8.8.8.8:53

8.8.8.8:53

2.21.35.200:443

GET /serviceak/v1/news/Feed/Windows?apikey=qrUeHGGYvVowZJuHA3XaH0uUvg1ZJ0GUZnXk3mxxPF&activityId=292df3a2-dfa7-40eb-aa2a-40b4987b2a0f&ocid=windows-windowsShell-feeds&user=m-cf89462b11a8449c8f6b21e7993ab708&Treatment=T6&MaximumDimensions=660x640&experience=Taskbar&AppVersion=1&osLocale=en-US&caller=bgtask HTTP/2.0
host: assets.msn.com
x-search-account: None
accept-encoding: gzip, deflate
x-device-machineid: {C9E8DBBA-7F76-41FC-929E-89520C801A1F}
x-userageclass: Unknown
x-bm-market: US
x-bm-dateformat: M/d/yyyy
x-device-ossku: 48
x-bm-dtz: 0
x-deviceid: 0100B2E609000CC3
x-bm-windowsflights: FX:117B9872,FX:119E26AD,FX:11D898D7,FX:11DB147C,FX:11DE505A,FX:11E11E97,FX:11E3E2BA,FX:11E50151,FX:11E9EE98,FX:11F1992A,FX:11F4161E,FX:11F41B68,FX:11FB0F2F,FX:1201B330,FX:1202B7FC,FX:120BB68E,FX:121A20E1,FX:121BF15F,FX:121E5EC8,FX:122D8E86,FX:123031A3,FX:1231B88B,FX:123371B1,FX:1233C945,FX:123D7C31,FX:1240013C,FX:1246E4A3,FX:1248306D,FX:124B38D0,FX:1250080B,FX:125A7FDA,FX:1264FA75,FX:126DBC22,FX:127159BE,FX:12769734,FX:127C935B,FX:127DC03A,FX:127FC878,FX:1283FFE8,FX:12840617,FX:128979F9,FX:129135BB
sitename: www.msn.com
x-bm-theme: 000000;0078d7
muid: CF89462B11A8449C8F6B21E7993AB708
x-agent-deviceid: 0100B2E609000CC3
x-bm-onlinesearchdisabled: true
x-bm-cbt: 1684428227
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.2.19041; 10.0.0.0.19041.1288) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041
x-device-isoptin: false
accept-language: en-US, en
x-device-touch: false
x-device-clientsession: 39EAC7DBC5F84CC6921FDF39754E0EF7
cookie: MUID=CF89462B11A8449C8F6B21E7993AB708

