firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 12 Oct 2022 19:49:16 GMT
Expires: Wed, 12 Oct 2022 20:33:11 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: sYMvjPe4fKa3rfmox3hacgTUUYp3W8PqEE5BEOIchqkXuEPnNiG3lg==
Age: 157
grupofiducia.com/public/panelfiles/iconos/newu/daaum/login.php?cmd=login_submit&id=7e47780bf316bd5ab733310327d551bb7e47780bf316bd5ab733310327d551bb&session=7e47780bf316bd5ab733310327d551bb7e47780bf316bd5ab733310327d551bb
34.98.99.30200 OK 2.6 kB URL HTTP/1.1 grupofiducia.com/public/panelfiles/iconos/newu/daaum/login.php?cmd=login_submit&id=7e47780bf316bd5ab733310327d551bb7e47780bf316bd5ab733310327d551bb&session=7e47780bf316bd5ab733310327d551bb7e47780bf316bd5ab733310327d551bb
IP 34.98.99.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 6e0e72649d50296f15557e931c1e05e9
a86f0f6aa222653013fe3c36d434f67057c85e64
895c0f60e59fdd84e53ab7ddb8866c8f49e45386632dca017efedd48313c9e0c
Analyzer Verdict Alert quad9 Sinkholed
GET /public/panelfiles/iconos/newu/daaum/login.php?cmd=login_submit&id=7e47780bf316bd5ab733310327d551bb7e47780bf316bd5ab733310327d551bb&session=7e47780bf316bd5ab733310327d551bb7e47780bf316bd5ab733310327d551bb HTTP/1.1
Host: grupofiducia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: openresty
Date: Wed, 12 Oct 2022 19:51:53 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Sat, 01 Oct 2022 13:49:32 GMT
ETag: "6338456c-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_OZfwuD/zmo/VB+keqmZzugLrev84/tXV/EaOa3zNsQIgDDh0ql1cG8U8mEL5S3Guy9E/BNA3bG4mu56FXV4O7w
Set-Cookie: system=PW;Path=/;Max-Age=86400;
caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
traffic_target=reseller;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e0602913f3d432ffbfaa654440972ee1
e5aaf31749e65875fd840091f9a3bba641de413d
5495ad212166703dcd1d17d7aa6ff4d1c40e73dfad703d24f00f60f35bc7d56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5495AD212166703DCD1D17D7AA6FF4D1C40E73DFAD703D24F00F60F35BC7D56C"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10500
Expires: Wed, 12 Oct 2022 22:46:53 GMT
Date: Wed, 12 Oct 2022 19:51:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bce7a9c1ff7500c4cfad5c3a3581a939
74b8dadf6ead0ce5d1d72e40a2eac554c5f5430c
6c840089371a0e25d60d0d76d6400348b0cdfb5967876c7b88e2b4a2aaf01a03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6C840089371A0E25D60D0D76D6400348B0CDFB5967876C7B88E2B4A2AAF01A03"
Last-Modified: Wed, 12 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6654
Expires: Wed, 12 Oct 2022 21:42:47 GMT
Date: Wed, 12 Oct 2022 19:51:53 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ImdR41efIMqJ7R+mkyVux2rwBcbwToZsAs7ZmLZsiYmi7sc0SV6f/n8cqcFxzbwgsGTBqrOBF5k=
x-amz-request-id: 5GC8X89MJMHBQ35K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 12 Oct 2022 19:01:23 GMT
age: 3030
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 12 Oct 2022 19:51:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
img1.wsimg.com/parking-lander/static/js/main.4e219663.chunk.js
23.36.79.16200 OK 58 kB URL HTTP/2 img1.wsimg.com/parking-lander/static/js/main.4e219663.chunk.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65459)
Hash feb46b3c6b7556a8bf123a5e87ffd2b5
aff2efba814012e9fe1586055599069f77e6a062
6f8d46c42987c0d7b471b54065e6b8fd6e965452ccc5c2fcd12f25e5362b5fd7
GET /parking-lander/static/js/main.4e219663.chunk.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://grupofiducia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ePBtPNltighZ03JBS/Xu3LYeSA7F1yzEuIL6FXs/YdArb0qYS2ZncKxSX45UyFn4EY1mPti8L0Y=
x-amz-request-id: Q5Y8PK0VHGD0XQRS
last-modified: Fri, 16 Sep 2022 16:45:04 GMT
etag: "87b518e8e45487e774f8d47f2dc0026f"
x-amz-server-side-encryption: AES256
x-amz-version-id: 2Wom95JLG5jhnN_DEOMzqRfOKsQDbi7Z
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 12 Oct 2023 19:51:53 GMT
date: Wed, 12 Oct 2022 19:51:53 GMT
content-length: 58202
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/parking-lander/static/js/2.5940ae1c.chunk.js
23.36.79.16200 OK 136 kB URL HTTP/2 img1.wsimg.com/parking-lander/static/js/2.5940ae1c.chunk.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65462)
Size 136 kB (135541 bytes)
Hash ed301c77cb4cfefcf054b77502912c41
0139ede39adaa61fdae8dfb9c7f6f8600025599b
10ebdcf812a393d96af2bf99a2e5ddf8381f37b2fa85698c4c25e7c03350712c
GET /parking-lander/static/js/2.5940ae1c.chunk.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://grupofiducia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Ft4hH0fy+dFAnl68G4QyXJ3pS5VY+/K35zEViDI+w7z+sTosafl2fAW4g9NrUhyUgJ7JKbozLe8=
x-amz-request-id: FBDK3VS1K6HF0NCR
last-modified: Fri, 16 Sep 2022 17:52:00 GMT
etag: "04bb6e8d9135d976f28e9ba68fbc6f67"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4zafttojs22R6rxiZs_M0ICLL.vyZxyd
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Thu, 12 Oct 2023 19:51:53 GMT
date: Wed, 12 Oct 2022 19:51:53 GMT
content-length: 135541
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ec8c3be288c030a2f21f77da38609a2c
5dce231ac91002054bbdbc6b19f6d1aa0d6c32bc
fa3abfefbd26a9339066ee03360614fc68312aefd2aa7e47e291589f426a7265
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b8e058c50dbe0871b6ccde4ed4cc8785
06b0c34d584624df99282c1fff1d766b9ed00e64
3319073b74402c41450cc9ca2162140dbe8b231db146cf8e77cb0b43fa461b4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 12 Oct 2022 19:29:41 GMT
Cache-Control: max-age=3600
Expires: Wed, 12 Oct 2022 19:46:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oircTWsPWLisCm9r4tbiwv6EMDBiUACzgaEsRFnTe-CQIISxIqtxog==
Age: 1333
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 402ad803e091b4cb1e13d8b48baaa5a6
34de4abb75781a12f573179febc21aea8d208878
6ad08a89bca4b01991f3a2a2780d02af7cb5bc1af11d42fac6253bc6c8e789ad
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 12 Oct 2022 19:51:54 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 12 Oct 2022 02:01:57 GMT
Expires: Thu, 13 Oct 2022 02:01:57 GMT
ETag: "34de4abb75781a12f573179febc21aea8d208878"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 402ad803e091b4cb1e13d8b48baaa5a6
34de4abb75781a12f573179febc21aea8d208878
6ad08a89bca4b01991f3a2a2780d02af7cb5bc1af11d42fac6253bc6c8e789ad
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 12 Oct 2022 19:51:54 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 12 Oct 2022 02:01:57 GMT
Expires: Thu, 13 Oct 2022 02:01:57 GMT
ETag: "34de4abb75781a12f573179febc21aea8d208878"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 63604bda613d148120c491e2f095255f
0fc63ecaff8a0f36dc2a82f3fb187725d0064d69
8478a84e8513fb9afb0d1c369b668bd37ca98943a624ac3a3a69165536bd1748
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5913
Cache-Control: max-age=136408
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:54 GMT
Etag: "63467599-1d7"
Expires: Fri, 14 Oct 2022 09:45:22 GMT
Last-Modified: Wed, 12 Oct 2022 08:06:49 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
api.aws.parking.godaddy.com/v1/parking/landers/grupofiducia.com?trafficTarget=reseller
44.193.148.120200 OK 0 B URL HTTP/2 api.aws.parking.godaddy.com/v1/parking/landers/grupofiducia.com?trafficTarget=reseller
IP 44.193.148.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/parking/landers/grupofiducia.com?trafficTarget=reseller HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-request-id
Referer: http://grupofiducia.com/
Origin: http://grupofiducia.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 12 Oct 2022 19:51:54 GMT
content-length: 0
set-cookie: AWSALB=dZYu9OZXqqFRevjLwmIaZ9VIeGFEKyKQuiawJ0lZ43vxuxxp5lzUTQQqVmCwxa0Znv7QTE5meVGoE5HinKWymkBeB+WwyNtNgu/en8Wg8JJCcy6WfcuNyPt4BcBa; Expires=Wed, 19 Oct 2022 19:51:54 GMT; Path=/
AWSALBCORS=dZYu9OZXqqFRevjLwmIaZ9VIeGFEKyKQuiawJ0lZ43vxuxxp5lzUTQQqVmCwxa0Znv7QTE5meVGoE5HinKWymkBeB+WwyNtNgu/en8Wg8JJCcy6WfcuNyPt4BcBa; Expires=Wed, 19 Oct 2022 19:51:54 GMT; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-headers: X-Request-Id
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: http://grupofiducia.com
access-control-max-age: 600
x-request-id: aaOSlGM0
X-Firefox-Spdy: h2
api.aws.parking.godaddy.com/v1/parking/landers/grupofiducia.com?trafficTarget=reseller
44.193.148.120200 OK 984 B URL HTTP/2 api.aws.parking.godaddy.com/v1/parking/landers/grupofiducia.com?trafficTarget=reseller
IP 44.193.148.120:0
File type JSON data\012- , ASCII text, with very long lines (983)
Hash 07a124d3a827b86fd70b15dc9bf8972b
a0657dcef53595ff9c5bf009314ad853ed0745e8
fa4aa55d37f3ddfaef6a176ed3009b16e8a125459f3bd93ba02d92dc349fd927
GET /v1/parking/landers/grupofiducia.com?trafficTarget=reseller HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://grupofiducia.com/
X-Request-Id: 0ce63b5e-d1df-4372-9c18-526bc1c71022
Origin: http://grupofiducia.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 12 Oct 2022 19:51:54 GMT
content-type: application/json
content-length: 984
set-cookie: AWSALB=zsxvlXd0M3wW9o9JF5L0yvj79B6ojKo9mHi3Y0h1LMOJaRTO1f1yXNE7ojJvGw1AX7UF5xM90y29xkhg6M1NBDdn7oh8vsV0smjuMVU7N/T5MxdMBtwCzpxdfTsM; Expires=Wed, 19 Oct 2022 19:51:54 GMT; Path=/
AWSALBCORS=zsxvlXd0M3wW9o9JF5L0yvj79B6ojKo9mHi3Y0h1LMOJaRTO1f1yXNE7ojJvGw1AX7UF5xM90y29xkhg6M1NBDdn7oh8vsV0smjuMVU7N/T5MxdMBtwCzpxdfTsM; Expires=Wed, 19 Oct 2022 19:51:54 GMT; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin: http://grupofiducia.com
access-control-max-age: 600
x-request-id: 0ce63b5e-d1df-4372-9c18-526bc1c71022
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.186.209.73101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.209.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gesWD/YYEv1XGcK76ajekA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Rzi7vNlEiQC9UaYhaiMSflH6iWM=
www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
104.110.14.92200 OK 34 kB URL HTTP/1.1 www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
IP 104.110.14.92:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (22289)
Hash 99b6dc04a033a5db1e65c40a29034060
861c217e03dfb4b603d1d414b8ba7cb89d54f477
04f929689ce1acb34d70e11091d498c7f3c7beab1ffdef57f5693bb8341d4211
GET /?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com HTTP/1.1
Host: www.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://grupofiducia.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty/1.15.8.2
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15724800; includeSubDomains
x-powered-by: Slay
Content-Encoding: gzip
X-Akamai-Transformed: 9 - 0 pmb=mTOE,1
Expires: Wed, 12 Oct 2022 19:51:54 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 12 Oct 2022 19:51:54 GMT
Content-Length: 34247
Connection: keep-alive
Set-Cookie: market=en-US; Max-Age=31536000; Domain=.secureserver.net; Path=/; Expires=Thu, 12 Oct 2023 19:51:54 GMT; Secure; SameSite=None
currency=USD; Max-Age=31536000; Domain=.secureserver.net; Path=/; Expires=Thu, 12 Oct 2023 19:51:54 GMT; Secure; SameSite=None
_abck=E4426D7511C332C0E7D2710A43CEB8F7~-1~YAAQ3U0kFy41oamDAQAA5ebAzQiO6aLiVZOZIMcGRMXNFGhLSOlNhR7+2KMwwU5pX7XRsNukOJ1KuLvPTw0VL9hGzXkE0a5C663h3pZRxWZm1r57VcosbYGKwyfup1jUMfoJicc2Pve6ApYJ4SUIDzxHrpxNRlL9S2aJd34boOvBCUfvsS0n27bPLt5kdOMV4TfC5C/pdRtbe1hfUqYqhWEHXnfnBP7Ls9dIsqPO2T69VNDqhmAq0kLpOCDqjVBF6mAMdZ1QRxy6havQmhxonIxntkR4wUz3YycrDMfMaJgvFck4Q2Z+dBVHXkkiN5eiPcGrqzV7r2pnkm8bLHxd/mxzfoH6g9axBNEDyT3cclnzyEO+5WhWY1TzW6QGahNQcZc=~-1~-1~-1; Domain=.secureserver.net; Path=/; Expires=Thu, 12 Oct 2023 19:51:54 GMT; Max-Age=31536000; Secure
ak_bmsc=2FB87470B3964936D2DF737606120BA3~000000000000000000000000000000~YAAQ3U0kFy81oamDAQAA5ebAzRFjCOFXDR64c6MYiHW827vtgznAEFn9ALJg2m4nddElY2T9d7PajesxWlLfqdDIqxbCqFmqb/nJToEzb0nHPBNtPN3oWRtztQAWgM2ypCrX7R2tSxV4cCrQiAn8QkU2LMApcH39aZaBpXf5liaDqMxzY/1WUA5mAzo8T0zPvAnaE9IWu6LCWdF5CaCNJFEnS0uhPx/aqyPAcNba/6QRD/owEitIb7EzQnguPa7Gj/xJ47E3Zt975R+SOQq1NphSKnLG27smB5LBtH2dlAfWDmBVgnselKTQhRU+9Juu0dwTZ8FavG3mf79VmaUANJKKFJQXpKEDKXQaZVWPOnWWXoG430ON18d9ky9vuab0a6BwwR0=; Domain=.secureserver.net; Path=/; Expires=Wed, 12 Oct 2022 21:51:54 GMT; Max-Age=7200; HttpOnly
bm_sz=E9B649382C15EBF51330DD4949D69894~YAAQ3U0kFzA1oamDAQAA5ebAzRHnz1IAmAIFfhwxXviLBkRh1Bi2bGZ7/JMTZh/NRTM4+YUIMZrHJjSqUKFRQBBi0dqhifcgoyOuqm3v2XS0lxvEc847jJIvlV3j1PwPM3Y/2qkZ3CePl7wo/uODeTdi1wwxM/FlA2B7iEyvqB7WqoL8GRFZ0b4H5bEuWbcO5KaQMp0CmQ6EGoTCk/g7WfM07oz8dWGyl4CJweq2USliD8VZE2Ac0rG1JexU+NUBG47J14qXdVuNEbzVMInjFHpG5xR2MIk1KAoWy4fK8m7nkhPRwXKkbX8=~4538678~3552833; Domain=.secureserver.net; Path=/; Expires=Wed, 12 Oct 2022 23:51:54 GMT; Max-Age=14400
X-ARC: 101
www.secureserver.net/PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB
104.110.14.92200 OK 74 kB URL HTTP/1.1 www.secureserver.net/PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB
IP 104.110.14.92:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 79b418979a90751e784f94e0782709c1
a0ff7accc34f6241b6d8fd1639a610849c4cd219
7014068c829036bfd9c3f0d1f1062d08ff6dea71d0036d418088f1f5d7347879
GET /PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB HTTP/1.1
Host: www.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
Cookie: market=en-US; currency=USD; _abck=E4426D7511C332C0E7D2710A43CEB8F7~-1~YAAQ3U0kFy41oamDAQAA5ebAzQiO6aLiVZOZIMcGRMXNFGhLSOlNhR7+2KMwwU5pX7XRsNukOJ1KuLvPTw0VL9hGzXkE0a5C663h3pZRxWZm1r57VcosbYGKwyfup1jUMfoJicc2Pve6ApYJ4SUIDzxHrpxNRlL9S2aJd34boOvBCUfvsS0n27bPLt5kdOMV4TfC5C/pdRtbe1hfUqYqhWEHXnfnBP7Ls9dIsqPO2T69VNDqhmAq0kLpOCDqjVBF6mAMdZ1QRxy6havQmhxonIxntkR4wUz3YycrDMfMaJgvFck4Q2Z+dBVHXkkiN5eiPcGrqzV7r2pnkm8bLHxd/mxzfoH6g9axBNEDyT3cclnzyEO+5WhWY1TzW6QGahNQcZc=~-1~-1~-1; ak_bmsc=2FB87470B3964936D2DF737606120BA3~000000000000000000000000000000~YAAQ3U0kFy81oamDAQAA5ebAzRFjCOFXDR64c6MYiHW827vtgznAEFn9ALJg2m4nddElY2T9d7PajesxWlLfqdDIqxbCqFmqb/nJToEzb0nHPBNtPN3oWRtztQAWgM2ypCrX7R2tSxV4cCrQiAn8QkU2LMApcH39aZaBpXf5liaDqMxzY/1WUA5mAzo8T0zPvAnaE9IWu6LCWdF5CaCNJFEnS0uhPx/aqyPAcNba/6QRD/owEitIb7EzQnguPa7Gj/xJ47E3Zt975R+SOQq1NphSKnLG27smB5LBtH2dlAfWDmBVgnselKTQhRU+9Juu0dwTZ8FavG3mf79VmaUANJKKFJQXpKEDKXQaZVWPOnWWXoG430ON18d9ky9vuab0a6BwwR0=; bm_sz=E9B649382C15EBF51330DD4949D69894~YAAQ3U0kFzA1oamDAQAA5ebAzRHnz1IAmAIFfhwxXviLBkRh1Bi2bGZ7/JMTZh/NRTM4+YUIMZrHJjSqUKFRQBBi0dqhifcgoyOuqm3v2XS0lxvEc847jJIvlV3j1PwPM3Y/2qkZ3CePl7wo/uODeTdi1wwxM/FlA2B7iEyvqB7WqoL8GRFZ0b4H5bEuWbcO5KaQMp0CmQ6EGoTCk/g7WfM07oz8dWGyl4CJweq2USliD8VZE2Ac0rG1JexU+NUBG47J14qXdVuNEbzVMInjFHpG5xR2MIk1KAoWy4fK8m7nkhPRwXKkbX8=~4538678~3552833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Last-Modified: Tue, 13 Sep 2022 17:56:24 GMT
ETag: "49609495194dddb789ecd77257a616988c81260b93edb4480f8c7a14a99a43af"
Content-Type: application/javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 73501
Date: Wed, 12 Oct 2022 19:51:54 GMT
Connection: keep-alive
Cache-Control: max-age=21600
X-ARC: 101
