Expires: Tue, 25 Oct 2022 03:18:48 GMT
Last-Modified: Sun, 23 Oct 2022 01:43:10 GMT
Server: ECS (amb/6B8D)
X-Cache: HIT
Content-Length: 471
www.sunstar.com.ph/theme_sunstar/js/initial.min.js?v=0.33
192.124.249.104200 OK 401 B URL HTTP/2 www.sunstar.com.ph/theme_sunstar/js/initial.min.js?v=0.33
IP 192.124.249.104:0
File type ASCII text, with very long lines (720), with no line terminators
Hash b60936ce7416dd521c1069b8e37ddb3f
6c5a630769563ef5cb834527ba4c62ff9646dfa3
2f09649ef6b9e2a1499345b8528fb170713689f57a55fa37e88e16a5fe273040
GET /theme_sunstar/js/initial.min.js?v=0.33 HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1666569197.1.0.1666569197.0.0.0; _ga=GA1.3.2043095802.1666569197; _gid=GA1.3.121813829.1666569197; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=88563221-1df8-497f-9e24-f968de2cb7c1; __gads=ID=389bf54745e367e0-22e89c6653ce00a4:T=1666569198:S=ALNI_MacCwTKTzt589IUc-bt6x-A0UTclg; __gpi=UID=00000b77fb065fc2:T=1666569198:RT=1666569198:S=ALNI_MaHTh939p1PisSBzdp5DvQG4_niNw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-10-23T23%3A53%3A20%22%7D; _gat_gtag_UA_113932176_40=1; cto_bundle=oZTsQ19kRzR6SUdnd01xSjRZZ2pQQ1dHN0tQTkNURXklMkZUZ04lMkJPZ3EyJTJCUWR1MGV6NlF0N1F0bzRXS1FXRDklMkJhR29PZXhxeVNCMTZJQWFLYkdtOWpjJTJCS2xrYll0RnlUVzNURHl0eUsyZXd0byUyQkFrU2xEb3dXSGk1dEUyM2dFOGhkS0Zjd3Y4a0VpSVVFaGhsSEJZYnVwZ3A0cmclM0QlM0Q
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:23 GMT
content-type: application/javascript; charset=utf-8
x-sucuri-id: 19004
last-modified: Tue, 22 Feb 2022 07:32:51 GMT
etag: W/"621491a3-2d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80826ca6c4fd6005aeacf5a03c8d42e8.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: w3r1KrH9BLjiL_gSgWSOvEdFsvw8wLrlbxdpNk0SA1f-LcL7_e9h5A==
age: 771701
x-sucuri-cache: HIT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 272e1d85ed23fd82ac41e6763a376028
9e50fa0c3fcdd032c4c51de81b3db18cda52098e
b3cde44aca105ce1e4675622adfd4cfca317a7bdfc9782b013de50735f6cb10b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107390
Date: Sun, 23 Oct 2022 23:53:22 GMT
Etag: "6354bc69-1d7"
Expires: Tue, 25 Oct 2022 05:43:12 GMT
Last-Modified: Sun, 23 Oct 2022 04:00:41 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dnupglwGcmuDqIntHLnHZYUK_YA3uwqoJlwW3UOx5I_twAVhD1-bFQ==
Age: 6151
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=06e501ae-0b68-4907-80b1-4e22c7532eab&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
3.65.225.183204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=06e501ae-0b68-4907-80b1-4e22c7532eab&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 3.65.225.183:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=06e501ae-0b68-4907-80b1-4e22c7532eab&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eu.sportradarserving.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 23:53:22 GMT
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/18/388695.jpg&w=100&q=100&f=webp&t=2
172.67.74.221200 OK 170 kB URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/18/388695.jpg&w=100&q=100&f=webp&t=2
IP 172.67.74.221:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x60, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 170 kB (169512 bytes)
Hash e93e55675d554f252d4eb28b5cbd4f56
49973334895f69bfd4f56f49ed0734ff3eb8b1f6
97f7734f8bc3ae03c272e210a0d497989f46779cc52b0109e80a2b2818c8904b
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/18/388695.jpg&w=100&q=100&f=webp&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:22 GMT
content-type: image/webp
x-powered-by: PHP/7.4.14
x-fastcgi-cache: MISS
cache-control: max-age=31536000
cf-cache-status: HIT
age: 61754
last-modified: Sun, 23 Oct 2022 06:44:08 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZJPepjadM9n8d4cXylKNd%2BIhfE%2BCXjGD%2Fn9AAj44rZ99Bc%2FpdImSdU2YD%2Fy1onzaN5WnfVbTpjViqtLiCe8inZhtvRAF1FEW88hr2PCAYrd7fSFJMJBGZ7fhbfXfFgpU5gGYP5Dz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee644c88d7b50f-OSL
X-Firefox-Spdy: h2
www.sunstar.com.ph/ajax/ajaxWidgets
192.124.249.104200 OK 32 kB URL HTTP/2 www.sunstar.com.ph/ajax/ajaxWidgets
IP 192.124.249.104:0
Hash 51bafb5b7a5411c613033079206d2838
a1356e64ac83fe8ba288dfd4c4838c1f5898820e
1550ebbc6c022f7afe70acc2664c1c4f37dfffebb20989bdf0584dcb3840f49e
POST /ajax/ajaxWidgets HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 4407
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1666569197.1.0.1666569197.0.0.0; _ga=GA1.3.2043095802.1666569197; _gid=GA1.3.121813829.1666569197; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=88563221-1df8-497f-9e24-f968de2cb7c1; __gads=ID=389bf54745e367e0-22e89c6653ce00a4:T=1666569198:S=ALNI_MacCwTKTzt589IUc-bt6x-A0UTclg; __gpi=UID=00000b77fb065fc2:T=1666569198:RT=1666569198:S=ALNI_MaHTh939p1PisSBzdp5DvQG4_niNw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-10-23T23%3A53%3A20%22%7D; _gat_gtag_UA_113932176_40=1; cto_bundle=oZTsQ19kRzR6SUdnd01xSjRZZ2pQQ1dHN0tQTkNURXklMkZUZ04lMkJPZ3EyJTJCUWR1MGV6NlF0N1F0bzRXS1FXRDklMkJhR29PZXhxeVNCMTZJQWFLYkdtOWpjJTJCS2xrYll0RnlUVzNURHl0eUsyZXd0byUyQkFrU2xEb3dXSGk1dEUyM2dFOGhkS0Zjd3Y4a0VpSVVFaGhsSEJZYnVwZ3A0cmclM0QlM0Q
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:23 GMT
content-type: application/json
x-sucuri-id: 19004
vary: Accept-Encoding
set-cookie: USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; expires=Tue, 22-Nov-2022 23:53:22 GMT; Max-Age=2592000; path=/
cache-control: no-cache, private
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b911c551065b8f78ad33b4c4564141be.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: hYWq5isDbRewJe33wuFN03-YxvhK20Mf7AHQKbgyziMRW_1wtPzK0w==
X-Firefox-Spdy: h2
www.sunstar.com.ph/js/lazyload.min.js?_=1666569196806
192.124.249.104200 OK 42 kB URL HTTP/2 www.sunstar.com.ph/js/lazyload.min.js?_=1666569196806
IP 192.124.249.104:0
Hash d312f6d08d52ff4a4db520787c0e6249
622521202e0cc65b92e8dc5da0d54541b8181574
4c22501235edeea0a3db63bea9dcf10348314994a983b4ba376067cc8fdd8a1c
GET /js/lazyload.min.js?_=1666569196806 HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1666569197.1.0.1666569197.0.0.0; _ga=GA1.3.2043095802.1666569197; _gid=GA1.3.121813829.1666569197; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=88563221-1df8-497f-9e24-f968de2cb7c1; __gads=ID=389bf54745e367e0-22e89c6653ce00a4:T=1666569198:S=ALNI_MacCwTKTzt589IUc-bt6x-A0UTclg; __gpi=UID=00000b77fb065fc2:T=1666569198:RT=1666569198:S=ALNI_MaHTh939p1PisSBzdp5DvQG4_niNw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-10-23T23%3A53%3A20%22%7D; _gat_gtag_UA_113932176_40=1; cto_bundle=oZTsQ19kRzR6SUdnd01xSjRZZ2pQQ1dHN0tQTkNURXklMkZUZ04lMkJPZ3EyJTJCUWR1MGV6NlF0N1F0bzRXS1FXRDklMkJhR29PZXhxeVNCMTZJQWFLYkdtOWpjJTJCS2xrYll0RnlUVzNURHl0eUsyZXd0byUyQkFrU2xEb3dXSGk1dEUyM2dFOGhkS0Zjd3Y4a0VpSVVFaGhsSEJZYnVwZ3A0cmclM0QlM0Q
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:23 GMT
content-type: application/javascript; charset=utf-8
x-sucuri-id: 19004
last-modified: Thu, 16 Dec 2021 13:02:21 GMT
etag: W/"61bb38dd-1176"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b911c551065b8f78ad33b4c4564141be.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: PAX4bvFtPjQFWndJL24pwJaQoEqfz9_-_JfkLnyCOXPP8DsMzXAlQw==
age: 1683628
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/fonts/PublicoText-Bold.ttf
192.124.249.104200 OK 236 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/fonts/PublicoText-Bold.ttf
IP 192.124.249.104:0
File type TrueType Font data, 15 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size 236 kB (235872 bytes)
Hash 68e8dad4839d6f3683cf06107fdb9eda
f723f166d491a0607325a1eaeeec99a79a67deb1
a7452f8bc1947778ce3922ed04dc243c4f56c73b89624e69da5262a7de66987a
GET /theme_sunstar/fonts/PublicoText-Bold.ttf HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1666569197.1.0.1666569197.0.0.0; _ga=GA1.3.2043095802.1666569197; _gid=GA1.3.121813829.1666569197; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=88563221-1df8-497f-9e24-f968de2cb7c1; __gads=ID=389bf54745e367e0-22e89c6653ce00a4:T=1666569198:S=ALNI_MacCwTKTzt589IUc-bt6x-A0UTclg; __gpi=UID=00000b77fb065fc2:T=1666569198:RT=1666569198:S=ALNI_MaHTh939p1PisSBzdp5DvQG4_niNw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-10-23T23%3A53%3A20%22%7D; _gat_gtag_UA_113932176_40=1; cto_bundle=oZTsQ19kRzR6SUdnd01xSjRZZ2pQQ1dHN0tQTkNURXklMkZUZ04lMkJPZ3EyJTJCUWR1MGV6NlF0N1F0bzRXS1FXRDklMkJhR29PZXhxeVNCMTZJQWFLYkdtOWpjJTJCS2xrYll0RnlUVzNURHl0eUsyZXd0byUyQkFrU2xEb3dXSGk1dEUyM2dFOGhkS0Zjd3Y4a0VpSVVFaGhsSEJZYnVwZ3A0cmclM0QlM0Q