HTTP/2.0 200
content-type: application/json; charset=utf-8
server: Kestrel
access-control-allow-credentials: true
access-control-allow-headers: TicketType,RequestContinuationKey,AuthToken,Content-Type,x-client-activityid,ms-cv,signedInCookieName,muid,appid,User-Location,user-location,userauthtoken,usertickettype,sitename,s2sauthtoken,thumbprint,Authorization,Ent-Authorization,UserIdToken,DDD-TMPL,DDD-ActivityId,DDD-FeatureSet,DDD-Session-ID,Date,date,ads-referer,ads-referer,taboola-sessionId,taboola-sessionid,Akamai-Request-ID,Akamai-Server-IP,X-MSEdge-Ref,DDD-DebugId,s-xbox-token,OneWebServiceLatency,X-FD-Features,DDD-UserType,traceparent
access-control-allow-methods: PUT,PATCH,POST,GET,OPTIONS,DELETE
access-control-allow-origin: *.msn.com
access-control-expose-headers: TicketType,RequestContinuationKey,AuthToken,Content-Type,x-client-activityid,ms-cv,signedInCookieName,muid,appid,User-Location,user-location,userauthtoken,usertickettype,sitename,s2sauthtoken,thumbprint,Authorization,Ent-Authorization,UserIdToken,DDD-TMPL,DDD-ActivityId,DDD-FeatureSet,DDD-Session-ID,Date,date,ads-referer,ads-referer,taboola-sessionId,taboola-sessionid,Akamai-Request-ID,Akamai-Server-IP,X-MSEdge-Ref,DDD-DebugId,s-xbox-token,OneWebServiceLatency,X-FD-Features,DDD-UserType,traceparent
content-encoding: gzip
ddd-authenticatedwithjwtflow: False
ddd-usertype: AnonymousMuid
ddd-tmpl: tbn:0;lowC:0;SportsMatch_all:1;lowT:0;partialResponse:1;daucoldcap:1;winbadge:1;coldStart:1;coldStartUpsell:1
x-wpo-activityid: 7061E502-59ED-401C-A8D3-1D6CE881EAA1|2023-05-18T14:43:50.5501665Z|fabric:/wpo|FRC|WPO_14
ddd-feednewsitemcount: 0
ddd-activityid: 7061e502-59ed-401c-a8d3-1d6ce881eaa1
ddd-strategyexecutionlatency: 00:00:00.2063315
ddd-debugid: 7061e502-59ed-401c-a8d3-1d6ce881eaa1|2023-05-18T14:43:50.5595436Z|fabric:/winfeed|FRC|WinFeed_409
onewebservicelatency: 207
x-msedge-responseinfo: 207
x-ceto-ref: 646639a6572b4476ba4118da58b404e3|2023-05-18T14:43:50.350Z
expires: Thu, 18 May 2023 14:43:50 GMT
date: Thu, 18 May 2023 14:43:50 GMT
content-length: 1713
akamai-request-bc: [a=2.21.35.196,b=1139566336,c=g,n=FR_IDF_PARIS,o=20940],[a=20.74.25.147,c=o]
server-timing: clientrtt; dur=29, clienttt; dur=, origin; dur=213 , cdntime; dur=-213
akamai-cache-status: Miss from child
akamai-server-ip: 2.21.35.196
akamai-request-id: 43ec6700
x-as-suppresssetcookie: 1
cache-control: private, max-age=0
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
timing-allow-origin: *
vary: Origin

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

172.217.23.206:443

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.UjJbvPIecP0.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_flbzE3yQmWQ7n7N3yCQZtJt8-oA/cb=gapi.loaded_0 HTTP/2.0
host: apis.google.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 1P_JAR=2023-05-18-14
cookie: NID=511=RtIsF9AEtf77E9GXkVNL09VVFAe8espFsxz1-JDpY3jx9CEBRe2pr6fwLMmZxsk1a-3d2-zpG6vQsKS8JIsPqeCBqoMp2Uje__SA9h9ZCOHScWrikPn-UJzjlzl7-ewyPp-a78OPjFZwYHds_gzIGDoD95whTiVzRopZvO8wqrY

8.8.8.8:53

142.250.179.206:443

GET /widget/callout?prid=19035139&pgid=19035138&puid=5501dadb089d1f63&dc=1&ssc=1&origin=chrome-untrusted%3A%2F%2Fnew-tab-page&origin=chrome%3A%2F%2Fnew-tab-page&cn=callout&pid=1&spid=243&hl=en HTTP/2.0
host: ogs.google.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 1P_JAR=2023-05-18-14
cookie: NID=511=RtIsF9AEtf77E9GXkVNL09VVFAe8espFsxz1-JDpY3jx9CEBRe2pr6fwLMmZxsk1a-3d2-zpG6vQsKS8JIsPqeCBqoMp2Uje__SA9h9ZCOHScWrikPn-UJzjlzl7-ewyPp-a78OPjFZwYHds_gzIGDoD95whTiVzRopZvO8wqrY

8.8.8.8:53

172.217.23.195:443

GET /gb/images/sprites/p_1x_ced8ed050bd0.png HTTP/2.0
host: ssl.gstatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ogs.google.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

142.251.36.14:443

POST /log?format=json&hasfast=true HTTP/2.0
host: play.google.com
content-length: 2359
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: application/x-www-form-urlencoded;charset=UTF-8
accept: */*
origin: chrome-untrusted://new-tab-page
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: NID=511=RtIsF9AEtf77E9GXkVNL09VVFAe8espFsxz1-JDpY3jx9CEBRe2pr6fwLMmZxsk1a-3d2-zpG6vQsKS8JIsPqeCBqoMp2Uje__SA9h9ZCOHScWrikPn-UJzjlzl7-ewyPp-a78OPjFZwYHds_gzIGDoD95whTiVzRopZvO8wqrY
cookie: 1P_JAR=2023-05-18-14