Set-Cookie: _abck=E4426D7511C332C0E7D2710A43CEB8F7~-1~YAAQ3U0kFzE1oamDAQAALefAzQhy9TDi8mim+4k1sn0C/CJPfsRLthzTfyH1uXB6WlWitTT5lBDVYqMUH5yCAHytk27lxLeWnHKt04yFQLEkTrT3DzgFDOlyhVJZNYZycmzzT8wejViG7YN39IOccvHoIqiZFwhZ2kcVQn6Z8Df90esE5PjW8R044cz68FTthcYweDXkwsonRPLiZf8lwgsWhnJb0teM08C9AQRzL0pW+Lt+vkoEDIBZwSfTfvXzZqwj3hrBP2Kyg3Ngqnq1YpqzJCDRt1ktUtnxsqEs+5v3WJHDdqczFEZAuaEbfYew3If7m7JMzPwUcwRQOWPJV6DPu5NiCwn8YKbZKRlpl2WGJLUg/xOLSW2RpKOGXhPZ1+3pISJUSzpiP6DSoQdGOg==~-1~-1~-1; Domain=.secureserver.net; Path=/; Expires=Thu, 12 Oct 2023 19:51:54 GMT; Max-Age=31536000; Secure
img1.wsimg.com/storefront/static/scripts/runtime.a8972dcb.js
23.36.79.43200 OK 1.8 kB URL HTTP/2 img1.wsimg.com/storefront/static/scripts/runtime.a8972dcb.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
Hash 018ee16c154efd3b93a7ec1392c394db
96523298515ab354e95fd27897384b8bacf881fa
b0fcdf55753a39734b6c3986305d453803f71cd0427e1778731af21debf423f7
GET /storefront/static/scripts/runtime.a8972dcb.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=31536000, immutable
etag: W/"18a4-183a239f1d0"
content-encoding: gzip
date: Wed, 12 Oct 2022 19:51:54 GMT
content-length: 1778
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/storefront/static/stylesheets/styles.db302429.css
23.36.79.43200 OK 2.9 kB URL HTTP/2 img1.wsimg.com/storefront/static/stylesheets/styles.db302429.css
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (10729)
Hash 0326074b98cbff8839d74327bac3143c
3308006ed933b86de64375277ae05a702b2b97f9
6329eb4e76c85d862f5b19b9e40de8d18c22f3326366cb993c4c691ab7235341
GET /storefront/static/stylesheets/styles.db302429.css HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=31536000, immutable
etag: W/"2a18-183a239f1d0"
content-encoding: gzip
date: Wed, 12 Oct 2022 19:51:54 GMT
content-length: 2916
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/storefront/static/scripts/main.db302429.js
23.36.79.43200 OK 42 kB URL HTTP/2 img1.wsimg.com/storefront/static/scripts/main.db302429.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (3727)
Hash 36be54fd1dbf9acad7a77e54bf26fdc3
73998b65c42b99bce8470f86a393827c1c253f51
aacaa900e5da54e9cfa6574e095f51b8410e51193e3769f94109839868dc65a0
GET /storefront/static/scripts/main.db302429.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=31536000, immutable
etag: W/"37f0c-183a239f1d0"
content-encoding: gzip
date: Wed, 12 Oct 2022 19:51:54 GMT
content-length: 41999
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/44d932388379ed069764c5750d8799fe/tcc.min.js
23.36.79.43200 OK 27 kB URL HTTP/2 img6.wsimg.com/wrhs/44d932388379ed069764c5750d8799fe/tcc.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash dd0c683c8d5b3e380a27f6969a050125
dc9187b3640cd2f95102ffd73b749bf3777e8f66
13e88d30bab1891aa663af57958f19985539a453c65020e16955cedc2447aff1
GET /wrhs/44d932388379ed069764c5750d8799fe/tcc.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "44d932388379ed069764c5750d8799fe"
last-modified: Thu, 06 Oct 2022 02:34:14 GMT
vary: Accept-Encoding
x-amz-id-2: MH19aTjn2pzF2GTT6iWVncVRVZG9hQQVG4ZSbr17xjT97CEynoT20Fq7ds1cF5z105dr9kAx/5c=
x-amz-request-id: H19QZEBBT3TMF6KC
x-amz-server-side-encryption: AES256
x-amz-version-id: SWJkKvYpxB1QWWYgeSvVgp_G3zLUb1Zz
content-length: 26759
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:54 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/1ebd0d871fdb8f4db4f47056fc422311/vendor.min.js
23.36.79.43200 OK 80 kB URL HTTP/2 img6.wsimg.com/wrhs/1ebd0d871fdb8f4db4f47056fc422311/vendor.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65472)
Hash 6ce9741e2e98fd39ff68ad4ecf02c533
9bff607437de7cd76c9c94006df3e62d801680e8
881a79b7f681bd1e9c1317300cbe29a0cb9f537d6da6115c4b7cc6ef7d25d8a2
GET /wrhs/1ebd0d871fdb8f4db4f47056fc422311/vendor.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "1ebd0d871fdb8f4db4f47056fc422311"
last-modified: Mon, 22 Aug 2022 19:23:03 GMT
vary: Accept-Encoding
x-amz-id-2: OGTAyuGuFsp0Azc/J70rhE+RvIrfAChRWK6YuZPySNm9DeImQ4d8o7Dh269jM0auyNHlYAY0Mhk=
x-amz-request-id: VXZ2AD17ETBENFDQ
x-amz-server-side-encryption: AES256
x-amz-version-id: 3XW0ZWutZ5r5VPSV0nOh.JW7bG1HlJ50
content-length: 80239
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:54 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/82e1c1e66ca2a3ae2d0f7070ff70aae7/uxcore2.min.js
23.36.79.43200 OK 22 kB URL HTTP/2 img6.wsimg.com/wrhs/82e1c1e66ca2a3ae2d0f7070ff70aae7/uxcore2.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9ec5894f37d0e244899b7a7d9ebc0cf9
bb90e0ce4f693fcabb9934ecb982ade9e6fffa91
1d5dd41527e975e91f7ae30addc59cf00fb13e36def2e4d4d24a70ac712bf333
GET /wrhs/82e1c1e66ca2a3ae2d0f7070ff70aae7/uxcore2.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "82e1c1e66ca2a3ae2d0f7070ff70aae7"
last-modified: Mon, 22 Aug 2022 19:21:33 GMT
vary: Accept-Encoding
x-amz-id-2: sGVMuK0+xO1MR0XwAM1Wof3icjzJUvzSXH9+y0fw1klJLVOa3PhCJfHx+kiuvwJXlmWYi92kZRY=
x-amz-request-id: Y2GDHTTXJ111NJ32
x-amz-server-side-encryption: AES256
x-amz-version-id: 2c_7MLkC82cFBEYX0YPAdHtrit9Ozl0v
content-length: 21609
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:54 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/0a3c9ed73591ea11f77b51a04edf210f/heartbeat.js
23.36.79.43200 OK 1.1 kB URL HTTP/2 img6.wsimg.com/wrhs-next/0a3c9ed73591ea11f77b51a04edf210f/heartbeat.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2513)
Hash 9952df62c7de1874228d188a98340128
87736ead3b422d0f5ff3a828651c706a30346509
be2911a7ec305f60395806ad4d345b639a93710dd727145290e030c611ac6f4f
GET /wrhs-next/0a3c9ed73591ea11f77b51a04edf210f/heartbeat.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "0a3c9ed73591ea11f77b51a04edf210f"
last-modified: Wed, 18 May 2022 22:47:51 GMT
vary: Accept-Encoding
x-amz-id-2: aMj8TiOe9ZHkHMBl7+D79Tk3urszUftxyUUNMsLqvBtzMzzkAkH8Sdx2jGZRMPP5wryKOL4z/Uw=
x-amz-request-id: TQF2MMDRR7Y3E189
x-amz-server-side-encryption: AES256
x-amz-version-id: FzRQzzocPGwGQeIpdbfTJTNFUZkhGnos
content-length: 1060
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:54 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/204fd49e3c1776f788dd66cc6b9fdc27/salesheader.min.js
23.36.79.43200 OK 62 kB URL HTTP/2 img6.wsimg.com/wrhs/204fd49e3c1776f788dd66cc6b9fdc27/salesheader.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (4324)
Hash 967334a6b18e763aa64c220006ca5c7e
a81215f41cb595e69ebc3fb72580b0dd99aa7673
b28acb17e94fbeaf232663dd895b73eb41a0b81fb6d99eb9ce60928c7893208e
GET /wrhs/204fd49e3c1776f788dd66cc6b9fdc27/salesheader.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "204fd49e3c1776f788dd66cc6b9fdc27"
last-modified: Thu, 06 Oct 2022 17:00:31 GMT
vary: Accept-Encoding
x-amz-id-2: cjiUrvCon4Nt6QVT4I0Q/JquAL/7nXeffgOzUtCAcEp64NHyx5Crt3ZIsSS5BoAwsEfCKMu+rME=
x-amz-request-id: GVJ0T764XAMZYKH0
x-amz-server-side-encryption: AES256
x-amz-version-id: I91_xMsuAtvbyvqG5ZLiptjgomCvEPDa
content-length: 62332
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:54 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=7
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/poly/v3/polyfill.min.js?features=Promise,Promise.prototype.finally,Intl.~locale.en-US&rum=0&unknown=polyfill&flags=gated
23.36.79.43200 OK 94 B URL HTTP/2 img6.wsimg.com/poly/v3/polyfill.min.js?features=Promise,Promise.prototype.finally,Intl.~locale.en-US&rum=0&unknown=polyfill&flags=gated
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
Hash eb8b0ba88b3acfb11ea81d5c02be9108
4b7f14cc2db25abdbe25472934b7469b2488f9d4
7237f15a97fe102c6ed13eadc0f7980da03cd06a20dfb7c7b8050e60dada617d
GET /poly/v3/polyfill.min.js?features=Promise,Promise.prototype.finally,Intl.~locale.en-US&rum=0&unknown=polyfill&flags=gated HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 94
access-control-allow-methods: GET,HEAD,OPTIONS
content-type: text/javascript; charset=utf-8
last-modified: Sat, 08 Oct 2022 08:16:21 GMT
content-encoding: br
accept-ranges: bytes
useragent_normaliser: firefox/96.0.0
server-timing: cache-osl6521, PASS, fastly;desc="Edge time";dur=17, edge; dur=11, origin; dur=26, cdn-cache; desc=MISS
cache-control: public, max-age=172800, s-maxage=31536000
expires: Fri, 14 Oct 2022 19:51:54 GMT
date: Wed, 12 Oct 2022 19:51:54 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/4a8724cdbaf08af82263938abc8525e4/uxcore2.min.css
23.36.79.43200 OK 25 kB URL HTTP/2 img6.wsimg.com/wrhs/4a8724cdbaf08af82263938abc8525e4/uxcore2.min.css
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash c04aa31be35d824a202cbce8994c6384
cddd331b79deedb60a0a041b30267eeac37f5d4f
ff295cc60274cd3725fc15a1c3b3fdf3b7178627c18a7a7db04bb0e6d4b72f07
GET /wrhs/4a8724cdbaf08af82263938abc8525e4/uxcore2.min.css HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
accept-ranges: bytes
content-encoding: br
etag: "0efbb57a28f3f55f7da44b7274ac8bce"
last-modified: Mon, 22 Aug 2022 19:57:59 GMT
vary: Accept-Encoding
x-amz-id-2: CAlxtFIBew2+vJH+BSxf/3YjDzAIXDEDoqmAmO/EyXQqyHmLlvSb4wS5dHllmTgOwJwaZxz2iTk=
x-amz-request-id: 458WDKF157T1KT1T
x-amz-server-side-encryption: AES256
x-amz-version-id: vS.FJEe_wRSRKX5XUWRxsggRWUTkPGx3
content-length: 25284
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:54 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=2
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/75419c3c9326d8f545cf8041e464cb68/salesheader.min.css
23.36.79.43200 OK 16 kB URL HTTP/2 img6.wsimg.com/wrhs/75419c3c9326d8f545cf8041e464cb68/salesheader.min.css
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash ca6f68ab8dda1c1b70ebd4378bf46c6f
4e81ebb06d296a2bf4bf3903bb32e1fee873d6d7
7f573fb09f19d25fb352271cc13e89493ad3b6b63595444816d06655e46f6d07
GET /wrhs/75419c3c9326d8f545cf8041e464cb68/salesheader.min.css HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
accept-ranges: bytes
content-encoding: br
etag: "e1142544fa546cea37581b206911196d"
last-modified: Thu, 06 Oct 2022 16:46:47 GMT
vary: Accept-Encoding
x-amz-id-2: HGuChvqeYJ6z36vMkGFHtl2H7QQq5MU69Xz5HA86c1bSUTle+ep+gs7Hh13bBy9H5eeIoK6A2o4=
x-amz-request-id: YMTZ5ZQB8ZME90SC
x-amz-server-side-encryption: AES256
x-amz-version-id: VYOpMEWFIcX9.jZbhkuDc4ATpb93rvRx
content-length: 16442
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:55 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=4
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/storefront/static/scripts/vendors~main.9bc9eb16.js
23.36.79.43200 OK 221 kB URL HTTP/2 img1.wsimg.com/storefront/static/scripts/vendors~main.9bc9eb16.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (804), with CRLF, LF line terminators
Size 221 kB (221025 bytes)
Hash 5475f86f546ce09a8a0edf26c836530e
947a9300d5733403793651ab80f43591db35f4c5
e0711736adac9047242d9dd800147c77b64c314972958970bd219a5c841e877f
GET /storefront/static/scripts/vendors~main.9bc9eb16.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=31536000, immutable
etag: W/"ec0f0-183a239f1d0"
content-encoding: gzip
date: Wed, 12 Oct 2022 19:51:55 GMT
content-length: 221025
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
23.36.79.43200 OK 7.5 kB URL HTTP/2 img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (24676)
Hash b8a5a228a358454084c34dd1cf431c61
37aa5fe6e083b8147156ca66a1993a7bd74e8a61
06fae5ccf58a27a8e2ae6a0e7722f42db507c1873751f587cddd090810d94492
GET /wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ce554d2333f3801abafb32da18213ff7"
last-modified: Mon, 17 Jan 2022 17:21:37 GMT
vary: Accept-Encoding
x-edgeconnect-midmile-rtt: 8
x-edgeconnect-origin-mex-latency: 357
x-amz-id-2: nldPfdb2FYbpxPRfMYRSd83AOL7ZmlBdZQSm5hguJELKdfn8+sza0oLEpTYjiKd2JeD3gDplFHw=
x-amz-request-id: RJ3J3PMANG6125DE
x-amz-server-side-encryption: AES256
x-amz-version-id: F4fYptXBkP0fCCCWFLfVGE1HXlZmORny
content-length: 7498
x-edgeconnect-cache-status: 1
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:55 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash befa75dbbe9d5dfa501f9c1f03b7cdfa
73814c47bdcd6bebffc963b71d0a20fb361fad50
76b8f843416709a64e030343fbea3e04b9ee9faf2872ddba29f7c8ea28041e28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-115508484-1&l=_analyticsDataLayer
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-115508484-1&l=_analyticsDataLayer
IP 142.250.74.168:0
File type ASCII text, with very long lines (1952)
Hash f3f9aa9175e22b941e37f066b9871590
a44bcae9003d3d24abfcbfd57aea7e00b1b9fa31
d6a91e0d757216a862fe04e212425710cea335f6f47f9164c0b193252ae0fcf2
GET /gtag/js?id=UA-115508484-1&l=_analyticsDataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 12 Oct 2022 19:51:55 GMT
expires: Wed, 12 Oct 2022 19:51:55 GMT
cache-control: private, max-age=900
last-modified: Wed, 12 Oct 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42409
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash befa75dbbe9d5dfa501f9c1f03b7cdfa
73814c47bdcd6bebffc963b71d0a20fb361fad50
76b8f843416709a64e030343fbea3e04b9ee9faf2872ddba29f7c8ea28041e28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img6.wsimg.com/wrhs/a7c429a13478ffbcddb347fca608a88a/vendors~browser-deprecation-banner.header-chunk.min.js
23.36.79.43200 OK 6.7 kB URL HTTP/2 img6.wsimg.com/wrhs/a7c429a13478ffbcddb347fca608a88a/vendors~browser-deprecation-banner.header-chunk.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7702)
Hash 6bd112a3311a17922d57100509902040
d12c47c9033d9ece4e0a78c73a6349dc8e466705
340afe2a7bf8e44b5313de209722dd1e2cd91540f20affe35893094fcb78ff05
GET /wrhs/a7c429a13478ffbcddb347fca608a88a/vendors~browser-deprecation-banner.header-chunk.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "a7c429a13478ffbcddb347fca608a88a"
last-modified: Wed, 10 Aug 2022 17:10:24 GMT
vary: Accept-Encoding
x-amz-id-2: /BVnSTnZHDXSOLEui7G+RAQHPGaQyx5t2ylDDI/ItnkvinlUoaUa9A3N0dh3lqUAMDHxDvR8ENYxvlAUm7unbQ==
x-amz-request-id: BNSBY9CT087GE9VR
x-amz-server-side-encryption: AES256
x-amz-version-id: WRCH5zC50IeYVnUxyBc1_gXQ2FqMJ9R3
content-length: 6708
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:55 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.secureserver.net/PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB
104.110.14.92201 Created 18 B URL HTTP/1.1 www.secureserver.net/PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB
IP 104.110.14.92:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB HTTP/1.1
Host: www.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2214
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
Cookie: market=en-US; currency=USD; _abck=E4426D7511C332C0E7D2710A43CEB8F7~-1~YAAQ3U0kFzE1oamDAQAALefAzQhy9TDi8mim+4k1sn0C/CJPfsRLthzTfyH1uXB6WlWitTT5lBDVYqMUH5yCAHytk27lxLeWnHKt04yFQLEkTrT3DzgFDOlyhVJZNYZycmzzT8wejViG7YN39IOccvHoIqiZFwhZ2kcVQn6Z8Df90esE5PjW8R044cz68FTthcYweDXkwsonRPLiZf8lwgsWhnJb0teM08C9AQRzL0pW+Lt+vkoEDIBZwSfTfvXzZqwj3hrBP2Kyg3Ngqnq1YpqzJCDRt1ktUtnxsqEs+5v3WJHDdqczFEZAuaEbfYew3If7m7JMzPwUcwRQOWPJV6DPu5NiCwn8YKbZKRlpl2WGJLUg/xOLSW2RpKOGXhPZ1+3pISJUSzpiP6DSoQdGOg==~-1~-1~-1; ak_bmsc=2FB87470B3964936D2DF737606120BA3~000000000000000000000000000000~YAAQ3U0kFy81oamDAQAA5ebAzRFjCOFXDR64c6MYiHW827vtgznAEFn9ALJg2m4nddElY2T9d7PajesxWlLfqdDIqxbCqFmqb/nJToEzb0nHPBNtPN3oWRtztQAWgM2ypCrX7R2tSxV4cCrQiAn8QkU2LMApcH39aZaBpXf5liaDqMxzY/1WUA5mAzo8T0zPvAnaE9IWu6LCWdF5CaCNJFEnS0uhPx/aqyPAcNba/6QRD/owEitIb7EzQnguPa7Gj/xJ47E3Zt975R+SOQq1NphSKnLG27smB5LBtH2dlAfWDmBVgnselKTQhRU+9Juu0dwTZ8FavG3mf79VmaUANJKKFJQXpKEDKXQaZVWPOnWWXoG430ON18d9ky9vuab0a6BwwR0=; bm_sz=E9B649382C15EBF51330DD4949D69894~YAAQ3U0kFzA1oamDAQAA5ebAzRHnz1IAmAIFfhwxXviLBkRh1Bi2bGZ7/JMTZh/NRTM4+YUIMZrHJjSqUKFRQBBi0dqhifcgoyOuqm3v2XS0lxvEc847jJIvlV3j1PwPM3Y/2qkZ3CePl7wo/uODeTdi1wwxM/FlA2B7iEyvqB7WqoL8GRFZ0b4H5bEuWbcO5KaQMp0CmQ6EGoTCk/g7WfM07oz8dWGyl4CJweq2USliD8VZE2Ac0rG1JexU+NUBG47J14qXdVuNEbzVMInjFHpG5xR2MIk1KAoWy4fK8m7nkhPRwXKkbX8=~4538678~3552833
