hxxps://github[.]com/Lachine1/xmrig-scripts/raw/main/linux[.]sh

Analysis

max time kernel
2699s
max time network
2700s
platform
windows10-1703_x64
resource
win10-20240404-en
resource tags

arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
submitted
25/06/2024, 16:25 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://github.com/Lachine1/xmrig-scripts/raw/main/linux.sh

Score

8^/10

discovery execution persistence privilege_escalation

Malware Config

Signatures

Downloads MZ/PE file

Checks computer location settings 2 TTPs 1 IoCs

Looks up country code configured in the registry, likely geofence.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000\Control Panel\International\Geo\Nation	unMiner.exe

Executes dropped EXE 7 IoCs

pid	Process
1544	unMiner.2.7.0-beta-mfi.exe
2096	unMiner.exe
316	unMiner.exe
1680	unMiner.exe
2004	unMiner.exe
1816	unMiner.exe
3512	xmrig.exe

Loads dropped DLL 19 IoCs

pid	Process
1544	unMiner.2.7.0-beta-mfi.exe
1544	unMiner.2.7.0-beta-mfi.exe
1544	unMiner.2.7.0-beta-mfi.exe
1544	unMiner.2.7.0-beta-mfi.exe
1544	unMiner.2.7.0-beta-mfi.exe
1544	unMiner.2.7.0-beta-mfi.exe
1544	unMiner.2.7.0-beta-mfi.exe
1544	unMiner.2.7.0-beta-mfi.exe
1544	unMiner.2.7.0-beta-mfi.exe
1544	unMiner.2.7.0-beta-mfi.exe
2096	unMiner.exe
316	unMiner.exe
316	unMiner.exe
316	unMiner.exe
316	unMiner.exe
1680	unMiner.exe
2004	unMiner.exe
1816	unMiner.exe
1816	unMiner.exe

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Drops file in Windows directory 11 IoCs

description	ioc	Process
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdge.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdgeCP.exe
File opened for modification	C:\Windows\Debug\ESE.TXT	MicrosoftEdge.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdgeCP.exe
File opened for modification	C:\Windows\Debug\ESE.TXT	MicrosoftEdge.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdgeCP.exe
File created	C:\Windows\rescache\_merged\3720402701\1568373884.pri	MicrosoftEdge.exe

Command and Scripting Interpreter: PowerShell 1 TTPs 10 IoCs

Using powershell.exe command.

execution

PowerShell

T1059.001

pid	Process
7008	powershell.exe
1592	powershell.exe
1480	powershell.exe
3920	powershell.exe
6980	powershell.exe
6992	powershell.exe
3352	powershell.exe
4264	powershell.exe
4612	powershell.exe
1124	powershell.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082
Event Triggered Execution: Accessibility Features 1 TTPs
Windows contains accessibility features that may be used by adversaries to establish persistence and/or elevate privileges.
persistence privilege_escalation

Accessibility Features
T1546.008

Checks processor information in registry 2 TTPs 9 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	unMiner.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	unMiner.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	unMiner.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1	unMiner.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\ProcessorNameString	unMiner.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\~MHz	unMiner.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\2	unMiner.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	reg.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\FeatureSet	reg.exe

Enumerates processes with tasklist 1 TTPs 1 IoCs

Process Discovery

T1057

pid	Process
1880	tasklist.exe

Enumerates system info in registry 2 TTPs 6 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	chrome.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	chrome.exe

Modifies Internet Explorer settings 1 TTPs 3 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000\Software\Microsoft\Internet Explorer\Main	browser_broker.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000\Software\Microsoft\Internet Explorer\Main	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000\Software\Microsoft\Internet Explorer\Main	browser_broker.exe

Modifies data under HKEY_USERS 3 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Key created	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry	chrome.exe
Set value (int)	\REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133638068110223396"	chrome.exe

Modifies registry class 64 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\CVListXMLVersionHigh = "268435456"	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 32b8aa251fc7da01	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\ACGStatus\ACGPolicyState = "8"	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DomainSuggestion\FileNames\en-US = "en-US.1"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\Total\ = "639"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\ACGStatus	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\SubSysId = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings\Zones\3\{A8A88C49-5EB2-4990-A1A2-08760 = 1a3761592352350c7a5f20172f1e1a190e2b017313371312141a152a	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-SubSysId = "0"	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingRecovery\ReadingStorePending = "1"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\Main	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\www.msn.com	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\TypedURLsVisitCount\url4 = "0"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy\Extensions	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\VersionLow = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\CIStatus\CIPolicyState = "0"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta\generator$blogger	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Protected - It is a violation of Windows Policy to modif	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\Total	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Privacy\InProgressFlags = "0"	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingDelete\C:\Users\Admin\AppData\Local\Pack = "0"	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\ACGPolicyState = "8"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\ACGPolicyState = "8"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\bing.com\Total = "538"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\CA\CTLs	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingRecovery	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\IECompatVersionLow = "395205405"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\ACGStatus	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\EdpDomStorage\bing.com\NumberOfSubdomai = "0"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Privacy\InProgressFlags = "262144"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\VersionHigh = "0"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\www.bing.com\ = "23"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = a90893841cc7da01	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\CIStatus	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\ACGStatus\DynamicCodePolicy = 05000000	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Privacy	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta\generator$vBulletin 4	MicrosoftEdge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Content\CachePrefix	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\bing.com\Total = "0"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\ACGStatus\ACGPolicyState = "6"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\Total\ = "12845"	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\Total\ = "12933"	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Settings\Cache\History\CachePrefix = "Visited:"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus\DynamicCodePolicy = 05000000	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\History\CacheLimit = "1"	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Software\Microsoft\SystemCertificates\CA\CRLs	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Explorer	MicrosoftEdgeCP.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:"	MicrosoftEdge.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\NextUpdateDate = "426146292"	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ServiceUI	MicrosoftEdge.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = f0da486f1cc7da01	MicrosoftEdge.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\ACGStatus	MicrosoftEdgeCP.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\unmineable.com\NumberOfSubdo = "1"	MicrosoftEdgeCP.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus\SignaturePolicy = 06000000	MicrosoftEdgeCP.exe
Key created	\REGISTRY\USER\S-1-5-21-1687926120-3022217735-1146543763-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\Cookies	MicrosoftEdgeCP.exe

Suspicious behavior: EnumeratesProcesses 60 IoCs

pid	Process
2188	chrome.exe
2188	chrome.exe
2164	chrome.exe
2164	chrome.exe
5288	chrome.exe
5288	chrome.exe
1544	unMiner.2.7.0-beta-mfi.exe
1544	unMiner.2.7.0-beta-mfi.exe
1880	tasklist.exe
1880	tasklist.exe
1680	unMiner.exe
1680	unMiner.exe
2004	unMiner.exe
2004	unMiner.exe
4264	powershell.exe
3352	powershell.exe
3352	powershell.exe
4264	powershell.exe
1480	powershell.exe
1480	powershell.exe
4264	powershell.exe
4612	powershell.exe
4612	powershell.exe
1592	powershell.exe
1592	powershell.exe
1124	powershell.exe
1124	powershell.exe
1480	powershell.exe
3920	powershell.exe
3920	powershell.exe
1592	powershell.exe
1124	powershell.exe
3352	powershell.exe
3920	powershell.exe
4612	powershell.exe
4264	powershell.exe
1592	powershell.exe
1480	powershell.exe
3920	powershell.exe
3352	powershell.exe
4612	powershell.exe
1124	powershell.exe
6992	powershell.exe
6992	powershell.exe
7008	powershell.exe
7008	powershell.exe
7008	powershell.exe
6980	powershell.exe
6980	powershell.exe
6992	powershell.exe
6980	powershell.exe
7224	chrome.exe
7224	chrome.exe
7008	powershell.exe
6992	powershell.exe
6980	powershell.exe
1816	unMiner.exe
1816	unMiner.exe
1816	unMiner.exe
1816	unMiner.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
1636	osk.exe

Suspicious behavior: MapViewOfSection 16 IoCs

pid	Process
4760	MicrosoftEdgeCP.exe
4760	MicrosoftEdgeCP.exe
4760	MicrosoftEdgeCP.exe
4760	MicrosoftEdgeCP.exe
4760	MicrosoftEdgeCP.exe
4760	MicrosoftEdgeCP.exe
4760	MicrosoftEdgeCP.exe
4760	MicrosoftEdgeCP.exe
4760	MicrosoftEdgeCP.exe
4760	MicrosoftEdgeCP.exe
8020	MicrosoftEdgeCP.exe
8020	MicrosoftEdgeCP.exe
8020	MicrosoftEdgeCP.exe
8020	MicrosoftEdgeCP.exe
8020	MicrosoftEdgeCP.exe
8020	MicrosoftEdgeCP.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeDebugPrivilege	5056	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	5056	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	5056	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	5056	MicrosoftEdgeCP.exe
Token: SeDebugPrivilege	2732	MicrosoftEdge.exe
Token: SeDebugPrivilege	2732	MicrosoftEdge.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe
Token: SeShutdownPrivilege	2188	chrome.exe
Token: SeCreatePagefilePrivilege	2188	chrome.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe

Suspicious use of SendNotifyMessage 64 IoCs

pid	Process
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
2188	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
5288	chrome.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe
2096	unMiner.exe

Suspicious use of SetWindowsHookEx 58 IoCs

pid	Process
2732	MicrosoftEdge.exe
4760	MicrosoftEdgeCP.exe
5056	MicrosoftEdgeCP.exe
4760	MicrosoftEdgeCP.exe
4364	MicrosoftEdgeCP.exe
4364	MicrosoftEdgeCP.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
5896	DllHost.exe
1636	osk.exe
5896	DllHost.exe
1636	osk.exe
5896	DllHost.exe
1636	osk.exe
5896	DllHost.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1788	MicrosoftEdge.exe
1636	osk.exe
8020	MicrosoftEdgeCP.exe
8020	MicrosoftEdgeCP.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe
1636	osk.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4760 wrote to memory of 1460	4760	MicrosoftEdgeCP.exe	77
PID 4760 wrote to memory of 1460	4760	MicrosoftEdgeCP.exe	77
PID 4760 wrote to memory of 1460	4760	MicrosoftEdgeCP.exe	77
PID 4760 wrote to memory of 1460	4760	MicrosoftEdgeCP.exe	77
PID 4760 wrote to memory of 1460	4760	MicrosoftEdgeCP.exe	77
PID 4760 wrote to memory of 1460	4760	MicrosoftEdgeCP.exe	77
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 204	4760	MicrosoftEdgeCP.exe	79
PID 4760 wrote to memory of 1460	4760	MicrosoftEdgeCP.exe	77
PID 4760 wrote to memory of 1460	4760	MicrosoftEdgeCP.exe	77
PID 4760 wrote to memory of 1460	4760	MicrosoftEdgeCP.exe	77
PID 4760 wrote to memory of 1460	4760	MicrosoftEdgeCP.exe	77
PID 2188 wrote to memory of 4376	2188	chrome.exe	86
PID 2188 wrote to memory of 4376	2188	chrome.exe	86
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 2648	2188	chrome.exe	88
PID 2188 wrote to memory of 4184	2188	chrome.exe	89
PID 2188 wrote to memory of 4184	2188	chrome.exe	89

C:\Windows\system32\LaunchWinApp.exe
"C:\Windows\system32\LaunchWinApp.exe" "https://github.com/Lachine1/xmrig-scripts/raw/main/linux.sh"
1⤵
PID:1292

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SetWindowsHookEx
PID:2732

C:\Windows\system32\browser_broker.exe
C:\Windows\system32\browser_broker.exe -Embedding
1⤵
- Modifies Internet Explorer settings
PID:4044

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
- Suspicious behavior: MapViewOfSection
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:4760

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies Internet Explorer settings
- Modifies registry class
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SetWindowsHookEx
PID:5056

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:1460

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:4364

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:204

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
PID:3988

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
PID:2284

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2188
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xd4,0xd8,0xdc,0xb0,0xe0,0x7ffc39f99758,0x7ffc39f99768,0x7ffc39f99778
  2⤵
  PID:4376
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1604 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:2
  2⤵
  PID:2648
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2024 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:8
  2⤵
  PID:4184
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2072 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:8
  2⤵
  PID:4288
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2888 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:424
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2916 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:936
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4456 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:4216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4612 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:8
  2⤵
  PID:2860
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4732 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:8
  2⤵
  PID:4092
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5000 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:8
  2⤵
  PID:1216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5048 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:8
  2⤵
  PID:4476
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4792 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:8
  2⤵
  PID:4256
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=3800 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5108
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5116 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:3324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4996 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:8
  2⤵
  PID:516
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=3668 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:1564
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=2992 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:8
  2⤵
  PID:4464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2956 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:8
  2⤵
  PID:204
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=4988 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:1440
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=972 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:8
  2⤵
  PID:5112
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=3960 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:4196
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=2400 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5028
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=5388 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:2484
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=5460 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:3324
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=5464 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:656
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=5916 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:4668
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=5604 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:3984
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=6276 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:4984
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6372 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:2176
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=6496 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:4084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6516 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:3520
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=6540 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:4484
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=6556 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:3532
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=7180 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:1932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=7356 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:1868
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=7504 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:2796
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=7060 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5348
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=6360 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5356
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=7676 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5504
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=6704 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5512
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=7704 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5656
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=7340 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5664
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=8480 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5828
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=8408 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5904
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=7852 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:6076
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=8580 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:6112
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=8568 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:6056
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=7228 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5396
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=7240 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5380
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=6772 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5112
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=8036 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:2868
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=6156 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:3248
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=7544 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:3520
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=7140 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:3696
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=6912 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:4084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=6888 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:1932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=8860 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=7712 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=8168 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:4852
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=1068 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5380
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=2196 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5100
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=8376 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:4708
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=5204 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5316
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=7800 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:6084
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=4508 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5524
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=7776 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5528
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=6036 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:1868
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=7464 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5232
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=7844 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:5276
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=5752 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:1
  2⤵
  PID:3500
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=8884 --field-trial-handle=1788,i,1736673586650924259,12039750279665614372,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2164

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:5096

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x3f8
1⤵
PID:2152

C:\Windows\system32\osk.exe
"C:\Windows\system32\osk.exe"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:1636

C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
1⤵
- Enumerates system info in registry
- Modifies data under HKEY_USERS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
PID:5288
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ffc39f99758,0x7ffc39f99768,0x7ffc39f99778
  2⤵
  PID:5332
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1536 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:2
  2⤵
  PID:3312
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2012 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:704
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2060 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:4452
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2876 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:2488
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2884 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:200
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4424 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5272
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4592 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:932
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4732 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:5548
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4908 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:632
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5008 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:2828
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5012 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:4612
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5064 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:6040
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=2956 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5848
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=3648 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5052
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=3428 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4584
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5332 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:6020
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5464 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:3716
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5620 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:5928
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5776 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5228
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5916 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:1308
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=6060 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5244
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=6212 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5292
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=6420 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5824
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=6552 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:2180
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=6560 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4984
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=6472 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4304
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=6584 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:1208
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6480 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:1816
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=7280 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4816
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=7492 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:216
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=7684 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5260
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=5300 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4288
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=6744 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:1456
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=7516 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:2064
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=7588 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4300
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=7532 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:1892
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=5212 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5180
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=5204 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:2944
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=5156 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4256
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=7380 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5876
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=7328 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=3048 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4464
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=5588 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=7504 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:3356
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=3100 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:3832
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=7828 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:6020
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=6292 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:3820
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=2952 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5148
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=2972 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:2160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=6208 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5740
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=5084 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5116
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=7576 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4596
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=4632 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4436
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=5024 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4160
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=7780 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4884
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=7828 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4236
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=6056 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5700
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=3144 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5560
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=6036 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4300
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=5592 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:5100
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=7320 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:4872
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=6304 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:2212
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=1056 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:1
  2⤵
  PID:1404
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5320 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:3388
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4416 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:408
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7948 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:3336
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2120 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:5836
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6492 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:2088
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=8136 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:3740
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=8168 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:8
  2⤵
  PID:4816
- C:\Program Files\Google\Chrome\Application\chrome.exe
  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1716 --field-trial-handle=1760,i,16027287859861895003,7539471245539994625,131072 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:7224