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:23 GMT
content-type: application/octet-stream
content-length: 235872
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:36 GMT
etag: "61b6f8b8-39960"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Miss from cloudfront
via: 1.1 3af85c3075e12aff72b9e148b99d6622.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: vy5nny7-MxeK04lkQ8nqWvGI6e1AwxmtMk2D0Nav4F7hCCyraVrMTQ==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/fonts/Roboto-Medium.ttf
192.124.249.104200 OK 169 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/fonts/Roboto-Medium.ttf
IP 192.124.249.104:0
File type TrueType Font data, 18 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto MediumRegularVersion 2.137; 2017Roboto-Med\012- data
Size 169 kB (168644 bytes)
Hash b2d307df606f23cb14e6483039e2b7fa
fddc8b1c688ef3baed0d5a46abf5f01f0edaf02b
4ac8e03606ffa4c37f61a6510a2080f1f37a7054f4726c214887d3b23f72e369
GET /theme_sunstar/fonts/Roboto-Medium.ttf HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1666569197.1.0.1666569197.0.0.0; _ga=GA1.3.2043095802.1666569197; _gid=GA1.3.121813829.1666569197; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=88563221-1df8-497f-9e24-f968de2cb7c1; __gads=ID=389bf54745e367e0-22e89c6653ce00a4:T=1666569198:S=ALNI_MacCwTKTzt589IUc-bt6x-A0UTclg; __gpi=UID=00000b77fb065fc2:T=1666569198:RT=1666569198:S=ALNI_MaHTh939p1PisSBzdp5DvQG4_niNw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-10-23T23%3A53%3A20%22%7D; _gat_gtag_UA_113932176_40=1; cto_bundle=oZTsQ19kRzR6SUdnd01xSjRZZ2pQQ1dHN0tQTkNURXklMkZUZ04lMkJPZ3EyJTJCUWR1MGV6NlF0N1F0bzRXS1FXRDklMkJhR29PZXhxeVNCMTZJQWFLYkdtOWpjJTJCS2xrYll0RnlUVzNURHl0eUsyZXd0byUyQkFrU2xEb3dXSGk1dEUyM2dFOGhkS0Zjd3Y4a0VpSVVFaGhsSEJZYnVwZ3A0cmclM0QlM0Q
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:23 GMT
content-type: application/octet-stream
content-length: 168644
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:36 GMT
etag: "61b6f8b8-292c4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Miss from cloudfront
via: 1.1 2b11d6e7cfac22d5fd2bf9a0df8c4d2a.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: j0x3_qBo_qx13sYSmh0ISeK4DpCJXoeYz9AzkeQ3q5322gUwFTZNLA==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/fonts/Roboto-Bold.ttf
192.124.249.104200 OK 167 kB URL HTTP/2 www.sunstar.com.ph/theme_sunstar/fonts/Roboto-Bold.ttf
IP 192.124.249.104:0
File type TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoBoldRoboto BoldVersion 2.137; 2017Roboto-Bo\012- data
Size 167 kB (167336 bytes)
Hash 9ece5b48963bbc96309220952cda38aa
013f1bbcbbd80991a5f00fca52a90d0d7ab8b81f
baf44ce81636cc927fc27768437e5da853bac699e8aaf832d042f0dfed29b4b4
GET /theme_sunstar/fonts/Roboto-Bold.ttf HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1666569197.1.0.1666569197.0.0.0; _ga=GA1.3.2043095802.1666569197; _gid=GA1.3.121813829.1666569197; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=88563221-1df8-497f-9e24-f968de2cb7c1; __gads=ID=389bf54745e367e0-22e89c6653ce00a4:T=1666569198:S=ALNI_MacCwTKTzt589IUc-bt6x-A0UTclg; __gpi=UID=00000b77fb065fc2:T=1666569198:RT=1666569198:S=ALNI_MaHTh939p1PisSBzdp5DvQG4_niNw; lotame_domain_check=sunstar.com.ph; pubmatic-unifiedid=%7B%22TDID_LOOKUP%22%3A%22FALSE%22%2C%22TDID_CREATED_AT%22%3A%222022-10-23T23%3A53%3A20%22%7D; _gat_gtag_UA_113932176_40=1; cto_bundle=oZTsQ19kRzR6SUdnd01xSjRZZ2pQQ1dHN0tQTkNURXklMkZUZ04lMkJPZ3EyJTJCUWR1MGV6NlF0N1F0bzRXS1FXRDklMkJhR29PZXhxeVNCMTZJQWFLYkdtOWpjJTJCS2xrYll0RnlUVzNURHl0eUsyZXd0byUyQkFrU2xEb3dXSGk1dEUyM2dFOGhkS0Zjd3Y4a0VpSVVFaGhsSEJZYnVwZ3A0cmclM0QlM0Q
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:23 GMT
content-type: application/octet-stream
content-length: 167336
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:39:36 GMT
etag: "61b6f8b8-28da8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
x-cache: Miss from cloudfront
via: 1.1 46293c8f7848e2378b777a1f48183614.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: JMM2rbjjGuHE2601tYaGE_5x5hLe5g7GiVH8__feuKRse1YvXgQc6A==
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunstar.com.ph
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunstar.com.ph HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 23 Oct 2022 23:53:23 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/24/389989.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 5.2 kB URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/24/389989.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 30x22, components 3\012- data
Hash 8069c0c7aa23de2c60fafd160312fec2
6b6f25a742fd2d37214820c01c09bb13ddd6593d
062aa39668004f5bc6792df26bc3a7ea3ae1e21a08fb0b3872d20c908f264e3e
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/24/389989.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:22 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1213
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 681
last-modified: Sun, 23 Oct 2022 23:42:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tEqQJjN0wUsPH%2FhiM83%2F0wRjM%2FrKC2AhLqb6IA3GiGe%2Bu0XObaqYz%2BKBLWDyeGGqR9nnDqsCJ3doFyuUPJIcfqvFCcqCP5HaX9FMZ6og0WwfVcCdH6jTe6%2Beh2a6pmaDUZAb0OFB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee644ea9bdb50f-OSL
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/24/389982.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 1.3 kB URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/24/389982.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 30x22, components 3\012- data
Hash 41d7130df3f8630a8e2bc2716d2ef099
f544e0eddfdaea33057ec7b7fb9c20416336c795
bb5631c75b344d8a86fabbb20a0abd4a98080d0f1446d66827e8fbdd5ae43ba8
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/24/389982.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:22 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1640
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 22212
last-modified: Sun, 23 Oct 2022 17:43:10 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0wzQG%2F74zSzuXdvnGbK3WiNN%2BoD55m4nwE%2FrA1hfBS4XBRZOkVekwrGVzWxihhNbO1SmPCpCT1dOcA0I2NRdlQXb0sj4NSapE%2FBSjwup4gnrrvSjNLn8C5XMvFJqOBCdgCtM3X97"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee644ea9c3b50f-OSL
X-Firefox-Spdy: h2
mab.chartbeat.com/mab_strategy/headline_testing/get_strategy/?host=sunstar.com.ph&domain=sunstar.com.ph&path=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good
151.101.86.202200 OK 170 B URL HTTP/2 mab.chartbeat.com/mab_strategy/headline_testing/get_strategy/?host=sunstar.com.ph&domain=sunstar.com.ph&path=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good
IP 151.101.86.202:0
File type JSON data\012- , ASCII text, with no line terminators
Hash fc7296940e0c8838acee728bdb56c06d
a39d23e42dc009d1e47cb80238cee7db7e9ca752
32fe2e98937f370a67978ff5264c3a2bca5ec5d444a4f26cbf03a6b20cbce17e
GET /mab_strategy/headline_testing/get_strategy/?host=sunstar.com.ph&domain=sunstar.com.ph&path=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good HTTP/1.1
Host: mab.chartbeat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
cache-control: no-store, no-cache, must-revalidate, max-age=0, s-maxage=0
expires: Fri, 21 Oct 2022 23:53:23 GMT
content-encoding: gzip
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
accept-ranges: bytes
date: Sun, 23 Oct 2022 23:53:23 GMT
age: 0
x-served-by: cache-bma1630-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666569203.342882,VS0,VE97
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
content-length: 170
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/23/389842.jpg&w=100&q=100&f=webp&t=2
172.67.74.221200 OK 5.8 kB URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/23/389842.jpg&w=100&q=100&f=webp&t=2
IP 172.67.74.221:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x60, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1e5a2bd6f33e19e551c2f1693a0ead0b
304bfcf7f18b53ccccd076e92e5297bdf201a442
85ddead9702673406172acda3f0504e378cc34fd347deb226ead231ba92bf3ec