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
x_req_id: 6853ddeb-e6b6-47fa-9a3e-811af23ad0da
Date: Wed, 12 Oct 2022 19:51:55 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.secureserver.net
Access-Control-Allow-Headers: Content-Type
X-ARC: 101
Set-Cookie: _abck=E4426D7511C332C0E7D2710A43CEB8F7~-1~YAAQ3U0kFzI1oamDAQAAMunAzQjjr1VLo+FYMPVs9shJsAcRPuSH0zpMQ86eXWRwgFQyAKVQXIhfWhu2SkN9xvwaG7+sOQ7z6tHoYiD8U2LfLtMHCHOANonHzhg+ppoRc9JI9thKHsQJHCNTL5Vtyl0mZMfPHEUKLsm2lwgA/bgc2qEi24nVbyC7fBHekz6R5qYvXicsINPRNhVt0sYWl3TZuYTgqRzQX9zZC6954Wn3Qx3vmMDu3r+kmB6Ua3D6CejAkZVVkNxmlVe434S2PU0nz6DH+BUkpy1eRyT77vLiy1K9Ez0Ab7+SbY7hHMgDWErwV6Za24pjNySSKdIz1HCTbShdknnl/D4J64PtYK7nEuRP7YPixhCsFbpuGYwkA4h3pZilsPhvjarJmidCYg==~-1~||1-YtrEFYjZCV-1-10-1000-2||~-1; Domain=.secureserver.net; Path=/; Expires=Thu, 12 Oct 2023 19:51:55 GMT; Max-Age=31536000; Secure
events.api.secureserver.net/image.aspx?referrer=http%3A%2F%2Fgrupofiducia.com%2F&consentModeStatus=false×tamp=1665604315171&corrid=2057718673¤cy=USD&marketid=en-US&vs=visible&rand=1729014312&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&querystring=%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&trace_id=8a618caa2c1254b9a291a4ca0e731dea&hit_id=e9b9759b-4bf6-5fdd-89fe-3b24beb8bec2&visitor_guid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&has_consent=1&cv=3.20.2&client_name=tcc
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/image.aspx?referrer=http%3A%2F%2Fgrupofiducia.com%2F&consentModeStatus=false×tamp=1665604315171&corrid=2057718673¤cy=USD&marketid=en-US&vs=visible&rand=1729014312&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&querystring=%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&trace_id=8a618caa2c1254b9a291a4ca0e731dea&hit_id=e9b9759b-4bf6-5fdd-89fe-3b24beb8bec2&visitor_guid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&has_consent=1&cv=3.20.2&client_name=tcc
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /image.aspx?referrer=http%3A%2F%2Fgrupofiducia.com%2F&consentModeStatus=false×tamp=1665604315171&corrid=2057718673¤cy=USD&marketid=en-US&vs=visible&rand=1729014312&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&querystring=%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&trace_id=8a618caa2c1254b9a291a4ca0e731dea&hit_id=e9b9759b-4bf6-5fdd-89fe-3b24beb8bec2&visitor_guid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&has_consent=1&cv=3.20.2&client_name=tcc HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Cookie: market=en-US; currency=USD; _abck=E4426D7511C332C0E7D2710A43CEB8F7~-1~YAAQ3U0kFzE1oamDAQAALefAzQhy9TDi8mim+4k1sn0C/CJPfsRLthzTfyH1uXB6WlWitTT5lBDVYqMUH5yCAHytk27lxLeWnHKt04yFQLEkTrT3DzgFDOlyhVJZNYZycmzzT8wejViG7YN39IOccvHoIqiZFwhZ2kcVQn6Z8Df90esE5PjW8R044cz68FTthcYweDXkwsonRPLiZf8lwgsWhnJb0teM08C9AQRzL0pW+Lt+vkoEDIBZwSfTfvXzZqwj3hrBP2Kyg3Ngqnq1YpqzJCDRt1ktUtnxsqEs+5v3WJHDdqczFEZAuaEbfYew3If7m7JMzPwUcwRQOWPJV6DPu5NiCwn8YKbZKRlpl2WGJLUg/xOLSW2RpKOGXhPZ1+3pISJUSzpiP6DSoQdGOg==~-1~-1~-1; ak_bmsc=2FB87470B3964936D2DF737606120BA3~000000000000000000000000000000~YAAQ3U0kFy81oamDAQAA5ebAzRFjCOFXDR64c6MYiHW827vtgznAEFn9ALJg2m4nddElY2T9d7PajesxWlLfqdDIqxbCqFmqb/nJToEzb0nHPBNtPN3oWRtztQAWgM2ypCrX7R2tSxV4cCrQiAn8QkU2LMApcH39aZaBpXf5liaDqMxzY/1WUA5mAzo8T0zPvAnaE9IWu6LCWdF5CaCNJFEnS0uhPx/aqyPAcNba/6QRD/owEitIb7EzQnguPa7Gj/xJ47E3Zt975R+SOQq1NphSKnLG27smB5LBtH2dlAfWDmBVgnselKTQhRU+9Juu0dwTZ8FavG3mf79VmaUANJKKFJQXpKEDKXQaZVWPOnWWXoG430ON18d9ky9vuab0a6BwwR0=; bm_sz=E9B649382C15EBF51330DD4949D69894~YAAQ3U0kFzA1oamDAQAA5ebAzRHnz1IAmAIFfhwxXviLBkRh1Bi2bGZ7/JMTZh/NRTM4+YUIMZrHJjSqUKFRQBBi0dqhifcgoyOuqm3v2XS0lxvEc847jJIvlV3j1PwPM3Y/2qkZ3CePl7wo/uODeTdi1wwxM/FlA2B7iEyvqB7WqoL8GRFZ0b4H5bEuWbcO5KaQMp0CmQ6EGoTCk/g7WfM07oz8dWGyl4CJweq2USliD8VZE2Ac0rG1JexU+NUBG47J14qXdVuNEbzVMInjFHpG5xR2MIk1KAoWy4fK8m7nkhPRwXKkbX8=~4538678~3552833; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; fb_sessiontraffic=S_TOUCH=&pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&V_DATE=&pc=0; visitor=vid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://www.secureserver.net
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Wed, 12 Oct 2022 19:51:55 GMT
set-cookie: tcc_refer=; domain=.secureserver.net; expires=Tue, 11 Oct 2022 19:51:55 GMT; path=/;
fb_sessiontraffic=S_TOUCH=10/12/2022%2019:51:55.434&pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&V_DATE=10/12/2022%2012:51:55.433&pc=1; max-age=1200; domain=.secureserver.net; path=/;
pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; max-age=1200; domain=.secureserver.net; path=/;
isc=PLPPT02003; domain=.secureserver.net; path=/;
visitor=vid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; max-age=31536000; domain=.secureserver.net; expires=Thu, 12 Oct 2023 19:51:55 GMT; path=/;
traffic=; domain=.secureserver.net; path=/;
X-Firefox-Spdy: h2
events.api.secureserver.net/pageEvents.aspx?timestamp=1665604315324&corrid=2057718673&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=312745904&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.event&usrin=market%2Cen-US%5Esplit%2C%5Euxcore%2C2%5Ecurrency%2CUSD%5Ehostname%2Cwww.secureserver.net%5Epath%2Cundefined%5Equery%2C%7B%22isc%22%3A%22PLPPT02003%22%2C%22ci%22%3A%2281494%22%2C%22prog_id%22%3A%22457669%22%2C%22domain%22%3A%22grupofiducia.com%22%7D%5Ecountry%2CUnited%20States%5Elang%2CEnglish&eventdate=2022-10-12T19%3A51%3A55.325Z&eventtype=impression&type=&eventid=&eventclass=&absolutex=0&absolutey=0&relativex=0&relativey=0&e_id=uxp.hyd.int.salesheader.sales.impression&hit_id=c9e9922e-b647-5f3d-87a4-f19015e6d79f&visitor_guid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=8a618caa2c1254b9a291a4ca0e731dea
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/pageEvents.aspx?timestamp=1665604315324&corrid=2057718673&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=312745904&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.event&usrin=market%2Cen-US%5Esplit%2C%5Euxcore%2C2%5Ecurrency%2CUSD%5Ehostname%2Cwww.secureserver.net%5Epath%2Cundefined%5Equery%2C%7B%22isc%22%3A%22PLPPT02003%22%2C%22ci%22%3A%2281494%22%2C%22prog_id%22%3A%22457669%22%2C%22domain%22%3A%22grupofiducia.com%22%7D%5Ecountry%2CUnited%20States%5Elang%2CEnglish&eventdate=2022-10-12T19%3A51%3A55.325Z&eventtype=impression&type=&eventid=&eventclass=&absolutex=0&absolutey=0&relativex=0&relativey=0&e_id=uxp.hyd.int.salesheader.sales.impression&hit_id=c9e9922e-b647-5f3d-87a4-f19015e6d79f&visitor_guid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=8a618caa2c1254b9a291a4ca0e731dea
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pageEvents.aspx?timestamp=1665604315324&corrid=2057718673&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=312745904&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.event&usrin=market%2Cen-US%5Esplit%2C%5Euxcore%2C2%5Ecurrency%2CUSD%5Ehostname%2Cwww.secureserver.net%5Epath%2Cundefined%5Equery%2C%7B%22isc%22%3A%22PLPPT02003%22%2C%22ci%22%3A%2281494%22%2C%22prog_id%22%3A%22457669%22%2C%22domain%22%3A%22grupofiducia.com%22%7D%5Ecountry%2CUnited%20States%5Elang%2CEnglish&eventdate=2022-10-12T19%3A51%3A55.325Z&eventtype=impression&type=&eventid=&eventclass=&absolutex=0&absolutey=0&relativex=0&relativey=0&e_id=uxp.hyd.int.salesheader.sales.impression&hit_id=c9e9922e-b647-5f3d-87a4-f19015e6d79f&visitor_guid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=8a618caa2c1254b9a291a4ca0e731dea HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Cookie: market=en-US; currency=USD; _abck=E4426D7511C332C0E7D2710A43CEB8F7~-1~YAAQ3U0kFzE1oamDAQAALefAzQhy9TDi8mim+4k1sn0C/CJPfsRLthzTfyH1uXB6WlWitTT5lBDVYqMUH5yCAHytk27lxLeWnHKt04yFQLEkTrT3DzgFDOlyhVJZNYZycmzzT8wejViG7YN39IOccvHoIqiZFwhZ2kcVQn6Z8Df90esE5PjW8R044cz68FTthcYweDXkwsonRPLiZf8lwgsWhnJb0teM08C9AQRzL0pW+Lt+vkoEDIBZwSfTfvXzZqwj3hrBP2Kyg3Ngqnq1YpqzJCDRt1ktUtnxsqEs+5v3WJHDdqczFEZAuaEbfYew3If7m7JMzPwUcwRQOWPJV6DPu5NiCwn8YKbZKRlpl2WGJLUg/xOLSW2RpKOGXhPZ1+3pISJUSzpiP6DSoQdGOg==~-1~-1~-1; ak_bmsc=2FB87470B3964936D2DF737606120BA3~000000000000000000000000000000~YAAQ3U0kFy81oamDAQAA5ebAzRFjCOFXDR64c6MYiHW827vtgznAEFn9ALJg2m4nddElY2T9d7PajesxWlLfqdDIqxbCqFmqb/nJToEzb0nHPBNtPN3oWRtztQAWgM2ypCrX7R2tSxV4cCrQiAn8QkU2LMApcH39aZaBpXf5liaDqMxzY/1WUA5mAzo8T0zPvAnaE9IWu6LCWdF5CaCNJFEnS0uhPx/aqyPAcNba/6QRD/owEitIb7EzQnguPa7Gj/xJ47E3Zt975R+SOQq1NphSKnLG27smB5LBtH2dlAfWDmBVgnselKTQhRU+9Juu0dwTZ8FavG3mf79VmaUANJKKFJQXpKEDKXQaZVWPOnWWXoG430ON18d9ky9vuab0a6BwwR0=; bm_sz=E9B649382C15EBF51330DD4949D69894~YAAQ3U0kFzA1oamDAQAA5ebAzRHnz1IAmAIFfhwxXviLBkRh1Bi2bGZ7/JMTZh/NRTM4+YUIMZrHJjSqUKFRQBBi0dqhifcgoyOuqm3v2XS0lxvEc847jJIvlV3j1PwPM3Y/2qkZ3CePl7wo/uODeTdi1wwxM/FlA2B7iEyvqB7WqoL8GRFZ0b4H5bEuWbcO5KaQMp0CmQ6EGoTCk/g7WfM07oz8dWGyl4CJweq2USliD8VZE2Ac0rG1JexU+NUBG47J14qXdVuNEbzVMInjFHpG5xR2MIk1KAoWy4fK8m7nkhPRwXKkbX8=~4538678~3552833; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; fb_sessiontraffic=S_TOUCH=&pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&V_DATE=&pc=0; visitor=vid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://www.secureserver.net
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Wed, 12 Oct 2022 19:51:55 GMT
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/a974b6af96b916742bfee8b383f17355/consent-main.js
23.36.79.43200 OK 20 kB URL HTTP/2 img6.wsimg.com/wrhs/a974b6af96b916742bfee8b383f17355/consent-main.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 72ccd10ae3a0b739f3d3ce70d3848adf
9b9da429cd3ad70945da63f407ccc4e53d9c71da
2b42e98bc66802e5dadd45f250e2913f673bd4f9c1d3fa8464df0c5499b53d33
GET /wrhs/a974b6af96b916742bfee8b383f17355/consent-main.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "a974b6af96b916742bfee8b383f17355"
last-modified: Tue, 13 Sep 2022 17:51:04 GMT
vary: Accept-Encoding
x-amz-id-2: dyI0475fhoQzv/1S1NM7OLP+7xp2lhuwmAhNCG4dBZc4LnYZKUTuutAZGftI/uTvg4WK+3nezdI=
x-amz-request-id: Q6VEJ7XB6WMBK2ED
x-amz-server-side-encryption: AES256
x-amz-version-id: WyuMQf.UQe7b4Scwfbap0YIXQVjkLgKs
content-length: 19723
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:55 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/995ded305b294ab5fd9678b5b984aa02/consent-main.css
23.36.79.43200 OK 33 kB URL HTTP/2 img6.wsimg.com/wrhs/995ded305b294ab5fd9678b5b984aa02/consent-main.css
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (19508)
Hash 19658382d98c54e41cc765f338e3dda9
4d099566fcc2004a60fba0fc92cf6f51d0b7a4c4
20cd881c086f921cd14a6565fa73c2ee649d2ced14f5fd0c076b3bc46cbd1e0c
GET /wrhs/995ded305b294ab5fd9678b5b984aa02/consent-main.css HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
accept-ranges: bytes
content-encoding: br
etag: "995ded305b294ab5fd9678b5b984aa02"
last-modified: Tue, 06 Sep 2022 22:32:26 GMT
vary: Accept-Encoding
x-amz-id-2: wikI0VW/DqigHNdaM5V7P0xwPzniivA42HQoQv5JIuOAJExw2bqcDzqe0kc3oKiu72jtR2ugYIc=
x-amz-request-id: M7RBT8A5JC3GDJW4
x-amz-server-side-encryption: AES256
x-amz-version-id: dp.grz_7vGeYKwKZK7xycnHa31_5aXE2
content-length: 33193
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:55 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
gui.secureserver.net/pcjson/salesheader?plId=457669&shopperId=&sid=
104.110.14.92200 OK 368 B URL HTTP/1.1 gui.secureserver.net/pcjson/salesheader?plId=457669&shopperId=&sid=
IP 104.110.14.92:0
File type JSON data\012- , ASCII text, with very long lines (368), with no line terminators
Hash 51ac16850161fd5d40cb247effd2bd88
219a589bb89697c64db5b145b56cc76a1a876039
d2eb333c83b13b0ab5a97dc501b05ad32ed63df4d24ee4182c16d18d415cdcc4
GET /pcjson/salesheader?plId=457669&shopperId=&sid= HTTP/1.1
Host: gui.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Origin: https://www.secureserver.net
Connection: keep-alive
Cookie: market=en-US; currency=USD; _abck=E4426D7511C332C0E7D2710A43CEB8F7~-1~YAAQ3U0kFzI1oamDAQAAMunAzQjjr1VLo+FYMPVs9shJsAcRPuSH0zpMQ86eXWRwgFQyAKVQXIhfWhu2SkN9xvwaG7+sOQ7z6tHoYiD8U2LfLtMHCHOANonHzhg+ppoRc9JI9thKHsQJHCNTL5Vtyl0mZMfPHEUKLsm2lwgA/bgc2qEi24nVbyC7fBHekz6R5qYvXicsINPRNhVt0sYWl3TZuYTgqRzQX9zZC6954Wn3Qx3vmMDu3r+kmB6Ua3D6CejAkZVVkNxmlVe434S2PU0nz6DH+BUkpy1eRyT77vLiy1K9Ez0Ab7+SbY7hHMgDWErwV6Za24pjNySSKdIz1HCTbShdknnl/D4J64PtYK7nEuRP7YPixhCsFbpuGYwkA4h3pZilsPhvjarJmidCYg==~-1~||1-YtrEFYjZCV-1-10-1000-2||~-1; ak_bmsc=2FB87470B3964936D2DF737606120BA3~000000000000000000000000000000~YAAQ3U0kFy81oamDAQAA5ebAzRFjCOFXDR64c6MYiHW827vtgznAEFn9ALJg2m4nddElY2T9d7PajesxWlLfqdDIqxbCqFmqb/nJToEzb0nHPBNtPN3oWRtztQAWgM2ypCrX7R2tSxV4cCrQiAn8QkU2LMApcH39aZaBpXf5liaDqMxzY/1WUA5mAzo8T0zPvAnaE9IWu6LCWdF5CaCNJFEnS0uhPx/aqyPAcNba/6QRD/owEitIb7EzQnguPa7Gj/xJ47E3Zt975R+SOQq1NphSKnLG27smB5LBtH2dlAfWDmBVgnselKTQhRU+9Juu0dwTZ8FavG3mf79VmaUANJKKFJQXpKEDKXQaZVWPOnWWXoG430ON18d9ky9vuab0a6BwwR0=; bm_sz=E9B649382C15EBF51330DD4949D69894~YAAQ3U0kFzA1oamDAQAA5ebAzRHnz1IAmAIFfhwxXviLBkRh1Bi2bGZ7/JMTZh/NRTM4+YUIMZrHJjSqUKFRQBBi0dqhifcgoyOuqm3v2XS0lxvEc847jJIvlV3j1PwPM3Y/2qkZ3CePl7wo/uODeTdi1wwxM/FlA2B7iEyvqB7WqoL8GRFZ0b4H5bEuWbcO5KaQMp0CmQ6EGoTCk/g7WfM07oz8dWGyl4CJweq2USliD8VZE2Ac0rG1JexU+NUBG47J14qXdVuNEbzVMInjFHpG5xR2MIk1KAoWy4fK8m7nkhPRwXKkbX8=~4538678~3552833; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; fb_sessiontraffic=S_TOUCH=10/12/2022%2019:51:55.434&pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&V_DATE=10/12/2022%2012:51:55.433&pc=1; visitor=vid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; isc=PLPPT02003
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: no-store, must-revalidate, no-cache, max-age=0
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5
P3P: policyref="/w3c/p3p.xml", CP="COM CNT DEM FIN GOV INT NAV ONL PHY PRE PUR STA UNI IDC CAO OTI DSP COR CUR OUR IND", policyref="/w3c/p3p.xml", CP="COM CNT DEM FIN GOV INT NAV ONL PHY PRE PUR STA UNI IDC CAO OTI DSP COR CUR i OUR IND"
Content-Length: 368
Date: Wed, 12 Oct 2022 19:51:55 GMT
Connection: keep-alive
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: x-requested-with, content-type, accept, origin, authorization, x-csrftoken
Access-Control-Allow-Methods: GET,POST,PUT,PATCH,DELETE
Access-Control-Allow-Origin: https://www.secureserver.net
Timing-Allow-Origin: *
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8711
Expires: Wed, 12 Oct 2022 22:17:06 GMT
Date: Wed, 12 Oct 2022 19:51:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8711
Expires: Wed, 12 Oct 2022 22:17:06 GMT