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
1⤵
PID:512

C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe" -Embedding
1⤵
PID:5760

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:5188

C:\Users\Admin\Downloads\unMiner.2.7.0-beta-mfi.exe
"C:\Users\Admin\Downloads\unMiner.2.7.0-beta-mfi.exe"
1⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious behavior: EnumeratesProcesses
PID:1544
- C:\Windows\SysWOW64\cmd.exe
  cmd /c tasklist /FI "USERNAME eq %USERNAME%" /FI "IMAGENAME eq unMiner.exe" | find "unMiner.exe"
  2⤵
  PID:208
- - C:\Windows\SysWOW64\tasklist.exe
    tasklist /FI "USERNAME eq Admin" /FI "IMAGENAME eq unMiner.exe"
    3⤵
    - Enumerates processes with tasklist
    - Suspicious behavior: EnumeratesProcesses
    PID:1880
- - C:\Windows\SysWOW64\find.exe
    find "unMiner.exe"
    3⤵
    PID:1324

C:\Windows\SysWOW64\DllHost.exe
C:\Windows\SysWOW64\DllHost.exe /Processid:{60A90A2F-858D-42AF-8929-82BE9D99E8A1}
1⤵
- Suspicious use of SetWindowsHookEx
PID:5896

C:\Users\Admin\AppData\Local\Programs\unMiner\unMiner.exe
"C:\Users\Admin\AppData\Local\Programs\unMiner\unMiner.exe"
1⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SendNotifyMessage
PID:2096
- C:\Users\Admin\AppData\Local\Programs\unMiner\unMiner.exe
  "C:\Users\Admin\AppData\Local\Programs\unMiner\unMiner.exe" --type=gpu-process --field-trial-handle=1540,16564752661313014288,14671871918393670727,131072 --enable-features=WebComponentsV0Enabled --disable-features=SpareRendererForSitePerProcess --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1592 /prefetch:2
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  PID:316
- C:\Users\Admin\AppData\Local\Programs\unMiner\unMiner.exe
  "C:\Users\Admin\AppData\Local\Programs\unMiner\unMiner.exe" --type=utility --field-trial-handle=1540,16564752661313014288,14671871918393670727,131072 --enable-features=WebComponentsV0Enabled --disable-features=SpareRendererForSitePerProcess --lang=en-US --service-sandbox-type=network --mojo-platform-channel-handle=1920 /prefetch:8
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Suspicious behavior: EnumeratesProcesses
  PID:1680
- C:\Users\Admin\AppData\Local\Programs\unMiner\unMiner.exe
  "C:\Users\Admin\AppData\Local\Programs\unMiner\unMiner.exe" --type=renderer --field-trial-handle=1540,16564752661313014288,14671871918393670727,131072 --enable-features=WebComponentsV0Enabled --disable-features=SpareRendererForSitePerProcess --lang=en-US --app-user-model-id=electron.app.unMiner --app-path="C:\Users\Admin\AppData\Local\Programs\unMiner\resources\app.asar" --node-integration --no-sandbox --no-zygote --preload="C:\Users\Admin\AppData\Local\Programs\unMiner\resources\app.asar\dist\electron\static\ws.js" --enable-remote-module --background-color=#fff --enable-spellcheck --enable-websql --disable-electron-site-instance-overrides --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=3 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2076 /prefetch:1
  2⤵
  - Checks computer location settings
  - Executes dropped EXE
  - Loads dropped DLL
  - Checks processor information in registry
  - Suspicious behavior: EnumeratesProcesses
  PID:2004
- - C:\Windows\system32\cmd.exe
    C:\Windows\system32\cmd.exe /d /s /c "chcp"
    3⤵
    PID:3388
  - - C:\Windows\system32\chcp.com
      chcp
      4⤵
      PID:3480
- - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -NoLogo -InputFormat Text -NoExit -ExecutionPolicy Unrestricted -Command -
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:1592
- - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -NoLogo -InputFormat Text -NoExit -ExecutionPolicy Unrestricted -Command -
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:3352
- - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -NoLogo -InputFormat Text -NoExit -ExecutionPolicy Unrestricted -Command -
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:1480
- - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -NoLogo -InputFormat Text -NoExit -ExecutionPolicy Unrestricted -Command -
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:1124
- - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -NoLogo -InputFormat Text -NoExit -ExecutionPolicy Unrestricted -Command -
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:4612
- - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -NoLogo -InputFormat Text -NoExit -ExecutionPolicy Unrestricted -Command -
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:4264
- - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -NoLogo -InputFormat Text -NoExit -ExecutionPolicy Unrestricted -Command -
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:3920
- - C:\Windows\system32\cmd.exe
    C:\Windows\system32\cmd.exe /d /s /c "reg query "HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0" /v FeatureSet"
    3⤵
    PID:6904
  - - C:\Windows\system32\reg.exe
      reg query "HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0" /v FeatureSet
      4⤵
      Checks processor information in registry
      PID:6960
- - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -NoLogo -InputFormat Text -NoExit -ExecutionPolicy Unrestricted -Command -
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:6980
- - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -NoLogo -InputFormat Text -NoExit -ExecutionPolicy Unrestricted -Command -
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:6992
- - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -NoLogo -InputFormat Text -NoExit -ExecutionPolicy Unrestricted -Command -
    3⤵
    - Command and Scripting Interpreter: PowerShell
    - Suspicious behavior: EnumeratesProcesses
    PID:7008
- - C:\Users\Admin\AppData\Local\Programs\unMiner\resources\miners\win32\xmrig-6.21.3\xmrig.exe
    C:\Users\Admin\AppData\Local\Programs\unMiner\resources\miners\win32\xmrig-6.21.3\xmrig.exe -o stratum+tcp://rx.unmineable.com:3333 -k -u USDT:TScmMemZier9zmbgmik395DreowgQT8o9v.unmineable_miner_siyzkkes --no-color --http-port=60070 -a rx
    3⤵
    - Executes dropped EXE
    PID:3512
- C:\Users\Admin\AppData\Local\Programs\unMiner\unMiner.exe
  "C:\Users\Admin\AppData\Local\Programs\unMiner\unMiner.exe" --type=gpu-process --field-trial-handle=1540,16564752661313014288,14671871918393670727,131072 --enable-features=WebComponentsV0Enabled --disable-features=SpareRendererForSitePerProcess --disable-gpu-sandbox --use-gl=disabled --gpu-preferences=MAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAEAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=2336 /prefetch:2
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Suspicious behavior: EnumeratesProcesses
  PID:1816

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:1788

C:\Windows\system32\browser_broker.exe
C:\Windows\system32\browser_broker.exe -Embedding
1⤵
- Modifies Internet Explorer settings
PID:7272

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
- Suspicious behavior: MapViewOfSection
- Suspicious use of SetWindowsHookEx
PID:8020

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:7800

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:360

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Drops file in Windows directory
PID:8060

C:\Windows\SysWOW64\DllHost.exe
C:\Windows\SysWOW64\DllHost.exe /Processid:{60A90A2F-858D-42AF-8929-82BE9D99E8A1}
1⤵
PID:5492

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
1⤵
- Modifies registry class
PID:936

Network

DNS

github.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A
DNS

github.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A
DNS

github.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A
DNS

github.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A
DNS

github.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A
DNS

github.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
DNS

github.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A
DNS

215.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

215.156.26.20.in-addr.arpa

IN PTR
DNS

215.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

215.156.26.20.in-addr.arpa

IN PTR
DNS

215.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

215.156.26.20.in-addr.arpa

IN PTR
DNS

215.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

215.156.26.20.in-addr.arpa

IN PTR
DNS

215.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

215.156.26.20.in-addr.arpa

IN PTR
DNS

82.90.14.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

82.90.14.23.in-addr.arpa

IN PTR
DNS

82.90.14.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

82.90.14.23.in-addr.arpa

IN PTR
DNS

82.90.14.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

82.90.14.23.in-addr.arpa

IN PTR
DNS

82.90.14.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

82.90.14.23.in-addr.arpa

IN PTR
DNS

82.90.14.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

82.90.14.23.in-addr.arpa

IN PTR
DNS

202.110.86.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

202.110.86.104.in-addr.arpa

IN PTR

Response

202.110.86.104.in-addr.arpa

IN PTR

a104-86-110-202deploystaticakamaitechnologiescom
DNS

202.110.86.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

202.110.86.104.in-addr.arpa

IN PTR
DNS

202.110.86.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

202.110.86.104.in-addr.arpa

IN PTR
DNS

202.110.86.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

202.110.86.104.in-addr.arpa

IN PTR
DNS

202.110.86.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

202.110.86.104.in-addr.arpa

IN PTR
DNS

crl.comodoca.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

crl.comodoca.com

IN A

Response

crl.comodoca.com

IN CNAME

crl.comodoca.com.cdn.cloudflare.net

crl.comodoca.com.cdn.cloudflare.net

IN A

172.64.149.23

crl.comodoca.com.cdn.cloudflare.net

IN A

104.18.38.233
DNS

crl.comodoca.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

crl.comodoca.com

IN A
DNS

crl.comodoca.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

crl.comodoca.com

IN A
DNS

crl.comodoca.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

crl.comodoca.com

IN A
DNS

161.19.199.152.in-addr.arpa

Remote address:

8.8.8.8:53

Request

161.19.199.152.in-addr.arpa

IN PTR

Response
GET

http://crl.comodoca.com/AAACertificateServices.crl

MicrosoftEdgeCP.exe

Remote address:

172.64.149.23:80

Request

GET /AAACertificateServices.crl HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: crl.comodoca.com

Response

HTTP/1.1 200 OK

Date: Tue, 25 Jun 2024 16:26:10 GMT
Content-Type: application/pkix-crl
Content-Length: 607
Connection: keep-alive
Last-Modified: Mon, 24 Jun 2024 17:10:35 GMT
Expires: Mon, 01 Jul 2024 17:10:35 GMT
Etag: "753fc726b84d67082fd0c27c56d39a499a226b37"
Cache-Control: max-age=603419,s-maxage=3600,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 81
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 89965158dd423862-LHR
DNS

23.149.64.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

23.149.64.172.in-addr.arpa

IN PTR

Response
DNS

233.38.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

233.38.18.104.in-addr.arpa

IN PTR

Response
DNS

172.214.232.199.in-addr.arpa

Remote address:

8.8.8.8:53

Request

172.214.232.199.in-addr.arpa

IN PTR

Response
DNS

www.msn.com

MicrosoftEdge.exe

Remote address:

8.8.8.8:53

Request

www.msn.com

IN A

Response

www.msn.com

IN CNAME

www-msn-com.a-0003.a-msedge.net

www-msn-com.a-0003.a-msedge.net

IN CNAME

a-0003.a-msedge.net

a-0003.a-msedge.net

IN A

204.79.197.203
GET

https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default

MicrosoftEdgeCP.exe

Remote address:

204.79.197.203:443

Request

GET /spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default HTTP/2.0
host: www.msn.com
accept: text/html, application/xhtml+xml, image/jxr, */*
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: USRLOC=; MUID=24D693657E356D7E2D2087327F996CD6; _EDGE_V=1; OptanonConsent=isGpcEnabled=0&datestamp=Thu+Apr+04+2024+13%3A34%3A00+GMT%2B0000+(Coordinated+Universal+Time)&version=202310.2.0&browserGpcFlag=0&isIABGlobal=false; sptmarket=en-US|US|gb|en-gb|en-gb|en||RefA=82931A3F17634A299E5C3C72EC027718.RefC=2024-04-04T13:34:00Z; MUIDB=24D693657E356D7E2D2087327F996CD6

Response

HTTP/2.0 200

cache-control: max-age=0, private
content-length: 65000
content-type: text/html; charset=utf-8
set-cookie: _C_ETH=1; domain=.msn.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _EDGE_S=SID=0CAF1BFEDE6962B81B190F57DFB8632A; domain=.msn.com; path=/; httponly
access-control-allow-methods: HEAD,GET,OPTIONS
x-ceto-origin-forwardonerror: https://staticview.msn.com
content-security-policy: child-src 'self';connect-src 'self' *.mavideo.microsoft.com arc.msn.com assets.msn.com assets2.msn.com assets.msn.cn assets2.msn.cn browser.events.data.msn.com browser.events.data.msn.cn browser.events.data.microsoftstart.com browser.events.data.microsoftstart.cn business.bing.com/api/ events-sandbox.data.msn.com events-sandbox.data.msn.cn events-sandbox.data.microsoftstart.com events-sandbox.data.microsoftstart.cn finance-services.msn.com https://bingretailmsndata.azureedge.net/msndata/ https://petrol.office.microsoft.com/v1/feedback https://privacyportal.onetrust.com/request/v1/consentreceipts https://services.bingapis.com img-s-msn-com.akamaized.net login.microsoftonline.com notification.services.msn.com ris.api.iris.microsoft.com srtb.msn.com srtb.msn.cn usgov.business.bing.com/api/ www.bing.com/HPImageArchive.aspx www.bing.com/api/custom/opal/reco/ www.bing.com/api/v1/mediation/tracking www.bing.com/api/v1/mediation/trends www.bing.com/as/ www.bing.com/AS/Suggestions www.bing.com/AS/Suggestions/v2 www.bing.com/historyHandler www.bing.com/profile/history/data www.bing.com/retail/msn/api/shopcard www.bing.com/retailexp/msn/api/ www.bing.com/retailexpdata/msndata/ www.bing.com/th www.msn.com www.microsoftstart.com *.oneservice.msn.com *.oneservice.msn.cn api.msn.com api.msn.cn ent-api.msn.com ent-api.msn.cn ppe-api.msn.com ppe-api.msn.cn graph.microsoft.com/v1.0/;default-src 'none';font-src 'self' assets.msn.com assets2.msn.com assets.msn.cn assets2.msn.cn;frame-src login.live.com login.microsoftonline.com www.bing.com/shop www.bing.com/shop/halloween www.bing.com/videos/search;img-src https://* blob: data:;report-to csp-endpoint;style-src 'self' 'unsafe-inline' c.s-microsoft.com/mscc/ assets.msn.com assets2.msn.com assets.msn.cn assets2.msn.cn;worker-src 'self' 'report-sample';script-src 'self' 'report-sample' assets.msn.com assets2.msn.com assets.msn.cn assets2.msn.cn c.s-microsoft.com/mscc/ https://clarity.microsoft.com/js/879b55d3-7b96-457b-af7c-03a114c2ae20 platform.bing.com/geo/AutoSuggest/v1 www.bing.com/as/ www.bing.com/s/as/ 'unsafe-inline'
x-robots-tag: noindex
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
x-ua-compatible: IE=Edge;chrome=1
x-fabric-cluster: pmeprodneu
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.5}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]},{"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://deff.nelreports.net/api/report"}]}
strict-transport-security: max-age=1209600; includeSubDomains; preload
x-ceto-ref: 667aefb801394d89af33d9ea4552d83f|AFD:D3696D897E4F48BBBFA8F50E099C11EB|2024-06-25T16:26:32.095Z
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D3696D897E4F48BBBFA8F50E099C11EB Ref B: LON04EDGE1110 Ref C: 2024-06-25T16:26:32Z
date: Tue, 25 Jun 2024 16:26:31 GMT
GET

https://www.msn.com/bundles/v1/edge/latest/manifest.appcache?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default

MicrosoftEdgeCP.exe

Remote address:

204.79.197.203:443

Request

GET /bundles/v1/edge/latest/manifest.appcache?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default HTTP/2.0
host: www.msn.com
accept: */*
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.msn.com
accept-encoding: gzip, deflate, br
cookie: USRLOC=; MUID=24D693657E356D7E2D2087327F996CD6; _EDGE_V=1; OptanonConsent=isGpcEnabled=0&datestamp=Thu+Apr+04+2024+13%3A34%3A00+GMT%2B0000+(Coordinated+Universal+Time)&version=202310.2.0&browserGpcFlag=0&isIABGlobal=false; _C_ETH=1; _EDGE_S=SID=0CAF1BFEDE6962B81B190F57DFB8632A; sptmarket=en-US|US|gb|en-gb|en-gb|en||RefA=82931A3F17634A299E5C3C72EC027718.RefC=2024-04-04T13:34:00Z; MUIDB=24D693657E356D7E2D2087327F996CD6

Response

HTTP/2.0 200

cache-control: no-cache, no-store, no-transform
content-length: 70
content-type: text/cache-manifest
content-encoding: gzip
content-md5: Rqmsx87pIMK1GFYNCRhAAQ==
last-modified: Mon, 26 Jul 2021 22:20:05 GMT
etag: 0x8D9508385701DBF
vary: Origin
x-ms-request-id: 8e5159e9-801e-003b-4b75-fc6eb8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
akamai-request-bc: [a=2.16.128.173,b=63196763,c=g,n=GB_EN_LONDON,o=20940]
server-timing: clientrtt; dur=1, clienttt; dur=0, origin; dur=0, cdntime; dur=0, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
akamai-server-ip: 2.16.128.173
akamai-request-id: 3c44e5b
access-control-allow-credentials: true
access-control-allow-origin: https://www.msn.com
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
timing-allow-origin: *
akamai-grn: 0.ad801002.1719332793.3c44e5b
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: ED21FFB5D38D471BA43759898E978B9F Ref B: LON04EDGE1110 Ref C: 2024-06-25T16:26:33Z
date: Tue, 25 Jun 2024 16:26:32 GMT
GET

https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default

MicrosoftEdgeCP.exe

Remote address:

204.79.197.203:443

Request

GET /spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default HTTP/2.0
host: www.msn.com
accept: */*
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: _C_Auth=; USRLOC=; MUID=24D693657E356D7E2D2087327F996CD6; _EDGE_V=1; OptanonConsent=isGpcEnabled=0&datestamp=Thu+Apr+04+2024+13%3A34%3A00+GMT%2B0000+(Coordinated+Universal+Time)&version=202310.2.0&browserGpcFlag=0&isIABGlobal=false; _C_ETH=1; _EDGE_S=SID=0CAF1BFEDE6962B81B190F57DFB8632A; sptmarket=en-US|US|gb|en-gb|en-gb|en||RefA=82931A3F17634A299E5C3C72EC027718.RefC=2024-04-04T13:34:00Z; MUIDB=24D693657E356D7E2D2087327F996CD6

Response

HTTP/2.0 200

cache-control: max-age=0, private
content-length: 65000
content-type: text/html; charset=utf-8
set-cookie: _C_ETH=1; expires=Mon, 24 Jun 2024 16:26:33 GMT; domain=.msn.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _EDGE_S=SID=0CAF1BFEDE6962B81B190F57DFB8632A; domain=.msn.com; path=/; httponly
access-control-allow-methods: HEAD,GET,OPTIONS
x-ceto-origin-forwardonerror: https://staticview.msn.com
content-security-policy: child-src 'self';connect-src 'self' *.mavideo.microsoft.com arc.msn.com assets.msn.com assets2.msn.com assets.msn.cn assets2.msn.cn browser.events.data.msn.com browser.events.data.msn.cn browser.events.data.microsoftstart.com browser.events.data.microsoftstart.cn business.bing.com/api/ events-sandbox.data.msn.com events-sandbox.data.msn.cn events-sandbox.data.microsoftstart.com events-sandbox.data.microsoftstart.cn finance-services.msn.com https://bingretailmsndata.azureedge.net/msndata/ https://petrol.office.microsoft.com/v1/feedback https://privacyportal.onetrust.com/request/v1/consentreceipts https://services.bingapis.com img-s-msn-com.akamaized.net login.microsoftonline.com notification.services.msn.com ris.api.iris.microsoft.com srtb.msn.com srtb.msn.cn usgov.business.bing.com/api/ www.bing.com/HPImageArchive.aspx www.bing.com/api/custom/opal/reco/ www.bing.com/api/v1/mediation/tracking www.bing.com/api/v1/mediation/trends www.bing.com/as/ www.bing.com/AS/Suggestions www.bing.com/AS/Suggestions/v2 www.bing.com/historyHandler www.bing.com/profile/history/data www.bing.com/retail/msn/api/shopcard www.bing.com/retailexp/msn/api/ www.bing.com/retailexpdata/msndata/ www.bing.com/th www.msn.com www.microsoftstart.com *.oneservice.msn.com *.oneservice.msn.cn api.msn.com api.msn.cn ent-api.msn.com ent-api.msn.cn ppe-api.msn.com ppe-api.msn.cn graph.microsoft.com/v1.0/;default-src 'none';font-src 'self' assets.msn.com assets2.msn.com assets.msn.cn assets2.msn.cn;frame-src login.live.com login.microsoftonline.com www.bing.com/shop www.bing.com/shop/halloween www.bing.com/videos/search;img-src https://* blob: data:;report-to csp-endpoint;style-src 'self' 'unsafe-inline' c.s-microsoft.com/mscc/ assets.msn.com assets2.msn.com assets.msn.cn assets2.msn.cn;worker-src 'self' 'report-sample';script-src 'self' 'report-sample' assets.msn.com assets2.msn.com assets.msn.cn assets2.msn.cn c.s-microsoft.com/mscc/ https://clarity.microsoft.com/js/879b55d3-7b96-457b-af7c-03a114c2ae20 platform.bing.com/geo/AutoSuggest/v1 www.bing.com/as/ www.bing.com/s/as/ 'unsafe-inline'
x-robots-tag: noindex
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
x-ua-compatible: IE=Edge;chrome=1
x-fabric-cluster: pmeprodneu
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]},{"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://deff.nelreports.net/api/report"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.5}
strict-transport-security: max-age=1209600; includeSubDomains; preload
x-ceto-ref: 667aefb91db241f8aac33805ea46d953|AFD:639800EE2E0D41529C7700AC4C9D0FD7|2024-06-25T16:26:33.422Z
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 639800EE2E0D41529C7700AC4C9D0FD7 Ref B: LON04EDGE1110 Ref C: 2024-06-25T16:26:33Z
date: Tue, 25 Jun 2024 16:26:32 GMT
GET

https://www.msn.com/bundles/v1/edge/latest/manifest.appcache?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default

MicrosoftEdgeCP.exe

Remote address:

204.79.197.203:443

Request

GET /bundles/v1/edge/latest/manifest.appcache?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default HTTP/2.0
host: www.msn.com
accept: */*
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.msn.com
accept-encoding: gzip, deflate, br
cookie: USRLOC=; MUID=24D693657E356D7E2D2087327F996CD6; _EDGE_V=1; OptanonConsent=isGpcEnabled=0&datestamp=Thu+Apr+04+2024+13%3A34%3A00+GMT%2B0000+(Coordinated+Universal+Time)&version=202310.2.0&browserGpcFlag=0&isIABGlobal=false; _EDGE_S=SID=0CAF1BFEDE6962B81B190F57DFB8632A; sptmarket=en-US|US|gb|en-gb|en-gb|en||RefA=82931A3F17634A299E5C3C72EC027718.RefC=2024-04-04T13:34:00Z; MUIDB=24D693657E356D7E2D2087327F996CD6

Response

HTTP/2.0 200

cache-control: no-cache, no-store, no-transform
content-length: 70
content-type: text/cache-manifest
content-encoding: gzip
content-md5: Rqmsx87pIMK1GFYNCRhAAQ==
last-modified: Mon, 26 Jul 2021 22:20:05 GMT
etag: 0x8D9508385701DBF
vary: Origin
x-ms-request-id: 8e5159e9-801e-003b-4b75-fc6eb8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
akamai-request-bc: [a=2.16.128.221,b=246642304,c=g,n=GB_EN_LONDON,o=20940]
server-timing: clientrtt; dur=6, clienttt; dur=0, origin; dur=0, cdntime; dur=0, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
akamai-server-ip: 2.16.128.221
akamai-request-id: eb37680
access-control-allow-credentials: true
access-control-allow-origin: https://www.msn.com
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
timing-allow-origin: *
akamai-grn: 0.dd801002.1719332793.eb37680
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F2DAF1BE04E94C5C92F7C10FBF6CCB16 Ref B: LON04EDGE1110 Ref C: 2024-06-25T16:26:33Z
date: Tue, 25 Jun 2024 16:26:32 GMT
GET

https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /AS/API/IEOneBox/V2/Init?setlang=en-US HTTP/2.0
host: www.bing.com
accept: text/html, application/xhtml+xml, image/jxr, */*
accept-language: en-US
x-device-enableregulatorypsm: 0
x-device-enablecpsm: 0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

content-length: 18044
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefb753804051b79896f5d4da59ff
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ua-compatible: IE=edge
date: Tue, 25 Jun 2024 16:26:31 GMT
set-cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; domain=.bing.com; expires=Sun, 20-Jul-2025 16:26:31 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2D1C2BE9A79667E714C13F40A65D666F; expires=Sun, 20-Jul-2025 16:26:31 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 20-Jul-2025 16:26:31 GMT; path=/; HttpOnly
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 20-Jul-2025 16:26:31 GMT; path=/
set-cookie: SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; domain=.bing.com; expires=Sun, 20-Jul-2025 16:26:31 GMT; path=/
set-cookie: SRCHUSR=DOB=20240625; domain=.bing.com; expires=Sun, 20-Jul-2025 16:26:31 GMT; path=/
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Sun, 20-Jul-2025 16:26:31 GMT; path=/
set-cookie: _SS=SID=30B4B75C9A7369883022A3F59BB8689D; domain=.bing.com; path=/
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f31e6
GET

https://www.bing.com/rb/19/cir3,ortl,cc,nc/LnOYYBJP0qbrvbM8Vd1L9Iyk0wM.css?bu=C8oIhQP7A6IJiwj1B6oGWVmZBFk

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rb/19/cir3,ortl,cc,nc/LnOYYBJP0qbrvbM8Vd1L9Iyk0wM.css?bu=C8oIhQP7A6IJiwj1B6oGWVmZBFk HTTP/2.0
host: www.bing.com
accept: text/css, */*
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en; _SS=SID=30B4B75C9A7369883022A3F59BB8689D; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 200

cache-control: public, max-age=432000, no-transform, immutable
content-length: 3140
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: az+rhZn9p058dpqAVhuB8Q==
last-modified: Tue, 16 Jan 2024 20:09:16 GMT
etag: 0x8DC16CF040314FA
x-ms-request-id: d85727a5-001e-007f-0f91-9b8ab1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-amd-bc-debug: [a=2.16.107.201,b=21465174,c=c,d=1719278924,h=200,k=1,l=0,n=NL__AMSTERDAM,o=20940,r=1,p=3140]
date: Tue, 25 Jun 2024 16:26:31 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f3245
GET

https://www.bing.com/rb/19/cir3,ortl,cc,nc/XxqYiyTu9Zkh9t7nVvBNsDKSLlQ.css?bu=BrcCP54CTFm5Ag

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rb/19/cir3,ortl,cc,nc/XxqYiyTu9Zkh9t7nVvBNsDKSLlQ.css?bu=BrcCP54CTFm5Ag HTTP/2.0
host: www.bing.com
accept: text/css, */*
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en; _SS=SID=30B4B75C9A7369883022A3F59BB8689D; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 200

cache-control: public, max-age=432000, no-transform, immutable
content-length: 2740
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: Iiqeb0LJKqyR2JzDblFzqg==
last-modified: Mon, 01 May 2023 19:02:49 GMT
etag: 0x8DB4A76A84F60BD
x-ms-request-id: c8fded8d-901e-005c-1f4a-c651f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-amd-bc-debug: [a=2.16.107.209,b=34351259,c=c,d=1719303362,h=200,k=0,l=1,n=NL__AMSTERDAM,o=20940,r=1,p=2740]
date: Tue, 25 Jun 2024 16:26:31 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f3246
GET

https://www.bing.com/rb/3D/ortl,cc,nc/4-xJy3tX6bM2BGl5zKioiEcQ1TU.css?bu=A4gCjAKPAg

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rb/3D/ortl,cc,nc/4-xJy3tX6bM2BGl5zKioiEcQ1TU.css?bu=A4gCjAKPAg HTTP/2.0
host: www.bing.com
accept: text/css, */*
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en; _SS=SID=30B4B75C9A7369883022A3F59BB8689D; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 200

content-length: 4898
content-type: text/css; charset=utf-8
access-control-allow-headers: *
access-control-allow-origin: *
cache-control: public, max-age=432000
content-encoding: br
last-modified: Mon, 27 Sep 2010 21:57:23 GMT
vary: Accept-Encoding
x-eventid: 66745579212940caba5cf31eb6b6f802
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f3240
GET

https://www.bing.com/rb/4M/jnc,nj/0VZs9c95FAldbs0y9e3RnXknk6g.js?bu=D48s0SqbAuEq4yrlKucqjCuWLOErgCrgEforgCi-Kw

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rb/4M/jnc,nj/0VZs9c95FAldbs0y9e3RnXknk6g.js?bu=D48s0SqbAuEq4yrlKucqjCuWLOErgCrgEforgCi-Kw HTTP/2.0
host: www.bing.com
accept: application/javascript, */*;q=0.8
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.bing.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

content-length: 1246
content-type: text/css; charset=utf-8
access-control-allow-headers: *
access-control-allow-origin: *
cache-control: public, max-age=432000
content-encoding: br
last-modified: Sat, 28 Aug 2010 13:26:17 GMT
vary: Accept-Encoding
x-eventid: 66743c443a4e4795912420875c6b12b7
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f3242
GET

https://www.bing.com/rp/lZfFRIZsGLf3poBW6xAz2KFILkI.gz.js

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rp/lZfFRIZsGLf3poBW6xAz2KFILkI.gz.js HTTP/2.0
host: www.bing.com
accept: application/javascript, */*;q=0.8
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.bing.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

content-length: 3513
content-type: text/css; charset=utf-8
access-control-allow-headers: *
access-control-allow-origin: *
cache-control: public, max-age=432000
content-encoding: br
last-modified: Thu, 07 Dec 2023 22:46:12 GMT
vary: Accept-Encoding
x-eventid: 66767957046b4e66b7716364d0288553
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f3243
GET

https://www.bing.com/rp/6wzJBpbyuAoCS5bfkKiW0Aw2R6o.gz.js

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rp/6wzJBpbyuAoCS5bfkKiW0Aw2R6o.gz.js HTTP/2.0
host: www.bing.com
accept: application/javascript, */*;q=0.8
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.bing.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

content-length: 18371
content-type: application/x-javascript; charset=utf-8
access-control-allow-headers: *
access-control-allow-origin: *
cache-control: public, max-age=432000
content-encoding: br
last-modified: Fri, 21 Jun 2024 19:27:01 GMT
vary: Accept-Encoding
x-eventid: 66767701b56e404e9c04e0724d764c3d
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f3244
GET

https://www.bing.com/rp/DicRs1X5x7sMwnmwcxBuO2kpGeI.gz.js

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rp/DicRs1X5x7sMwnmwcxBuO2kpGeI.gz.js HTTP/2.0
host: www.bing.com
accept: application/javascript, */*;q=0.8
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.bing.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

cache-control: public, max-age=432000, no-transform, immutable
content-length: 30744
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: ckQMIJkxhKmvUzx6lypM+w==
last-modified: Mon, 01 May 2023 19:03:00 GMT
etag: 0x8DB4A76AEAF78B0
x-ms-request-id: 96615dce-601e-002a-7f95-b2dbbc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-amd-bc-debug: [a=96.16.251.19,b=1712633748,c=c,d=1719225949,h=200,k=1,l=0,n=NL__HAARLEM,o=20940,r=1,p=30744]
date: Tue, 25 Jun 2024 16:26:31 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f324d
GET

https://www.bing.com/rp/L3qgZ2pA6whKnPPHkQnZ2_d8WVo.gz.js

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rp/L3qgZ2pA6whKnPPHkQnZ2_d8WVo.gz.js HTTP/2.0
host: www.bing.com
accept: application/javascript, */*;q=0.8
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.bing.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

last-modified: Mon, 01 May 2023 19:03:01 GMT
etag: 0x8DB4A76AF96D917
cache-control: public, no-transform, max-age=395999
expires: Thu, 27 Jun 2024 05:15:41 GMT
akamai-grn: 0.17ff1302.1719069342.4e26710b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 632
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: vN/bJ41atswBaXroy1h7EA==
x-ms-request-id: a898c79c-c01e-008a-2035-b25f1d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f324e
GET

https://www.bing.com/rp/IOwhK4uDW4Sh2EVXk1BBw5OkHPY.gz.js

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rp/IOwhK4uDW4Sh2EVXk1BBw5OkHPY.gz.js HTTP/2.0
host: www.bing.com
accept: application/javascript, */*;q=0.8
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.bing.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

last-modified: Mon, 01 May 2023 19:03:28 GMT
etag: 0x8DB4A76BFB74FD8
cache-control: public, no-transform, max-age=399462
expires: Thu, 27 Jun 2024 02:41:53 GMT
akamai-grn: 0.08071002.1719056651.6d9a380c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 56177
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: nfKKYcA5I3caM/oIeNO/Fg==
x-ms-request-id: 2a5dda79-301e-00c3-387f-b51df6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f3250
GET

https://www.bing.com/rp/dcb-PwRbjINh_Wg-9pEP8tD_qO4.gz.js

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rp/dcb-PwRbjINh_Wg-9pEP8tD_qO4.gz.js HTTP/2.0
host: www.bing.com
accept: application/javascript, */*;q=0.8
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.bing.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

last-modified: Mon, 01 May 2023 19:03:32 GMT
etag: 0x8DB4A76C1F875F8
cache-control: public, no-transform, max-age=428069
expires: Wed, 26 Jun 2024 14:48:32 GMT
akamai-grn: 0.17ff1302.1718985243.3ca877f9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 12040
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: yGKm/4jn78W7vO8Nkej9uA==
x-ms-request-id: 29d50ce1-b01e-006a-5288-6e9d02000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f3251
GET