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/23/389842.jpg&w=100&q=100&f=webp&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:22 GMT
content-type: image/webp
x-powered-by: PHP/7.4.14
x-fastcgi-cache: HIT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 61754
last-modified: Sun, 23 Oct 2022 06:44:08 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fGVTivDAQkoMhgXtgBfzq9RBp6BWsUGHwzGRTtzzwxuTx5AW50Bm9w1evpB45clnKb4lG1bF2lJ4kFn3pgMBA2EAnQ1GeXGMIski50zj3oONcRBMnanwqSKSuSrxjmYM2NtaZ5nc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee644c88d3b50f-OSL
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8bfbcfbd5e48a589864faf7661ce8c11
05b6012c5e4349ba1ac7120f2c8aa4bf4f3c42a1
acfb130982c94ae771d4e4e5a55b0ab0fdfb8a8e47cefdfddbc04e8c45ebd5a9
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6253
Cache-Control: max-age=146732
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 23:53:23 GMT
Etag: "635555b2-1d7"
Expires: Tue, 25 Oct 2022 16:38:55 GMT
Last-Modified: Sun, 23 Oct 2022 14:54:42 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
redirect.prod.experiment.routing.cloudfront.aws.a2z.com/x.png
18.116.181.226204 No Content 0 B URL HTTP/2 redirect.prod.experiment.routing.cloudfront.aws.a2z.com/x.png
IP 18.116.181.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x.png HTTP/1.1
Host: redirect.prod.experiment.routing.cloudfront.aws.a2z.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 23:53:23 GMT
server: Server
X-Firefox-Spdy: h2
ping.chartbeat.net/ping?h=sunstar.com.ph&p=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good&u=W-g7gDTahb0Cc4a2h&d=sunstar.com.ph&g=66382&g0=No%20Section&g1=No%20Author&n=1&f=00001&c=0&x=0&m=0&y=2939&o=1268&w=898&j=45&R=1&W=0&I=0&E=0&e=0&r=&b=2444&t=CTQtY4IXU56BRqo72CC3S_VC5Ug8C&V=136&i=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&tz=0&_acct=anon&sn=1&sv=4Nk36BuRlCU-DXr3BqSVa1CT3EEL&sd=1&im=067b0cff&_
35.168.43.41200 OK 43 B URL HTTP/2 ping.chartbeat.net/ping?h=sunstar.com.ph&p=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good&u=W-g7gDTahb0Cc4a2h&d=sunstar.com.ph&g=66382&g0=No%20Section&g1=No%20Author&n=1&f=00001&c=0&x=0&m=0&y=2939&o=1268&w=898&j=45&R=1&W=0&I=0&E=0&e=0&r=&b=2444&t=CTQtY4IXU56BRqo72CC3S_VC5Ug8C&V=136&i=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&tz=0&_acct=anon&sn=1&sv=4Nk36BuRlCU-DXr3BqSVa1CT3EEL&sd=1&im=067b0cff&_
IP 35.168.43.41:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping?h=sunstar.com.ph&p=%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good&u=W-g7gDTahb0Cc4a2h&d=sunstar.com.ph&g=66382&g0=No%20Section&g1=No%20Author&n=1&f=00001&c=0&x=0&m=0&y=2939&o=1268&w=898&j=45&R=1&W=0&I=0&E=0&e=0&r=&b=2444&t=CTQtY4IXU56BRqo72CC3S_VC5Ug8C&V=136&i=Is%20Mobile%20Legends%20good%3F%20-%20SUNSTAR&tz=0&_acct=anon&sn=1&sv=4Nk36BuRlCU-DXr3BqSVa1CT3EEL&sd=1&im=067b0cff&_ HTTP/1.1
Host: ping.chartbeat.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:23 GMT
content-type: image/gif
content-length: 43
cross-origin-resource-policy: cross-origin
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a4d2e9dc1762e012e08017d50475a522
b8da7a924c68ca9bdf450192f02f227890fa08d2
bbd0466c24c27ce592c9a11cf2e3b1bb65ad9a7972ed781718bc43db24b82588
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BBD0466C24C27CE592C9A11CF2E3B1BB65AD9A7972ED781718BC43DB24B82588"
Last-Modified: Fri, 21 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14550
Expires: Mon, 24 Oct 2022 03:55:53 GMT
Date: Sun, 23 Oct 2022 23:53:23 GMT
Connection: keep-alive
hal9000.redintelligence.net/zone/djaavvuv8jta?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCh_xF89NVY530CqiTxdwPn-K6WMm5opxp5LTNztUP8C4QASCQt6ZPYMOEgICYGMgBCakC-zXpduCLsD6oAwGqBPYBT9Br6SLMLy1aVUifva7w_hoeQN73mng_SicZT_2d7qkfjvkzDXj8ZPz2-6ANhjf444nFOo9OyDyOgQgDdE9HdIRuHX9-mJviB4ORorKMOdaRhkwIEGRVEnuycxSn51W5BODRxMURd_AQLg1Dbj-CEqld9KOJmerimB7Kfq4W-z4hhpmsLrwtcVw62Fxs_FuKkdnVbYIX2X2l5g1kDV-yQOqWNUX6LHS9u8x8WHvLozPhiumdClXC_CUo2OAG8xOuONj2Em2tLO81s2xs6X9lisz9PlL1xbsAwU30g9wDmv-dDx2ElWs_kWNnftvmiEr7jlwV7Or8wATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEgiI4YAQEAEYHTIDqoIBOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSPgDq26N9kyVoergyr9scuSiqrPjYAK12_w633lTHac4iZLB9zjL6MJwY-kAtsuIdcY-2bJ0-5o1BZ1CTcQWeGAEgDg%26sig%3DAOD64_2uG1IRWbJfu_4i1MEpwdQWW-i0CA%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-DPYTGSEFlY9j2Jng-zko-I65-W0IUALhDmnnFxZEVaNrZ3p3FC-xV2SLmejcmALvN2liOTNeFbhR84rqKwzfEaYQ3ob993CbYxmSQdAWUShA3XeuB4v3XqvesPF0NaZQK-gUGE806o4NZOlB7S5eRrBAXOavmr1N6ATu3Z09VGGsVNPwU%26cry%3D1%26dbm_d%3DAKAmf-BiB2Q2V7jNG-7c7fCVfedvvnR72_CNwEt9bF3-a2M_XKx59_M-_BelsjEDF43ccnAZBt51S-xIPMDGyPw6yi9jjLDT3R0dNWb_vGszjK8M4SOLOxbhhW7FyDHIsXMYxQCy-CqswEq4WTYdR3hnpHnBZEtl7bV-uVsidpYcZpkJFHxc4Lc4jX3jVZTGxZzk4M-1A0mUZSV807e1H2B59F12Agl4ZfaSYmZCHfU7kdj7rLXrQoZHjp5cJbM2B-8Bnzjrb8yG4-fOdWANNQkxVmauxY4FiO0KcU5X2NjDgEFCbHWER6Hh5ihnWthWJwgVYUqrbTag5rIfXzSKUtnK9B0lkqR3STRvp9Vy4cfOVTi-Bi2r97gEjjsUGlct2T0lQED3BowTjNi5IoTdWjeP3YhprPwlYUyCpAqGwT10D6bLtGATCc9hxpl3rPPyymGllBpoQATo5WpKF-OtLHanRynCXhmD24iGmzK6mvPoT-7HiJGQCn70Ga6WfslnmnkzsshAGliaA9l64i5vKyNwLBmGCoX22Ebc0SPxO4LKuyZUbahKM7bxsLO9VSMocSm82ub5RsSxZA_gj5Fwx5EE_Ea_CN0iazofr4vbAdJkMlOELPIqTTG9r101C75KwDnhRJtHdriX%26adurl%3D
176.9.26.250200 OK 4.2 kB URL HTTP/1.1 hal9000.redintelligence.net/zone/djaavvuv8jta?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCh_xF89NVY530CqiTxdwPn-K6WMm5opxp5LTNztUP8C4QASCQt6ZPYMOEgICYGMgBCakC-zXpduCLsD6oAwGqBPYBT9Br6SLMLy1aVUifva7w_hoeQN73mng_SicZT_2d7qkfjvkzDXj8ZPz2-6ANhjf444nFOo9OyDyOgQgDdE9HdIRuHX9-mJviB4ORorKMOdaRhkwIEGRVEnuycxSn51W5BODRxMURd_AQLg1Dbj-CEqld9KOJmerimB7Kfq4W-z4hhpmsLrwtcVw62Fxs_FuKkdnVbYIX2X2l5g1kDV-yQOqWNUX6LHS9u8x8WHvLozPhiumdClXC_CUo2OAG8xOuONj2Em2tLO81s2xs6X9lisz9PlL1xbsAwU30g9wDmv-dDx2ElWs_kWNnftvmiEr7jlwV7Or8wATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEgiI4YAQEAEYHTIDqoIBOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSPgDq26N9kyVoergyr9scuSiqrPjYAK12_w633lTHac4iZLB9zjL6MJwY-kAtsuIdcY-2bJ0-5o1BZ1CTcQWeGAEgDg%26sig%3DAOD64_2uG1IRWbJfu_4i1MEpwdQWW-i0CA%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-DPYTGSEFlY9j2Jng-zko-I65-W0IUALhDmnnFxZEVaNrZ3p3FC-xV2SLmejcmALvN2liOTNeFbhR84rqKwzfEaYQ3ob993CbYxmSQdAWUShA3XeuB4v3XqvesPF0NaZQK-gUGE806o4NZOlB7S5eRrBAXOavmr1N6ATu3Z09VGGsVNPwU%26cry%3D1%26dbm_d%3DAKAmf-BiB2Q2V7jNG-7c7fCVfedvvnR72_CNwEt9bF3-a2M_XKx59_M-_BelsjEDF43ccnAZBt51S-xIPMDGyPw6yi9jjLDT3R0dNWb_vGszjK8M4SOLOxbhhW7FyDHIsXMYxQCy-CqswEq4WTYdR3hnpHnBZEtl7bV-uVsidpYcZpkJFHxc4Lc4jX3jVZTGxZzk4M-1A0mUZSV807e1H2B59F12Agl4ZfaSYmZCHfU7kdj7rLXrQoZHjp5cJbM2B-8Bnzjrb8yG4-fOdWANNQkxVmauxY4FiO0KcU5X2NjDgEFCbHWER6Hh5ihnWthWJwgVYUqrbTag5rIfXzSKUtnK9B0lkqR3STRvp9Vy4cfOVTi-Bi2r97gEjjsUGlct2T0lQED3BowTjNi5IoTdWjeP3YhprPwlYUyCpAqGwT10D6bLtGATCc9hxpl3rPPyymGllBpoQATo5WpKF-OtLHanRynCXhmD24iGmzK6mvPoT-7HiJGQCn70Ga6WfslnmnkzsshAGliaA9l64i5vKyNwLBmGCoX22Ebc0SPxO4LKuyZUbahKM7bxsLO9VSMocSm82ub5RsSxZA_gj5Fwx5EE_Ea_CN0iazofr4vbAdJkMlOELPIqTTG9r101C75KwDnhRJtHdriX%26adurl%3D
IP 176.9.26.250:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1793), with CRLF line terminators
Hash 586d491ac049d47666ac51668c62e639
63dcbb7a86b4257c75f58f6f2b8b602ed83fc93c
fc5425b96035e61723845bfa75396fb375c6c0401b20137c40ad7f8c4e794e69
GET /zone/djaavvuv8jta?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCh_xF89NVY530CqiTxdwPn-K6WMm5opxp5LTNztUP8C4QASCQt6ZPYMOEgICYGMgBCakC-zXpduCLsD6oAwGqBPYBT9Br6SLMLy1aVUifva7w_hoeQN73mng_SicZT_2d7qkfjvkzDXj8ZPz2-6ANhjf444nFOo9OyDyOgQgDdE9HdIRuHX9-mJviB4ORorKMOdaRhkwIEGRVEnuycxSn51W5BODRxMURd_AQLg1Dbj-CEqld9KOJmerimB7Kfq4W-z4hhpmsLrwtcVw62Fxs_FuKkdnVbYIX2X2l5g1kDV-yQOqWNUX6LHS9u8x8WHvLozPhiumdClXC_CUo2OAG8xOuONj2Em2tLO81s2xs6X9lisz9PlL1xbsAwU30g9wDmv-dDx2ElWs_kWNnftvmiEr7jlwV7Or8wATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEgiI4YAQEAEYHTIDqoIBOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSPgDq26N9kyVoergyr9scuSiqrPjYAK12_w633lTHac4iZLB9zjL6MJwY-kAtsuIdcY-2bJ0-5o1BZ1CTcQWeGAEgDg%26sig%3DAOD64_2uG1IRWbJfu_4i1MEpwdQWW-i0CA%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-DPYTGSEFlY9j2Jng-zko-I65-W0IUALhDmnnFxZEVaNrZ3p3FC-xV2SLmejcmALvN2liOTNeFbhR84rqKwzfEaYQ3ob993CbYxmSQdAWUShA3XeuB4v3XqvesPF0NaZQK-gUGE806o4NZOlB7S5eRrBAXOavmr1N6ATu3Z09VGGsVNPwU%26cry%3D1%26dbm_d%3DAKAmf-BiB2Q2V7jNG-7c7fCVfedvvnR72_CNwEt9bF3-a2M_XKx59_M-_BelsjEDF43ccnAZBt51S-xIPMDGyPw6yi9jjLDT3R0dNWb_vGszjK8M4SOLOxbhhW7FyDHIsXMYxQCy-CqswEq4WTYdR3hnpHnBZEtl7bV-uVsidpYcZpkJFHxc4Lc4jX3jVZTGxZzk4M-1A0mUZSV807e1H2B59F12Agl4ZfaSYmZCHfU7kdj7rLXrQoZHjp5cJbM2B-8Bnzjrb8yG4-fOdWANNQkxVmauxY4FiO0KcU5X2NjDgEFCbHWER6Hh5ihnWthWJwgVYUqrbTag5rIfXzSKUtnK9B0lkqR3STRvp9Vy4cfOVTi-Bi2r97gEjjsUGlct2T0lQED3BowTjNi5IoTdWjeP3YhprPwlYUyCpAqGwT10D6bLtGATCc9hxpl3rPPyymGllBpoQATo5WpKF-OtLHanRynCXhmD24iGmzK6mvPoT-7HiJGQCn70Ga6WfslnmnkzsshAGliaA9l64i5vKyNwLBmGCoX22Ebc0SPxO4LKuyZUbahKM7bxsLO9VSMocSm82ub5RsSxZA_gj5Fwx5EE_Ea_CN0iazofr4vbAdJkMlOELPIqTTG9r101C75KwDnhRJtHdriX%26adurl%3D HTTP/1.1