Date: Wed, 12 Oct 2022 19:51:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8711
Expires: Wed, 12 Oct 2022 22:17:06 GMT
Date: Wed, 12 Oct 2022 19:51:55 GMT
Connection: keep-alive
img6.wsimg.com/utag/utag.min.js
23.36.79.43200 OK 71 kB URL HTTP/2 img6.wsimg.com/utag/utag.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (33080)
Hash ded3fd1d5dc4641262ef98121d550a83
f03bba32d28cea9d549d3ea7a163beffb3d9c5c0
0d0fc4ed1a5d4077d7e96febc6f44b0accb6a7a1fb657c509d6199007b977c4f
GET /utag/utag.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 5trjqRMOjhWafz6gI/fOh7vlT6B2nOIKXHluhGblR6jcDwNkEqXCJT+U/Uga3aYvlvXTfdiSOMM=
x-amz-request-id: E935SX6PC8EM9EH5
last-modified: Tue, 11 Oct 2022 08:41:26 GMT
etag: "52fc764ef5a37a692913afb3f47d0a6f"
x-amz-server-side-encryption: AES256
x-amz-version-id: T9aSF9u49qGzWOWSXeizXjV0LA3JsBn3
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 70701
cache-control: max-age=900
date: Wed, 12 Oct 2022 19:51:55 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 5f2ce4dd-0df8-4df7-a12d-e6fffd622752
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZnTQHGADIAMFXfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f98cd-5044665325e5d64975c1ff0c;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 03:11:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZKsi1hYgZdJQNWpphaMVLfpg69dC93J575Y2RsOzFV3ZzBb6x-nrew==
via: 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:42:26 GMT
age: 79769
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74c4905d-ef25-43db-8882-67009cd34f1a.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74c4905d-ef25-43db-8882-67009cd34f1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eda06240feabfa1b019765fe963c2d9c
3bbdd5560213e9b49ab7c079c5f2549d68890720
cd3724bfc1355b419c46df1259bfa40b4b4517a81bd45a4392d34e22c14a3d6e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74c4905d-ef25-43db-8882-67009cd34f1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3985
x-amzn-requestid: 6da73a65-c346-4040-9a03-63d5d6845adf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z1Cr1HeVoAMFubg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634517e5-34af0c8d6dc8218963b7319c;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 07:14:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LAjdvQ29NhOnJjwigVkIjb7vx5tCPJPrHOOPmUD5Vh9N45WN4ZZXCg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 07:45:22 GMT
age: 43593
etag: "3bbdd5560213e9b49ab7c079c5f2549d68890720"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d31330d47548d966e50813d7e2253551
ec0a371cca2d4e43f3375dd6b699478c5af62884
309f2cf9ccd62d5c2fd8713836b602317875f4273ef560f3bf3d681aa868b9d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9325
x-amzn-requestid: 6a0388e5-97d6-42f4-b54d-a3f4826f2293
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZxMaDE2JoAMFieg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63438dd9-76ff69230ce03c033b35a4c4;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 03:13:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oUdj3LVRzke7i9j4pQRCGqss6LC-l1Qf4gvtAnrM9ZH1Bzu6Adezuw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 04:22:04 GMT
age: 55791
etag: "ec0a371cca2d4e43f3375dd6b699478c5af62884"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f78379e6bde371b492c950402bcc39e
53a7502d8932c515aa09055c5cf8f2d2242e4398
241016bbd3cebc009f63dff2773c1c7fdb68fa941ab62b368d5e023b9155fa37
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5252
x-amzn-requestid: b4ef9c4f-7ca4-42c9-a928-b0b8aa3cc695
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BUaEtBoAMF8Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e282-455619be605fa91977c66df7;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:39:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: u8SRxkVzSO3pnQB_FibQBfwzvJ2uiT9YQzQI4_ZVMxgdED9Zsir8qQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:09:04 GMT
age: 78171
etag: "53a7502d8932c515aa09055c5cf8f2d2242e4398"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b429ef-0b4d-4ac1-a57e-0512cbe70108.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b429ef-0b4d-4ac1-a57e-0512cbe70108.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e885fe35564ed7fefe0fb0fda2b9ebe7
bf37aa53466c3764d205de17070753b3204d78e4
187a99359986ae3131d303c09baf25ffa0dcf1ca80e09c9bee56434bff6f07d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b429ef-0b4d-4ac1-a57e-0512cbe70108.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13724
x-amzn-requestid: 3f358e0a-786b-48fc-9e45-bda97026e544
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3Ak_FbjoAMFfQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e152-134d2c6f4efafecb71df10e6;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:34:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C2z9SP8_BZ-lf9NPNR-24Tjtc98JRz54D4Lmeie9QmTKNIDCR9knNg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:48:15 GMT
age: 79420
etag: "bf37aa53466c3764d205de17070753b3204d78e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50df13c8-d4e3-4d87-8794-332894dfce82.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50df13c8-d4e3-4d87-8794-332894dfce82.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5d47115d404a4b49a15c5aa29f132c2
22a32b863ce79c6165cc90e998f1498bf9e74fd0
549725a62e4c15820c47249ae933120bbb091a55331be511b486307e33ec59c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50df13c8-d4e3-4d87-8794-332894dfce82.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7108
x-amzn-requestid: 9f8e92e1-b64f-46b4-8a87-4d0e5c21bdaf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BzOEmzoAMFsoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e347-3ec5e4d50d2e14a17f88a64d;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:42:31 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 07WNuyF4EIA2AAZyB4kU669K49Jzqys2YvkfnzEb2aIn3Dq6K_CT2g==
via: 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:09:12 GMT
age: 78163
etag: "22a32b863ce79c6165cc90e998f1498bf9e74fd0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
events.api.secureserver.net/b.aspx?timestamp=1665604315661&corrid=2057718673&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=2014552626&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.log&eventdate=2022-10-12T19%3A51%3A55.661Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1665604314614&connectStart=1665604314586&domComplete=1665604315141&domContentLoadedEventEnd=1665604315141&domContentLoadedEventStart=1665604315140&domInteractive=1665604315140&domLoading=1665604314793&domainLookupEnd=1665604314585&domainLookupStart=1665604314565&fetchStart=1665604314555&navigationStart=1665604314554&requestStart=1665604314614&responseEnd=1665604314787&responseStart=1665604314786&loadEventStart=1665604315141&loadEventEnd=1665604315142&transferSize=36581&encodedBodySize=34247&decodedBodySize=153863&navigationType=navigate&fcp=505&hit_id=f96be050-a8cf-5560-b73e-c50f90d2893c&visitor_guid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=8a618caa2c1254b9a291a4ca0e731dea
104.84.152.58200 OK 43 B URL HTTP/2 events.api.secureserver.net/b.aspx?timestamp=1665604315661&corrid=2057718673&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=2014552626&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.log&eventdate=2022-10-12T19%3A51%3A55.661Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1665604314614&connectStart=1665604314586&domComplete=1665604315141&domContentLoadedEventEnd=1665604315141&domContentLoadedEventStart=1665604315140&domInteractive=1665604315140&domLoading=1665604314793&domainLookupEnd=1665604314585&domainLookupStart=1665604314565&fetchStart=1665604314555&navigationStart=1665604314554&requestStart=1665604314614&responseEnd=1665604314787&responseStart=1665604314786&loadEventStart=1665604315141&loadEventEnd=1665604315142&transferSize=36581&encodedBodySize=34247&decodedBodySize=153863&navigationType=navigate&fcp=505&hit_id=f96be050-a8cf-5560-b73e-c50f90d2893c&visitor_guid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=8a618caa2c1254b9a291a4ca0e731dea
IP 104.84.152.58:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /b.aspx?timestamp=1665604315661&corrid=2057718673&referrer=http%3A%2F%2Fgrupofiducia.com%2F¤cy=USD&marketid=en-US&vs=visible&rand=2014552626&sitename=www.secureserver.net&page=%2F&location=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&app=rs-sf&page_level_properties=loadSource&event_type=page.log&eventdate=2022-10-12T19%3A51%3A55.661Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1665604314614&connectStart=1665604314586&domComplete=1665604315141&domContentLoadedEventEnd=1665604315141&domContentLoadedEventStart=1665604315140&domInteractive=1665604315140&domLoading=1665604314793&domainLookupEnd=1665604314585&domainLookupStart=1665604314565&fetchStart=1665604314555&navigationStart=1665604314554&requestStart=1665604314614&responseEnd=1665604314787&responseStart=1665604314786&loadEventStart=1665604315141&loadEventEnd=1665604315142&transferSize=36581&encodedBodySize=34247&decodedBodySize=153863&navigationType=navigate&fcp=505&hit_id=f96be050-a8cf-5560-b73e-c50f90d2893c&visitor_guid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&has_consent=1&cv=3.20.2&client_name=tcc&trace_id=8a618caa2c1254b9a291a4ca0e731dea HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Cookie: market=en-US; currency=USD; _abck=E4426D7511C332C0E7D2710A43CEB8F7~-1~YAAQ3U0kFzI1oamDAQAAMunAzQjjr1VLo+FYMPVs9shJsAcRPuSH0zpMQ86eXWRwgFQyAKVQXIhfWhu2SkN9xvwaG7+sOQ7z6tHoYiD8U2LfLtMHCHOANonHzhg+ppoRc9JI9thKHsQJHCNTL5Vtyl0mZMfPHEUKLsm2lwgA/bgc2qEi24nVbyC7fBHekz6R5qYvXicsINPRNhVt0sYWl3TZuYTgqRzQX9zZC6954Wn3Qx3vmMDu3r+kmB6Ua3D6CejAkZVVkNxmlVe434S2PU0nz6DH+BUkpy1eRyT77vLiy1K9Ez0Ab7+SbY7hHMgDWErwV6Za24pjNySSKdIz1HCTbShdknnl/D4J64PtYK7nEuRP7YPixhCsFbpuGYwkA4h3pZilsPhvjarJmidCYg==~-1~||1-YtrEFYjZCV-1-10-1000-2||~-1; ak_bmsc=2FB87470B3964936D2DF737606120BA3~000000000000000000000000000000~YAAQ3U0kFy81oamDAQAA5ebAzRFjCOFXDR64c6MYiHW827vtgznAEFn9ALJg2m4nddElY2T9d7PajesxWlLfqdDIqxbCqFmqb/nJToEzb0nHPBNtPN3oWRtztQAWgM2ypCrX7R2tSxV4cCrQiAn8QkU2LMApcH39aZaBpXf5liaDqMxzY/1WUA5mAzo8T0zPvAnaE9IWu6LCWdF5CaCNJFEnS0uhPx/aqyPAcNba/6QRD/owEitIb7EzQnguPa7Gj/xJ47E3Zt975R+SOQq1NphSKnLG27smB5LBtH2dlAfWDmBVgnselKTQhRU+9Juu0dwTZ8FavG3mf79VmaUANJKKFJQXpKEDKXQaZVWPOnWWXoG430ON18d9ky9vuab0a6BwwR0=; bm_sz=E9B649382C15EBF51330DD4949D69894~YAAQ3U0kFzA1oamDAQAA5ebAzRHnz1IAmAIFfhwxXviLBkRh1Bi2bGZ7/JMTZh/NRTM4+YUIMZrHJjSqUKFRQBBi0dqhifcgoyOuqm3v2XS0lxvEc847jJIvlV3j1PwPM3Y/2qkZ3CePl7wo/uODeTdi1wwxM/FlA2B7iEyvqB7WqoL8GRFZ0b4H5bEuWbcO5KaQMp0CmQ6EGoTCk/g7WfM07oz8dWGyl4CJweq2USliD8VZE2Ac0rG1JexU+NUBG47J14qXdVuNEbzVMInjFHpG5xR2MIk1KAoWy4fK8m7nkhPRwXKkbX8=~4538678~3552833; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; fb_sessiontraffic=S_TOUCH=10/12/2022%2019:51:55.434&pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&V_DATE=10/12/2022%2012:51:55.433&pc=1; visitor=vid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; isc=PLPPT02003
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://www.secureserver.net
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Wed, 12 Oct 2022 19:51:55 GMT
X-Firefox-Spdy: h2
www.secureserver.net/PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB
104.110.14.92201 Created 18 B URL HTTP/1.1 www.secureserver.net/PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB
IP 104.110.14.92:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB HTTP/1.1
Host: www.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
traceparent: 00-09e0890f7df54b9ef25dd7827181876e-046e42bde375bc10-01
Content-Type: text/plain;charset=UTF-8
Content-Length: 2474
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
Cookie: market=en-US; currency=USD; _abck=E4426D7511C332C0E7D2710A43CEB8F7~-1~YAAQ3U0kFzI1oamDAQAAMunAzQjjr1VLo+FYMPVs9shJsAcRPuSH0zpMQ86eXWRwgFQyAKVQXIhfWhu2SkN9xvwaG7+sOQ7z6tHoYiD8U2LfLtMHCHOANonHzhg+ppoRc9JI9thKHsQJHCNTL5Vtyl0mZMfPHEUKLsm2lwgA/bgc2qEi24nVbyC7fBHekz6R5qYvXicsINPRNhVt0sYWl3TZuYTgqRzQX9zZC6954Wn3Qx3vmMDu3r+kmB6Ua3D6CejAkZVVkNxmlVe434S2PU0nz6DH+BUkpy1eRyT77vLiy1K9Ez0Ab7+SbY7hHMgDWErwV6Za24pjNySSKdIz1HCTbShdknnl/D4J64PtYK7nEuRP7YPixhCsFbpuGYwkA4h3pZilsPhvjarJmidCYg==~-1~||1-YtrEFYjZCV-1-10-1000-2||~-1; ak_bmsc=2FB87470B3964936D2DF737606120BA3~000000000000000000000000000000~YAAQ3U0kFy81oamDAQAA5ebAzRFjCOFXDR64c6MYiHW827vtgznAEFn9ALJg2m4nddElY2T9d7PajesxWlLfqdDIqxbCqFmqb/nJToEzb0nHPBNtPN3oWRtztQAWgM2ypCrX7R2tSxV4cCrQiAn8QkU2LMApcH39aZaBpXf5liaDqMxzY/1WUA5mAzo8T0zPvAnaE9IWu6LCWdF5CaCNJFEnS0uhPx/aqyPAcNba/6QRD/owEitIb7EzQnguPa7Gj/xJ47E3Zt975R+SOQq1NphSKnLG27smB5LBtH2dlAfWDmBVgnselKTQhRU+9Juu0dwTZ8FavG3mf79VmaUANJKKFJQXpKEDKXQaZVWPOnWWXoG430ON18d9ky9vuab0a6BwwR0=; bm_sz=E9B649382C15EBF51330DD4949D69894~YAAQ3U0kFzA1oamDAQAA5ebAzRHnz1IAmAIFfhwxXviLBkRh1Bi2bGZ7/JMTZh/NRTM4+YUIMZrHJjSqUKFRQBBi0dqhifcgoyOuqm3v2XS0lxvEc847jJIvlV3j1PwPM3Y/2qkZ3CePl7wo/uODeTdi1wwxM/FlA2B7iEyvqB7WqoL8GRFZ0b4H5bEuWbcO5KaQMp0CmQ6EGoTCk/g7WfM07oz8dWGyl4CJweq2USliD8VZE2Ac0rG1JexU+NUBG47J14qXdVuNEbzVMInjFHpG5xR2MIk1KAoWy4fK8m7nkhPRwXKkbX8=~4538678~3552833; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; fb_sessiontraffic=S_TOUCH=10/12/2022%2019:51:55.434&pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&V_DATE=10/12/2022%2012:51:55.433&pc=1; visitor=vid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; isc=PLPPT02003
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
x_req_id: 4ede5f3f-7e73-406b-8f99-ae2f3d618b4e
Date: Wed, 12 Oct 2022 19:51:55 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.secureserver.net
Access-Control-Allow-Headers: Content-Type
X-ARC: 101
Set-Cookie: _abck=E4426D7511C332C0E7D2710A43CEB8F7~0~YAAQ3U0kFzM1oamDAQAAPevAzQhOPjAkIIu30Cb5UhnkBKtYOBkPFcyHz7fnSUJqmfMWBsRxPZ1N/a1oRqqNWPLC8so/wMC9Ht0kg8RLDZKKEUWN9M3wx+8wl5s2cuF5hmL3b7t7WS6Tbez+yQ797a11hSjJ+YMf2yYNyttPEOislesMpp4UzTkdQDHQk4ArfqAyZo7Q0cDCbKv2Km9ngiRvVqK6243v6Lgnn+WYlQ6yJarx+Vbee3WsCyKC6F43GN7RENG0Fz1O+IcfkGGNYwD8lt0nPcssZMunaUy9iMA/pRfx0nwnm1qCWqq+WuCx3cXKULxc6AjgeRVEbPNK1UjsVzyXDG5Zg+EeeEMNYXJv2/LoLULqFOADVevSz0r85Cfb4vHYWXfFdRRd4VoxNCXTERtrr1F6SVe2bBzj~-1~||1-YtrEFYjZCV-1-10-1000-2||~-1; Domain=.secureserver.net; Path=/; Expires=Thu, 12 Oct 2023 19:51:55 GMT; Max-Age=31536000; Secure
img6.wsimg.com/wrhs-next/ca22144f3e72e9249f6983e120a7534b/utag.1355.js?utv=ut4.42.202207280854
23.36.79.43200 OK 762 B URL HTTP/2 img6.wsimg.com/wrhs-next/ca22144f3e72e9249f6983e120a7534b/utag.1355.js?utv=ut4.42.202207280854
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1048)
Hash dc3e396a03f78fb33a3265012280dcdd
472de10c070fddc11c9e1ed66a86120580b5db2b
a66759e339be14957c9a59a5be7beef5f792205126475e86f6f79d841405d3bf
GET /wrhs-next/ca22144f3e72e9249f6983e120a7534b/utag.1355.js?utv=ut4.42.202207280854 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ca22144f3e72e9249f6983e120a7534b"
last-modified: Tue, 02 Aug 2022 17:06:48 GMT
vary: Accept-Encoding