https://www.bing.com/rp/t4xaeuTBmu-Lp_KEbPyZVrfX8yw.gz.js

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rp/t4xaeuTBmu-Lp_KEbPyZVrfX8yw.gz.js HTTP/2.0
host: www.bing.com
accept: application/javascript, */*;q=0.8
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.bing.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

last-modified: Mon, 01 May 2023 19:02:52 GMT
etag: 0x8DB4A76AA10009F
cache-control: public, no-transform, max-age=392236
expires: Fri, 28 Jun 2024 14:14:07 GMT
akamai-grn: 0.17ff1302.1719191811.6abb347f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 13433
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: 0vIIx74xnsdqiNqpWLtnnQ==
x-ms-request-id: a3b0b523-501e-006c-1249-beef3b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f3252
GET

https://www.bing.com/rp/7DRnJ-ywpuG7tVaukb2LDibhBUg.gz.js

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rp/7DRnJ-ywpuG7tVaukb2LDibhBUg.gz.js HTTP/2.0
host: www.bing.com
accept: application/javascript, */*;q=0.8
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.bing.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

last-modified: Mon, 01 May 2023 19:03:33 GMT
etag: 0x8DB4A76C293B96D
cache-control: public, no-transform, max-age=364771
expires: Thu, 27 Jun 2024 10:17:33 GMT
akamai-grn: 0.0e18dd58.1719118682.467f1b0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3782
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: KDfeRVwk5HSPaHRNeOVNSA==
x-ms-request-id: 6f2999d7-d01e-00b9-5e8c-bd00b6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f3253
GET

https://www.bing.com/rp/ss3d0sJoMnwEPabtwPxYd3-17LU.gz.js

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rp/ss3d0sJoMnwEPabtwPxYd3-17LU.gz.js HTTP/2.0
host: www.bing.com
accept: application/javascript, */*;q=0.8
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.bing.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

content-length: 7056
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: HULyKB2vmYoLN6zt1rirNQ==
last-modified: Mon, 01 May 2023 19:03:05 GMT
etag: 0x8DB4A76B1D1C4D5
x-ms-request-id: c7a2bcce-701e-0019-6bf7-c58417000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=431974
expires: Sat, 29 Jun 2024 05:26:28 GMT
vary: Accept-Encoding
akamai-grn: 0.70a9645f.1719206814.161bb1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f324f
GET

https://www.bing.com/manifest/IEOneBox_V2.appcache?setlang=en-US

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /manifest/IEOneBox_V2.appcache?setlang=en-US HTTP/2.0
host: www.bing.com
accept: */*
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.bing.com
accept-encoding: gzip, deflate, br
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790584&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 200

cache-control: public, max-age=432000, no-transform, immutable
content-length: 2581
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: 5iNL+P3CLrncQWICsery6g==
last-modified: Tue, 16 Apr 2024 00:58:51 GMT
etag: 0x8DC5DB061B7DB16
x-ms-request-id: 6d8b6f45-801e-0040-1320-c40394000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-amd-bc-debug: [a=2.19.255.10,b=1681138186,c=c,d=1719091658,h=200,k=1,l=0,n=NL__HAARLEM,o=20940,r=1,p=2581]
date: Tue, 25 Jun 2024 16:26:31 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f32d7
GET

https://www.bing.com/rp/-io-xMNCwasGqLymZ_-Hy1lHlTU.gz.js

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rp/-io-xMNCwasGqLymZ_-Hy1lHlTU.gz.js HTTP/2.0
host: www.bing.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790584&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 200

cache-control: public, max-age=432000, no-transform, immutable
content-length: 197
content-type: text/javascript; charset=utf-8
content-encoding: gzip
content-md5: vDXcSV+KdbhtCq4Z6ChaXg==
last-modified: Mon, 01 May 2023 19:03:17 GMT
etag: 0x8DB4A76B9220C70
x-ms-request-id: 5a7ee936-701e-00c2-24d1-c4422a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-amd-bc-debug: [a=96.16.251.19,b=1461051280,c=c,d=1719098233,h=200,k=1,l=0,n=NL__HAARLEM,o=20940,r=1,p=197]
date: Tue, 25 Jun 2024 16:26:31 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f32da
GET

https://www.bing.com/rp/WAAHGo-kP0xCDM16LGm9-alzHb8.gz.js

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /rp/WAAHGo-kP0xCDM16LGm9-alzHb8.gz.js HTTP/2.0
host: www.bing.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790584&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 200

content-length: 541
content-type: text/cache-manifest; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefb79d9741df8ca3079746a3c3a4
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 25 Jun 2024 16:26:31 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; domain=.bing.com; expires=Sun, 20-Jul-2025 16:26:31 GMT; path=/
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f32d3
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 434
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790584&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 18006
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefb760a341d5ab68cd919ba5d060
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ua-compatible: IE=edge
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f330f
GET

https://www.bing.com/AS/API/IEOneBox/V2/Suggestions?qry=google.&cc=US&setlang=en-US&cp=7&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=2e3d510377654357980cc4b487f513af

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /AS/API/IEOneBox/V2/Suggestions?qry=google.&cc=US&setlang=en-US&cp=7&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=2e3d510377654357980cc4b487f513af HTTP/2.0
host: www.bing.com
accept: */*
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
x-device-isoptin: false
x-search-cortanaavailablecapabilities: SpeechLanguage
x-autosuggest-contentwidth: 296
x-search-rpstoken: NA
authorization: Bearer NA
x-bm-clientfeatures: SmallerAnswers
accept-encoding: gzip, deflate, br
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790584&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 200

content-length: 602
content-type: application/json; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 667aefb7ac4b4b03ae0d5534e98c6b49
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f330b
GET

https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /AS/API/IEOneBox/V2/Init?setlang=en-US HTTP/2.0
host: www.bing.com
accept: */*
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790584&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefb740fa4f9b9cf647e809c0210b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332791.109f330a
GET

https://www.bing.com/AS/API/IEOneBox/V2/Suggestions?qry=google.c&cc=US&setlang=en-US&cp=8&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=c25e22f466e64cab9f61566ede68bb42

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /AS/API/IEOneBox/V2/Suggestions?qry=google.c&cc=US&setlang=en-US&cp=8&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=c25e22f466e64cab9f61566ede68bb42 HTTP/2.0
host: www.bing.com
accept: */*
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
x-device-isoptin: false
x-search-cortanaavailablecapabilities: SpeechLanguage
x-autosuggest-contentwidth: 296
x-search-rpstoken: NA
authorization: Bearer NA
x-bm-clientfeatures: SmallerAnswers
accept-encoding: gzip, deflate, br
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 200

content-length: 643
content-type: application/json; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 667aefb8947c4bc4b1c9b77269a448e1
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 25 Jun 2024 16:26:32 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332792.109f3495
GET

https://www.bing.com/AS/API/IEOneBox/V2/Suggestions?qry=google.co&cc=US&setlang=en-US&cp=9&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=65b588600b124e08be1e189107a37a38

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /AS/API/IEOneBox/V2/Suggestions?qry=google.co&cc=US&setlang=en-US&cp=9&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=65b588600b124e08be1e189107a37a38 HTTP/2.0
host: www.bing.com
accept: */*
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
x-device-isoptin: false
x-search-cortanaavailablecapabilities: SpeechLanguage
x-autosuggest-contentwidth: 296
x-search-rpstoken: NA
authorization: Bearer NA
x-bm-clientfeatures: SmallerAnswers
accept-encoding: gzip, deflate, br
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 200

content-length: 683
content-type: application/json; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 667aefb8f93e4a03bec8cd3c9aa24e0c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 25 Jun 2024 16:26:32 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332792.109f3496
GET

https://www.bing.com/AS/API/IEOneBox/V2/Suggestions?qry=google.com&cc=US&setlang=en-US&cp=10&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=71aec477872d43a0b80a23b2cf502d11

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /AS/API/IEOneBox/V2/Suggestions?qry=google.com&cc=US&setlang=en-US&cp=10&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=71aec477872d43a0b80a23b2cf502d11 HTTP/2.0
host: www.bing.com
accept: */*
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
x-device-isoptin: false
x-search-cortanaavailablecapabilities: SpeechLanguage
x-autosuggest-contentwidth: 296
x-search-rpstoken: NA
authorization: Bearer NA
x-bm-clientfeatures: SmallerAnswers
accept-encoding: gzip, deflate, br
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 200

content-length: 780
content-type: application/json; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 667aefb822bf44fda89a09c4ee6be647
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Tue, 25 Jun 2024 16:26:32 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332792.109f34a3
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 12878
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefb8ecee48c2b4c4f3c68a2c6e52
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:32 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332792.109f360f
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 4007
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefb930364fd9a30318d3df0c666f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332793.109f371f
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 8696
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefba6b284c0ba780ae57a2d91f28
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332794.109f39c4
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 1757
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefbb08ff4f9c87dedafb055906ab
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332795.109f3cbf
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 2349
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefbce38a4afe8c416bffd2eaee2f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332796.109f3f57
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 664
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefbdbe084c14ad91e6f3a07339d4
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332797.109f423c
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 1968
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefbe020548fa91804a84d917c391
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332798.109f45b8
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 6827
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefc09082482aa01abce12545b154
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332800.109f4941
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 399
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefc153da40e2872e15cba568eee0
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332801.109f4c84
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 1440
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefc20edb46f6855f91697841e06b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332802.109f4f66
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 927
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefc35fa14301bd4784a6febb2720
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332802.109f5085
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 578
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefc30f8a4a4e826b6dc0240df3e8
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332803.109f52e3
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 1870
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefc4793f4a96ab7892d86566e1d8
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332804.109f56a1
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 606
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefc50b144cb484ed2cc8422a0417
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332805.109f5a0a
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 1444
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefc72fda400c94af5a96a2da6bf8
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332807.109f5d53
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 606
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefc81a044da295d5d4ea9d4f4887
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332808.109f60d8
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 1207
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefc80b2f4c0da945e3319af4a76b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332808.109f625b
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 6320
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefc94f104a4b83c476188e96060a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332809.109f657f
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 510
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefca498d4d36bb690b84cc162885
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332810.109f68d8
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 1442
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefcb0c87419e89a3a401960639ea
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332811.109f6de6
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 388
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefcd34544c58b2243c1429c4e0f3
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332813.109f745b
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 6014
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefcea12744158eb08201e13dbfaf
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332814.109f7836
POST

https://www.bing.com/AS/IEOneBox/xls.aspx

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

POST /AS/IEOneBox/xls.aspx HTTP/2.0
host: www.bing.com
accept: */*
origin: https://www.bing.com
referer: https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/xml
x-msedge-externalexptype: JointCoord
x-msedge-externalexp: null
accept-encoding: gzip, deflate, br
content-length: 1207
cache-control: no-cache
cookie: MUID=2D1C2BE9A79667E714C13F40A65D666F; _EDGE_S=F=1&SID=30B4B75C9A7369883022A3F59BB8689D; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=F381D827CE374ED3B93F09FC396C87B4&dmnchg=1; SRCHUSR=DOB=20240625; SRCHHPGUSR=SRCHLANG=en&IPMH=2c0d7f4b&IPMID=1719332790584; _SS=SID=30B4B75C9A7369883022A3F59BB8689D&CPID=1719332790867&AC=0&CPH=e1b2c7d9; MUIDB=2D1C2BE9A79667E714C13F40A65D666F

Response

HTTP/2.0 404

content-length: 46
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 667aefd0ed5d4f508193d9b0020952d2
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-error-page: 404-custom
date: Tue, 25 Jun 2024 16:26:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332816.109f7d5b
GET

https://www.bing.com/partner/warmup.gif

MicrosoftEdgeCP.exe

Remote address:

23.62.61.194:443

Request

GET /partner/warmup.gif HTTP/2.0
host: www.bing.com
accept: */*
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

cache-control: no-cache
pragma: no-cache
content-length: 43
content-type: image/gif
expires: -1
x-eventid: 667aefb8f71a44bca8bd2007f7f36f26
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B9C74F40C31B4833AC6CD8B77022B69B Ref B: AMS04EDGE1717 Ref C: 2024-06-25T16:26:32Z
date: Tue, 25 Jun 2024 16:26:32 GMT
set-cookie: MUID=0EE2139E7E8D66183D2B07377F2E6790; domain=.bing.com; expires=Sun, 20-Jul-2025 16:26:32 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0EE2139E7E8D66183D2B07377F2E6790; expires=Sun, 20-Jul-2025 16:26:32 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=35B7C7C816A5646B1DB7D361170665E4; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 20-Jul-2025 16:26:32 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332792.109f35a7
DNS

194.61.62.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

194.61.62.23.in-addr.arpa

IN PTR

Response

194.61.62.23.in-addr.arpa

IN PTR

a23-62-61-194deploystaticakamaitechnologiescom
DNS

assets.msn.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

assets.msn.com

IN A

Response

assets.msn.com

IN CNAME

assets.msn.com.edgekey.net

assets.msn.com.edgekey.net

IN CNAME

e28578.d.akamaiedge.net

e28578.d.akamaiedge.net

IN A

2.21.96.65

e28578.d.akamaiedge.net

IN A

2.21.96.90

e28578.d.akamaiedge.net

IN A

2.21.96.104

e28578.d.akamaiedge.net

IN A

2.21.96.11
DNS

200.42.244.104.in-addr.arpa

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

200.42.244.104.in-addr.arpa

IN PTR

Response
DNS

browser.events.data.msn.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

browser.events.data.msn.com

IN A

Response

browser.events.data.msn.com

IN CNAME

global.asimov.events.data.trafficmanager.net

global.asimov.events.data.trafficmanager.net

IN CNAME

onedscolprdgwc02.germanywestcentral.cloudapp.azure.com

onedscolprdgwc02.germanywestcentral.cloudapp.azure.com

IN A

20.52.64.200
GET

https://assets.msn.com/bundles/v1/edge/latest/vendors.c47bf4f4981f23895ddb.js

MicrosoftEdgeCP.exe

Remote address:

2.21.96.65:443

Request

GET /bundles/v1/edge/latest/vendors.c47bf4f4981f23895ddb.js HTTP/2.0
host: assets.msn.com
accept: application/javascript, */*;q=0.8
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.msn.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

content-length: 53557
content-md5: YrPejprI4tG+2X4ekLKlAg==
last-modified: Mon, 26 Jul 2021 22:19:35 GMT
etag: 0x8D9508373717114
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 03e04f0f-201e-0109-1b3b-714671000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
content-encoding: br
date: Tue, 25 Jun 2024 16:26:32 GMT
akamai-request-bc: [a=2.21.96.61,b=43376377,c=g,n=SE_AB_STOCKHOLM,o=20940]
server-timing: clientrtt; dur=63, clienttt; dur=1, origin; dur=0, cdntime; dur=1, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
content-type: application/javascript
akamai-server-ip: 2.21.96.61
akamai-request-id: 295def9
access-control-allow-credentials: true
access-control-allow-origin: https://www.msn.com
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
cache-control: public, no-transform, max-age=31535892
timing-allow-origin: *
akamai-grn: 0.3d601502.1719332792.295def9
vary: Origin
GET

https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/scripttemplates/otSDKStub.js

MicrosoftEdgeCP.exe

Remote address:

2.21.96.65:443

Request

GET /staticsb/statics/latest/oneTrust/1.9/scripttemplates/otSDKStub.js HTTP/2.0
host: assets.msn.com
accept: application/javascript, */*;q=0.8
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: USRLOC=; MUID=24D693657E356D7E2D2087327F996CD6; _EDGE_V=1; OptanonConsent=isGpcEnabled=0&datestamp=Thu+Apr+04+2024+13%3A34%3A00+GMT%2B0000+(Coordinated+Universal+Time)&version=202310.2.0&browserGpcFlag=0&isIABGlobal=false; _C_ETH=1; _EDGE_S=SID=0CAF1BFEDE6962B81B190F57DFB8632A

Response

HTTP/2.0 200

content-length: 33972
content-md5: YzySdh8ykm7KVsyrxDpMLg==
last-modified: Mon, 26 Jul 2021 22:18:52 GMT
etag: 0x8D9508359704919
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6f7e8ddf-201e-0075-68d4-6e1fb4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
content-encoding: br
date: Tue, 25 Jun 2024 16:26:32 GMT
akamai-request-bc: [a=2.21.96.61,b=43376379,c=g,n=SE_AB_STOCKHOLM,o=20940]
server-timing: clientrtt; dur=63, clienttt; dur=0, origin; dur=0, cdntime; dur=0, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
content-type: application/javascript
akamai-server-ip: 2.21.96.61
akamai-request-id: 295defb
access-control-allow-credentials: true
access-control-allow-origin: https://www.msn.com
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
cache-control: public, no-transform, max-age=31535892
timing-allow-origin: *
akamai-grn: 0.3d601502.1719332792.295defb
vary: Origin
GET

https://assets.msn.com/bundles/v1/edge/latest/microsoft.8aa91a5fe4f5d8517ae1.js

MicrosoftEdgeCP.exe

Remote address:

2.21.96.65:443

Request

GET /bundles/v1/edge/latest/microsoft.8aa91a5fe4f5d8517ae1.js HTTP/2.0
host: assets.msn.com
accept: application/javascript, */*;q=0.8
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.msn.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

content-type: application/javascript
content-md5: SrH4iQ0luJkTRyZ3V7l1ZA==
last-modified: Tue, 25 Jun 2024 05:48:56 GMT
etag: 0x8DC94DA8100ACA8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5c63f6da-e01e-0011-0bcb-c6f19e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
content-encoding: gzip
date: Tue, 25 Jun 2024 16:26:32 GMT
content-length: 7369
akamai-request-bc: [a=2.21.96.61,b=43376378,c=g,n=SE_AB_STOCKHOLM,o=20940]
server-timing: clientrtt; dur=63, clienttt; dur=0, origin; dur=0, cdntime; dur=0, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
akamai-server-ip: 2.21.96.61
akamai-request-id: 295defa
cache-control: public, max-age=1209600
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
timing-allow-origin: *
akamai-grn: 0.3d601502.1719332792.295defa
vary: Origin
GET

https://assets.msn.com/bundles/v1/edge/latest/common.5dd7cff85de67632bfd7.js

MicrosoftEdgeCP.exe

Remote address:

2.21.96.65:443

Request

GET /bundles/v1/edge/latest/common.5dd7cff85de67632bfd7.js HTTP/2.0
host: assets.msn.com
accept: application/javascript, */*;q=0.8
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://www.msn.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

content-length: 161886
content-md5: 4Qqx/5ghQW9cUY3TgpoINQ==
last-modified: Mon, 26 Jul 2021 22:18:30 GMT
etag: 0x8D950834C94BC27
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a1992321-901e-00a6-04b8-5a56d4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
content-encoding: br
date: Tue, 25 Jun 2024 16:26:32 GMT
akamai-request-bc: [a=2.21.96.61,b=43376380,c=g,n=SE_AB_STOCKHOLM,o=20940]
server-timing: clientrtt; dur=63, clienttt; dur=1, origin; dur=0, cdntime; dur=1, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
content-type: application/javascript
akamai-server-ip: 2.21.96.61
akamai-request-id: 295defc
access-control-allow-credentials: true
access-control-allow-origin: https://www.msn.com
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
cache-control: public, no-transform, max-age=31535892
timing-allow-origin: *
akamai-grn: 0.3d601502.1719332792.295defc
vary: Origin
GET

https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/consent/55a804ab-e5c6-4b97-9319-86263d365d28/55a804ab-e5c6-4b97-9319-86263d365d28.json

MicrosoftEdgeCP.exe

Remote address:

2.21.96.65:443

Request

GET /staticsb/statics/latest/oneTrust/1.9/consent/55a804ab-e5c6-4b97-9319-86263d365d28/55a804ab-e5c6-4b97-9319-86263d365d28.json HTTP/2.0
host: assets.msn.com
accept: */*
origin: https://www.msn.com
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

content-type: application/json
content-md5: tBDiswOqCRnxNKBPFOr30w==
last-modified: Tue, 25 Jun 2024 11:20:42 GMT
etag: 0x8DC9508D9F6F51A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 33127caa-b01e-00dc-0e16-c7aac1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
content-encoding: gzip
date: Tue, 25 Jun 2024 16:26:32 GMT
content-length: 1854
akamai-request-bc: [a=2.21.96.61,b=43376798,c=g,n=SE_AB_STOCKHOLM,o=20940]
server-timing: clientrtt; dur=64, clienttt; dur=0, origin; dur=0, cdntime; dur=0, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
akamai-server-ip: 2.21.96.61
akamai-request-id: 295e09e
access-control-allow-credentials: true
access-control-allow-origin: https://www.msn.com
cache-control: public, max-age=1209600
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
timing-allow-origin: *
akamai-grn: 0.3d601502.1719332792.295e09e
vary: Origin
GET

https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/scripttemplates/202310.2.0/otBannerSdk.js

MicrosoftEdgeCP.exe

Remote address:

2.21.96.65:443

Request

GET /staticsb/statics/latest/oneTrust/1.9/scripttemplates/202310.2.0/otBannerSdk.js HTTP/2.0
host: assets.msn.com
accept: application/javascript, */*;q=0.8
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: USRLOC=; MUID=24D693657E356D7E2D2087327F996CD6; _EDGE_V=1; OptanonConsent=isGpcEnabled=0&datestamp=Thu+Apr+04+2024+13%3A34%3A00+GMT%2B0000+(Coordinated+Universal+Time)&version=202310.2.0&browserGpcFlag=0&isIABGlobal=false; _C_ETH=1; _EDGE_S=SID=0CAF1BFEDE6962B81B190F57DFB8632A

Response

HTTP/2.0 200

content-type: application/javascript
content-md5: lAfvoXufoJKI/4M+6xEcxw==
last-modified: Tue, 25 Jun 2024 05:49:14 GMT
etag: 0x8DC94DA8B51FEF4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 296bbcbd-101e-002a-3bc6-c6f598000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
content-encoding: gzip
date: Tue, 25 Jun 2024 16:26:33 GMT
content-length: 105160
akamai-request-bc: [a=2.21.96.61,b=43377694,c=g,n=SE_AB_STOCKHOLM,o=20940]
server-timing: clientrtt; dur=63, clienttt; dur=0, origin; dur=0, cdntime; dur=0, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
akamai-server-ip: 2.21.96.61
akamai-request-id: 295e41e
cache-control: public, max-age=1209600
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
timing-allow-origin: *
akamai-grn: 0.3d601502.1719332793.295e41e
vary: Origin
GET

https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/scripttemplates/202310.2.0/otTCF.js

MicrosoftEdgeCP.exe

Remote address:

2.21.96.65:443

Request

GET /staticsb/statics/latest/oneTrust/1.9/scripttemplates/202310.2.0/otTCF.js HTTP/2.0
host: assets.msn.com
accept: application/javascript, */*;q=0.8
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: USRLOC=; MUID=24D693657E356D7E2D2087327F996CD6; _EDGE_V=1; OptanonConsent=isGpcEnabled=0&datestamp=Thu+Apr+04+2024+13%3A34%3A00+GMT%2B0000+(Coordinated+Universal+Time)&version=202310.2.0&browserGpcFlag=0&isIABGlobal=false; _C_ETH=1; _EDGE_S=SID=0CAF1BFEDE6962B81B190F57DFB8632A

Response

HTTP/2.0 200

content-type: application/javascript
content-md5: zMe9/U/sQ7tOLuJUcFr2+Q==
last-modified: Tue, 25 Jun 2024 05:49:10 GMT
etag: 0x8DC94DA89484B0D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bf6545d0-401e-00b3-37c6-c661fc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
content-encoding: gzip
date: Tue, 25 Jun 2024 16:26:33 GMT
content-length: 11711
akamai-request-bc: [a=2.21.96.61,b=43377940,c=g,n=SE_AB_STOCKHOLM,o=20940]
server-timing: clientrtt; dur=63, clienttt; dur=0, origin; dur=0, cdntime; dur=0, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
akamai-server-ip: 2.21.96.61
akamai-request-id: 295e514
cache-control: public, max-age=1209600
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
timing-allow-origin: *
akamai-grn: 0.3d601502.1719332793.295e514
vary: Origin
GET

https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/consent/55a804ab-e5c6-4b97-9319-86263d365d28/e51556d4-5848-4a4b-a5e2-bc98431e1bf7/en-gb.json

MicrosoftEdgeCP.exe

Remote address:

2.21.96.65:443

Request

GET /staticsb/statics/latest/oneTrust/1.9/consent/55a804ab-e5c6-4b97-9319-86263d365d28/e51556d4-5848-4a4b-a5e2-bc98431e1bf7/en-gb.json HTTP/2.0
host: assets.msn.com
accept: */*
origin: https://www.msn.com
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

content-type: application/json
content-md5: Z3GVmx0mQbhR0PePNnG6TQ==
last-modified: Mon, 24 Jun 2024 23:16:18 GMT
etag: 0x8DC94A3A72FF22E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d00e2148-d01e-00b2-519b-c64afe000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
content-encoding: gzip
content-length: 20340
date: Tue, 25 Jun 2024 16:26:33 GMT
akamai-request-bc: [a=2.21.96.61,b=43377952,c=g,n=SE_AB_STOCKHOLM,o=20940]
server-timing: clientrtt; dur=63, clienttt; dur=0, origin; dur=0, cdntime; dur=0, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
akamai-server-ip: 2.21.96.61
akamai-request-id: 295e520
access-control-allow-credentials: true
access-control-allow-origin: https://www.msn.com
cache-control: public, max-age=1209600
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
timing-allow-origin: *
akamai-grn: 0.3d601502.1719332793.295e520
vary: Origin
GET

https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/consent/55a804ab-e5c6-4b97-9319-86263d365d28/iab2V2Data.json

MicrosoftEdgeCP.exe

Remote address:

2.21.96.65:443

Request

GET /staticsb/statics/latest/oneTrust/1.9/consent/55a804ab-e5c6-4b97-9319-86263d365d28/iab2V2Data.json HTTP/2.0
host: assets.msn.com
accept: */*
origin: https://www.msn.com
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

content-type: application/json
content-md5: iB7GIl1dfVgN/rIFCQoYvg==
last-modified: Mon, 24 Jun 2024 23:16:26 GMT
etag: 0x8DC94A3AC34DFCE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a022eeee-501e-00ba-7bc1-c612ef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
content-encoding: gzip
date: Tue, 25 Jun 2024 16:26:33 GMT
content-length: 67471
akamai-request-bc: [a=2.21.96.61,b=43377953,c=g,n=SE_AB_STOCKHOLM,o=20940]
server-timing: clientrtt; dur=63, clienttt; dur=0, origin; dur=0, cdntime; dur=0, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
akamai-server-ip: 2.21.96.61
akamai-request-id: 295e521
access-control-allow-credentials: true
access-control-allow-origin: https://www.msn.com
cache-control: public, max-age=1209600
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
timing-allow-origin: *
akamai-grn: 0.3d601502.1719332793.295e521
vary: Origin
POST

https://browser.events.data.msn.com/OneCollector/1.0?cors=true&content-type=application%2Fx-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-2.2.2&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1719332792000&w=0&anoncknm=app_anon

MicrosoftEdgeCP.exe

Remote address:

20.52.64.200:443

Request

POST /OneCollector/1.0?cors=true&content-type=application%2Fx-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-2.2.2&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1719332792000&w=0&anoncknm=app_anon HTTP/2.0
host: browser.events.data.msn.com
origin: https://www.msn.com
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/plain;charset=UTF-8
accept-language: en-US
accept: */*
accept-encoding: gzip, deflate, br
content-length: 4055
cache-control: no-cache
cookie: USRLOC=; MUID=24D693657E356D7E2D2087327F996CD6; _EDGE_V=1; OptanonConsent=isGpcEnabled=0&datestamp=Thu+Apr+04+2024+13%3A34%3A00+GMT%2B0000+(Coordinated+Universal+Time)&version=202310.2.0&browserGpcFlag=0&isIABGlobal=false; _C_ETH=1; _EDGE_S=SID=0CAF1BFEDE6962B81B190F57DFB8632A

Response

HTTP/2.0 200

content-length: 153
content-type: application/json
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
set-cookie: MC1=GUID=445021c7df634375864f637b8c4459f3&HASH=4450&LV=202406&V=4&LU=1719332792672; Domain=.microsoft.com; Expires=Wed, 25 Jun 2025 16:26:32 GMT; Path=/;Secure; SameSite=None
set-cookie: MS0=406cee6ce41b48c9a4976b0646c52466; Domain=.microsoft.com; Expires=Tue, 25 Jun 2024 16:56:32 GMT; Path=/;Secure; SameSite=None
time-delta-millis: 672
access-control-allow-headers: P3P,Set-Cookie,time-delta-millis
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-origin: https://www.msn.com
access-control-expose-headers: time-delta-millis
date: Tue, 25 Jun 2024 16:26:32 GMT
POST

https://browser.events.data.msn.com/OneCollector/1.0?cors=true&content-type=application%2Fx-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-2.2.2&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1719332792000&w=0&anoncknm=app_anon

MicrosoftEdgeCP.exe

Remote address:

20.52.64.200:443

Request

POST /OneCollector/1.0?cors=true&content-type=application%2Fx-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-2.2.2&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1719332792000&w=0&anoncknm=app_anon HTTP/2.0
host: browser.events.data.msn.com
origin: https://www.msn.com
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/plain;charset=UTF-8
accept-language: en-US
accept: */*
accept-encoding: gzip, deflate, br
content-length: 4521
cache-control: no-cache
cookie: USRLOC=; MUID=24D693657E356D7E2D2087327F996CD6; _EDGE_V=1; OptanonConsent=isGpcEnabled=0&datestamp=Thu+Apr+04+2024+13%3A34%3A00+GMT%2B0000+(Coordinated+Universal+Time)&version=202310.2.0&browserGpcFlag=0&isIABGlobal=false; _C_ETH=1; _EDGE_S=SID=0CAF1BFEDE6962B81B190F57DFB8632A

Response

HTTP/2.0 200

content-length: 153
content-type: application/json
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
set-cookie: MC1=GUID=21f5c071a63e41058941ee74cb47ec77&HASH=21f5&LV=202406&V=4&LU=1719332793406; Domain=.microsoft.com; Expires=Wed, 25 Jun 2025 16:26:33 GMT; Path=/;Secure; SameSite=None
set-cookie: MS0=7be3b3a6aca644b09e354c770dc1c6a1; Domain=.microsoft.com; Expires=Tue, 25 Jun 2024 16:56:33 GMT; Path=/;Secure; SameSite=None
time-delta-millis: 1406
access-control-allow-headers: P3P,Set-Cookie,time-delta-millis
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-origin: https://www.msn.com
access-control-expose-headers: time-delta-millis
date: Tue, 25 Jun 2024 16:26:33 GMT
POST

https://browser.events.data.msn.com/OneCollector/1.0?cors=true&content-type=application%2Fx-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-2.2.2&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1719332792000&w=0&anoncknm=app_anon

MicrosoftEdgeCP.exe

Remote address:

20.52.64.200:443

Request

POST /OneCollector/1.0?cors=true&content-type=application%2Fx-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-2.2.2&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1719332792000&w=0&anoncknm=app_anon HTTP/2.0
host: browser.events.data.msn.com
origin: https://www.msn.com
referer: https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; ServiceUI 9) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
content-type: text/plain;charset=UTF-8
accept-language: en-US
accept: */*
accept-encoding: gzip, deflate, br
content-length: 3912
cache-control: no-cache
cookie: USRLOC=; MUID=24D693657E356D7E2D2087327F996CD6; _EDGE_V=1; OptanonConsent=isGpcEnabled=0&datestamp=Thu+Apr+04+2024+13%3A34%3A00+GMT%2B0000+(Coordinated+Universal+Time)&version=202310.2.0&browserGpcFlag=0&isIABGlobal=false; _EDGE_S=SID=0CAF1BFEDE6962B81B190F57DFB8632A

Response

HTTP/2.0 200

content-length: 153
content-type: application/json
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
set-cookie: MC1=GUID=7c0f810ea73d430faa0393403d29ecc7&HASH=7c0f&LV=202406&V=4&LU=1719332793547; Domain=.microsoft.com; Expires=Wed, 25 Jun 2025 16:26:33 GMT; Path=/;Secure; SameSite=None
set-cookie: MS0=b68cc8ae784146e39f440891591f9fed; Domain=.microsoft.com; Expires=Tue, 25 Jun 2024 16:56:33 GMT; Path=/;Secure; SameSite=None
time-delta-millis: 1547
access-control-allow-headers: P3P,Set-Cookie,time-delta-millis
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-origin: https://www.msn.com
access-control-expose-headers: time-delta-millis
date: Tue, 25 Jun 2024 16:26:33 GMT
GET

https://www.msn.com/favicon.ico

MicrosoftEdge.exe

Remote address:

204.79.197.203:443

Request

GET /favicon.ico HTTP/2.0
host: www.msn.com
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
dnt: 1