Host: hal9000.redintelligence.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:23 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4192
Connection: close
Content-Type: text/html; charset=UTF-8
hal900025.redintelligence.net/request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=bbc196628d&subid=&uid=a27fc6d1d714f33d&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCh_xF89NVY530CqiTxdwPn-K6WMm5opxp5LTNztUP8C4QASCQt6ZPYMOEgICYGMgBCakC-zXpduCLsD6oAwGqBPYBT9Br6SLMLy1aVUifva7w_hoeQN73mng_SicZT_2d7qkfjvkzDXj8ZPz2-6ANhjf444nFOo9OyDyOgQgDdE9HdIRuHX9-mJviB4ORorKMOdaRhkwIEGRVEnuycxSn51W5BODRxMURd_AQLg1Dbj-CEqld9KOJmerimB7Kfq4W-z4hhpmsLrwtcVw62Fxs_FuKkdnVbYIX2X2l5g1kDV-yQOqWNUX6LHS9u8x8WHvLozPhiumdClXC_CUo2OAG8xOuONj2Em2tLO81s2xs6X9lisz9PlL1xbsAwU30g9wDmv-dDx2ElWs_kWNnftvmiEr7jlwV7Or8wATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEgiI4YAQEAEYHTIDqoIBOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSPgDq26N9kyVoergyr9scuSiqrPjYAK12_w633lTHac4iZLB9zjL6MJwY-kAtsuIdcY-2bJ0-5o1BZ1CTcQWeGAEgDg%26sig%3DAOD64_2uG1IRWbJfu_4i1MEpwdQWW-i0CA%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-DPYTGSEFlY9j2Jng-zko-I65-W0IUALhDmnnFxZEVaNrZ3p3FC-xV2SLmejcmALvN2liOTNeFbhR84rqKwzfEaYQ3ob993CbYxmSQdAWUShA3XeuB4v3XqvesPF0NaZQK-gUGE806o4NZOlB7S5eRrBAXOavmr1N6ATu3Z09VGGsVNPwU%26cry%3D1%26dbm_d%3DAKAmf-BiB2Q2V7jNG-7c7fCVfedvvnR72_CNwEt9bF3-a2M_XKx59_M-_BelsjEDF43ccnAZBt51S-xIPMDGyPw6yi9jjLDT3R0dNWb_vGszjK8M4SOLOxbhhW7FyDHIsXMYxQCy-CqswEq4WTYdR3hnpHnBZEtl7bV-uVsidpYcZpkJFHxc4Lc4jX3jVZTGxZzk4M-1A0mUZSV807e1H2B59F12Agl4ZfaSYmZCHfU7kdj7rLXrQoZHjp5cJbM2B-8Bnzjrb8yG4-fOdWANNQkxVmauxY4FiO0KcU5X2NjDgEFCbHWER6Hh5ihnWthWJwgVYUqrbTag5rIfXzSKUtnK9B0lkqR3STRvp9Vy4cfOVTi-Bi2r97gEjjsUGlct2T0lQED3BowTjNi5IoTdWjeP3YhprPwlYUyCpAqGwT10D6bLtGATCc9hxpl3rPPyymGllBpoQATo5WpKF-OtLHanRynCXhmD24iGmzK6mvPoT-7HiJGQCn70Ga6WfslnmnkzsshAGliaA9l64i5vKyNwLBmGCoX22Ebc0SPxO4LKuyZUbahKM7bxsLO9VSMocSm82ub5RsSxZA_gj5Fwx5EE_Ea_CN0iazofr4vbAdJkMlOELPIqTTG9r101C75KwDnhRJtHdriX%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=8198938578328&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
138.201.84.245302 Found 0 B URL HTTP/1.1 hal900025.redintelligence.net/request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=bbc196628d&subid=&uid=a27fc6d1d714f33d&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCh_xF89NVY530CqiTxdwPn-K6WMm5opxp5LTNztUP8C4QASCQt6ZPYMOEgICYGMgBCakC-zXpduCLsD6oAwGqBPYBT9Br6SLMLy1aVUifva7w_hoeQN73mng_SicZT_2d7qkfjvkzDXj8ZPz2-6ANhjf444nFOo9OyDyOgQgDdE9HdIRuHX9-mJviB4ORorKMOdaRhkwIEGRVEnuycxSn51W5BODRxMURd_AQLg1Dbj-CEqld9KOJmerimB7Kfq4W-z4hhpmsLrwtcVw62Fxs_FuKkdnVbYIX2X2l5g1kDV-yQOqWNUX6LHS9u8x8WHvLozPhiumdClXC_CUo2OAG8xOuONj2Em2tLO81s2xs6X9lisz9PlL1xbsAwU30g9wDmv-dDx2ElWs_kWNnftvmiEr7jlwV7Or8wATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEgiI4YAQEAEYHTIDqoIBOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSPgDq26N9kyVoergyr9scuSiqrPjYAK12_w633lTHac4iZLB9zjL6MJwY-kAtsuIdcY-2bJ0-5o1BZ1CTcQWeGAEgDg%26sig%3DAOD64_2uG1IRWbJfu_4i1MEpwdQWW-i0CA%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-DPYTGSEFlY9j2Jng-zko-I65-W0IUALhDmnnFxZEVaNrZ3p3FC-xV2SLmejcmALvN2liOTNeFbhR84rqKwzfEaYQ3ob993CbYxmSQdAWUShA3XeuB4v3XqvesPF0NaZQK-gUGE806o4NZOlB7S5eRrBAXOavmr1N6ATu3Z09VGGsVNPwU%26cry%3D1%26dbm_d%3DAKAmf-BiB2Q2V7jNG-7c7fCVfedvvnR72_CNwEt9bF3-a2M_XKx59_M-_BelsjEDF43ccnAZBt51S-xIPMDGyPw6yi9jjLDT3R0dNWb_vGszjK8M4SOLOxbhhW7FyDHIsXMYxQCy-CqswEq4WTYdR3hnpHnBZEtl7bV-uVsidpYcZpkJFHxc4Lc4jX3jVZTGxZzk4M-1A0mUZSV807e1H2B59F12Agl4ZfaSYmZCHfU7kdj7rLXrQoZHjp5cJbM2B-8Bnzjrb8yG4-fOdWANNQkxVmauxY4FiO0KcU5X2NjDgEFCbHWER6Hh5ihnWthWJwgVYUqrbTag5rIfXzSKUtnK9B0lkqR3STRvp9Vy4cfOVTi-Bi2r97gEjjsUGlct2T0lQED3BowTjNi5IoTdWjeP3YhprPwlYUyCpAqGwT10D6bLtGATCc9hxpl3rPPyymGllBpoQATo5WpKF-OtLHanRynCXhmD24iGmzK6mvPoT-7HiJGQCn70Ga6WfslnmnkzsshAGliaA9l64i5vKyNwLBmGCoX22Ebc0SPxO4LKuyZUbahKM7bxsLO9VSMocSm82ub5RsSxZA_gj5Fwx5EE_Ea_CN0iazofr4vbAdJkMlOELPIqTTG9r101C75KwDnhRJtHdriX%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=8198938578328&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
IP 138.201.84.245:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=bbc196628d&subid=&uid=a27fc6d1d714f33d&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCh_xF89NVY530CqiTxdwPn-K6WMm5opxp5LTNztUP8C4QASCQt6ZPYMOEgICYGMgBCakC-zXpduCLsD6oAwGqBPYBT9Br6SLMLy1aVUifva7w_hoeQN73mng_SicZT_2d7qkfjvkzDXj8ZPz2-6ANhjf444nFOo9OyDyOgQgDdE9HdIRuHX9-mJviB4ORorKMOdaRhkwIEGRVEnuycxSn51W5BODRxMURd_AQLg1Dbj-CEqld9KOJmerimB7Kfq4W-z4hhpmsLrwtcVw62Fxs_FuKkdnVbYIX2X2l5g1kDV-yQOqWNUX6LHS9u8x8WHvLozPhiumdClXC_CUo2OAG8xOuONj2Em2tLO81s2xs6X9lisz9PlL1xbsAwU30g9wDmv-dDx2ElWs_kWNnftvmiEr7jlwV7Or8wATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEgiI4YAQEAEYHTIDqoIBOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSPgDq26N9kyVoergyr9scuSiqrPjYAK12_w633lTHac4iZLB9zjL6MJwY-kAtsuIdcY-2bJ0-5o1BZ1CTcQWeGAEgDg%26sig%3DAOD64_2uG1IRWbJfu_4i1MEpwdQWW-i0CA%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-DPYTGSEFlY9j2Jng-zko-I65-W0IUALhDmnnFxZEVaNrZ3p3FC-xV2SLmejcmALvN2liOTNeFbhR84rqKwzfEaYQ3ob993CbYxmSQdAWUShA3XeuB4v3XqvesPF0NaZQK-gUGE806o4NZOlB7S5eRrBAXOavmr1N6ATu3Z09VGGsVNPwU%26cry%3D1%26dbm_d%3DAKAmf-BiB2Q2V7jNG-7c7fCVfedvvnR72_CNwEt9bF3-a2M_XKx59_M-_BelsjEDF43ccnAZBt51S-xIPMDGyPw6yi9jjLDT3R0dNWb_vGszjK8M4SOLOxbhhW7FyDHIsXMYxQCy-CqswEq4WTYdR3hnpHnBZEtl7bV-uVsidpYcZpkJFHxc4Lc4jX3jVZTGxZzk4M-1A0mUZSV807e1H2B59F12Agl4ZfaSYmZCHfU7kdj7rLXrQoZHjp5cJbM2B-8Bnzjrb8yG4-fOdWANNQkxVmauxY4FiO0KcU5X2NjDgEFCbHWER6Hh5ihnWthWJwgVYUqrbTag5rIfXzSKUtnK9B0lkqR3STRvp9Vy4cfOVTi-Bi2r97gEjjsUGlct2T0lQED3BowTjNi5IoTdWjeP3YhprPwlYUyCpAqGwT10D6bLtGATCc9hxpl3rPPyymGllBpoQATo5WpKF-OtLHanRynCXhmD24iGmzK6mvPoT-7HiJGQCn70Ga6WfslnmnkzsshAGliaA9l64i5vKyNwLBmGCoX22Ebc0SPxO4LKuyZUbahKM7bxsLO9VSMocSm82ub5RsSxZA_gj5Fwx5EE_Ea_CN0iazofr4vbAdJkMlOELPIqTTG9r101C75KwDnhRJtHdriX%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=8198938578328&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0 HTTP/1.1
Host: hal900025.redintelligence.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 23 Oct 2022 23:53:24 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 24 Oct 2022 00:53:24 +0200
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=c0070aed9103e04e; expires=Sat, 21-Jan-2023 23:53:24 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
Location: request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=bbc196628d&subid=&uid=a27fc6d1d714f33d&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCh_xF89NVY530CqiTxdwPn-K6WMm5opxp5LTNztUP8C4QASCQt6ZPYMOEgICYGMgBCakC-zXpduCLsD6oAwGqBPYBT9Br6SLMLy1aVUifva7w_hoeQN73mng_SicZT_2d7qkfjvkzDXj8ZPz2-6ANhjf444nFOo9OyDyOgQgDdE9HdIRuHX9-mJviB4ORorKMOdaRhkwIEGRVEnuycxSn51W5BODRxMURd_AQLg1Dbj-CEqld9KOJmerimB7Kfq4W-z4hhpmsLrwtcVw62Fxs_FuKkdnVbYIX2X2l5g1kDV-yQOqWNUX6LHS9u8x8WHvLozPhiumdClXC_CUo2OAG8xOuONj2Em2tLO81s2xs6X9lisz9PlL1xbsAwU30g9wDmv-dDx2ElWs_kWNnftvmiEr7jlwV7Or8wATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEgiI4YAQEAEYHTIDqoIBOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSPgDq26N9kyVoergyr9scuSiqrPjYAK12_w633lTHac4iZLB9zjL6MJwY-kAtsuIdcY-2bJ0-5o1BZ1CTcQWeGAEgDg%26sig%3DAOD64_2uG1IRWbJfu_4i1MEpwdQWW-i0CA%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-DPYTGSEFlY9j2Jng-zko-I65-W0IUALhDmnnFxZEVaNrZ3p3FC-xV2SLmejcmALvN2liOTNeFbhR84rqKwzfEaYQ3ob993CbYxmSQdAWUShA3XeuB4v3XqvesPF0NaZQK-gUGE806o4NZOlB7S5eRrBAXOavmr1N6ATu3Z09VGGsVNPwU%26cry%3D1%26dbm_d%3DAKAmf-BiB2Q2V7jNG-7c7fCVfedvvnR72_CNwEt9bF3-a2M_XKx59_M-_BelsjEDF43ccnAZBt51S-xIPMDGyPw6yi9jjLDT3R0dNWb_vGszjK8M4SOLOxbhhW7FyDHIsXMYxQCy-CqswEq4WTYdR3hnpHnBZEtl7bV-uVsidpYcZpkJFHxc4Lc4jX3jVZTGxZzk4M-1A0mUZSV807e1H2B59F12Agl4ZfaSYmZCHfU7kdj7rLXrQoZHjp5cJbM2B-8Bnzjrb8yG4-fOdWANNQkxVmauxY4FiO0KcU5X2NjDgEFCbHWER6Hh5ihnWthWJwgVYUqrbTag5rIfXzSKUtnK9B0lkqR3STRvp9Vy4cfOVTi-Bi2r97gEjjsUGlct2T0lQED3BowTjNi5IoTdWjeP3YhprPwlYUyCpAqGwT10D6bLtGATCc9hxpl3rPPyymGllBpoQATo5WpKF-OtLHanRynCXhmD24iGmzK6mvPoT-7HiJGQCn70Ga6WfslnmnkzsshAGliaA9l64i5vKyNwLBmGCoX22Ebc0SPxO4LKuyZUbahKM7bxsLO9VSMocSm82ub5RsSxZA_gj5Fwx5EE_Ea_CN0iazofr4vbAdJkMlOELPIqTTG9r101C75KwDnhRJtHdriX%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=8198938578328&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