x-amz-id-2: Yv+96gBVz0UpZoXz/tzkqwyZkZ3GBQNdoHHVU+WzuKaJvFC8LIfCHYmHzg3aJiIlw6rro1maoqc=
x-amz-request-id: AWNRANY3YD7YR1RD
x-amz-server-side-encryption: AES256
x-amz-version-id: DltErCnKlSvAIms5WbpxnW0Dc_yxkbMr
content-length: 762
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:56 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=47
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/ca7f1f00c677fb43acd03ac3bd17f475/utag.1389.js?utv=ut4.42.202210101305
23.36.79.43200 OK 3.3 kB URL HTTP/2 img6.wsimg.com/wrhs-next/ca7f1f00c677fb43acd03ac3bd17f475/utag.1389.js?utv=ut4.42.202210101305
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1224)
Hash 81958660b5c1ebb81f686751532a7478
d55ba4c85f1a1b6307f481680dabc2c5b61319aa
ae1dcf826390b0ce372a611ea95ced493636c98fa2451c1d9941cf1a631aac7d
GET /wrhs-next/ca7f1f00c677fb43acd03ac3bd17f475/utag.1389.js?utv=ut4.42.202210101305 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ca7f1f00c677fb43acd03ac3bd17f475"
last-modified: Tue, 11 Oct 2022 08:49:52 GMT
vary: Accept-Encoding
x-amz-id-2: YAwqQOUNlyWY9/nlHgK8PYqQuuNv5Lbq4aXdJlRBCusDsmfrTzwK6y/mmRIWEPQUhql8kng6E08=
x-amz-request-id: V8BPND2C01B8M9ED
x-amz-server-side-encryption: AES256
x-amz-version-id: aaA6Vnjw25vfO0iPhUNbr36o.5an3h5X
content-length: 3322
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:56 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=68
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/4674c65397d6df03989c284b88c59618/utag.1479.js?utv=ut4.42.202012170744
23.36.79.43200 OK 1.4 kB URL HTTP/2 img6.wsimg.com/wrhs-next/4674c65397d6df03989c284b88c59618/utag.1479.js?utv=ut4.42.202012170744
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1110)
Hash 2175aabaa18751d60e08c1eb9fe2b204
b4c0d76353b3907a4964433381b7d23e553c94a7
7955b6529535445eebe52bfb70c386b966813d2242b5c6910899aaa54bbac3ec
GET /wrhs-next/4674c65397d6df03989c284b88c59618/utag.1479.js?utv=ut4.42.202012170744 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "4674c65397d6df03989c284b88c59618"
last-modified: Thu, 07 Jul 2022 18:27:07 GMT
vary: Accept-Encoding
x-amz-id-2: /UC0fjT2KhOa1sKggm+NvVi2BdcYHyW3yO7m01HVc26BbaQEhggbsDFLZA4V4RQa3is3gr8oz3I=
x-amz-request-id: EVNCB84J1X7YQBBN
x-amz-server-side-encryption: AES256
x-amz-version-id: DGSMljlZE6wtM21yZvKL3VWPVuYFrgGD
content-length: 1383
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:56 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=4
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/f8fb3c5176810bacafc53a306b588926/utag.775.js?utv=ut4.42.202002121623
23.36.79.43200 OK 1.4 kB URL HTTP/2 img6.wsimg.com/wrhs-next/f8fb3c5176810bacafc53a306b588926/utag.775.js?utv=ut4.42.202002121623
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (995)
Hash 6039ac1826a83f81994cc7baa41c479f
64683c3036b604f3958225392fc4f26aa12fa20f
bbac7c630fc9fc76c5fca59efe8dbc838e8e4255899cb52d1be8925901ce8997
GET /wrhs-next/f8fb3c5176810bacafc53a306b588926/utag.775.js?utv=ut4.42.202002121623 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "f8fb3c5176810bacafc53a306b588926"
last-modified: Thu, 07 Jul 2022 17:01:46 GMT
vary: Accept-Encoding
x-amz-id-2: OXXitjgmAkHmaKQediWs02ZYQz8mEA3j3WMM6a6WO6ihj3pVxJcv5HmRDIFzpq2QZaWHlyum18Y=
x-amz-request-id: 59B3GZ8585C5M2F8
x-amz-server-side-encryption: AES256
x-amz-version-id: lzvNIhIFiBX5vU8xyxfk11T90ZKrit5I
content-length: 1358
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:56 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/3f316aa13415a131851f516525146c09/utag.1204.js?utv=ut4.42.202012140745
23.36.79.43200 OK 1.3 kB URL HTTP/2 img6.wsimg.com/wrhs-next/3f316aa13415a131851f516525146c09/utag.1204.js?utv=ut4.42.202012140745
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (1085)
Hash 823cc48b4e4dbff906175c92514a3aa6
ceb63550d379859198426c317c27eac6ea4913b8
b426da3378b8d715236674007162eee67cc882d2848b76d613f216985a0a63b5
GET /wrhs-next/3f316aa13415a131851f516525146c09/utag.1204.js?utv=ut4.42.202012140745 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "3f316aa13415a131851f516525146c09"
last-modified: Thu, 07 Jul 2022 16:53:07 GMT
vary: Accept-Encoding
x-amz-id-2: endxfTUKbeL/rXSrpffDmRL4zQBPq9FY7K0nzRDi2AyPThV3ZY/Z2tDpE2dCXcwYoLsxDGkiiorIBIgWUPilbA==
x-amz-request-id: GNZRS8KC1AN4P7PE
x-amz-server-side-encryption: AES256
x-amz-version-id: ZefeHhyBXeCzvdXZjG1wkCgvc5HV9gn9
content-length: 1261
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:56 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.secureserver.net/PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB
104.110.14.92201 Created 18 B URL HTTP/1.1 www.secureserver.net/PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB
IP 104.110.14.92:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /PGsn-9DIM2x0fxPC_VaVZbAF/XaQ1hzL0/NkU-MiM/KkoVE/Vx6CSgB HTTP/1.1
Host: www.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
traceparent: 00-09e0890f7df54b9ef25dd7827181876e-035b4711985791c0-01
Content-Type: text/plain;charset=UTF-8
Content-Length: 3324
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/?isc=PLPPT02003&ci=81494&prog_id=457669&domain=grupofiducia.com
Cookie: market=en-US; currency=USD; _abck=E4426D7511C332C0E7D2710A43CEB8F7~-1~YAAQ3U0kFzI1oamDAQAAMunAzQjjr1VLo+FYMPVs9shJsAcRPuSH0zpMQ86eXWRwgFQyAKVQXIhfWhu2SkN9xvwaG7+sOQ7z6tHoYiD8U2LfLtMHCHOANonHzhg+ppoRc9JI9thKHsQJHCNTL5Vtyl0mZMfPHEUKLsm2lwgA/bgc2qEi24nVbyC7fBHekz6R5qYvXicsINPRNhVt0sYWl3TZuYTgqRzQX9zZC6954Wn3Qx3vmMDu3r+kmB6Ua3D6CejAkZVVkNxmlVe434S2PU0nz6DH+BUkpy1eRyT77vLiy1K9Ez0Ab7+SbY7hHMgDWErwV6Za24pjNySSKdIz1HCTbShdknnl/D4J64PtYK7nEuRP7YPixhCsFbpuGYwkA4h3pZilsPhvjarJmidCYg==~-1~||1-YtrEFYjZCV-1-10-1000-2||~-1; ak_bmsc=2FB87470B3964936D2DF737606120BA3~000000000000000000000000000000~YAAQ3U0kFy81oamDAQAA5ebAzRFjCOFXDR64c6MYiHW827vtgznAEFn9ALJg2m4nddElY2T9d7PajesxWlLfqdDIqxbCqFmqb/nJToEzb0nHPBNtPN3oWRtztQAWgM2ypCrX7R2tSxV4cCrQiAn8QkU2LMApcH39aZaBpXf5liaDqMxzY/1WUA5mAzo8T0zPvAnaE9IWu6LCWdF5CaCNJFEnS0uhPx/aqyPAcNba/6QRD/owEitIb7EzQnguPa7Gj/xJ47E3Zt975R+SOQq1NphSKnLG27smB5LBtH2dlAfWDmBVgnselKTQhRU+9Juu0dwTZ8FavG3mf79VmaUANJKKFJQXpKEDKXQaZVWPOnWWXoG430ON18d9ky9vuab0a6BwwR0=; bm_sz=E9B649382C15EBF51330DD4949D69894~YAAQ3U0kFzA1oamDAQAA5ebAzRHnz1IAmAIFfhwxXviLBkRh1Bi2bGZ7/JMTZh/NRTM4+YUIMZrHJjSqUKFRQBBi0dqhifcgoyOuqm3v2XS0lxvEc847jJIvlV3j1PwPM3Y/2qkZ3CePl7wo/uODeTdi1wwxM/FlA2B7iEyvqB7WqoL8GRFZ0b4H5bEuWbcO5KaQMp0CmQ6EGoTCk/g7WfM07oz8dWGyl4CJweq2USliD8VZE2Ac0rG1JexU+NUBG47J14qXdVuNEbzVMInjFHpG5xR2MIk1KAoWy4fK8m7nkhPRwXKkbX8=~4538678~3552833; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; fb_sessiontraffic=S_TOUCH=10/12/2022%2019:51:55.434&pathway=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c&V_DATE=10/12/2022%2012:51:55.433&pc=1; visitor=vid=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c; isc=PLPPT02003; OPTOUTMULTI=0:0%7Cc2:0%7Cc9:0%7Cc11:0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
x_req_id: 8321d80f-9170-450d-887a-f7a7ae83c39a
Date: Wed, 12 Oct 2022 19:51:56 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.secureserver.net
Access-Control-Allow-Headers: Content-Type
X-ARC: 101
Set-Cookie: _abck=E4426D7511C332C0E7D2710A43CEB8F7~0~YAAQ3U0kFzQ1oamDAQAAz+zAzQgeH7yZ4xB+bp/vkL6zIFHyir2HpYKXX1+ykC0WAufpi4nirLlFkc9iOK2ZdXTVOtelHnMEmUGL3rNI151W9ovLo9GVrtF3KjH9cmdWhrvwJpUN2ASZluQTpVplKZfxtuKXe6Co7Wc7ikX6TqzDuaoZcPW50WCTOFb0Px1/OyFtpYFP+Cb9zcTSRBJ06zOaNvJsNL74jSeCGMogmk4Y0RbfNFXImcw8DOlYU0KvTrenhczly67cO148xdai+a/NmZRQzgDxIcmKGg8NEEAV3/1IxTulqKI/BZBOJiFw/7OnSZLzGrlQqT42/Kr1arw/uu1Ax4aAGyHxLKa6KqDraeINbL6vqRZBRW4KZqrix22ftuupTmVa8RjIwRf81vYq/KtoPreLnW6gHa/6~-1~||-1||~-1; Domain=.secureserver.net; Path=/; Expires=Thu, 12 Oct 2023 19:51:56 GMT; Max-Age=31536000; Secure
img6.wsimg.com/wrhs-next/b24366748351284b988daca2afe398cc/utag.1486.js?utv=ut4.42.202008310728
23.36.79.43200 OK 987 B URL HTTP/2 img6.wsimg.com/wrhs-next/b24366748351284b988daca2afe398cc/utag.1486.js?utv=ut4.42.202008310728
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1048)
Hash 1823f879f93355777c8c6c3392a75eb5
1b0a04669a9de92e5a63068be46260f4cbc5a911
42bf6cc050c1cb90dd94fc4ab3388c0d73a2a952ce75d5923d4a1282c8e823f5
GET /wrhs-next/b24366748351284b988daca2afe398cc/utag.1486.js?utv=ut4.42.202008310728 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "b24366748351284b988daca2afe398cc"
last-modified: Thu, 07 Jul 2022 16:53:36 GMT
vary: Accept-Encoding
x-amz-id-2: +BQBriUGcyItrpxmM+GI/7mgdFWYjeR1zpPE9v7jUNYRYrFxq+YuoCLfiheTjnCBMC/4tnAsTqg=
x-amz-request-id: 1DD2ZQ1R4CTTGYA2
x-amz-server-side-encryption: AES256
x-amz-version-id: 7vt2f8sc0BGGePx_JNibfTGiPA5l769k
content-length: 987
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:56 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=122
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/136af220b820e1b221293ecfa066a6f3/utag.1476.js?utv=ut4.42.202009071318
23.36.79.43200 OK 974 B URL HTTP/2 img6.wsimg.com/wrhs-next/136af220b820e1b221293ecfa066a6f3/utag.1476.js?utv=ut4.42.202009071318
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1048)
Hash ccc5c0851fa0dc7023d80c3d233dcb8d
2b4c6c42ecac8c16c1eafc246a28d3291a8b34d5
c8ff04e18342e1b0664ea2074bb53fbff5db0bdbd7b91713a3d0830ab1cf9780
GET /wrhs-next/136af220b820e1b221293ecfa066a6f3/utag.1476.js?utv=ut4.42.202009071318 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "136af220b820e1b221293ecfa066a6f3"
last-modified: Thu, 07 Jul 2022 16:59:11 GMT
vary: Accept-Encoding
x-amz-id-2: v6bD+nvVNbYRwwCNCACd4b5OhU9BqkvegiEZ9VuThpnFJK2CUHk/dN4TQsJyqNIEQv7yYL07Lso=
x-amz-request-id: BR0R03871KPZY8M5
x-amz-server-side-encryption: AES256
x-amz-version-id: uDjaGq.aIwClcHSWFbdbyxgfmHuZ8yTC
content-length: 974
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:56 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=13
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/e78badcfab5adcdee14eb8dbfc0d9977/utag.1376.js?utv=ut4.42.202206201008
23.36.79.43200 OK 746 B URL HTTP/2 img6.wsimg.com/wrhs-next/e78badcfab5adcdee14eb8dbfc0d9977/utag.1376.js?utv=ut4.42.202206201008
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (776)
Hash 6969e419266ec686cf320e71e23f78d8
76297130e586fb84e5c0d0923a1aacb47092526a
ad2687e85847419362d5a7d4175053e357a8edc5d1be60257fdd2d84154910e1
GET /wrhs-next/e78badcfab5adcdee14eb8dbfc0d9977/utag.1376.js?utv=ut4.42.202206201008 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "e78badcfab5adcdee14eb8dbfc0d9977"
last-modified: Thu, 07 Jul 2022 16:45:07 GMT
vary: Accept-Encoding
x-amz-id-2: RmcVYq2NbTCvwp8CajijzbgG2ZNaPsmBanOpBhHNmfozehJUsNtprOY7t+fs4n/nZl+QvGq8ldw=
x-amz-request-id: 4Y114Y7J8896XWQQ
x-amz-server-side-encryption: AES256
x-amz-version-id: _Lo6nIQzocMv271uXGlrsv0tgQ9.8ali
content-length: 746
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:56 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=3
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/b28eba21591385b3d392aa3a07799d12/utag.1494.js?utv=ut4.42.202104221036
23.36.79.43200 OK 1.2 kB URL HTTP/2 img6.wsimg.com/wrhs-next/b28eba21591385b3d392aa3a07799d12/utag.1494.js?utv=ut4.42.202104221036
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1507)
Hash 73449a146abe15a0b61e8b530e7a1144
6bc5181e9818fcf90e0abc5e5fc003d39685d6b8
af91309111236330ab014ab4b04e0510d9c6aa0100ee838a62f9fbf6a6c052a0
GET /wrhs-next/b28eba21591385b3d392aa3a07799d12/utag.1494.js?utv=ut4.42.202104221036 HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "b28eba21591385b3d392aa3a07799d12"
last-modified: Thu, 11 Aug 2022 11:38:34 GMT
vary: Accept-Encoding
x-amz-id-2: DY0dn7FRPdGlD2/E29d1m3r65tHiiWRoH/lB+HYolHpZ6iHtYqJl/RCAyoiX06tgnhTCr3GJqjQ=
x-amz-request-id: EJ9KKRTPRJRD3NXY
x-amz-server-side-encryption: AES256
x-amz-version-id: M2usy6n9pvxpoi5SkZ.Zjq.EwJIleVXG
content-length: 1199
cache-control: max-age=31536000
date: Wed, 12 Oct 2022 19:51:56 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=23
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/vAGbIJLSo3Y
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/vAGbIJLSo3Y
IP 142.250.74.3:0
Hash 62a47826577d77af760160d620ecb833
6c826a2e7f9c61e461e1f86ab5ebee4cfde45287
f90b1be9cff4f57bc417ea98576ea863061e6bc6751abc5468fe7ad448955acd
POST /s/gts1d4/vAGbIJLSo3Y HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:56 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/vAGbIJLSo3Y
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/vAGbIJLSo3Y
IP 142.250.74.3:0
Hash 62a47826577d77af760160d620ecb833
6c826a2e7f9c61e461e1f86ab5ebee4cfde45287
f90b1be9cff4f57bc417ea98576ea863061e6bc6751abc5468fe7ad448955acd
POST /s/gts1d4/vAGbIJLSo3Y HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:56 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash dd43366d4afc81521fef474fec8f5bb7
10498011af8b4d9de8620631a24babfe23eee4e9
2fd2141f33d07bcb73a967319cbe998cb3a31bdc53e2f0c3f9c5eeca25d573bb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=94858
Date: Wed, 12 Oct 2022 19:51:56 GMT
Etag: "6345e915-1d7"
Expires: Thu, 13 Oct 2022 22:12:54 GMT
Last-Modified: Tue, 11 Oct 2022 22:07:17 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Os9k1ZTvvhpyuRoqi22coS-sNphyzpdu6MIu1i41Sqh2IHobRPZ3TA==
Age: 337
servedby.flashtalking.com/spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.27552505433832775&ft_trackID=16656043-1662-73ED-525F-52012A9B4596
209.197.3.19200 OK 42 B URL HTTP/1.1 servedby.flashtalking.com/spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.27552505433832775&ft_trackID=16656043-1662-73ED-525F-52012A9B4596
IP 209.197.3.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.27552505433832775&ft_trackID=16656043-1662-73ED-525F-52012A9B4596 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.27552505433832775
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 19:51:56 GMT
Connection: Keep-Alive
Cache-Control: no-cache,no-store
Content-Length: 42
Content-Type: image/gif
Server: prod-xre-app6.frk11
Pragma: no-cache
X-HW: 1665604316.dop211.sk1.shc,1665604316.dop211.sk1.t,1665604316.cds228.sk1.sc,1665604316.cds228.sk1.p
servedby.flashtalking.com/spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.8725369236974757&ft_trackID=16656043-1663-14A0-C409-842124A86A70
209.197.3.19200 OK 42 B URL HTTP/1.1 servedby.flashtalking.com/spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.8725369236974757&ft_trackID=16656043-1663-14A0-C409-842124A86A70
IP 209.197.3.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /spot/8/16395;116731;12362/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.8725369236974757&ft_trackID=16656043-1663-14A0-C409-842124A86A70 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.8725369236974757
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 19:51:56 GMT
Connection: Keep-Alive
Cache-Control: no-cache,no-store
Content-Length: 42
Content-Type: image/gif
Server: prod-xre-app14.frk11
Pragma: no-cache
X-HW: 1665604316.dop013.sk1.shc,1665604316.dop013.sk1.t,1665604316.cds223.sk1.sc,1665604316.cds223.sk1.p