142.251.36.14:443

OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/2.0
host: play.google.com
accept: */*
access-control-request-method: POST
access-control-request-headers: x-goog-authuser
origin: https://ogs.google.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-fetch-mode: cors
sec-fetch-site: same-site
sec-fetch-dest: empty
referer: https://ogs.google.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

142.251.36.46:443

GET /service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=106.0.5249.119&lang=en-US&acceptformat=crx3&x=id%3Dghbmnnjooekpmoecnnnilnnbdlolhkhi%26v%3D1.58.4%26installsource%3Dnotfromwebstore%26installedby%3Dexternal%26uc%26ping%3Dr%253D87%2526e%253D1&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D1.0.0.6%26installsource%3Dnotfromwebstore%26installedby%3Dother%26uc%26ping%3Dr%253D87%2526e%253D1 HTTP/2.0
host: clients2.google.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 1P_JAR=2023-05-18-14
cookie: NID=511=eT8YiN3fHIw-TDiVaRt6qrtCJk9VusnFcHsV6MOtCifzo4BI0uHXwdOeuBPC_RrWsHSlYl6LhdVUDXM_58Fivln2ZmVlM3afmGVEH7FeWIJB9j3I27oc4vUeY1X5rFBz8AajRDPa-c6PN2nAMM5WrtMTJuQ1ienEF46iBVR8HUg

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

172.67.178.36:443

GET / HTTP/2.0
host: krew.io
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Thu, 18 May 2023 14:44:36 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
set-cookie: connect.sid=s%3AQ_ssablXmrkR1LhEi0uuIYHL3F9Bk6L3.mNvVyoYphRURo1GAZfa%2FUzaNAch6CMM2Fqc0Qkp38Eo; Path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aTq5GvrOUQ8XtWM6ouAX01Ct6VUJaGyMHeg66IJ32aMboZZUzmqDf8JdV8ks7xjQ9ORRm%2FUtMWtDEwPZNC%2FKF1qHrP0b9mjMLv5Oguf4Gb7H5TnMQWGuL0eq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c94e10c0ef31cca-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

8.8.8.8:53

8.8.8.8:53

104.17.25.14:443

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
origin: https://krew.io
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Thu, 18 May 2023 14:44:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 6546
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed4-4ef8"
last-modified: Mon, 04 May 2020 16:12:04 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1457806
expires: Tue, 07 May 2024 14:44:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=td5DAmC1jhMxhQ0NdxouC3MT67zrR2pq%2BpcqeKaWb2qkUoK9uAlGcP228VHzKfKVkMxeqPilf4LySrOa1xFUT6qpCWX1Zd6LBkmlusn9g0PY%2BJotNJqMQiGRsqyO%2FTq8LjnkClx8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7c94e10ffc430a5b-AMS
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

104.17.25.14:443

GET /ajax/libs/jqueryui/1.13.2/jquery-ui.min.js HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
origin: https://krew.io
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Thu, 18 May 2023 14:44:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 28112
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "63a24ddb-6dd0"
last-modified: Wed, 21 Dec 2022 00:05:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 145189
expires: Tue, 07 May 2024 14:44:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HIdsyWr3sYF0J5PZ1xUonDSiV%2FBnnljv%2FfMVEnrN%2BD5dVr2N5yrv%2BsRFpQRWKrlJuOa3YxLITDBjAzHLPS1TlQWdMkS4gdEM2Ncbyi6h1eeCCDediZ%2FjoShd0cx%2BQJWcX9MIhQ%2FZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7c94e10ffc400a5b-AMS
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

104.17.25.14:443

GET /ajax/libs/magnific-popup.js/1.1.0/jquery.magnific-popup.min.js HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
origin: https://krew.io
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Thu, 18 May 2023 14:44:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 6759
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ffc-6231"
last-modified: Mon, 04 May 2020 16:17:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1456473
expires: Tue, 07 May 2024 14:44:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1Zgx5f2%2BtR0iBR5s4cfpu%2FJ4%2BZzD67B4kg7o0H91g4ek39J2fA9KysG6iP3B4B7IwnjxoKDyUS%2BxjGQCeGAV%2B7j1nAbB8XNdeNGAq1VqYE9ASnrJxIzjif4JKikI%2BtopYm%2BpX2Gc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7c94e10ffc440a5b-AMS
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