hal900025.redintelligence.net/request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=bbc196628d&subid=&uid=a27fc6d1d714f33d&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCh_xF89NVY530CqiTxdwPn-K6WMm5opxp5LTNztUP8C4QASCQt6ZPYMOEgICYGMgBCakC-zXpduCLsD6oAwGqBPYBT9Br6SLMLy1aVUifva7w_hoeQN73mng_SicZT_2d7qkfjvkzDXj8ZPz2-6ANhjf444nFOo9OyDyOgQgDdE9HdIRuHX9-mJviB4ORorKMOdaRhkwIEGRVEnuycxSn51W5BODRxMURd_AQLg1Dbj-CEqld9KOJmerimB7Kfq4W-z4hhpmsLrwtcVw62Fxs_FuKkdnVbYIX2X2l5g1kDV-yQOqWNUX6LHS9u8x8WHvLozPhiumdClXC_CUo2OAG8xOuONj2Em2tLO81s2xs6X9lisz9PlL1xbsAwU30g9wDmv-dDx2ElWs_kWNnftvmiEr7jlwV7Or8wATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEgiI4YAQEAEYHTIDqoIBOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSPgDq26N9kyVoergyr9scuSiqrPjYAK12_w633lTHac4iZLB9zjL6MJwY-kAtsuIdcY-2bJ0-5o1BZ1CTcQWeGAEgDg%26sig%3DAOD64_2uG1IRWbJfu_4i1MEpwdQWW-i0CA%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-DPYTGSEFlY9j2Jng-zko-I65-W0IUALhDmnnFxZEVaNrZ3p3FC-xV2SLmejcmALvN2liOTNeFbhR84rqKwzfEaYQ3ob993CbYxmSQdAWUShA3XeuB4v3XqvesPF0NaZQK-gUGE806o4NZOlB7S5eRrBAXOavmr1N6ATu3Z09VGGsVNPwU%26cry%3D1%26dbm_d%3DAKAmf-BiB2Q2V7jNG-7c7fCVfedvvnR72_CNwEt9bF3-a2M_XKx59_M-_BelsjEDF43ccnAZBt51S-xIPMDGyPw6yi9jjLDT3R0dNWb_vGszjK8M4SOLOxbhhW7FyDHIsXMYxQCy-CqswEq4WTYdR3hnpHnBZEtl7bV-uVsidpYcZpkJFHxc4Lc4jX3jVZTGxZzk4M-1A0mUZSV807e1H2B59F12Agl4ZfaSYmZCHfU7kdj7rLXrQoZHjp5cJbM2B-8Bnzjrb8yG4-fOdWANNQkxVmauxY4FiO0KcU5X2NjDgEFCbHWER6Hh5ihnWthWJwgVYUqrbTag5rIfXzSKUtnK9B0lkqR3STRvp9Vy4cfOVTi-Bi2r97gEjjsUGlct2T0lQED3BowTjNi5IoTdWjeP3YhprPwlYUyCpAqGwT10D6bLtGATCc9hxpl3rPPyymGllBpoQATo5WpKF-OtLHanRynCXhmD24iGmzK6mvPoT-7HiJGQCn70Ga6WfslnmnkzsshAGliaA9l64i5vKyNwLBmGCoX22Ebc0SPxO4LKuyZUbahKM7bxsLO9VSMocSm82ub5RsSxZA_gj5Fwx5EE_Ea_CN0iazofr4vbAdJkMlOELPIqTTG9r101C75KwDnhRJtHdriX%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=8198938578328&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
138.201.84.245200 OK 513 B URL HTTP/1.1 hal900025.redintelligence.net/request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=bbc196628d&subid=&uid=a27fc6d1d714f33d&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCh_xF89NVY530CqiTxdwPn-K6WMm5opxp5LTNztUP8C4QASCQt6ZPYMOEgICYGMgBCakC-zXpduCLsD6oAwGqBPYBT9Br6SLMLy1aVUifva7w_hoeQN73mng_SicZT_2d7qkfjvkzDXj8ZPz2-6ANhjf444nFOo9OyDyOgQgDdE9HdIRuHX9-mJviB4ORorKMOdaRhkwIEGRVEnuycxSn51W5BODRxMURd_AQLg1Dbj-CEqld9KOJmerimB7Kfq4W-z4hhpmsLrwtcVw62Fxs_FuKkdnVbYIX2X2l5g1kDV-yQOqWNUX6LHS9u8x8WHvLozPhiumdClXC_CUo2OAG8xOuONj2Em2tLO81s2xs6X9lisz9PlL1xbsAwU30g9wDmv-dDx2ElWs_kWNnftvmiEr7jlwV7Or8wATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEgiI4YAQEAEYHTIDqoIBOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSPgDq26N9kyVoergyr9scuSiqrPjYAK12_w633lTHac4iZLB9zjL6MJwY-kAtsuIdcY-2bJ0-5o1BZ1CTcQWeGAEgDg%26sig%3DAOD64_2uG1IRWbJfu_4i1MEpwdQWW-i0CA%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-DPYTGSEFlY9j2Jng-zko-I65-W0IUALhDmnnFxZEVaNrZ3p3FC-xV2SLmejcmALvN2liOTNeFbhR84rqKwzfEaYQ3ob993CbYxmSQdAWUShA3XeuB4v3XqvesPF0NaZQK-gUGE806o4NZOlB7S5eRrBAXOavmr1N6ATu3Z09VGGsVNPwU%26cry%3D1%26dbm_d%3DAKAmf-BiB2Q2V7jNG-7c7fCVfedvvnR72_CNwEt9bF3-a2M_XKx59_M-_BelsjEDF43ccnAZBt51S-xIPMDGyPw6yi9jjLDT3R0dNWb_vGszjK8M4SOLOxbhhW7FyDHIsXMYxQCy-CqswEq4WTYdR3hnpHnBZEtl7bV-uVsidpYcZpkJFHxc4Lc4jX3jVZTGxZzk4M-1A0mUZSV807e1H2B59F12Agl4ZfaSYmZCHfU7kdj7rLXrQoZHjp5cJbM2B-8Bnzjrb8yG4-fOdWANNQkxVmauxY4FiO0KcU5X2NjDgEFCbHWER6Hh5ihnWthWJwgVYUqrbTag5rIfXzSKUtnK9B0lkqR3STRvp9Vy4cfOVTi-Bi2r97gEjjsUGlct2T0lQED3BowTjNi5IoTdWjeP3YhprPwlYUyCpAqGwT10D6bLtGATCc9hxpl3rPPyymGllBpoQATo5WpKF-OtLHanRynCXhmD24iGmzK6mvPoT-7HiJGQCn70Ga6WfslnmnkzsshAGliaA9l64i5vKyNwLBmGCoX22Ebc0SPxO4LKuyZUbahKM7bxsLO9VSMocSm82ub5RsSxZA_gj5Fwx5EE_Ea_CN0iazofr4vbAdJkMlOELPIqTTG9r101C75KwDnhRJtHdriX%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=8198938578328&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
IP 138.201.84.245:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 3aeeb78259c054d8d925f5ed6389be36
1b1ab4e7f58762b84495c2e4fd39e1817d8ab537
a4bb6d1458b672df074cb7eadbdaa8a1b17c7ae1cb9af82905aa9059d365578e
GET /request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=bbc196628d&subid=&uid=a27fc6d1d714f33d&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCh_xF89NVY530CqiTxdwPn-K6WMm5opxp5LTNztUP8C4QASCQt6ZPYMOEgICYGMgBCakC-zXpduCLsD6oAwGqBPYBT9Br6SLMLy1aVUifva7w_hoeQN73mng_SicZT_2d7qkfjvkzDXj8ZPz2-6ANhjf444nFOo9OyDyOgQgDdE9HdIRuHX9-mJviB4ORorKMOdaRhkwIEGRVEnuycxSn51W5BODRxMURd_AQLg1Dbj-CEqld9KOJmerimB7Kfq4W-z4hhpmsLrwtcVw62Fxs_FuKkdnVbYIX2X2l5g1kDV-yQOqWNUX6LHS9u8x8WHvLozPhiumdClXC_CUo2OAG8xOuONj2Em2tLO81s2xs6X9lisz9PlL1xbsAwU30g9wDmv-dDx2ElWs_kWNnftvmiEr7jlwV7Or8wATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEgiI4YAQEAEYHTIDqoIBOgKAQPIIG2FkeC1zdWJzeW4tMjg4MTY0ODg5NDM5NTYyNIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSPgDq26N9kyVoergyr9scuSiqrPjYAK12_w633lTHac4iZLB9zjL6MJwY-kAtsuIdcY-2bJ0-5o1BZ1CTcQWeGAEgDg%26sig%3DAOD64_2uG1IRWbJfu_4i1MEpwdQWW-i0CA%26client%3Dca-pub-9058291854443881%26dbm_c%3DAKAmf-DPYTGSEFlY9j2Jng-zko-I65-W0IUALhDmnnFxZEVaNrZ3p3FC-xV2SLmejcmALvN2liOTNeFbhR84rqKwzfEaYQ3ob993CbYxmSQdAWUShA3XeuB4v3XqvesPF0NaZQK-gUGE806o4NZOlB7S5eRrBAXOavmr1N6ATu3Z09VGGsVNPwU%26cry%3D1%26dbm_d%3DAKAmf-BiB2Q2V7jNG-7c7fCVfedvvnR72_CNwEt9bF3-a2M_XKx59_M-_BelsjEDF43ccnAZBt51S-xIPMDGyPw6yi9jjLDT3R0dNWb_vGszjK8M4SOLOxbhhW7FyDHIsXMYxQCy-CqswEq4WTYdR3hnpHnBZEtl7bV-uVsidpYcZpkJFHxc4Lc4jX3jVZTGxZzk4M-1A0mUZSV807e1H2B59F12Agl4ZfaSYmZCHfU7kdj7rLXrQoZHjp5cJbM2B-8Bnzjrb8yG4-fOdWANNQkxVmauxY4FiO0KcU5X2NjDgEFCbHWER6Hh5ihnWthWJwgVYUqrbTag5rIfXzSKUtnK9B0lkqR3STRvp9Vy4cfOVTi-Bi2r97gEjjsUGlct2T0lQED3BowTjNi5IoTdWjeP3YhprPwlYUyCpAqGwT10D6bLtGATCc9hxpl3rPPyymGllBpoQATo5WpKF-OtLHanRynCXhmD24iGmzK6mvPoT-7HiJGQCn70Ga6WfslnmnkzsshAGliaA9l64i5vKyNwLBmGCoX22Ebc0SPxO4LKuyZUbahKM7bxsLO9VSMocSm82ub5RsSxZA_gj5Fwx5EE_Ea_CN0iazofr4vbAdJkMlOELPIqTTG9r101C75KwDnhRJtHdriX%26adurl%3D&documentReferer=https%3A%2F%2Fwww.sunstar.com.ph%2F&ancestorOrigins=null&random=8198938578328&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1 HTTP/1.1
Host: hal900025.redintelligence.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Connection: keep-alive
Cookie: 8lcfmzhxc8d6_uid=c0070aed9103e04e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:24 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 24 Oct 2022 00:53:24 +0200
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=c0070aed9103e04e; expires=Sat, 21-Jan-2023 23:53:24 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
X-NEORY-SubId: 46113800004501004438342012122025
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 513
Connection: close
Content-Type: application/x-javascript; charset=utf-8
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=158497
23.38.200.201200 OK 5.5 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=158497
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15844), with no line terminators
Hash 7725e8e949141c8ded449d86975d4c04
8cd8c314a2002cc26f821d331ab9512f52a551a2
a0c49aacf6f552bce544eb8516404f696918253cd934a6404ebeafd71f8780ae
GET /AdServer/js/user_sync.html?kdntuid=1&p=158497 HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Feb 2022 06:38:00 GMT
etag: "1300708-3de4-5d6ef246ef4cf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5549
content-type: text/html; charset=UTF-8
cache-control: max-age=82492
expires: Mon, 24 Oct 2022 22:48:16 GMT
date: Sun, 23 Oct 2022 23:53:24 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Tue, 14 Dec 2021 23:07:59 GMT
ETag: "40014-119-5d32342a551c0"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Sun, 23 Oct 2022 23:53:24 GMT
Connection: keep-alive
Vary: Accept-Encoding
contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU3VM41V&prvid=2034%2C2033%2C2031%2C2030%2C233%2C2028%2C2027%2C159%2C236%2C2025%2C237%2C117%2C359%2C97%2C55%2C99%2C3012%2C3010%2C244%2C201%2C2039%2C3007%2C246%2C4%2C203%2C326%2C9%2C208%2C2055%2C3020%2C173%2C251%2C175%2C178%2C3018%2C3017%2C214%2C3016%2C337%2C338%2C70%2C77%2C182%2C141%2C222%2C10000%2C228%2C80%2C108%2C229%2C109%2C307&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1
23.38.200.22200 OK 8.3 kB URL HTTP/2 contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU3VM41V&prvid=2034%2C2033%2C2031%2C2030%2C233%2C2028%2C2027%2C159%2C236%2C2025%2C237%2C117%2C359%2C97%2C55%2C99%2C3012%2C3010%2C244%2C201%2C2039%2C3007%2C246%2C4%2C203%2C326%2C9%2C208%2C2055%2C3020%2C173%2C251%2C175%2C178%2C3018%2C3017%2C214%2C3016%2C337%2C338%2C70%2C77%2C182%2C141%2C222%2C10000%2C228%2C80%2C108%2C229%2C109%2C307&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1
IP 23.38.200.22:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (18979)
Hash 65d400f06a24024665ea6e3663b6e06c
8e73e64179a68e097bc85b40f5dd7fee7ff9ed5a
049e9fc81786a15f1a4490c480e676bdc76994b0ed9fdcb77490111961665d56
GET /checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU3VM41V&prvid=2034%2C2033%2C2031%2C2030%2C233%2C2028%2C2027%2C159%2C236%2C2025%2C237%2C117%2C359%2C97%2C55%2C99%2C3012%2C3010%2C244%2C201%2C2039%2C3007%2C246%2C4%2C203%2C326%2C9%2C208%2C2055%2C3020%2C173%2C251%2C175%2C178%2C3018%2C3017%2C214%2C3016%2C337%2C338%2C70%2C77%2C182%2C141%2C222%2C10000%2C228%2C80%2C108%2C229%2C109%2C307&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1 HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-type: text/html; charset=UTF-8
x-mnet-hl2: E
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Tue, 25 Oct 2022 23:53:24 GMT
date: Sun, 23 Oct 2022 23:53:24 GMT
content-length: 8251
X-Firefox-Spdy: h2
acdn.adnxs.com/dmp/async_usersync.html
151.101.85.108200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 151.101.85.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 17053
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: W/"623de86a-cf34"
Expires: Wed, 28 Sep 2022 05:44:18 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 23 Oct 2022 23:53:24 GMT
Age: 69862
X-Served-By: cache-lga13626-LGA, cache-bma1652-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 3, 171734
X-Timer: S1666569205.648848,VS0,VE0
Vary: Accept-Encoding
hal900025.redintelligence.net/request_content.php?s=46113800004501004438342012122025&a=7c6c7215
138.201.84.245200 OK 2.3 kB URL HTTP/1.1 hal900025.redintelligence.net/request_content.php?s=46113800004501004438342012122025&a=7c6c7215
IP 138.201.84.245:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 40df0a148e78acc3381b6fcafe847d42
793461e649efa9d926df2484ec76d6c7983d2fda
26805f7b0cd39c46004993ecd79bb687ab72cce272b83f6c92c0f8760f3c1bec
GET /request_content.php?s=46113800004501004438342012122025&a=7c6c7215 HTTP/1.1
Host: hal900025.redintelligence.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Cookie: 8lcfmzhxc8d6_uid=c0070aed9103e04e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:24 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 24 Oct 2022 00:53:24 +0200
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2283
Connection: close
Content-Type: text/html; charset=utf-8
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
198.47.127.19200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP 198.47.127.19:0
File type ASCII text, with no line terminators
Hash 1cd634c11e079bef57ac4072e337e8dd
2700a5ba58016d1bb4b3b321ce6332a6626f7943
ec52e7f64c3c4bed7d6a6e590ae09d499af8353b0bf6b0f6b0a82131ea0f9cf3
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Sat, 21 Jan 2023 15:17:19 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Sun, 23 Oct 2022 23:53:24 GMT
content-length: 60
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.sunstar.com.ph%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
104.18.18.126302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.sunstar.com.ph%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
IP 104.18.18.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?d=https%3A%2F%2Fwww.sunstar.com.ph%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js-sec.indexww.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 23 Oct 2022 23:53:24 GMT
content-length: 0
location: /usermatch?d=https%3A%2F%2Fwww.sunstar.com.ph%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
cf-ray: 75ee64598f410b4d-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y1XT9DHfyouSP-ER2.nLfQAA; Path=/; Domain=casalemedia.com; Expires=Mon, 23 Oct 2023 23:53:24 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4428; Path=/; Domain=casalemedia.com; Expires=Sat, 21 Jan 2023 23:53:24 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4428; Path=/; Domain=casalemedia.com; Expires=Sat, 21 Jan 2023 23:53:24 GMT; Max-Age=7776000; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ib.adnxs.com/async_usersync?cbfn=queuePixels
37.252.173.215307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 23 Oct 2022 23:53:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 45499367-af6a-4737-98c3-936d63d5e8a4
Set-Cookie: uuid2=5907578819261884572; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 21-Jan-2023 23:53:24 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
js-sec.indexww.com/um/ixmatch.html
104.18.13.76200 OK 1.7 kB URL HTTP/2 js-sec.indexww.com/um/ixmatch.html
IP 104.18.13.76:0
Hash 0e2b023ce9e9af3f27453775caac4fdc
6d7e52b52bc01cb69d6726266f603462dad5433f
421d1b79f26121c4a09eca6a23ac887c85b827ef7329bbeca28b84253ab5f2ea
GET /um/ixmatch.html HTTP/1.1
Host: js-sec.indexww.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:24 GMT
content-type: text/html; charset=UTF-8
last-modified: Mon, 25 Jul 2022 19:18:30 GMT
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 934
expires: Mon, 24 Oct 2022 03:53:24 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee6458ac0cb4f3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.indexww.com/ht/htw-pixel.gif?0
104.18.12.76200 OK 43 B URL HTTP/2 cdn.indexww.com/ht/htw-pixel.gif?0
IP 104.18.12.76:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /ht/htw-pixel.gif?0 HTTP/1.1
Host: cdn.indexww.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssum-sec.casalemedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:24 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 24 Jan 2017 19:36:04 GMT
etag: "da1f1d-2b-546dc3a097100"
cache-control: public, max-age=86400
expires: Mon, 24 Oct 2022 23:53:24 GMT
edge-control: cache-maxage=1h
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 4960
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee645acbabb52d-OSL
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
37.252.173.215200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 23 Oct 2022 23:53:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 1fa26ca0-e784-4384-b218-5e43e0d0fda8
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
hal900025.redintelligence.net/viewability?s=46113800004501004438342012122025&a=404529ab&vb=m
138.201.84.245200 OK 0 B URL HTTP/1.1 hal900025.redintelligence.net/viewability?s=46113800004501004438342012122025&a=404529ab&vb=m
IP 138.201.84.245:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /viewability?s=46113800004501004438342012122025&a=404529ab&vb=m HTTP/1.1
Host: hal900025.redintelligence.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900025.redintelligence.net/request_content.php?s=46113800004501004438342012122025&a=7c6c7215
Cookie: 8lcfmzhxc8d6_uid=c0070aed9103e04e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 23:53:25 GMT
Server: Apache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
cdn.contentspread.net/24i/content/soberfb/EN/S-970x90.gif
88.99.70.21200 OK 24 kB URL HTTP/1.1 cdn.contentspread.net/24i/content/soberfb/EN/S-970x90.gif
IP 88.99.70.21:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 970 x 90\012- data
Hash 08e3fed830f839fc1c6afec171bd4b67
0669fa29f69e0465ec7875b07b99e4764fef1a21
38453bff795a12c184a0475a9442ce348cea9fcb8b70a8dbb4cce0f7f1c5820f
GET /24i/content/soberfb/EN/S-970x90.gif HTTP/1.1
Host: cdn.contentspread.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900025.redintelligence.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 23 Oct 2022 23:53:25 GMT