event.mrtnsvr.com/?adv=14&cb=0.8725369236974757
35.227.237.181302 Found 0 B URL HTTP/2 event.mrtnsvr.com/?adv=14&cb=0.8725369236974757
IP 35.227.237.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?adv=14&cb=0.8725369236974757 HTTP/1.1
Host: event.mrtnsvr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
access-control-allow-origin: *
content-type:
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=yhYZqn-aM
set-cookie: userId=yhYZqn-aM; Domain=mrtnsvr.com; Expires=Fri, 13 Oct 2023 19:51:56 GMT; Secure; SameSite=None
vary: Origin
date: Wed, 12 Oct 2022 19:51:56 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
event.mrtnsvr.com/?adv=14&cb=0.27552505433832775
35.227.237.181302 Found 0 B URL HTTP/2 event.mrtnsvr.com/?adv=14&cb=0.27552505433832775
IP 35.227.237.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?adv=14&cb=0.27552505433832775 HTTP/1.1
Host: event.mrtnsvr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
access-control-allow-origin: *
content-type:
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=zbDSqc-tp
set-cookie: userId=zbDSqc-tp; Domain=mrtnsvr.com; Expires=Fri, 13 Oct 2023 19:51:56 GMT; Secure; SameSite=None
vary: Origin
date: Wed, 12 Oct 2022 19:51:56 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/11.49f0b3e462d2d1363ad2.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=www.secureserver.net
104.17.209.240200 OK 20 kB URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/11.49f0b3e462d2d1363ad2.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=www.secureserver.net
IP 104.17.209.240:0
File type ASCII text, with very long lines (62689), with no line terminators
Hash 9dff73cc6f8ba2c9ed691cce492687ef
77fcbe4ba559a851d4271bc6aeec3fc3f82df4a2
dfe7b851c2f77b68b44d690688bf085adf0415d15ad631e4321457d22ba11549
GET /dxjsmodule/11.49f0b3e462d2d1363ad2.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=www.secureserver.net HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 12 Oct 2022 19:51:56 GMT
content-type: application/javascript
cf-ray: 75925f83388a0b3d-OSL
access-control-allow-origin: *
age: 141119
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"f7f2-18381245af8"
last-modified: Tue, 27 Sep 2022 22:49:47 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=63474
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
collector-1594.tvsquared.com/tv2trackext.js
13.58.146.182200 OK 8.6 kB URL HTTP/1.1 collector-1594.tvsquared.com/tv2trackext.js
IP 13.58.146.182:0
File type ASCII text, with very long lines (1176)
Hash 7fdec596c06366f1cc98bea9b8f33ba4
d38c2df40beea742cbbfdbd095ab9e2a825bae0f
6ef6c88f01ef0385baf68bf90ece814771097c5dcb151bb8d7e7f53b852d963e
GET /tv2trackext.js HTTP/1.1
Host: collector-1594.tvsquared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=600
Content-Encoding: gzip
Content-Type: application/javascript
Date: Wed, 12 Oct 2022 19:51:56 GMT
ETag: "6305f9a4-2196"
Expires: Wed, 12 Oct 2022 20:01:56 GMT
Last-Modified: Wed, 24 Aug 2022 10:12:52 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8598
Connection: keep-alive
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash def013ef15b663274169d4561583cd44
65118977bd6b14b4176c17740195c030130632a2
e29eec41650ba0cfb8daf0af60c6bf9fec81962c948446337d2f1f01a963d470
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 12 Oct 2022 19:51:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 12 Oct 2022 14:43:45 GMT
Expires: Thu, 13 Oct 2022 14:43:45 GMT
ETag: "65118977bd6b14b4176c17740195c030130632a2"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.8725369236974757
209.197.3.19200 OK 7.0 kB URL HTTP/1.1 servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.8725369236974757
IP 209.197.3.19:0
Hash bee803e9c9cd7e0e6be94b030b82d573
2eb2d63e73490e2dfb73f46b29545866b01f8f1a
6f67313b237b4458f3d99cd3da161c96677e08846576bd9ea817735a5fa6106f
GET /container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.8725369236974757 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 19:51:56 GMT
Connection: close
Cache-Control: no-cache, no-store
Content-Type: text/html
Server: prod-xre-app10.frk11
Pragma: no-cache
X-HW: 1665604316.dop202.sk1.t,1665604316.cds204.sk1.shn,1665604316.dop202.sk1.t,1665604316.cds255.sk1.sc,1665604316.cds255.sk1.p
d9.flashtalking.com/d9core
52.213.75.212200 11 kB URL HTTP/1.1 d9.flashtalking.com/d9core
IP 52.213.75.212:0
File type ASCII text, with very long lines (10814), with no line terminators
Hash 795ace1e7072a28a4220407309e4520c
03a4577267298cb3d4ad42871acfb2330e941542
e32acc89e04f07ab13118492d66c5a4b155ee6329e44ff7e9c633f96075e00fb
GET /d9core HTTP/1.1
Host: d9.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servedby.flashtalking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,SERVER
Access-Control-Allow-Origin: d9.flashtalking.com
Cache-Control: private, must-revalidate, proxy-revalidate, max-age=172800
Content-Type: application/javascript;charset=utf-8
Date: Wed, 12 Oct 2022 19:51:56 GMT
ETag: 5bc31bf7d4a298e1bef9d35fce222bfc
P3P: policyref="localhost/w3c/D9_p3p_.xml", CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips
Content-Length: 10814
Connection: keep-alive
collector-1594.tvsquared.com/tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=130601&h=19&m=51&s=56&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=550e5b2a56dd498f&_idts=1665604317&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=173
13.58.146.182200 OK 42 B URL HTTP/1.1 collector-1594.tvsquared.com/tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=130601&h=19&m=51&s=56&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=550e5b2a56dd498f&_idts=1665604317&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=173
IP 13.58.146.182:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
GET /tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=130601&h=19&m=51&s=56&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=550e5b2a56dd498f&_idts=1665604317&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=173 HTTP/1.1
Host: collector-1594.tvsquared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Wed, 12 Oct 2022 19:51:56 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: 3b2f75d0-2302-44f5-b9ca-4bcb82369d50
Server: nginx
Content-Length: 42
Connection: keep-alive
d9.flashtalking.com/lgc
52.213.75.212200 103 B IP 52.213.75.212:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 26bd3efd41487f7fd34f0d702fcc26c5
9fc5b4999a901501779e232968e9950f6330c0ac
1e557fd6963aecaf5a7761af7b33f4997ba491cceb45dc57261488f38d39b756
POST /lgc HTTP/1.1
Host: d9.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1395
Origin: https://servedby.flashtalking.com
Connection: keep-alive
Referer: https://servedby.flashtalking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,SERVER
Access-Control-Allow-Origin: https://servedby.flashtalking.com
Content-Type: application/json;charset=ISO-8859-1
Date: Wed, 12 Oct 2022 19:51:56 GMT
P3P: policyref="localhost/w3c/D9_p3p_.xml", CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips
set-cookie: _D9J=70daa24ebc9b44d1b29dec72cebfe82b; path=/; Max-Age=31536000; Expires=Thu, 12-Oct-2023 07:51:56 UTC; SameSite=None;Secure;Domain=flashtalking.com
Content-Length: 103
Connection: keep-alive
servedby.flashtalking.com/track/116731;12362;403;16656043-1662-73ED-525F-52012A9B4596/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=543586.3678541963
209.197.3.19200 OK 42 B URL HTTP/1.1 servedby.flashtalking.com/track/116731;12362;403;16656043-1662-73ED-525F-52012A9B4596/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=543586.3678541963
IP 209.197.3.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /track/116731;12362;403;16656043-1662-73ED-525F-52012A9B4596/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=543586.3678541963 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.27552505433832775
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 19:51:56 GMT
Connection: Keep-Alive
Cache-Control: no-cache, no-store
Content-Length: 42
Content-Type: image/gif
Server: prod-xre-app10.frk11
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
X-HW: 1665604316.dop211.sk1.shc,1665604316.dop211.sk1.t,1665604316.cds228.sk1.sc,1665604316.cds228.sk1.p
d9.flashtalking.com/lgc
52.213.75.212200 103 B IP 52.213.75.212:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 26bd3efd41487f7fd34f0d702fcc26c5
9fc5b4999a901501779e232968e9950f6330c0ac
1e557fd6963aecaf5a7761af7b33f4997ba491cceb45dc57261488f38d39b756
POST /lgc HTTP/1.1
Host: d9.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1395
Origin: https://servedby.flashtalking.com
Connection: keep-alive
Referer: https://servedby.flashtalking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,SERVER
Access-Control-Allow-Origin: https://servedby.flashtalking.com
Content-Type: application/json;charset=ISO-8859-1
Date: Wed, 12 Oct 2022 19:51:56 GMT
P3P: policyref="localhost/w3c/D9_p3p_.xml", CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips
set-cookie: _D9J=d416b11e5a3646e1a7c3b9dce0bcf376; path=/; Max-Age=31536000; Expires=Thu, 12-Oct-2023 07:51:56 UTC; SameSite=None;Secure;Domain=flashtalking.com
Content-Length: 103
Connection: keep-alive
collector-1594.tvsquared.com/tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=009102&h=19&m=51&s=56&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=550e5b2a56dd498f&_idts=1665604317&_idvc=0&_idn=0&_viewts=&cookie=1&res=1280x1024>_ms=173
13.58.146.182200 OK 42 B URL HTTP/1.1 collector-1594.tvsquared.com/tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=009102&h=19&m=51&s=56&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=550e5b2a56dd498f&_idts=1665604317&_idvc=0&_idn=0&_viewts=&cookie=1&res=1280x1024>_ms=173
IP 13.58.146.182:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
GET /tv2track.php?action_name=Worldkast%20Technologies%2C%20LLC&idsite=TV-81459054-1&rec=1&r=009102&h=19&m=51&s=56&url=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com&urlref=http%3A%2F%2Fgrupofiducia.com%2F&_id=550e5b2a56dd498f&_idts=1665604317&_idvc=0&_idn=0&_viewts=&cookie=1&res=1280x1024>_ms=173 HTTP/1.1
Host: collector-1594.tvsquared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Wed, 12 Oct 2022 19:51:56 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: fa8c730c-b0d6-4c0c-9cb9-f97df7bca9d2
Server: nginx
Content-Length: 42
Connection: keep-alive
servedby.flashtalking.com/track/116731;12362;403;16656043-1663-14A0-C409-842124A86A70/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=97310.36275572602
209.197.3.19200 OK 42 B URL HTTP/1.1 servedby.flashtalking.com/track/116731;12362;403;16656043-1663-14A0-C409-842124A86A70/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=97310.36275572602
IP 209.197.3.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /track/116731;12362;403;16656043-1663-14A0-C409-842124A86A70/?ft_data=d9:7f7d8878b36d47119f08272830cd3003;d9s:7f7d8878b36d47119f08272830cd3003&cachebuster=97310.36275572602 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.8725369236974757
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 19:51:57 GMT
Connection: Keep-Alive
Cache-Control: no-cache, no-store
Content-Length: 42
Content-Type: image/gif
Server: prod-xre-app6.frk11
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
X-HW: 1665604316.dop013.sk1.shc,1665604316.dop013.sk1.t,1665604316.cds223.sk1.sc,1665604317.cds223.sk1.p
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b192cd00a2461f121dfacab083745438
c42f8980c4f045b26ad9823a65fbd6b122fe3740
98c8f9d3ec5d942b553cdd8b6b96c839dc0b13e483c8890bdc9d7690a714408e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2298
Cache-Control: max-age=114771
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Etag: "63462f36-1d7"
Expires: Fri, 14 Oct 2022 03:44:48 GMT
Last-Modified: Wed, 12 Oct 2022 03:06:30 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 12 Oct 2022 18:41:09 GMT
expires: Wed, 12 Oct 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 4248
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bb5a66e2e6e492b895b767f9cab4cae4
7676457a9a5dac9319351cf94530117e222a36e9
0b308f2337d3abb98494e9460a7c1180ea8a90961e1580e67d823b56242dfcf5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b328dd45b340d747021ad1da23ede95d
92811e18e93271b7b7fc75b2e0ff9d3617f0417e
8e3a7c1a63d37d561dc08f9cec0863582709bb8248214c0f08586bbf3040cad2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
znccpilcxlhy2kxod-godaddy.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_cCpILcXLHy2kXOd&Q_LOC=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
104.17.209.240200 OK 3.7 kB URL HTTP/2 znccpilcxlhy2kxod-godaddy.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_cCpILcXLHy2kXOd&Q_LOC=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
IP 104.17.209.240:0
File type ASCII text, with very long lines (6801)
Hash ca4429b64432f3e085bf27f9e557f62a
7b4adbe64fdc3af0954b6eef28a7bdb25107181d
6614e37757d670ca89f9854aa7c63fd9de42e6ef627fda229215c5540294deac
GET /WRSiteInterceptEngine/?Q_ZID=ZN_cCpILcXLHy2kXOd&Q_LOC=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com HTTP/1.1
Host: znccpilcxlhy2kxod-godaddy.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 12 Oct 2022 19:51:56 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 75925f82f8330b3d-OSL
access-control-allow-origin: *
age: 153567
cache-control: public, max-age=3600, s-maxage=604800
etag: W/"2127-JXQqjSXWuLuEFHoMKD0qAckifak"
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=8487
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.krxd.net/controltag/ux5pjwjr7.js
151.101.86.133200 OK 6.2 kB URL HTTP/2 cdn.krxd.net/controltag/ux5pjwjr7.js
IP 151.101.86.133:0
File type ASCII text, with very long lines (20241)
Hash 3200fa7eed05dc39eb0937f13443af3c
f8a61a43bc48da72aae267e0ffc9d7047378e339
5f77a47572936d53d7024fd025810d748c46e492d689529b2dafd34b4bc5aee7
GET /controltag/ux5pjwjr7.js HTTP/1.1
Host: cdn.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
etag: "99d798ef5d8aa89356feda894c39bb6513eaaa04"
x-app-cache: HIT
cache-control: public, max-age=1200
x-response-time: 0
content-encoding: gzip
x-age: 0
x-cdn-backend: 4FrRTvEr9h480D4BywjehZ--F_config_service_ash_prod
via: 1.1 varnish, 1.1 varnish
x-do-esi: esi
accept-ranges: bytes
date: Wed, 12 Oct 2022 19:51:57 GMT
age: 302
x-served-by: config-service-a003-ash-prod.krxd.net, cache-iad-kjyo7100077-IAD, cache-bma1637-BMA
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 17, 1
x-timer: S1665604317.180648,VS0,VE1
vary: Accept-Encoding
content-length: 6234
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4f6313a1417b096fb092f3d28a765787
8513b2f92ca42a7487bbbebb14c1db2c4b0ee836
5f6a80401a2ab3ba5c41facff4135f7a1d6b4bbba10ea5bb39634ada50fb1fd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2107
Cache-Control: max-age=166081