104.17.25.14:443

GET /ajax/libs/tether/1.4.7/js/tether.min.js HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
origin: https://krew.io
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Thu, 18 May 2023 14:44:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 56990
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62e445d5-de9e"
last-modified: Fri, 29 Jul 2022 20:40:53 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4882813
expires: Tue, 07 May 2024 14:44:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JXhmzzLXH7HnNs6F3K7ypBhC%2Fk6kdLY7u0VhB5T%2FZTJAOvvI2oUzpnIAy%2F4ii71NEEGyw5Vo0jNv4ca8x2aOwu%2BX%2B%2F9%2BdCoB1ZjG3mVSzQ476q4RbttVUsT1%2BO82Cto83THFccPY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7c94e10ffc420a5b-AMS
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

104.17.25.14:443

GET /ajax/libs/three.js/r108/three.min.js HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
origin: https://krew.io
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Thu, 18 May 2023 14:44:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 119184
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5efb2bfa-8e6ca"
last-modified: Tue, 30 Jun 2020 12:11:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 110379
expires: Tue, 07 May 2024 14:44:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DYz8L9bcj1MyunY1NeDrF9CzjnOXNFtmc6p9igSxEePGl%2B%2F6BPDAWQWNUvdVRVlcVD8Ac5ju6JRrhe0J%2F30VPnzBmBB5XnwLf1havzF6K9OwKPOjfhwTabQ67qBrfLKHDf9H0rTV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7c94e10ffc470a5b-AMS
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

104.18.11.207:443

GET /bootstrap/4.0.0-alpha.5/js/bootstrap.min.js HTTP/2.0
host: maxcdn.bootstrapcdn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
origin: https://krew.io
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Thu, 18 May 2023 14:44:36 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"31bd1c00779daba3350e648fd9bb8d2a"
last-modified: Mon, 25 Jan 2021 22:04:02 GMT
cdn-cachedat: 08/20/2022 02:42:06
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 433632f1753a94d002b68021b4920563
cdn-cache: HIT
cf-cache-status: HIT
age: 112121
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7c94e10fff850bcb-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

8.8.8.8:53

172.66.43.66:443

GET /libs/aiptag/pub/BLS/krew.io/tag.min.js HTTP/2.0
host: api.adinplay.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Thu, 18 May 2023 14:44:36 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: *
etag: W/"6436755a-82991"
last-modified: Wed, 12 Apr 2023 09:09:46 GMT
x-host: adinplay-1
cache-control: max-age=1800
cf-cache-status: HIT
age: 110166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AEoeWovvkYPy34r4cgkes3tKwGvSzo4D5GRn8W0KKUWsfaDOSubP06ktfjMjHq%2BrzFBkO%2BWJgtGIiP71Ms0upIdg2doP671PWTi0Ply%2B6xjghthTfuilmDAy%2F%2BK05zd%2F5Pg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c94e1120a871af8-AMS
content-encoding: br

172.66.43.66:443

GET /libs/aiptag/assets/adsbygoogle.js HTTP/2.0
host: api.adinplay.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Thu, 18 May 2023 14:44:37 GMT
content-type: application/javascript
content-length: 16
access-control-allow-credentials: true
access-control-allow-origin: *
etag: "5ac4f9a5-10"
last-modified: Wed, 04 Apr 2018 16:13:25 GMT
x-host: adinplay-2
cache-control: max-age=1800
cf-cache-status: HIT
age: 697504
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D7TeugCrU3lPBIxdwBLNckiyb8zmYSN0bxwG0BCgOVfC8lfI4C%2BbddVW33MyNvwos5cKjnlPyoObfNv8Lx8eLtrEaETqB7oeH%2BAaX3%2F7QP4t3BZZQxDP2%2BG2eHliy6QwiAY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c94e1135c5d1af8-AMS