Response

HTTP/2.0 200

cache-control: public, max-age=604800
content-length: 781
content-type: image/x-icon
content-encoding: gzip
content-md5: hMyXfQ6xSBZkgbAdhBjjdQ==
last-modified: Mon, 24 Jun 2024 21:47:02 GMT
etag: 0x8DC94972E72C075
vary: Origin
x-ms-request-id: d06fa424-b01e-0030-1c89-c64baf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
akamai-request-bc: [a=2.16.128.148,b=7678817,c=g,n=GB_EN_LONDON,o=20940]
server-timing: clientrtt; dur=1, clienttt; dur=0, origin; dur=0, cdntime; dur=0, wpo;dur=0,1s;dur=0
akamai-cache-status: Hit from child
akamai-server-ip: 2.16.128.148
akamai-request-id: 752b61
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
timing-allow-origin: *
akamai-grn: 0.94801002.1719332793.752b61
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 5C14042BC48040808AF20E3A4DFB22FC Ref B: LON04EDGE1009 Ref C: 2024-06-25T16:26:33Z
date: Tue, 25 Jun 2024 16:26:32 GMT
DNS

65.96.21.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

65.96.21.2.in-addr.arpa

IN PTR

Response

65.96.21.2.in-addr.arpa

IN PTR

a2-21-96-65deploystaticakamaitechnologiescom
DNS

200.64.52.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

200.64.52.20.in-addr.arpa

IN PTR

Response
DNS

www.google.com

chrome.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

142.250.187.196
DNS

www.google.com

chrome.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A
GET

http://www.google.com/

MicrosoftEdgeCP.exe

Remote address:

142.250.187.196:80

Request

GET / HTTP/1.1
Accept: text/html, application/xhtml+xml, image/jxr, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept-Encoding: gzip, deflate
Host: www.google.com
Connection: Keep-Alive

Response

HTTP/1.1 302 Found

Location: https://www.google.com/?gws_rd=ssl
Cache-Control: private
Content-Type: text/html; charset=UTF-8
Content-Security-Policy-Report-Only: object-src 'none';base-uri 'self';script-src 'nonce-2Ya2rhxrtGagjAg95eVoFg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other-hp
Date: Tue, 25 Jun 2024 16:26:34 GMT
Server: gws
Content-Length: 231
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Set-Cookie: AEC=AQTF6Hwwzh0Nigc9pSnTBJcVjfg-VBGB1pmJj19SOR972qjYuXNKMotJsA; expires=Sun, 22-Dec-2024 16:26:34 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
GET

https://www.google.com/?gws_rd=ssl

MicrosoftEdgeCP.exe

Remote address:

142.250.187.196:443

Request

GET /?gws_rd=ssl HTTP/2.0
host: www.google.com
accept: text/html, application/xhtml+xml, image/jxr, */*
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: AEC=AQTF6Hwwzh0Nigc9pSnTBJcVjfg-VBGB1pmJj19SOR972qjYuXNKMotJsA

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:26:34 GMT
expires: -1
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
content-security-policy-report-only: object-src 'none';base-uri 'self';script-src 'nonce-aVl0S8avcfkgwDwxcwyqtw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other-hp
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-encoding: br
server: gws
content-length: 83824
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: SOCS=CAAaBgiAkeizBg; expires=Fri, 25-Jul-2025 16:26:34 GMT; path=/; domain=.google.com; Secure; SameSite=lax
set-cookie: __Secure-ENID=20.SE=D1qE-IEI2quLggtxAPUiE3O-LSwOpndY7ydn2NyHEMl2EFJqHZi9PfGEN_mJrKQu39dqgzmPHUieeqhEX_QWvxpHyIw2MBPGH-jaG7xidG-vbcmqbPj7BJbDCpVfy8pcj6JdklHAkX7aXLKfi2RJguNBEESRTFFW-2P0qtgWCto8Z44DjJbN; expires=Sat, 26-Jul-2025 08:44:52 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.google.com/images/branding/googlelogo/1x/googlelogo_white_background_color_272x92dp.png

MicrosoftEdgeCP.exe

Remote address:

142.250.187.196:443

Request

GET /images/branding/googlelogo/1x/googlelogo_white_background_color_272x92dp.png HTTP/2.0
host: www.google.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://www.google.com/?gws_rd=ssl
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: AEC=AQTF6Hwwzh0Nigc9pSnTBJcVjfg-VBGB1pmJj19SOR972qjYuXNKMotJsA; SOCS=CAAaBgiAkeizBg; __Secure-ENID=20.SE=D1qE-IEI2quLggtxAPUiE3O-LSwOpndY7ydn2NyHEMl2EFJqHZi9PfGEN_mJrKQu39dqgzmPHUieeqhEX_QWvxpHyIw2MBPGH-jaG7xidG-vbcmqbPj7BJbDCpVfy8pcj6JdklHAkX7aXLKfi2RJguNBEESRTFFW-2P0qtgWCto8Z44DjJbN

Response

HTTP/2.0 200

accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gws-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gws-team"
report-to: {"group":"gws-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws-team"}]}
content-length: 0
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Jun 2024 15:45:15 GMT
expires: Tue, 24 Jun 2025 15:45:15 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 21 Jun 2024 07:17:39 GMT
content-type: text/css; charset=UTF-8
vary: Origin
age: 88880
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.google.com/xjs/_/ss/k=xjs.hp.frVVdfaDVpE.L.W.O/am=AQAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQACAQAAAAAAAAAgAAAAAAAABAAxA/d=1/ed=1/rs=ACT90oHkefDJ0fqTaV3k4PFElY4khx_7zQ/m=sb_he,d

MicrosoftEdgeCP.exe

Remote address:

142.250.187.196:443

Request

GET /xjs/_/ss/k=xjs.hp.frVVdfaDVpE.L.W.O/am=AQAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQACAQAAAAAAAAAgAAAAAAAABAAxA/d=1/ed=1/rs=ACT90oHkefDJ0fqTaV3k4PFElY4khx_7zQ/m=sb_he,d HTTP/2.0
host: www.google.com
accept: text/css, */*
referer: https://www.google.com/?gws_rd=ssl
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: AEC=AQTF6Hwwzh0Nigc9pSnTBJcVjfg-VBGB1pmJj19SOR972qjYuXNKMotJsA; SOCS=CAAaBgiAkeizBg; __Secure-ENID=20.SE=D1qE-IEI2quLggtxAPUiE3O-LSwOpndY7ydn2NyHEMl2EFJqHZi9PfGEN_mJrKQu39dqgzmPHUieeqhEX_QWvxpHyIw2MBPGH-jaG7xidG-vbcmqbPj7BJbDCpVfy8pcj6JdklHAkX7aXLKfi2RJguNBEESRTFFW-2P0qtgWCto8Z44DjJbN

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/png
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 5482
date: Tue, 25 Jun 2024 16:26:35 GMT
expires: Tue, 25 Jun 2024 16:26:35 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.google.com/client_204?&atyp=i&biw=800&bih=555&ei=uu96Zq2yNYLBhbIP2eOd8As&opi=89978449

MicrosoftEdgeCP.exe

Remote address:

142.250.187.196:443

Request

GET /client_204?&atyp=i&biw=800&bih=555&ei=uu96Zq2yNYLBhbIP2eOd8As&opi=89978449 HTTP/2.0
host: www.google.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://www.google.com/?gws_rd=ssl
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: AEC=AQTF6Hwwzh0Nigc9pSnTBJcVjfg-VBGB1pmJj19SOR972qjYuXNKMotJsA; SOCS=CAAaBgiAkeizBg; __Secure-ENID=20.SE=D1qE-IEI2quLggtxAPUiE3O-LSwOpndY7ydn2NyHEMl2EFJqHZi9PfGEN_mJrKQu39dqgzmPHUieeqhEX_QWvxpHyIw2MBPGH-jaG7xidG-vbcmqbPj7BJbDCpVfy8pcj6JdklHAkX7aXLKfi2RJguNBEESRTFFW-2P0qtgWCto8Z44DjJbN

Response

HTTP/2.0 204

content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-CK8C5KsJCul02cxaKzMo5A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/xsrp
date: Tue, 25 Jun 2024 16:26:35 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.google.com/images/nav_logo229.png

MicrosoftEdgeCP.exe

Remote address:

142.250.187.196:443

Request

GET /images/nav_logo229.png HTTP/2.0
host: www.google.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://www.google.com/?gws_rd=ssl
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: AEC=AQTF6Hwwzh0Nigc9pSnTBJcVjfg-VBGB1pmJj19SOR972qjYuXNKMotJsA; SOCS=CAAaBgiAkeizBg; __Secure-ENID=20.SE=D1qE-IEI2quLggtxAPUiE3O-LSwOpndY7ydn2NyHEMl2EFJqHZi9PfGEN_mJrKQu39dqgzmPHUieeqhEX_QWvxpHyIw2MBPGH-jaG7xidG-vbcmqbPj7BJbDCpVfy8pcj6JdklHAkX7aXLKfi2RJguNBEESRTFFW-2P0qtgWCto8Z44DjJbN

Response

HTTP/2.0 200

accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gws-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gws-team"
report-to: {"group":"gws-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws-team"}]}
content-length: 116992
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Jun 2024 22:18:47 GMT
expires: Tue, 24 Jun 2025 22:18:47 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Sat, 22 Jun 2024 21:49:26 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 65268
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.google.com/xjs/_/js/k=xjs.hp.en.Jd5h40X499A.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAIAAcAAAAAAAAAAAAAAB4AAAAAAAAAAAAAAAAAAAOxGcEAAKwCAAALw/d=1/ed=1/rs=ACT90oHBxkiWHuDsbZqroKH8vuU-3PA9Sg/m=sb_he,d

MicrosoftEdgeCP.exe

Remote address:

142.250.187.196:443

Request

GET /xjs/_/js/k=xjs.hp.en.Jd5h40X499A.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAIAAcAAAAAAAAAAAAAAB4AAAAAAAAAAAAAAAAAAAOxGcEAAKwCAAALw/d=1/ed=1/rs=ACT90oHBxkiWHuDsbZqroKH8vuU-3PA9Sg/m=sb_he,d HTTP/2.0
host: www.google.com
accept: application/javascript, */*;q=0.8
referer: https://www.google.com/?gws_rd=ssl
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: AEC=AQTF6Hwwzh0Nigc9pSnTBJcVjfg-VBGB1pmJj19SOR972qjYuXNKMotJsA; SOCS=CAAaBgiAkeizBg; __Secure-ENID=20.SE=D1qE-IEI2quLggtxAPUiE3O-LSwOpndY7ydn2NyHEMl2EFJqHZi9PfGEN_mJrKQu39dqgzmPHUieeqhEX_QWvxpHyIw2MBPGH-jaG7xidG-vbcmqbPj7BJbDCpVfy8pcj6JdklHAkX7aXLKfi2RJguNBEESRTFFW-2P0qtgWCto8Z44DjJbN

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/png
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 12263
date: Tue, 25 Jun 2024 16:26:35 GMT
expires: Tue, 25 Jun 2024 16:26:35 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.google.com/gen_204?atyp=i&ct=psnt&cad=&nt=navigate&ei=uu96Zq2yNYLBhbIP2eOd8As&zx=1719332795787&opi=89978449

MicrosoftEdgeCP.exe

Remote address:

142.250.187.196:443

Request

GET /gen_204?atyp=i&ct=psnt&cad=&nt=navigate&ei=uu96Zq2yNYLBhbIP2eOd8As&zx=1719332795787&opi=89978449 HTTP/2.0
host: www.google.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://www.google.com/?gws_rd=ssl
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: AEC=AQTF6Hwwzh0Nigc9pSnTBJcVjfg-VBGB1pmJj19SOR972qjYuXNKMotJsA; SOCS=CAAaBgiAkeizBg; __Secure-ENID=20.SE=D1qE-IEI2quLggtxAPUiE3O-LSwOpndY7ydn2NyHEMl2EFJqHZi9PfGEN_mJrKQu39dqgzmPHUieeqhEX_QWvxpHyIw2MBPGH-jaG7xidG-vbcmqbPj7BJbDCpVfy8pcj6JdklHAkX7aXLKfi2RJguNBEESRTFFW-2P0qtgWCto8Z44DjJbN

Response

HTTP/2.0 204

content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-Yv4F_wq9lCf101gTSHXXTg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
date: Tue, 25 Jun 2024 16:26:36 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
DNS

c.pki.goog

MicrosoftEdge.exe

Remote address:

8.8.8.8:53

Request

c.pki.goog

IN A

Response

c.pki.goog

IN CNAME

pki-goog.l.google.com

pki-goog.l.google.com

IN A

142.250.200.3
DNS

r.casalemedia.com

MicrosoftEdge.exe

Remote address:

8.8.8.8:53

Request

r.casalemedia.com

IN A

Response

r.casalemedia.com

IN A

104.18.36.155

r.casalemedia.com

IN A

172.64.151.101
GET

http://c.pki.goog/r/r1.crl

MicrosoftEdgeCP.exe

Remote address:

142.250.200.3:80

Request

GET /r/r1.crl HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: c.pki.goog

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/cacerts
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="cacerts"
Report-To: {"group":"cacerts","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/cacerts"}]}
Content-Length: 854
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 25 Jun 2024 15:51:23 GMT
Expires: Tue, 25 Jun 2024 16:41:23 GMT
Cache-Control: public, max-age=3000
Last-Modified: Wed, 01 Nov 2023 07:48:00 GMT
Content-Type: application/pkix-crl
Vary: Accept-Encoding
Age: 2111
DNS

o.pki.goog

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

o.pki.goog

IN A

Response

o.pki.goog

IN CNAME

pki-goog.l.google.com

pki-goog.l.google.com

IN A

142.250.200.3
GET

http://o.pki.goog/wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEEl8TcEFiE%2BWEmblhZ5UF0Y%3D

MicrosoftEdgeCP.exe

Remote address:

142.250.200.3:80

Request

GET /wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEEl8TcEFiE%2BWEmblhZ5UF0Y%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: o.pki.goog

Response

HTTP/1.1 200 OK

Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Date: Tue, 25 Jun 2024 16:06:22 GMT
Cache-Control: public, max-age=14400
Content-Type: application/ocsp-response
Age: 1212
GET

http://o.pki.goog/wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEHoluFg8c2p6CT569vmSvZE%3D

MicrosoftEdgeCP.exe

Remote address:

142.250.200.3:80

Request

GET /wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEHoluFg8c2p6CT569vmSvZE%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: o.pki.goog

Response

HTTP/1.1 200 OK

Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Date: Tue, 25 Jun 2024 16:25:52 GMT
Cache-Control: public, max-age=14400
Content-Type: application/ocsp-response
Age: 43
GET

http://o.pki.goog/wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEGoPtA5fYWOVCgzD4is3Bqg%3D

MicrosoftEdgeCP.exe

Remote address:

142.250.200.3:80

Request

GET /wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEGoPtA5fYWOVCgzD4is3Bqg%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: o.pki.goog

Response

HTTP/1.1 200 OK

Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Date: Tue, 25 Jun 2024 15:58:31 GMT
Cache-Control: public, max-age=14400
Content-Type: application/ocsp-response
Age: 1684
GET

http://o.pki.goog/wr2/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEQDnTJ76UXaUrBBKliWHzurj

MicrosoftEdgeCP.exe

Remote address:

142.250.200.3:80

Request

GET /wr2/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEQDnTJ76UXaUrBBKliWHzurj HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: o.pki.goog

Response

HTTP/1.1 200 OK

Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Date: Tue, 25 Jun 2024 15:53:04 GMT
Cache-Control: public, max-age=14400
Content-Type: application/ocsp-response
Age: 2012
DNS

ssl.gstatic.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ssl.gstatic.com

IN A

Response

ssl.gstatic.com

IN A

172.217.16.227
GET

https://www.google.com/favicon.ico

MicrosoftEdge.exe

Remote address:

142.250.187.196:443

Request

GET /favicon.ico HTTP/2.0
host: www.google.com
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
dnt: 1

Response

HTTP/2.0 200

accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1494
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Jun 2024 21:26:38 GMT
expires: Tue, 02 Jul 2024 21:26:38 GMT
cache-control: public, max-age=691200
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
content-type: image/x-icon
vary: Accept-Encoding
age: 68397
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://ssl.gstatic.com/gb/images/v1_ff29c1d8.png

MicrosoftEdgeCP.exe

Remote address:

172.217.16.227:443

Request

GET /gb/images/v1_ff29c1d8.png HTTP/2.0
host: ssl.gstatic.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://www.google.com/?gws_rd=ssl
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 56690
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Jun 2024 21:28:55 GMT
expires: Tue, 24 Jun 2025 21:28:55 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 30 Jun 2023 18:58:00 GMT
content-type: image/png
vary: Origin
age: 68260
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

http://ocsp.pki.goog/gsr1/MFEwTzBNMEswSTAJBgUrDgMCGgUABBS3V7W2nAf4FiMTjpDJKg6%2BMgGqMQQUYHtmGkUNl8qJUC99BM00qP%2F8%2FUsCEHe9DWzbNvka6iEPxPBY0w0%3D