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Etag: "6346f863-1d7"
Expires: Fri, 14 Oct 2022 17:59:58 GMT
Last-Modified: Wed, 12 Oct 2022 17:24:51 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=1DC56C018A73688314F37E3A8B24699F; domain=.bing.com; expires=Mon, 06-Nov-2023 19:51:57 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0533552B87D4466DB0B6AEEBA7E2C1F7 Ref B: OSL30EDGE0308 Ref C: 2022-10-12T19:51:57Z
date: Wed, 12 Oct 2022 19:51:56 GMT
X-Firefox-Spdy: h2
ad.doubleclick.net/activity;src=8316070;type=retar0;cat=ret-page;ord=637652000499;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com?
216.58.207.198302 Found 0 B URL HTTP/2 ad.doubleclick.net/activity;src=8316070;type=retar0;cat=ret-page;ord=637652000499;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com?
IP 216.58.207.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /activity;src=8316070;type=retar0;cat=ret-page;ord=637652000499;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 12 Oct 2022 19:51:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=637652000499;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 12-Oct-2022 20:06:57 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=godaddy_adh&google_hm=7S5VMP_dUfqOIZDB4uyMDA
142.250.74.66302 Found 306 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=godaddy_adh&google_hm=7S5VMP_dUfqOIZDB4uyMDA
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 6361673c5896ff354caaff06d175464f
467e5a67b7380b3d8dc2a83d05b396b7a9506b5e
63a986e13f7c082b80c27cc2c721343f8a4ce739d6694ba5e2327c323989b135
GET /pixel?google_nid=godaddy_adh&google_hm=7S5VMP_dUfqOIZDB4uyMDA HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=godaddy_adh&google_hm=7S5VMP_dUfqOIZDB4uyMDA&google_tc=
date: Wed, 12 Oct 2022 19:51:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 306
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 12-Oct-2022 20:06:57 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=zbDSqc-tp
35.227.248.159302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=zbDSqc-tp
IP 35.227.248.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=3203&partner_device_id=zbDSqc-tp HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 12 Oct 2022 19:51:57 GMT
strict-transport-security: max-age=31536000
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1665604317192;Expires=Sun, 11 Dec 2022 19:51:57 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=1a10ab7d-af51-48c9-a95e-370f6ab021be;Expires=Sun, 11 Dec 2022 19:51:57 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=3203&partner_device_id=zbDSqc-tp
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_cCpILcXLHy2kXOd&Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web
104.17.209.240200 OK 1.9 kB URL HTTP/2 siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_cCpILcXLHy2kXOd&Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web
IP 104.17.209.240:0
File type JSON data\012- , ASCII text, with very long lines (11482), with no line terminators
Hash 9ee74e5d8c43b6137cf683530eb2c4db
ff6dc0bd2f71a50371cd53fe2769dd8331b5ef44
5ef2c1539d6a1a6065d38e703f8b67b7ad8278eebab47b66f4f91c1a66f965f9
POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_cCpILcXLHy2kXOd&Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 161
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 12 Oct 2022 19:51:56 GMT
content-type: application/json
cf-ray: 75925f8399100b3d-OSL
access-control-allow-origin: https://www.secureserver.net
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: ecd9c867eb8ce0eb
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/tr?id=284067518410183&ev=PageView&dpo=LDU&dpoco=0&dpost=0&noscript=1
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr?id=284067518410183&ev=PageView&dpo=LDU&dpoco=0&dpost=0&noscript=1
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr?id=284067518410183&ev=PageView&dpo=LDU&dpoco=0&dpost=0&noscript=1 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 12 Oct 2022 19:51:57 GMT
X-Firefox-Spdy: h2
pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=yhYZqn-aM
35.227.248.159302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=3203&partner_device_id=yhYZqn-aM
IP 35.227.248.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=3203&partner_device_id=yhYZqn-aM HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 12 Oct 2022 19:51:57 GMT
strict-transport-security: max-age=31536000
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1665604317206;Expires=Sun, 11 Dec 2022 19:51:57 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=d5db6f7d-f218-4e23-9ade-c9393b748e6b;Expires=Sun, 11 Dec 2022 19:51:57 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=3203&partner_device_id=yhYZqn-aM
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ad.doubleclick.net/activity;src=8316070;type=retar0;cat=ret-page;ord=8549467815321;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com?
216.58.207.198302 Found 0 B URL HTTP/2 ad.doubleclick.net/activity;src=8316070;type=retar0;cat=ret-page;ord=8549467815321;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com?
IP 216.58.207.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /activity;src=8316070;type=retar0;cat=ret-page;ord=8549467815321;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 12 Oct 2022 19:51:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=8549467815321;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 12-Oct-2022 20:06:57 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b192cd00a2461f121dfacab083745438
c42f8980c4f045b26ad9823a65fbd6b122fe3740
98c8f9d3ec5d942b553cdd8b6b96c839dc0b13e483c8890bdc9d7690a714408e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2298
Cache-Control: max-age=114771
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Etag: "63462f36-1d7"
Expires: Fri, 14 Oct 2022 03:44:48 GMT
Last-Modified: Wed, 12 Oct 2022 03:06:30 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bb5a66e2e6e492b895b767f9cab4cae4
7676457a9a5dac9319351cf94530117e222a36e9
0b308f2337d3abb98494e9460a7c1180ea8a90961e1580e67d823b56242dfcf5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b328dd45b340d747021ad1da23ede95d
92811e18e93271b7b7fc75b2e0ff9d3617f0417e
8e3a7c1a63d37d561dc08f9cec0863582709bb8248214c0f08586bbf3040cad2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ca65d10d770e468b333aed94a9d9eab
6050ece58c86f6d52eef764c5c6e85ba473bc4fa
5197cfceced13d4ca4c9246f3389b5637980f50c669d10d631a3a98df76cdec8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5197CFCECED13D4CA4C9246F3389B5637980F50C669D10D631A3A98DF76CDEC8"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8195
Expires: Wed, 12 Oct 2022 22:08:32 GMT
Date: Wed, 12 Oct 2022 19:51:57 GMT
Connection: keep-alive
digitalcare.godaddy.com/dc-apis/messaging-bundle/bundle.js?env=prod&market=en-US
104.110.8.38500 Internal Server Error 0 B URL HTTP/2 digitalcare.godaddy.com/dc-apis/messaging-bundle/bundle.js?env=prod&market=en-US
IP 104.110.8.38:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dc-apis/messaging-bundle/bundle.js?env=prod&market=en-US HTTP/1.1
Host: digitalcare.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 500 Internal Server Error
content-length: 0
vary: Origin
strict-transport-security: max-age=15724800; includeSubDomains
expires: Wed, 12 Oct 2022 19:51:57 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 12 Oct 2022 19:51:57 GMT
set-cookie: CESSID=aac659c8-7f14-41e3-9a5c-09bfaf5ec601; Path=/; Domain=godaddy.com
server-timing: cdn-cache; desc=MISS, edge; dur=112, origin; dur=8
x-arc: 30
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d7c227ee1492db2e1af76a4adc46f1da
e4bebcd428598a6d704da5c73a563b690e37869a
020644251a72addef69f8de0dede919902dbfba0ce9e8acb4c69de42efbe32af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "020644251A72ADDEF69F8DE0DEDE919902DBFBA0CE9E8ACB4C69DE42EFBE32AF"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13215
Expires: Wed, 12 Oct 2022 23:32:12 GMT
Date: Wed, 12 Oct 2022 19:51:57 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4f6313a1417b096fb092f3d28a765787
8513b2f92ca42a7487bbbebb14c1db2c4b0ee836
5f6a80401a2ab3ba5c41facff4135f7a1d6b4bbba10ea5bb39634ada50fb1fd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2107
Cache-Control: max-age=166081
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Etag: "6346f863-1d7"
Expires: Fri, 14 Oct 2022 17:59:58 GMT
Last-Modified: Wed, 12 Oct 2022 17:24:51 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-115508484-1&cid=1089811624.1665604317&jid=1537506690&gjid=211617781&_gid=1071110316.1665604317&_u=4GBAAUAAAAAAACABI~&z=1937001193
173.194.73.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-115508484-1&cid=1089811624.1665604317&jid=1537506690&gjid=211617781&_gid=1071110316.1665604317&_u=4GBAAUAAAAAAACABI~&z=1937001193
IP 173.194.73.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-115508484-1&cid=1089811624.1665604317&jid=1537506690&gjid=211617781&_gid=1071110316.1665604317&_u=4GBAAUAAAAAAACABI~&z=1937001193 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.secureserver.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 12 Oct 2022 19:51:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
44.234.208.169200 OK 0 B URL HTTP/2 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
IP 44.234.208.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /intake/v2/rum/events HTTP/1.1
Host: 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.secureserver.net/
Origin: https://www.secureserver.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Content-Type, Content-Encoding, Accept
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: https://www.secureserver.net
access-control-expose-headers: Etag
access-control-max-age: 3600
date: Wed, 12 Oct 2022 19:51:57 GMT
vary: Origin
x-cloud-request-id: icDl0OgRQRuqcslC328xLg
x-content-type-options: nosniff
x-found-handling-cluster: 3ac0518ee77644c287234980668228e1
x-found-handling-instance: instance-0000000017
content-length: 0
X-Firefox-Spdy: h2
cdn.krxd.net/ctjs/controltag.js.d58f47095e6041e576ee04944cca45da
151.101.86.133200 OK 85 kB URL HTTP/2 cdn.krxd.net/ctjs/controltag.js.d58f47095e6041e576ee04944cca45da
IP 151.101.86.133:0
File type ASCII text, with very long lines (65439)
Hash d58f47095e6041e576ee04944cca45da
265282d9373a6b3076d6afe6e6a357a000b6841e
9d81ace3b73ea9d8adc98d8c8d331d0335794bee2e667a84d3ec8b503b2b8be4
GET /ctjs/controltag.js.d58f47095e6041e576ee04944cca45da HTTP/1.1
Host: cdn.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 09:41:11 GMT
etag: "d58f47095e6041e576ee04944cca45da"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=315360000
content-encoding: gzip
expires: Fri, 01 Oct 2032 09:41:10 GMT
content-type: application/javascript
x-cdn-backend: 4FrRTvEr9h480D4BywjehZ--F_Controltag_S3
accept-ranges: bytes
date: Wed, 12 Oct 2022 19:51:57 GMT
via: 1.1 varnish
age: 710900
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 132884
x-timer: S1665604317.462561,VS0,VE0
content-length: 84766
X-Firefox-Spdy: h2
bat.bing.com/p/action/4007276.js
13.107.21.200200 OK 666 B URL HTTP/2 bat.bing.com/p/action/4007276.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash df3d1ac41ed92ae61fadc5b60c8cf5fc
4ac11d1710222a42771bfda05d39e265f4faff2c
653553059dc1647c512e10bc299ca9614bf1898e5811f06941832d67b159baa0
GET /p/action/4007276.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 666
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=3A8AF1582DA06D9511D9E3632CF76C95; domain=.bing.com; expires=Mon, 06-Nov-2023 19:51:57 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 782D51D7BBAC4A43BFA85772B41BAA78 Ref B: OSL30EDGE0308 Ref C: 2022-10-12T19:51:57Z
date: Wed, 12 Oct 2022 19:51:56 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5d0a0ed90364e0eea045f6e6cbc6521d
f76cac3b64a0310a0f5dc859cd2310802c024426
26caffaa8fc4b28a0fbe229d64d4f14c621178610521c58881b5cc5b39102382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ec8c3be288c030a2f21f77da38609a2c
5dce231ac91002054bbdbc6b19f6d1aa0d6c32bc
fa3abfefbd26a9339066ee03360614fc68312aefd2aa7e47e291589f426a7265
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b8e058c50dbe0871b6ccde4ed4cc8785
06b0c34d584624df99282c1fff1d766b9ed00e64
3319073b74402c41450cc9ca2162140dbe8b231db146cf8e77cb0b43fa461b4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7c009ebc7f8428a2b42bfded02ce064b
aacd16236c8c8522b789e7f1a719ddd4221e9e09
de21ff625e09b453b11b74ab831ea1ecdc36b84cf3dec26d2074ed097f74bdc3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=1089811624.1665604317&jid=1537506690&_u=4GBAAUAAAAAAACABI~&z=1902203735
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=1089811624.1665604317&jid=1537506690&_u=4GBAAUAAAAAAACABI~&z=1902203735
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=1089811624.1665604317&jid=1537506690&_u=4GBAAUAAAAAAACABI~&z=1902203735 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 12 Oct 2022 19:51:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=1089811624.1665604317&jid=1537506690&_u=4GBAAUAAAAAAACABI~&z=1902203735
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=1089811624.1665604317&jid=1537506690&_u=4GBAAUAAAAAAACABI~&z=1902203735
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-115508484-1&cid=1089811624.1665604317&jid=1537506690&_u=4GBAAUAAAAAAACABI~&z=1902203735 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 12 Oct 2022 19:51:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=637652000499;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
142.250.74.2302 Found 0 B URL HTTP/2 adservice.google.com/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=637652000499;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=637652000499;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 12 Oct 2022 19:51:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.no/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=637652000499;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=8549467815321;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
142.250.74.2302 Found 0 B URL HTTP/2 adservice.google.com/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=8549467815321;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=8549467815321;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 12 Oct 2022 19:51:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.no/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=8549467815321;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5d0a0ed90364e0eea045f6e6cbc6521d
f76cac3b64a0310a0f5dc859cd2310802c024426
26caffaa8fc4b28a0fbe229d64d4f14c621178610521c58881b5cc5b39102382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
44.234.208.169202 Accepted 0 B URL HTTP/2 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
IP 44.234.208.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /intake/v2/rum/events HTTP/1.1