Content-Type: image/gif
Content-Length: 24426
Last-Modified: Mon, 23 Jul 2018 15:20:15 GMT
Connection: close
ETag: "5b55f22f-5f6a"
Accept-Ranges: bytes
ag.gbc.criteo.com/newidsd
178.250.6.117200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.117:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 101541
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/esp.js
104.22.53.86200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/esp.js
IP 104.22.53.86:0
GET /api/1.0/esp.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: 5LQAQr8F3AULqzk/jsaHaDQ6iWgTuTksk2l+HC/TzbmYEHVGqF7qwbdnNBtMT3SiVm2TV4sXkLM=
x-amz-request-id: BRS1FNVVMXC3SAAH
last-modified: Thu, 22 Sep 2022 13:13:44 GMT
etag: W/"52bb09fbb0a7c9360d68135b7668a1d7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 1139
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 75ee643cad88b518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
targeting.vdo.ai/allowed_url.php?type=json&url=sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&tag=v-sunstar-ph&domain=sunstar.com.ph
172.64.104.3200 OK 0 B URL HTTP/2 targeting.vdo.ai/allowed_url.php?type=json&url=sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&tag=v-sunstar-ph&domain=sunstar.com.ph
IP 172.64.104.3:0
GET /allowed_url.php?type=json&url=sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F&tag=v-sunstar-ph&domain=sunstar.com.ph HTTP/1.1
Host: targeting.vdo.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LmrykF6AkDxB6JcOVlsF7WMPTrYJ6GeYnD6pQh%2F%2FTycJRtZeFWM7k%2FIf%2FvjQwDQVWBuOsKhrFB4b7GtV5FdpnfMR%2FzpAuKv6hKfsK8wlD6rTkX%2FvBIZ9zsQs5ej%2F%2F9og%2B0IV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75ee643fdf477192-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/23/389840.jpg&w=100&q=100&f=webp&t=2
172.67.74.221200 OK 0 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/23/389840.jpg&w=100&q=100&f=webp&t=2
IP 172.67.74.221:0
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/23/389840.jpg&w=100&q=100&f=webp&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:22 GMT
content-type: image/webp
x-powered-by: PHP/7.4.14
x-fastcgi-cache: MISS
cache-control: max-age=31536000
cf-cache-status: MISS
last-modified: Sun, 23 Oct 2022 23:53:22 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k2NM4MHBC6fNDn15qyRV5JUQN%2B7pp%2Fcyex4mCBdZoRoxcakP%2FvsJD0cDbdgdaoDuMqwaH9%2BE%2B%2Bve4rd08dQQh4pWPZ7zHQ7rxXSNeIn%2BdkcUrEp7A9MGoDaZpDUHOmc71hVjdrOd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee644c88d6b50f-OSL
X-Firefox-Spdy: h2
www.sunstar.com.ph/ajax/article_count/1803509
192.124.249.104200 OK 0 B URL HTTP/2 www.sunstar.com.ph/ajax/article_count/1803509
IP 192.124.249.104:0
GET /ajax/article_count/1803509 HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509; _ga_NKNB9VQZRL=GS1.1.1666569197.1.0.1666569197.0.0.0; _ga=GA1.3.2043095802.1666569197; _gid=GA1.3.121813829.1666569197; _gat_gtag_UA_308175_1=1; _pbjs_userid_consent_data=3524755945110770; _pubcid=88563221-1df8-497f-9e24-f968de2cb7c1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:18 GMT
content-type: text/html; charset=UTF-8
x-sucuri-id: 19004
cache-control: no-cache, private
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b911c551065b8f78ad33b4c4564141be.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: pCdjPDrdmaqBn6mmnpId7PQ_fxQWNiyVs5rHX9daSG39XdcBUkvWfQ==
x-sucuri-cache: BYPASS
X-Firefox-Spdy: h2
src.trvdp.com/css/1273/5620.css
143.204.55.33403 Forbidden 0 B URL HTTP/2 src.trvdp.com/css/1273/5620.css
IP 143.204.55.33:0
GET /css/1273/5620.css HTTP/1.1
Host: src.trvdp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: application/xml
date: Sun, 23 Oct 2022 23:53:18 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PNcXeG7drFlowBUMG9Y7jC8P-1IKdeW6W6I48UTSdeY59aAFFOO0YQ==
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/24/389981.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 0 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/24/389981.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/24/389981.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:22 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1594
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 23098
last-modified: Sun, 23 Oct 2022 17:28:24 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Lp8VKpRUBvRv7JYAC6c5XQbMfFggsUHl6hSYLHF5f%2FpxfYyifJPEqDE3q3bg9fLKGfwXaaO4sUP0Jl73kt72r1U9mE%2BEvnGBP6aKYZtDs7NisTGB83tb3rvj3ca8muTEXIA6QbA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee644eb9c7b50f-OSL
X-Firefox-Spdy: h2
simage4.pubmatic.com/AdServer/SPug?o=1&p=158497&sc=1&u=B3CC87F9-40B9-44A3-9DEB-FD2F285E6E14&rs=3&gdpr=0&gdpr_consent=&us_privacy=
185.64.190.81200 OK 0 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=158497&sc=1&u=B3CC87F9-40B9-44A3-9DEB-FD2F285E6E14&rs=3&gdpr=0&gdpr_consent=&us_privacy=
IP 185.64.190.81:0
GET /AdServer/SPug?o=1&p=158497&sc=1&u=B3CC87F9-40B9-44A3-9DEB-FD2F285E6E14&rs=3&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:24 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=publishertagids&domain=sunstar.com.ph&sn=FirefoxSyncframe&so=0&topUrl=www.sunstar.com.ph&info=UXZqo180M0RITmhlJTJCZkMwOUJGQlhaMUN2czJ6Tng3MmNiSWpZM0o2cDB0bWo0ciUyQjQlMkZlbFpNeERidEhLajglMkJYclZlMkI&idsd=-500096580,365863215&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=publishertagids&domain=sunstar.com.ph&sn=FirefoxSyncframe&so=0&topUrl=www.sunstar.com.ph&info=UXZqo180M0RITmhlJTJCZkMwOUJGQlhaMUN2czJ6Tng3MmNiSWpZM0o2cDB0bWo0ciUyQjQlMkZlbFpNeERidEhLajglMkJYclZlMkI&idsd=-500096580,365863215&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=publishertagids&domain=sunstar.com.ph&sn=FirefoxSyncframe&so=0&topUrl=www.sunstar.com.ph&info=UXZqo180M0RITmhlJTJCZkMwOUJGQlhaMUN2czJ6Tng3MmNiSWpZM0o2cDB0bWo0ciUyQjQlMkZlbFpNeERidEhLajglMkJYclZlMkI&idsd=-500096580,365863215&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=publishertagids&topUrl=www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:21 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1059693
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.sunstar.com.ph%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
104.18.18.126200 OK 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.sunstar.com.ph%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
IP 104.18.18.126:0
GET /usermatch?d=https%3A%2F%2Fwww.sunstar.com.ph%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://js-sec.indexww.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:24 GMT
content-type: text/html
cf-ray: 75ee6459df670b4d-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.sunstar.com.ph/theme_sunstar/js/jquery-3.5.1.min.js
192.124.249.104200 OK 0 B URL HTTP/2 www.sunstar.com.ph/theme_sunstar/js/jquery-3.5.1.min.js
IP 192.124.249.104:0
GET /theme_sunstar/js/jquery-3.5.1.min.js HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
Cookie: device=web; USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; p_stats_monthly=1803509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:18 GMT
content-type: application/javascript; charset=utf-8
x-sucuri-id: 19004
last-modified: Mon, 13 Dec 2021 07:40:02 GMT
etag: W/"61b6f8d2-15f8f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80826ca6c4fd6005aeacf5a03c8d42e8.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: 6kIOsBUX4mozsWpzbqKd96ZiMYABoMKefiVLm95Z47R3-abeR3tkDg==
age: 1620316
x-sucuri-cache: HIT
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/18/388695.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 0 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/18/388695.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/18/388695.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:17 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1292
x-fastcgi-cache: MISS
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 61754
last-modified: Sun, 23 Oct 2022 06:44:03 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jR4JpH25ltS3MIMxohwQUr9%2B0Ehv65cVUIia5VAuZFpN%2BUg%2FTucXoYQy2OJRTOsr50p9Eco6BtTVH%2BGzEmnDzFVSAvIvj58Kv%2F%2F4Q%2BnylPgUKqbmcYYE8y41gSrgv5Btmbz9WS3a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee642a4e86b50f-OSL
X-Firefox-Spdy: h2
cnt.trvdp.com/js/1273/5620.js