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

35.190.80.1:443

OPTIONS /report/v3?s=uASmhA8rRRKAn%2ByDUc9Ud78Otpr3JEkUulBLQ0KQVoGlW2%2BkzB%2FrHTBG%2ByL4TU2xwTuukedPSqqgw%2BRaNDjMt5YdFgxK5%2FfumUN3zh6lCzDdYdg88Mw2quvf HTTP/2.0
host: a.nel.cloudflare.com
origin: https://krew.io
access-control-request-method: POST
access-control-request-headers: content-type
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

151.101.1.229:443

GET /gh/prebid/currency-file@1/latest.json?date=20230518 HTTP/2.0
host: cdn.jsdelivr.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://krew.io
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/json; charset=utf-8
x-jsd-version: 1.0.1699
x-jsd-version-type: version
etag: W/"63b-V8h/lme10kyBaIL5aWQ7pOSf4nk"
content-encoding: br
accept-ranges: bytes
date: Thu, 18 May 2023 14:44:37 GMT
age: 38625
x-served-by: cache-fra-eddf8230103-FRA, cache-ams21067-AMS
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 833

142.250.179.170:443

GET /js/sdkloader/ima3.js HTTP/2.0
host: imasdk.googleapis.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

104.21.69.205:443

GET / HTTP/2.0
host: country.adinplay.workers.dev
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://krew.io
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Thu, 18 May 2023 14:44:37 GMT
content-type: text/plain;charset=UTF-8
content-length: 2
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, POST, OPTIONS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oFgDyfXkvEb146RgO39B%2Bwz%2BTFrVlKuAfPe7SB5n6SsZh3as7xYhe15zuRomwm8PMyx6Qu9Wo1cp9uSrIoDZN6bsajPq7DOYRPuCsB%2BAwFdHIhcaix2MtkJjjZIqHxhHunQiSuXXrV%2FhfOMWFaKB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c94e113db73b8fc-AMS
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

88.221.25.153:80

GET /roots/dstrootcax3.p7c HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: apps.identrust.com

HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=15768000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'self' *.identrust.com
Last-Modified: Wed, 08 Feb 2023 16:52:56 GMT
ETag: "37d-5f433188daa00"
Accept-Ranges: bytes
Content-Length: 893
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Type: application/pkcs7-mime
Cache-Control: max-age=3600
Expires: Thu, 18 May 2023 15:44:37 GMT
Date: Thu, 18 May 2023 14:44:37 GMT
Connection: keep-alive

8.8.8.8:53

8.8.8.8:53

69.173.144.140:443

GET /a/api/fastlane.json?account_id=23042&site_id=360062&zone_id=2685800&size_id=15&rp_schain=1.0,1!adinplay.com,BLS,1,,,&rf=https%3A%2F%2Fkrew.io%2F&kw=krew%2Cio%2Cdevclied%2Cshooter%2Cgame%2Cpirate%2C3D%2Cmultiplayer%2Cfree&tg_i.domain=krew.io&tg_i.page=https%3A%2F%2Fkrew.io%2F&tk_flint=pbjs_lite_v7.42.0&x_source.tid=df81e39e-5676-40aa-aefe-d8b17bbbd391&l_pb_bid_id=2344cc09204f2c&p_screen_res=1280x720&rp_secure=1&rp_maxbids=1&slots=1&rand=0.44062737575775346 HTTP/2.0
host: fastlane.rubiconproject.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://krew.io
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
server: nginx/1.21.4
date: Thu, 18 May 2023 14:44:37 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://krew.io
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LHT8THKJ-26-J8NV; Domain=.rubiconproject.com; Path=/; Expires=Fri, 17-May-2024 14:44:37 GMT; Max-Age=31536000; SameSite=None; Secure
set-cookie: audit=1|hLZGFuTafB1fbKPXdjiA6jQ/3SF9Y/s10y0okrXHckuVrGlQzrPCdE6iV3zs3EVo7YLrICeHmIyn+l/TnYoiWQ==; Domain=.rubiconproject.com; Path=/; Expires=Fri, 17-May-2024 14:44:37 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 288