Host: 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 28248
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: https://www.secureserver.net
date: Wed, 12 Oct 2022 19:51:57 GMT
x-cloud-request-id: PlJa248nSvmWzHS75k75Eg
x-content-type-options: nosniff
x-found-handling-cluster: 3ac0518ee77644c287234980668228e1
x-found-handling-instance: instance-0000000017
content-length: 0
X-Firefox-Spdy: h2
3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
44.234.208.169202 Accepted 0 B URL HTTP/2 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
IP 44.234.208.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /intake/v2/rum/events HTTP/1.1
Host: 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 5452
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: https://www.secureserver.net
date: Wed, 12 Oct 2022 19:51:57 GMT
x-cloud-request-id: W-q3nV1ETAi8og1Syd-fkg
x-content-type-options: nosniff
x-found-handling-cluster: 3ac0518ee77644c287234980668228e1
x-found-handling-instance: instance-0000000017
content-length: 0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7819db7b5768fe648b1aed362e9e45bf
03b464aab657bdc96e593b387bd47843ae9f1f30
0c2917ebec107eb55994aa414720ac821ceeca3140c8119de383d3bb0393e739
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 19:51:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 13:42:56 GMT
Expires: Wed, 19 Oct 2022 13:42:55 GMT
Etag: "03b464aab657bdc96e593b387bd47843ae9f1f30"
Cache-Control: max-age=582057,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75925f872a820b45-OSL
adservice.google.no/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=637652000499;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
216.58.211.2200 OK 42 B URL HTTP/2 adservice.google.no/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=637652000499;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
IP 216.58.211.2:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=637652000499;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 12 Oct 2022 19:51:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=8549467815321;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
216.58.211.2200 OK 42 B URL HTTP/2 adservice.google.no/ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=8549467815321;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com
IP 216.58.211.2:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/fls/p/src=8316070;type=retar0;cat=ret-page;ord=8549467815321;gtm=2odaa0;auiddc=2136801212.1665604316;u13=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;u14=www.secureserver.net%2F;u15=homepage;u16=;u17=;u18=;u19=;u20=;u21=;u22=ed2e5530-ffdd-51fa-8e21-90c1e2ec8c0c;~oref=https%3A%2F%2Fwww.secureserver.net%2F%3Fisc%3DPLPPT02003%26ci%3D81494%26prog_id%3D457669%26domain%3Dgrupofiducia.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 12 Oct 2022 19:51:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
di.rlcdn.com/459769.gif?partner_uid=STV-81459054-1%3A550e5b2a56dd498f
35.244.174.68451 Unavailable For Legal Reasons 0 B URL HTTP/2 di.rlcdn.com/459769.gif?partner_uid=STV-81459054-1%3A550e5b2a56dd498f
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /459769.gif?partner_uid=STV-81459054-1%3A550e5b2a56dd498f HTTP/1.1
Host: di.rlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Wed, 12 Oct 2022 19:51:57 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3004a422fa41f1445377829d44ba6400
e386901844a90ff43475b5e583f075843646d8e9
0be0da406b3575bd85a233f6b5415d3529ad90be690abe1de9aba19b237eb8cb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3305
Cache-Control: max-age=120154
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Etag: "6346404e-1d7"
Expires: Fri, 14 Oct 2022 05:14:31 GMT
Last-Modified: Wed, 12 Oct 2022 04:19:26 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3004a422fa41f1445377829d44ba6400
e386901844a90ff43475b5e583f075843646d8e9
0be0da406b3575bd85a233f6b5415d3529ad90be690abe1de9aba19b237eb8cb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2139
Cache-Control: max-age=118988
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Etag: "6346404e-1d7"
Expires: Fri, 14 Oct 2022 04:55:05 GMT
Last-Modified: Wed, 12 Oct 2022 04:19:26 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3004a422fa41f1445377829d44ba6400
e386901844a90ff43475b5e583f075843646d8e9
0be0da406b3575bd85a233f6b5415d3529ad90be690abe1de9aba19b237eb8cb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5249
Cache-Control: max-age=122098
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 19:51:57 GMT
Etag: "6346404e-1d7"
Expires: Fri, 14 Oct 2022 05:46:55 GMT
Last-Modified: Wed, 12 Oct 2022 04:19:26 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
consumer.krxd.net/consent/get/d3f5ea67-4486-480d-a551-8cc4bc815ae7?idt=device&dt=kxcookie&_kuid=kppidff_PIlO4_v0&callback=Krux.ns._default.kxjsonp_consent_get_0
151.101.86.133200 OK 186 B URL HTTP/2 consumer.krxd.net/consent/get/d3f5ea67-4486-480d-a551-8cc4bc815ae7?idt=device&dt=kxcookie&_kuid=kppidff_PIlO4_v0&callback=Krux.ns._default.kxjsonp_consent_get_0
IP 151.101.86.133:0
File type ASCII text, with no line terminators
Hash 795112b10e59e08248adfc2109dafef8
19a0e318fbbe5c0f540495514021a1f0d8ace598
ff6fed1b02f3d25d4f94ea66e27a266ffd4cb15e74c3d16fa6822e27f51ea910
GET /consent/get/d3f5ea67-4486-480d-a551-8cc4bc815ae7?idt=device&dt=kxcookie&_kuid=kppidff_PIlO4_v0&callback=Krux.ns._default.kxjsonp_consent_get_0 HTTP/1.1
Host: consumer.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
cache-control: max-age=1800
content-encoding: gzip
x-age: 0
accept-ranges: bytes
date: Wed, 12 Oct 2022 19:51:57 GMT
via: 1.1 varnish
age: 0
x-served-by: consumer-a006-ash-prod.krxd.net, cache-bma1645-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1665604318.829598,VS0,VE97
vary: Accept-Encoding
content-length: 186
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7819db7b5768fe648b1aed362e9e45bf
03b464aab657bdc96e593b387bd47843ae9f1f30
0c2917ebec107eb55994aa414720ac821ceeca3140c8119de383d3bb0393e739
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 19:51:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 13:42:56 GMT
Expires: Wed, 19 Oct 2022 13:42:55 GMT
Etag: "03b464aab657bdc96e593b387bd47843ae9f1f30"
Cache-Control: max-age=582057,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75925f8ac8ee0b45-OSL
beacon.krxd.net/event.gif?event_id=NrBzCIr2&event_type=default&_kuid=kppidff_PIlO4_v0
52.210.106.114204 No Content 0 B URL HTTP/2 beacon.krxd.net/event.gif?event_id=NrBzCIr2&event_type=default&_kuid=kppidff_PIlO4_v0
IP 52.210.106.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event.gif?event_id=NrBzCIr2&event_type=default&_kuid=kppidff_PIlO4_v0 HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 12 Oct 2022 19:51:57 GMT
set-cookie: _kuid_=PIlO5KAM; Expires=Mon, 10-Apr-23 19:51:57 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
e_NrBzCIr2^_kuid|kppidff_PIlO4_v0=1665604317; Expires=Fri, 14-Oct-22 19:51:57 GMT; Max-Age=172800; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n023-dub-prod.krxd.net
x-request-time: D=39 t=1665604317
X-Firefox-Spdy: h2
www.clarity.ms/tag/uet/4007276
13.107.246.53200 OK 2.4 kB URL HTTP/2 www.clarity.ms/tag/uet/4007276
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (2446), with no line terminators
Hash 298b977c32eb779ffb620e84e42c0f61
4e8cc6b454591885a716f662b9fa02c7a0e87321
9f438f6934ea6edad778f79306e8e7990831799fa8aee810fbd14008b31a13eb
GET /tag/uet/4007276 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-length: 2446
content-type: application/x-javascript
expires: -1
set-cookie: CLID=cbb04c3ae19b4d398f85e78cbedf061a.20221012.20231012; expires=Thu, 12 Oct 2023 19:51:57 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:3d284f99-f285-495c-ac33-dedd7ecf1ac8
x-cache: CONFIG_NOCACHE
x-azure-ref: 03RpHYwAAAACeb66wGJhuRaOjZEFBTyaMU1ZHMjBFREdFMDYxMQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 12 Oct 2022 19:51:56 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash a395e140eb831ae44e245f2c5dfee69f
66ca1e09f6e471cbbc1864eeb131cfe7b9ebf4b8
2186459261bff22aa0174c0eb1a62990d1f87f4e0a73129a4f6cb8fa6744f49c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144098
Date: Wed, 12 Oct 2022 19:51:57 GMT
Etag: "634698e2-1d7"
Expires: Fri, 14 Oct 2022 11:53:35 GMT
Last-Modified: Wed, 12 Oct 2022 10:37:22 GMT
Server: ECS (dcb/7EA6)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: L54fwX1nR5lJa6KeCBGGf9KDRT1dGeXDy-kKkW6nDh_ozE5Wm_o16w==
Age: 4573
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=812C23F391644CD3B23FCB2A64CE72B2&RedC=c.clarity.ms&MXFR=0C4465F79B6C617D332677CC9F6C6FEC
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=0C4465F79B6C617D332677CC9F6C6FEC; domain=.clarity.ms; expires=Mon, 06-Nov-2023 19:51:58 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Wed, 12 Oct 2022 19:51:57 GMT
content-length: 0
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=812C23F391644CD3B23FCB2A64CE72B2&RedC=c.clarity.ms&MXFR=0C4465F79B6C617D332677CC9F6C6FEC
13.107.21.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=812C23F391644CD3B23FCB2A64CE72B2&RedC=c.clarity.ms&MXFR=0C4465F79B6C617D332677CC9F6C6FEC
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=812C23F391644CD3B23FCB2A64CE72B2&RedC=c.clarity.ms&MXFR=0C4465F79B6C617D332677CC9F6C6FEC HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=812C23F391644CD3B23FCB2A64CE72B2&MUID=185AB6A236246A0B24E4A49937736B32
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=185AB6A236246A0B24E4A49937736B32; domain=c.bing.com; expires=Mon, 06-Nov-2023 19:51:58 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8587A7D79E144684AAF1CE466766B3C3 Ref B: OSL30EDGE0308 Ref C: 2022-10-12T19:51:58Z
date: Wed, 12 Oct 2022 19:51:57 GMT
content-length: 0
X-Firefox-Spdy: h2
3gntiugefk.execute-api.us-west-2.amazonaws.com/prod/v1/events?google_error=3
52.89.97.201200 OK 2 B URL HTTP/2 3gntiugefk.execute-api.us-west-2.amazonaws.com/prod/v1/events?google_error=3
IP 52.89.97.201:0
File type ASCII text, with no line terminators
Hash 9d4568c009d203ab10e33ea9953a0264
dd29ecf524b030a65261e3059c48ab9e1ecb2585
12ae32cb1ec02d01eda3581b127c1fee3b0dc53572ed6baf239721a03d82e126
GET /prod/v1/events?google_error=3 HTTP/1.1
Host: 3gntiugefk.execute-api.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 12 Oct 2022 19:51:58 GMT
content-type: application/json
content-length: 2
x-amzn-requestid: d8c89bbd-b07d-4e25-82aa-862e12247674
x-amz-apigw-id: Z6EiuHdrvHcFebQ=
x-amzn-trace-id: Root=1-63471ade-5e4972ef5655af470d353145;Sampled=0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=812C23F391644CD3B23FCB2A64CE72B2&MUID=185AB6A236246A0B24E4A49937736B32
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=812C23F391644CD3B23FCB2A64CE72B2&MUID=185AB6A236246A0B24E4A49937736B32
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=812C23F391644CD3B23FCB2A64CE72B2&MUID=185AB6A236246A0B24E4A49937736B32 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.secureserver.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Wed, 12-Oct-2022 20:01:58 GMT; path=/; SameSite=None; Secure;
date: Wed, 12 Oct 2022 19:51:57 GMT
content-length: 42
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1518
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.secureserver.net
access-control-allow-credentials: true
date: Wed, 12 Oct 2022 19:51:58 GMT
X-Firefox-Spdy: h2
3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
44.234.208.169202 Accepted 0 B URL HTTP/2 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com/intake/v2/rum/events
IP 44.234.208.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /intake/v2/rum/events HTTP/1.1
Host: 3ac0518ee77644c287234980668228e1.apm.vpce.gdw55e.elastic-cloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 1064
Origin: https://www.secureserver.net
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: https://www.secureserver.net
date: Wed, 12 Oct 2022 19:51:59 GMT
x-cloud-request-id: eRyQMW7MSjSd9KioFrkMLA
x-content-type-options: nosniff
x-found-handling-cluster: 3ac0518ee77644c287234980668228e1
x-found-handling-instance: instance-0000000017
content-length: 0
X-Firefox-Spdy: h2
www.google.com/adsense/domains/caf.js
142.250.74.164200 OK 0 B URL HTTP/2 www.google.com/adsense/domains/caf.js
IP 142.250.74.164:0
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://grupofiducia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Wed, 12 Oct 2022 19:51:53 GMT
expires: Wed, 12 Oct 2022 19:51:53 GMT
cache-control: private, max-age=3600
etag: "11059703472354090869"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.27552505433832775
209.197.3.19200 OK 0 B URL HTTP/1.1 servedby.flashtalking.com/container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.27552505433832775
IP 209.197.3.19:0
GET /container/16395;116731;12362;iframe/?spotName=GoDaddy_All_Pages&ftXCurrency=USD&cachebuster=0.27552505433832775 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 19:51:56 GMT
Connection: close
Cache-Control: no-cache, no-store
Content-Type: text/html
Server: prod-xre-app13.frk11
Pragma: no-cache
X-HW: 1665604316.dop022.sk1.t,1665604316.cds242.sk1.shn,1665604316.dop022.sk1.t,1665604316.cds252.sk1.sc,1665604316.cds252.sk1.p
beacon.krxd.net/optout_check?_kuid=kppidff_PIlO4_v0&callback=Krux.ns._default.kxjsonp_optOutCheck
52.210.106.114200 OK 0 B URL HTTP/2 beacon.krxd.net/optout_check?_kuid=kppidff_PIlO4_v0&callback=Krux.ns._default.kxjsonp_optOutCheck
IP 52.210.106.114:0
GET /optout_check?_kuid=kppidff_PIlO4_v0&callback=Krux.ns._default.kxjsonp_optOutCheck HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 12 Oct 2022 19:51:57 GMT
content-type: text/javascript
cache-control: private, max-age=0, s-max-age=0
x-served-by: beacon-n002-dub-prod.krxd.net
x-request-time: D=37 t=1665604317
X-Firefox-Spdy: h2
beacon.krxd.net/optout_check?_kuid=kppidff_PIlO4_v0&callback=Krux.ns._default.kxjsonp_optOutCheck
52.210.106.114200 OK 0 B URL HTTP/2 beacon.krxd.net/optout_check?_kuid=kppidff_PIlO4_v0&callback=Krux.ns._default.kxjsonp_optOutCheck
IP 52.210.106.114:0
GET /optout_check?_kuid=kppidff_PIlO4_v0&callback=Krux.ns._default.kxjsonp_optOutCheck HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 12 Oct 2022 19:51:57 GMT
content-type: text/javascript
cache-control: private, max-age=0, s-max-age=0
x-served-by: beacon-n021-dub-prod.krxd.net
x-request-time: D=32 t=1665604317
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.42/clarity.js
13.107.246.53200 OK 0 B URL HTTP/2 www.clarity.ms/eus2/s/0.6.42/clarity.js
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus2/s/0.6.42/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8da7270bdf0d4"
vary: Accept-Encoding
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 03RpHYwAAAADdF0aHc217Qoyz4dXlJ+knU1ZHMjBFREdFMDYxMQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 12 Oct 2022 19:51:57 GMT
X-Firefox-Spdy: h2