143.204.55.46200 OK 0 B URL HTTP/2 cnt.trvdp.com/js/1273/5620.js
IP 143.204.55.46:0
GET /js/1273/5620.js HTTP/1.1
Host: cnt.trvdp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 27 Jun 2022 05:38:52 GMT
last-modified: Tue, 12 Oct 2021 09:44:40 GMT
etag: W/"062653e50bad07fbc15c5dc16e4d3e5a"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: peg6jV7VVCyjYnh8ou8R67RparGqUFo8Ar3ltsTZWpKaZTTLRkEr6g==
age: 10260866
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=Tq14z180M0RITmhlJTJCZkMwOUJGQlhaMUN2czJ6Tng3MmNiSWpZM0o2cDB0bWo0ciUyRk55Z0hHUCUyQlJyUzNQWGpENENiUDVt
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:21 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=UXZqo180M0RITmhlJTJCZkMwOUJGQlhaMUN2czJ6Tng3MmNiSWpZM0o2cDB0bWo0ciUyQjQlMkZlbFpNeERidEhLajglMkJYclZlMkI; expires=Fri, 17 Nov 2023 23:53:21 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 327410
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/24/389990.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 0 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/24/389990.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/24/389990.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:22 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1733
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 490
last-modified: Sun, 23 Oct 2022 23:45:12 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cUORquwUok8NMU9a0aI5RMgOSYoKCfhG7X%2Bh%2Bv2%2BFMefyI5H7w7l1JRsljkoC6LRckUiDRrLFuZ6mQAM9ARxzILgZ4R%2BTM6Gj9JsZE3%2Fau5SjHNgD8S9uqN%2FbuDwmFJO3p%2B%2BdCEz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee644ea9bcb50f-OSL
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/24/389983.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 0 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/24/389983.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/24/389983.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:22 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1732
x-fastcgi-cache: HIT
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 22212
last-modified: Sun, 23 Oct 2022 17:43:10 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nN0GPCwAZGqcB0H4hkqI4Hw3%2BW8m1dAz7WZRC%2BjhS%2BiZVDGX4gA4%2FwcmzADuCRUuVG9pUR0rtjWctChIbPSqlWTzLaiNkGSQIcJ6QaosWk4oKtIVVme1uAoA1rWaoqi%2FJFiuPzAg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee644ea9beb50f-OSL
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1
IP 178.250.0.157:0
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.sunstar.com.ph/
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:24 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://www.sunstar.com.ph
server-processing-duration-in-ticks: 481906
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
192.124.249.104200 OK 0 B URL HTTP/2 www.sunstar.com.ph/article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/
IP 192.124.249.104:0
Analyzer Verdict Alert fortinet Phishing
GET /article/1803509/cagayan-de-oro/opinion/is-mobile-legends-good/ HTTP/1.1
Host: www.sunstar.com.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:17 GMT
content-type: text/html; charset=UTF-8
x-sucuri-id: 19004
set-cookie: device=web; expires=Wed, 20-Oct-2032 23:53:16 GMT; Max-Age=315360000; path=/
USER_COUNTRY_CODE=%7B%22country_code%22%3A%22NO%22%2C%22country_name%22%3A%22%22%7D; expires=Tue, 22-Nov-2022 23:53:16 GMT; Max-Age=2592000; path=/
p_stats_monthly=1803509; expires=Tue, 22-Nov-2022 23:53:16 GMT; Max-Age=2592000; path=/
cache-control: no-cache, private
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b911c551065b8f78ad33b4c4564141be.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: 90oxzA8aNseshwX8uVFwoKpNvPRfHH1WWL4UvV-ST4Rzl7gYQLQxAA==
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/16/388225.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 0 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/16/388225.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/16/388225.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:17 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2561
x-fastcgi-cache: MISS
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 61754
last-modified: Sun, 23 Oct 2022 06:44:03 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DMMcXE7YDrkAqtjuO8Ccut8MAqiFKpdCnj2H7rjC6t1pwbRxZoRwULZnZpdoB6d675HvcsO8K%2F4v%2BcmxyWagkgRf%2BvN2NNXjv63CGh%2FnsjJImPOoyxdemCqmI2sCoDH%2BWebI7KRp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee642a4e85b50f-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP 142.250.74.10:0
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://e1ed8dcc4abbdc84ee6ad8a22b08d00e.safeframe.googlesyndication.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 23 Oct 2022 23:53:20 GMT
date: Sun, 23 Oct 2022 23:53:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stg.truvidplayer.com/p.php?sid=1273&wid=5620&cb=2364.4168493811403&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F
54.230.111.109200 OK 0 B URL HTTP/2 stg.truvidplayer.com/p.php?sid=1273&wid=5620&cb=2364.4168493811403&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F
IP 54.230.111.109:0
GET /p.php?sid=1273&wid=5620&cb=2364.4168493811403&pid=4256&url=https%3A%2F%2Fwww.sunstar.com.ph%2Farticle%2F1803509%2Fcagayan-de-oro%2Fopinion%2Fis-mobile-legends-good%2F HTTP/1.1
Host: stg.truvidplayer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 23 Oct 2022 23:53:21 GMT
server: nginx
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7VxkvFkxcULiEKo-tFr2XDCMfisHP3yYywvUHgiLYYuFCQgS7TpyNg==
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.110200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.110:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:20 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 110041
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.sunstar.com.ph%2F&domain=www.sunstar.com.ph&cw=1&pbt=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:24 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.sunstar.com.ph
server-processing-duration-in-ticks: 814343
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/18/388694.jpg&w=30&q=100&f=jpg&t=2
172.67.74.221200 OK 0 B URL HTTP/2 cdn4.premiumread.com/?url=https://sunstar.com.ph/uploads/images/2022/10/18/388694.jpg&w=30&q=100&f=jpg&t=2
IP 172.67.74.221:0
GET /?url=https://sunstar.com.ph/uploads/images/2022/10/18/388694.jpg&w=30&q=100&f=jpg&t=2 HTTP/1.1
Host: cdn4.premiumread.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:17 GMT
content-type: image/jpeg
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1292
x-fastcgi-cache: MISS
x-powered-by: PHP/7.4.14
cache-control: max-age=31536000
cf-cache-status: HIT
age: 61754
last-modified: Sun, 23 Oct 2022 06:44:03 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Esx5pBbGvfB4d01SEMoP87Pjq0G2IrapMvKmw0QtiNE5slQLIqsrs1UeHEy9kfCN9OO2W9FccLA1wg3Sf6DthvRKMkswwRl%2FfvE2EAlNRs1IxlInnR97d1ypyHvhwpzy72m6VBVv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee642a4e83b50f-OSL
X-Firefox-Spdy: h2
tag.adbro.me/configs/uvbky7iu.js
172.67.38.130200 OK 0 B URL HTTP/2 tag.adbro.me/configs/uvbky7iu.js
IP 172.67.38.130:0
GET /configs/uvbky7iu.js HTTP/1.1
Host: tag.adbro.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 23:53:17 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1398
last-modified: Thu, 13 Oct 2022 04:51:39 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 75159fcb-001e-00eb-02bf-dec06a000000
x-ms-version: 2009-09-19
cache-control: max-age=7200
cf-cache-status: HIT
age: 2063
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ee642c8df90b55-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
prebid.media.net/rtb/prebid?cid=8CU3VM41V
34.107.148.139200 OK 0 B URL HTTP/2 prebid.media.net/rtb/prebid?cid=8CU3VM41V
IP 34.107.148.139:0
POST /rtb/prebid?cid=8CU3VM41V HTTP/1.1
Host: prebid.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2411
Origin: https://www.sunstar.com.ph
Connection: keep-alive
Referer: https://www.sunstar.com.ph/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 23:53:18 GMT
content-type: application/json;charset=UTF-8
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: https://www.sunstar.com.ph
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2