8.8.8.8:53

8.8.8.8:53

51.75.86.98:443

POST /prebid-request HTTP/2.0
host: onetag-sys.com
content-length: 1033
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://krew.io
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
access-control-allow-origin: https://krew.io
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
cache-control: no-transform, no-cache
content-type: application/json
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=V4XGeTmi8dbYTUfobR0pa1KKfyuAjenx5pofdQh5tt0; path=/; expires=Sat, 17 May 2025 14:44:37; domain=onetag-sys.com; SameSite=None; Secure;
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /usync/?cb=1684428276854 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=V4XGeTmi8dbYTUfobR0pa1KKfyuAjenx5pofdQh5tt0

HTTP/2.0 200
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=0rb3O42iZWcm1lem8VqJ2WLH6nJRBzi_v7CSfZTzSlc; path=/; expires=Sat, 17 May 2025 14:44:38; domain=onetag-sys.com; SameSite=None; Secure
content-type: text/html
cache-control: no-transform, no-cache
content-encoding: gzip
content-length: 1371
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /usync/?redir=https%3A%2F%2Fpbs.cpmstar.com%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=V4XGeTmi8dbYTUfobR0pa1KKfyuAjenx5pofdQh5tt0

HTTP/2.0 200
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:38; domain=onetag-sys.com; SameSite=None; Secure
content-type: text/html
cache-control: no-transform, no-cache
content-encoding: gzip
content-length: 1406
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=106&redir=1&ot_initiated=1 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/usync/?cb=1684428276854
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 302
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:39; domain=onetag-sys.com; SameSite=None; Secure;
location: https://cm.g.doubleclick.net/pixel?google_nid=one_tag&google_hm=AAABiC9R8VF9mK2gTg7lBSz9DxAJcL-u563sfA
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=113&gdpr=1&gdpr_consent=&callback=https%3A%2F%2Fs.amazon-adsystem.com%2Fecm3%3Fex%3Donetag.com%26id%3D%24%7BUSER_TOKEN%7D&ot_initiated=1 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/usync/?cb=1684428276854
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 302
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:39; domain=onetag-sys.com; SameSite=None; Secure;
location: https://s.amazon-adsystem.com/ecm3?ex=onetag.com&id=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=106&redir=1&ot_initiated=1 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/usync/?redir=https%3A%2F%2Fpbs.cpmstar.com%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 302
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:39; domain=onetag-sys.com; SameSite=None; Secure;
location: https://cm.g.doubleclick.net/pixel?google_nid=one_tag&google_hm=AAABiC9R8cEN4CcZIwfisem93EeIBGVTTxrofQ
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=113&gdpr=1&gdpr_consent=&callback=https%3A%2F%2Fs.amazon-adsystem.com%2Fecm3%3Fex%3Donetag.com%26id%3D%24%7BUSER_TOKEN%7D&ot_initiated=1 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/usync/?redir=https%3A%2F%2Fpbs.cpmstar.com%2Fsetuid%3Fbidder%3Donetag%26gdpr%3D0%26gdpr_consent%3D%26f%3Db%26uid%3D%24%7BUSER_TOKEN%7D
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 302
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:39; domain=onetag-sys.com; SameSite=None; Secure;
location: https://s.amazon-adsystem.com/ecm3?ex=onetag.com&id=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=98&gdpr=1&gdpr_consent=&uid=679504853255603868 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 200
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:40; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=98&gdpr=1&gdpr_consent=&uid=679504853255603868 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 200
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:17; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=106&google_error=15 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 200
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:41; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=1&uid=18d36466-39d8-4a00-bb90-51cdeaaf10d6&gdpr=1&gdpr_consent= HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 200
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:41; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=1&uid=ad796466-39d7-4700-93d4-20108193c500&gdpr=1&gdpr_consent= HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 200
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:41; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=106&google_error=15 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 200
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:41; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=110&uid= HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 200
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:41; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=29&uid=8d7d1376-dee5-4ebe-a0da-db737228964f&gdpr=0&gdpr_consent= HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 200
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:41; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000

51.75.86.98:443

GET /match/?int_id=29&uid=8d7d1376-dee5-4ebe-a0da-db737228964f&gdpr=0&gdpr_consent= HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M

HTTP/2.0 200
cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=d0dlw_jC_TbFnZJqDCZVBkDVvWm700WvqWxEQvHxK5M; path=/; expires=Sat, 17 May 2025 14:44:41; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000

8.8.8.8:53

142.250.179.170:443

GET /v1/pages/ChVDaHJvbWUvMTA2LjAuNTI0OS4xMTkSFwmmE_ZepmfOvhIFDWZWAVcSBQ2OhiioEiwJu3HDWEgc7OcSBQ2ezAtWEgUNkfJlNxIFDcamXooSBQ1VqVwdEgUNU1pHxRIQCTg0YX8vuB6eEgUNQ7qIlRIQCT_FoZfWlVN_EgUN9UdfVBIQCSuKQ92nMlwhEgUNHNZb1RIeCanUMaACpRfGEgUNnIJuYBIFDeGhK0ASBQ30nz5MEhcJ1ti7xKMF1egSBQ0tyJOpEgUN5VbC_BIQCbkaOm0xg94qEgUNXXiq0hIzCWBW83me1iVxEgUNrzxMiBIFDW55USgSBQ3lx9dnEgUNJmCxIBIFDS0P6fASBQ0P4xJ-?alt=proto HTTP/2.0
host: content-autofill.googleapis.com
x-goog-encode-response-if-executable: base64
x-goog-api-key: AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
x-client-data: CID4ygE=
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

142.250.179.161:443

GET /safeframe/1-0-40/html/container.html HTTP/2.0
host: 559395a8d5bb271a0e6c0ca3f8eb67fd.safeframe.googlesyndication.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

23.52.56.137:443

GET /usync.html HTTP/1.1
Host: eus.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://krew.io/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LHT8THKJ-26-J8NV; audit=1|hLZGFuTafB1fbKPXdjiA6jQ/3SF9Y/s10y0okrXHckuVrGlQzrPCdE6iV3zs3EVo7YLrICeHmIyn+l/TnYoiWQ==

HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Thu, 18 May 2023 14:44:39 GMT
Connection: keep-alive
Vary: Accept-Encoding

23.52.56.137:443

GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://eus.rubiconproject.com/usync.html
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LHT8THKJ-26-J8NV; audit=1|hLZGFuTafB1fbKPXdjiA6jQ/3SF9Y/s10y0okrXHcksJ5YoJOHcL+cS3IGa2kPNC4HEYI5ehIrU/nsrNWTRLIdzpQ7vzkXQ/

HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Wed, 17 May 2023 21:36:00 GMT
Content-Encoding: gzip
Content-Length: 10084
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=24624
Expires: Thu, 18 May 2023 21:35:05 GMT
Date: Thu, 18 May 2023 14:44:41 GMT
Connection: keep-alive
Vary: Accept-Encoding

8.8.8.8:53

34.102.146.192:443

GET /esp.js HTTP/2.0
host: oa.openxcdn.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

178.250.1.3:443

GET /js/ld/publishertag.ids.js HTTP/2.0
host: static.criteo.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
server: nginx
date: Thu, 18 May 2023 14:44:39 GMT
content-type: text/javascript
last-modified: Fri, 24 Feb 2023 07:57:33 GMT
etag: W/"63f86ded-9c20"
expires: Fri, 19 May 2023 14:44:39 GMT
cache-control: max-age=86400
cross-origin-resource-policy: cross-origin
cache-control: public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;

104.22.53.86:443

GET /api/1.0/esp.js HTTP/2.0
host: cdn.id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://krew.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Thu, 18 May 2023 14:44:39 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: SVTd7px0oa9s2g16ZMEbtjbSm+9mjgny5JAItCXVA/BBc0mwNgZ0tsF0wNTOKJEbYhxhorsH3w8=
x-amz-request-id: NPJKRCKCE05AE40D
last-modified: Thu, 06 Apr 2023 12:00:04 GMT
etag: W/"110f0c3c343ee36404c8a2300f4755c3"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 1805
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7c94e1231cc10eb2-AMS
content-encoding: gzip

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53