MicrosoftEdge.exe

Remote address:

142.250.200.3:80

Request

GET /gsr1/MFEwTzBNMEswSTAJBgUrDgMCGgUABBS3V7W2nAf4FiMTjpDJKg6%2BMgGqMQQUYHtmGkUNl8qJUC99BM00qP%2F8%2FUsCEHe9DWzbNvka6iEPxPBY0w0%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: ocsp.pki.goog

Response

HTTP/1.1 200 OK

Server: ocsp_responder
Content-Length: 1446
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Date: Tue, 25 Jun 2024 16:16:35 GMT
Cache-Control: public, max-age=14400
Content-Type: application/ocsp-response
Age: 600
GET

http://c.pki.goog/r/r1.crl

MicrosoftEdge.exe

Remote address:

142.250.200.3:80

Request

GET /r/r1.crl HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: c.pki.goog

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/cacerts
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="cacerts"
Report-To: {"group":"cacerts","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/cacerts"}]}
Content-Length: 854
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 25 Jun 2024 15:51:23 GMT
Expires: Tue, 25 Jun 2024 16:41:23 GMT
Cache-Control: public, max-age=3000
Last-Modified: Wed, 01 Nov 2023 07:48:00 GMT
Content-Type: application/pkix-crl
Vary: Accept-Encoding
Age: 2112
DNS

clients1.google.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

clients1.google.com

IN A

Response

clients1.google.com

IN CNAME

clients.l.google.com

clients.l.google.com

IN A

216.58.213.14
GET

https://clients1.google.com/generate_204

MicrosoftEdgeCP.exe

Remote address:

216.58.213.14:443

Request

GET /generate_204 HTTP/2.0
host: clients1.google.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://www.google.com/?gws_rd=ssl
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: AEC=AQTF6Hwwzh0Nigc9pSnTBJcVjfg-VBGB1pmJj19SOR972qjYuXNKMotJsA; SOCS=CAAaBgiAkeizBg; __Secure-ENID=20.SE=D1qE-IEI2quLggtxAPUiE3O-LSwOpndY7ydn2NyHEMl2EFJqHZi9PfGEN_mJrKQu39dqgzmPHUieeqhEX_QWvxpHyIw2MBPGH-jaG7xidG-vbcmqbPj7BJbDCpVfy8pcj6JdklHAkX7aXLKfi2RJguNBEESRTFFW-2P0qtgWCto8Z44DjJbN

Response

HTTP/2.0 204

content-length: 0
cross-origin-resource-policy: cross-origin
date: Tue, 25 Jun 2024 16:26:36 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

http://o.pki.goog/wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEEl8TcEFiE%2BWEmblhZ5UF0Y%3D

MicrosoftEdge.exe

Remote address:

142.250.200.3:80

Request

GET /wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEEl8TcEFiE%2BWEmblhZ5UF0Y%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: o.pki.goog

Response

HTTP/1.1 200 OK

Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Date: Tue, 25 Jun 2024 16:06:22 GMT
Cache-Control: public, max-age=14400
Content-Type: application/ocsp-response
Age: 1213
DNS

227.16.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.16.217.172.in-addr.arpa

IN PTR

Response

227.16.217.172.in-addr.arpa

IN PTR

mad08s04-in-f31e100net

227.16.217.172.in-addr.arpa

IN PTR

lhr48s28-in-f3�H
DNS

227.16.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.16.217.172.in-addr.arpa

IN PTR
DNS

14.213.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.213.58.216.in-addr.arpa

IN PTR

Response

14.213.58.216.in-addr.arpa

IN PTR

lhr25s25-in-f141e100net

14.213.58.216.in-addr.arpa

IN PTR

ber01s14-in-f14�H
DNS

14.213.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.213.58.216.in-addr.arpa

IN PTR
DNS

14.213.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.213.58.216.in-addr.arpa

IN PTR
DNS

apis.google.com

chrome.exe

Remote address:

8.8.8.8:53

Request

apis.google.com

IN A

Response

apis.google.com

IN CNAME

plus.l.google.com

plus.l.google.com

IN A

142.250.187.206
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.iZZZ0XsR8bM.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAQ/rs=AHpOoo_0-97nH_2IxP0suYF105-PdJv4zg/cb=gapi.loaded_0

MicrosoftEdgeCP.exe

Remote address:

142.250.187.206:443

Request

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.iZZZ0XsR8bM.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAQ/rs=AHpOoo_0-97nH_2IxP0suYF105-PdJv4zg/cb=gapi.loaded_0 HTTP/2.0
host: apis.google.com
accept: application/javascript, */*;q=0.8
referer: https://www.google.com/?gws_rd=ssl
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: AEC=AQTF6Hwwzh0Nigc9pSnTBJcVjfg-VBGB1pmJj19SOR972qjYuXNKMotJsA; SOCS=CAAaBgiAkeizBg; __Secure-ENID=20.SE=D1qE-IEI2quLggtxAPUiE3O-LSwOpndY7ydn2NyHEMl2EFJqHZi9PfGEN_mJrKQu39dqgzmPHUieeqhEX_QWvxpHyIw2MBPGH-jaG7xidG-vbcmqbPj7BJbDCpVfy8pcj6JdklHAkX7aXLKfi2RJguNBEESRTFFW-2P0qtgWCto8Z44DjJbN

Response

HTTP/2.0 200

accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 42359
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 25 Jun 2024 07:53:36 GMT
expires: Wed, 25 Jun 2025 07:53:36 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 06 Jun 2024 15:13:25 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 30780
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
DNS

206.187.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

206.187.250.142.in-addr.arpa

IN PTR

Response

206.187.250.142.in-addr.arpa

IN PTR

lhr25s33-in-f141e100net
DNS

200.197.79.204.in-addr.arpa

Remote address:

8.8.8.8:53

Request

200.197.79.204.in-addr.arpa

IN PTR

Response

200.197.79.204.in-addr.arpa

IN PTR

a-0001a-msedgenet
DNS

www.microsoft.com

MicrosoftEdge.exe

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net

e13678.dscb.akamaiedge.net

IN A

23.34.233.128
DNS

www.microsoft.com

MicrosoftEdge.exe

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A
DNS

76.234.34.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

76.234.34.23.in-addr.arpa

IN PTR

Response

76.234.34.23.in-addr.arpa

IN PTR

a23-34-234-76deploystaticakamaitechnologiescom
GET

https://www.bing.com/cortanaassist/rules?cc=US&version=6

MicrosoftEdge.exe

Remote address:

23.62.61.194:443

Request

GET /cortanaassist/rules?cc=US&version=6 HTTP/2.0
host: www.bing.com
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
dnt: 1

Response

HTTP/2.0 404

cache-control: private
content-length: 56066
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 667aefc35f2f445eb081c980ecedea7b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-error-page: 404-custom
x-ua-compatible: IE=edge
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A9393924F8B047BE8DE99C0C001CE1D8 Ref B: DUS30EDGE0706 Ref C: 2024-06-25T16:26:43Z
date: Tue, 25 Jun 2024 16:26:43 GMT
set-cookie: MUID=05F43A4EE3CE64C51EEA2EE7E2646538; domain=.bing.com; expires=Sun, 20-Jul-2025 16:26:43 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=05F43A4EE3CE64C51EEA2EE7E2646538; expires=Sun, 20-Jul-2025 16:26:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1EFE12F0FF0B66051B630659FEA1679B&mkt=en-us; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Sun, 20-Jul-2025 16:26:43 GMT; path=/; HttpOnly
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Thu, 25-Jun-2026 16:26:43 GMT; path=/
set-cookie: SRCHUID=V=2&GUID=2E51E97B1C5F430899A0781825E6DDA0&dmnchg=1; domain=.bing.com; expires=Thu, 25-Jun-2026 16:26:43 GMT; path=/
set-cookie: SRCHUSR=DOB=20240625; domain=.bing.com; expires=Thu, 25-Jun-2026 16:26:43 GMT; path=/
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Thu, 25-Jun-2026 16:26:43 GMT; path=/
set-cookie: _SS=SID=1EFE12F0FF0B66051B630659FEA1679B; domain=.bing.com; path=/
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.be3d3e17.1719332803.109f52aa
DNS

128.233.34.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

128.233.34.23.in-addr.arpa

IN PTR

Response

128.233.34.23.in-addr.arpa

IN PTR

a23-34-233-128deploystaticakamaitechnologiescom
DNS

14.227.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.227.111.52.in-addr.arpa

IN PTR

Response
DNS

14.227.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.227.111.52.in-addr.arpa

IN PTR
DNS

17.173.189.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

17.173.189.20.in-addr.arpa

IN PTR

Response
DNS

www.google.com

chrome.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

142.250.187.196
GET

https://www.google.com/async/ddljson?async=ntp:2

chrome.exe

Remote address:

142.250.187.196:443

Request

GET /async/ddljson?async=ntp:2 HTTP/2.0
host: www.google.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://www.google.com/async/newtab_ogb?hl=en-US&async=fixed:0

chrome.exe

Remote address:

142.250.187.196:443

Request

GET /async/newtab_ogb?hl=en-US&async=fixed:0 HTTP/2.0
host: www.google.com
x-client-data: CJmLywE=
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://www.google.com/async/newtab_promos

chrome.exe

Remote address:

142.250.187.196:443

Request

GET /async/newtab_promos HTTP/2.0
host: www.google.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

apis.google.com

chrome.exe

Remote address:

8.8.8.8:53

Request

apis.google.com

IN A

Response

apis.google.com

IN CNAME

plus.l.google.com

plus.l.google.com

IN A

142.250.187.206
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.iZZZ0XsR8bM.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAQ/rs=AHpOoo_0-97nH_2IxP0suYF105-PdJv4zg/cb=gapi.loaded_0

chrome.exe

Remote address:

142.250.187.206:443

Request

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.iZZZ0XsR8bM.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAQ/rs=AHpOoo_0-97nH_2IxP0suYF105-PdJv4zg/cb=gapi.loaded_0 HTTP/2.0
host: apis.google.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

195.187.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

195.187.250.142.in-addr.arpa

IN PTR

Response

195.187.250.142.in-addr.arpa

IN PTR

lhr25s33-in-f31e100net
DNS

play.google.com

chrome.exe

Remote address:

8.8.8.8:53

Request

play.google.com

IN A

Response

play.google.com

IN A

142.250.200.46
POST

https://play.google.com/log?format=json&hasfast=true

chrome.exe

Remote address:

142.250.200.46:443

Request

POST /log?format=json&hasfast=true HTTP/2.0
host: play.google.com
content-length: 962
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: application/x-www-form-urlencoded;charset=UTF-8
accept: */*
origin: chrome-untrusted://new-tab-page
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

46.200.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

46.200.250.142.in-addr.arpa

IN PTR

Response

46.200.250.142.in-addr.arpa

IN PTR

lhr48s30-in-f141e100net
DNS

clients2.google.com

chrome.exe

Remote address:

8.8.8.8:53

Request

clients2.google.com

IN A

Response

clients2.google.com

IN CNAME

clients.l.google.com

clients.l.google.com

IN A

216.58.213.14
GET

https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=106.0.5249.119&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D1.0.0.6%26installsource%3Dnotfromwebstore%26installedby%3Dother%26uc%26ping%3Dr%253D82%2526e%253D1

chrome.exe

Remote address:

216.58.213.14:443

Request

GET /service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=106.0.5249.119&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D1.0.0.6%26installsource%3Dnotfromwebstore%26installedby%3Dother%26uc%26ping%3Dr%253D82%2526e%253D1 HTTP/2.0
host: clients2.google.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __Secure-ENID=20.SE=bhKSBBLCF-g8SEBngxtgiIl3-IGnuQbkFYFikSmuLl2i0SqO0ESjHtxGkwIxR2qMP7BKkqBJSYFD9Po-ApI-DfQ2PcWYZLb6ut4CNU1MLSJBGrwOtG6Y5Tf5h77HBwAOKIu2iCvZLcP3wzzVjORL9Vcjhr_QH0fuyDl7oE10f3A
DNS

ogs.google.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ogs.google.com

IN A

Response

ogs.google.com

IN CNAME

www3.l.google.com

www3.l.google.com

IN A

172.217.169.14
GET

https://ogs.google.com/widget/app/so?eom=1&awwd=1&gm3=1&origin=chrome-untrusted%3A%2F%2Fnew-tab-page&origin=chrome%3A%2F%2Fnew-tab-page&cn=app&pid=1&spid=243&hl=en

chrome.exe

Remote address:

172.217.169.14:443

Request

GET /widget/app/so?eom=1&awwd=1&gm3=1&origin=chrome-untrusted%3A%2F%2Fnew-tab-page&origin=chrome%3A%2F%2Fnew-tab-page&cn=app&pid=1&spid=243&hl=en HTTP/2.0
host: ogs.google.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __Secure-ENID=20.SE=bhKSBBLCF-g8SEBngxtgiIl3-IGnuQbkFYFikSmuLl2i0SqO0ESjHtxGkwIxR2qMP7BKkqBJSYFD9Po-ApI-DfQ2PcWYZLb6ut4CNU1MLSJBGrwOtG6Y5Tf5h77HBwAOKIu2iCvZLcP3wzzVjORL9Vcjhr_QH0fuyDl7oE10f3A
GET

https://accounts.youtube.com/accounts/CheckConnection?pmpo=https%3A%2F%2Faccounts.google.com&v=780510026&timestamp=1719333225238

chrome.exe

Remote address:

172.217.169.14:443

Request

GET /accounts/CheckConnection?pmpo=https%3A%2F%2Faccounts.google.com&v=780510026&timestamp=1719333225238 HTTP/2.0
host: accounts.youtube.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "106.0.5249.119"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "4.0.0"
sec-ch-ua-model: ""
sec-ch-ua-bitness: "64"
sec-ch-ua-wow64: ?0
sec-ch-ua-full-version-list: "Chromium";v="106.0.5249.119", "Google Chrome";v="106.0.5249.119", "Not;A=Brand";v="99.0.0.0"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
x-client-data: CJmLywE=
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://accounts.google.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

ssl.gstatic.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ssl.gstatic.com

IN A

Response

ssl.gstatic.com

IN A

172.217.16.227
GET

https://ssl.gstatic.com/gb/images/sprites/p_2x_eb7895ba582f.png

chrome.exe

Remote address:

172.217.16.227:443

Request

GET /gb/images/sprites/p_2x_eb7895ba582f.png HTTP/2.0
host: ssl.gstatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ogs.google.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

67.169.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.169.217.172.in-addr.arpa

IN PTR

Response

67.169.217.172.in-addr.arpa

IN PTR

lhr48s09-in-f31e100net
DNS

14.169.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.169.217.172.in-addr.arpa

IN PTR

Response

14.169.217.172.in-addr.arpa

IN PTR

lhr25s26-in-f141e100net
DNS

accounts.google.com

chrome.exe

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN A

Response

accounts.google.com

IN A

209.85.203.84
GET

https://accounts.google.com/ServiceLogin?hl=en&continue=https://www.google.com/search?q%3Dunmineable%26oq%3Dunmineable%26aqs%3Dchrome..69i57.5894j0j7%26sourceid%3Dchrome%26ie%3DUTF-8&gae=cb-none

chrome.exe

Remote address:

209.85.203.84:443

Request

GET /ServiceLogin?hl=en&continue=https://www.google.com/search?q%3Dunmineable%26oq%3Dunmineable%26aqs%3Dchrome..69i57.5894j0j7%26sourceid%3Dchrome%26ie%3DUTF-8&gae=cb-none HTTP/2.0
host: accounts.google.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-ch-ua-arch: "x86"
sec-ch-ua-platform-version: "4.0.0"
sec-ch-ua-model: ""
sec-ch-ua-bitness: "64"
sec-ch-ua-wow64: ?0
sec-ch-ua-full-version-list: "Chromium";v="106.0.5249.119", "Google Chrome";v="106.0.5249.119", "Not;A=Brand";v="99.0.0.0"
x-client-data: CJmLywE=
sec-fetch-site: same-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.google.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: AEC=AQTF6HysrSYTbI3Icaj3vIZl49e-qxXb6PQIBDhPhzQdQg7Cznmpd-V8IPs
cookie: __Secure-ENID=20.SE=cHeRPElIYfhQxEfDa7r1yfQIixpKeQP4ugzR9c8NmvZWcXg5lfq_P5_qZAqijFYZ9dHdPgjIkbVN0xsB8rj-Wqg3oV9uKP-QEKUS25q-XQtcXilYdi8qSvPqhXRgyK1Ws8aytB7uVaIAh0tpffPIYWtVtVmVQ690i-sLyoXn7Hidb48SGRdyXWxM
DNS

content-autofill.googleapis.com

chrome.exe

Remote address:

8.8.8.8:53

Request

content-autofill.googleapis.com

IN A

Response

content-autofill.googleapis.com

IN A

216.58.212.234

content-autofill.googleapis.com

IN A

216.58.201.106

content-autofill.googleapis.com

IN A

142.250.187.234

content-autofill.googleapis.com

IN A

172.217.16.234

content-autofill.googleapis.com

IN A

142.250.179.234

content-autofill.googleapis.com

IN A

216.58.204.74

content-autofill.googleapis.com

IN A

142.250.180.10

content-autofill.googleapis.com

IN A

216.58.212.202

content-autofill.googleapis.com

IN A

142.250.200.10

content-autofill.googleapis.com

IN A

172.217.169.74

content-autofill.googleapis.com

IN A

142.250.200.42

content-autofill.googleapis.com

IN A

142.250.187.202

content-autofill.googleapis.com

IN A

142.250.178.10
GET

https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA2LjAuNTI0OS4xMTkSHgmA6QC9dWevzxIFDRkBE_oSBQ3oIX6GEgUN05ioBw==?alt=proto

chrome.exe

Remote address:

216.58.212.234:443

Request

GET /v1/pages/ChVDaHJvbWUvMTA2LjAuNTI0OS4xMTkSHgmA6QC9dWevzxIFDRkBE_oSBQ3oIX6GEgUN05ioBw==?alt=proto HTTP/2.0
host: content-autofill.googleapis.com
x-goog-encode-response-if-executable: base64
x-goog-api-key: AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
x-client-data: CJmLywE=
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

accounts.youtube.com

chrome.exe

Remote address:

8.8.8.8:53

Request

accounts.youtube.com

IN A

Response

accounts.youtube.com

IN CNAME

www3.l.google.com

www3.l.google.com

IN A

172.217.169.14
DNS

84.203.85.209.in-addr.arpa

Remote address:

8.8.8.8:53

Request

84.203.85.209.in-addr.arpa

IN PTR

Response

84.203.85.209.in-addr.arpa

IN PTR

dh-in-f841e100net
DNS

84.203.85.209.in-addr.arpa

Remote address:

8.8.8.8:53

Request

84.203.85.209.in-addr.arpa

IN PTR

Response

84.203.85.209.in-addr.arpa

IN PTR

dh-in-f841e100net
DNS

234.212.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

234.212.58.216.in-addr.arpa

IN PTR

Response

234.212.58.216.in-addr.arpa

IN PTR

lhr25s28-in-f101e100net

234.212.58.216.in-addr.arpa

IN PTR

ams16s22-in-f10�I

234.212.58.216.in-addr.arpa

IN PTR

ams16s22-in-f234�I
DNS

234.212.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

234.212.58.216.in-addr.arpa

IN PTR

Response

234.212.58.216.in-addr.arpa

IN PTR

lhr25s28-in-f101e100net

234.212.58.216.in-addr.arpa

IN PTR

ams16s22-in-f10�I

234.212.58.216.in-addr.arpa

IN PTR

ams16s22-in-f234�I
DNS

mm-watch.com

chrome.exe

Remote address:

8.8.8.8:53

Request

mm-watch.com

IN A

Response

mm-watch.com

IN A

104.21.58.4

mm-watch.com

IN A

172.67.196.77
DNS

mm-watch.com

chrome.exe

Remote address:

8.8.8.8:53

Request

mm-watch.com

IN A

Response

mm-watch.com

IN A

172.67.196.77

mm-watch.com

IN A

104.21.58.4
GET

https://mm-watch.com/

chrome.exe

Remote address:

104.21.58.4:443

Request

GET / HTTP/2.0
host: mm-watch.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:34:25 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sclYtClzKNiXuNdkjDsnrf7BCwhin7HOHIQ8t6GBK2IzxQuHb2mV4KSa%2BKw0QY7TIxBZBzmb10Mf17eUR6TVS8K4MGcdiBicz4fCRSPDdn4i%2Fc19R7u94uDLAXNDSx0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 89965d6b4cd6940d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
DNS

apps.identrust.com

chrome.exe

Remote address:

8.8.8.8:53

Request

apps.identrust.com

IN A

Response

apps.identrust.com

IN CNAME

identrust.edgesuite.net

identrust.edgesuite.net

IN CNAME

a1952.dscq.akamai.net

a1952.dscq.akamai.net

IN A

23.63.101.153

a1952.dscq.akamai.net

IN A

23.63.101.171
GET

http://apps.identrust.com/roots/dstrootcax3.p7c

chrome.exe

Remote address:

23.63.101.153:80

Request

GET /roots/dstrootcax3.p7c HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: apps.identrust.com

Response

HTTP/1.1 200 OK

X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Referrer-Policy: same-origin
Last-Modified: Fri, 13 Oct 2023 16:28:31 GMT
ETag: "37d-6079b8c0929c0"
Accept-Ranges: bytes
Content-Length: 893
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Type: application/pkcs7-mime
Cache-Control: max-age=3600
Expires: Tue, 25 Jun 2024 17:34:25 GMT
Date: Tue, 25 Jun 2024 16:34:25 GMT
Connection: keep-alive
DNS

fonts.cdnfonts.com

chrome.exe

Remote address:

8.8.8.8:53

Request

fonts.cdnfonts.com

IN A

Response

fonts.cdnfonts.com

IN A

172.67.184.158

fonts.cdnfonts.com

IN A

104.21.72.124
DNS

cdnjs.cloudflare.com

MicrosoftEdgeCP.exe

Remote address:

8.8.8.8:53

Request

cdnjs.cloudflare.com

IN A

Response

cdnjs.cloudflare.com

IN A

104.17.24.14

cdnjs.cloudflare.com

IN A

104.17.25.14
DNS

challenges.cloudflare.com

chrome.exe

Remote address:

8.8.8.8:53

Request

challenges.cloudflare.com

IN A

Response

challenges.cloudflare.com

IN A

104.17.2.184

challenges.cloudflare.com

IN A

104.17.3.184
DNS

challenges.cloudflare.com

chrome.exe

Remote address:

8.8.8.8:53

Request

challenges.cloudflare.com

IN A

Response

challenges.cloudflare.com

IN A

104.17.3.184

challenges.cloudflare.com

IN A

104.17.2.184
GET

https://fonts.cdnfonts.com/css/glacial-indifference-2

chrome.exe

Remote address:

172.67.184.158:443

Request

GET /css/glacial-indifference-2 HTTP/2.0
host: fonts.cdnfonts.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:34:25 GMT
content-type: text/css;charset=UTF-8
cf-bgj: minify
cf-polished: origSize=465
vary: Accept-Encoding
cache-control: max-age=2678400
cf-cache-status: HIT
age: 19485667
last-modified: Mon, 13 Nov 2023 03:53:18 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jVHytwWH0twbRE%2BhbiIrh2EzTBPn7B0SHn0CJHgsTaDpuuWEo222eMKexxjBABbHOhrog22lWZRhq5leNey6ECir8VPQE4IvtMFOMI9zXf1fpBZub4dhx3FIjUx5wxXfsuewDmg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
access-control-allow-origin: *
server: cloudflare
cf-ray: 89965d6cfc4376a1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js

chrome.exe

Remote address:

104.17.24.14:443

Request

GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:34:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 13972
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61182885-3694"
last-modified: Sat, 14 Aug 2021 20:33:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1030655
expires: Sun, 15 Jun 2025 16:34:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yIBYB%2Bdna5ZmH3Y7OiHbAMiUkZg%2BlbuVBkmw1uh2DidiDaTUrnHwsFk0YBUEATEohPCQZMXM4%2FVC9GvR%2Fj7m73BmQXfGxZ4OjhDbtIZbmsde1con09qQmsdpmBzDgwxgqifM5Jg%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 89965d6cff8b385e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/turnstile/v0/api.js?render=explicit

chrome.exe

Remote address:

104.17.2.184:443

Request

GET /turnstile/v0/api.js?render=explicit HTTP/2.0
host: challenges.cloudflare.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:34:25 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, public
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/b/c7e29c8c8b6e/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 89965d6d3a9123ad-LHR
alt-svc: h3=":443"; ma=86400
DNS

analytics.mm-watch.com

chrome.exe

Remote address:

8.8.8.8:53

Request

analytics.mm-watch.com

IN A

Response

analytics.mm-watch.com

IN A

104.21.58.4

analytics.mm-watch.com

IN A

172.67.196.77
DNS

analytics.mm-watch.com

chrome.exe

Remote address:

8.8.8.8:53

Request

analytics.mm-watch.com

IN A

Response

analytics.mm-watch.com

IN A

172.67.196.77

analytics.mm-watch.com

IN A

104.21.58.4
GET

https://analytics.mm-watch.com/dragbetween?date=1719333264474

chrome.exe

Remote address:

104.21.58.4:443

Request

GET /dragbetween?date=1719333264474 HTTP/2.0
host: analytics.mm-watch.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:34:25 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
apigw-requestid: Z7qu0gtijoEEPeA=
x-cache: Miss from cloudfront
via: 1.1 2578e6e980a79ec5ab861167c666f8be.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P4
x-amz-cf-id: 7_nhfE8CXUZodtGC-bW_vG7LFj1AYtMBtpQ2Dd8Qf_6L4WYak4AKsQ==
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hceQdzfN%2FDeUTSIt2EBcJG9AEmiJ4LQXpvsPJQO8%2F1zXN2WzDfloDeEEKggjxf9QEH%2BHo%2FX4wlLjo80uSqfgEQ5OgYbjmQ3k74%2FahIQ49M1zmVpcMy%2Biz8fFupph%2ByMZD1fL559j0CO2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89965d6e797060f7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://api.mm-watch.com/home?timestamp=1719333264911

chrome.exe

Remote address:

104.21.58.4:443

Request

GET /home?timestamp=1719333264911 HTTP/2.0
host: api.mm-watch.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
origin: https://mm-watch.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:34:26 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
apigw-requestid: Z7qu3jv9DoEEMjw=
x-cache: Miss from cloudfront
via: 1.1 ecf858fc3d36c2eb5ad7a18817e38a24.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR62-C4
x-amz-cf-id: DqtDcnbakIWzvh6GK_0JE_HHLFNQZaco_Pf9ir2RqtpCNWhRZRQlYA==
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sy6cmuqdN1iJAoY6CObmQg5GRv4eNwnM3tI7rppZekizp56TaoPbVMbSLN%2FN2U%2Bv%2BBwjMNzARbrJ6cAd059GDBcQD8nDrej4463XhHAzAeoI7CeN3nKemkLqSArT9%2BFShPPk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89965d707c4b60f7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://mm-watch.com/manifest.json

chrome.exe

Remote address:

104.21.58.4:443

Request

GET /manifest.json HTTP/2.0
host: mm-watch.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: manifest
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:34:27 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"35cd2dc914d443b9e70490c8bf75b899"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qMH80pok1Qp5ltaaM2LWx635FUZ%2BpOENb%2B6W8v9wodYOiA%2FygLSPlrcvwp6FIusnRqCjlFkZ8B%2FiC4dBgqsBe%2B04EExUDYjTeedpOzuIOZG6K3RcbklUdNBIYpwfQWg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 89965d768b2a60f7-LHR
alt-svc: h3=":443"; ma=86400
DNS

4.58.21.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

4.58.21.104.in-addr.arpa

IN PTR

Response
DNS

153.101.63.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

153.101.63.23.in-addr.arpa

IN PTR

Response

153.101.63.23.in-addr.arpa

IN PTR

a23-63-101-153deploystaticakamaitechnologiescom
DNS

158.184.67.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

158.184.67.172.in-addr.arpa

IN PTR

Response
DNS

14.24.17.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.24.17.104.in-addr.arpa

IN PTR

Response
DNS

21.171.252.37.in-addr.arpa

Remote address:

8.8.8.8:53

Request

21.171.252.37.in-addr.arpa

IN PTR

Response

21.171.252.37.in-addr.arpa

IN PTR

1004bm-nginx-loadbalancermgmtfra1adnexusnet
DNS

184.2.17.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

184.2.17.104.in-addr.arpa

IN PTR

Response
DNS

clickiocmp.com

chrome.exe

Remote address:

8.8.8.8:53

Request

clickiocmp.com

IN A

Response

clickiocmp.com

IN A

46.8.152.2
DNS

player.ex.co

chrome.exe

Remote address:

8.8.8.8:53

Request

player.ex.co

IN A

Response

player.ex.co

IN CNAME

j.sni.global.fastly.net

j.sni.global.fastly.net

IN A

151.101.130.132

j.sni.global.fastly.net

IN A

151.101.194.132

j.sni.global.fastly.net

IN A

151.101.2.132

j.sni.global.fastly.net

IN A

151.101.66.132
GET

https://player.ex.co/player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84

chrome.exe

Remote address:

151.101.130.132:443

Request

GET /player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84 HTTP/2.0
host: player.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript; charset=utf-8
server: nginx
access-control-allow-origin: *
access-control-allow-headers: Accept, Authorization, Content-Type
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-max-age: 600
cache-control: no-cache
etag: W/"8dbbd-yRGyLHDlggx02NseEKR3bK9sHxU"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 4456
date: Tue, 25 Jun 2024 16:34:25 GMT
x-served-by: cache-iad-kcgs7200156-IAD, cache-lcy-eglc8600023-LCY
x-cache: HIT, HIT
x-cache-hits: 0, 0
x-timer: S1719333266.977885,VS0,VE1
vary: Accept-Encoding, x-pb-country, x-pb-connection, x-pb-embedid, x-pb-itemid, x-pb-videoid, x-pb-player, x-pb-bot-name, x-pb-is-bot, x-pb-country, x-pb-connection, x-pb-embedid, x-pb-itemid, x-pb-videoid, x-pb-player, x-pb-bot-name, x-pb-is-bot
content-length: 179065
GET

https://player.ex.co/player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84

chrome.exe

Remote address:

151.101.130.132:443

Request

GET /player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84 HTTP/2.0
host: player.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"}}
if-none-match: W/"8dbbd-yRGyLHDlggx02NseEKR3bK9sHxU"

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:35:14 GMT
via: 1.1 varnish
cache-control: no-cache
etag: W/"8dbbd-yRGyLHDlggx02NseEKR3bK9sHxU"
age: 4505
x-served-by: cache-lcy-eglc8600023-LCY
x-cache: HIT
x-cache-hits: 1
x-timer: S1719333314.283353,VS0,VE2
vary: Accept-Encoding, x-pb-country, x-pb-connection, x-pb-embedid, x-pb-itemid, x-pb-videoid, x-pb-player, x-pb-bot-name, x-pb-is-bot, x-pb-country, x-pb-connection, x-pb-embedid, x-pb-itemid, x-pb-videoid, x-pb-player, x-pb-bot-name, x-pb-is-bot
GET

https://player.ex.co/player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84

chrome.exe

Remote address:

151.101.130.132:443

Request

GET /player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84 HTTP/2.0
host: player.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"}}
if-none-match: W/"8dbbd-yRGyLHDlggx02NseEKR3bK9sHxU"

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:35:17 GMT
via: 1.1 varnish
cache-control: no-cache
etag: W/"8dbbd-yRGyLHDlggx02NseEKR3bK9sHxU"
age: 4508
x-served-by: cache-lcy-eglc8600023-LCY
x-cache: HIT
x-cache-hits: 2
x-timer: S1719333318.607862,VS0,VE1
vary: Accept-Encoding, x-pb-country, x-pb-connection, x-pb-embedid, x-pb-itemid, x-pb-videoid, x-pb-player, x-pb-bot-name, x-pb-is-bot, x-pb-country, x-pb-connection, x-pb-embedid, x-pb-itemid, x-pb-videoid, x-pb-player, x-pb-bot-name, x-pb-is-bot
DNS

api.mm-watch.com

chrome.exe

Remote address:

8.8.8.8:53

Request

api.mm-watch.com

IN A

Response

api.mm-watch.com

IN A

172.67.196.77

api.mm-watch.com

IN A

104.21.58.4
GET

https://player.ex.co/config?sfid=001Qw000008BdCjIAK&nid=1919177790

chrome.exe

Remote address:

151.101.130.132:443

Request

GET /config?sfid=001Qw000008BdCjIAK&nid=1919177790 HTTP/2.0
host: player.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript; charset=utf-8
server: nginx
access-control-allow-origin: *
access-control-allow-headers: Accept, Authorization, Content-Type
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-max-age: 600
cache-control: no-cache
etag: W/"9f8-KPVo5kjQUntaZZai9oOTHKUeP3k"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 4456
date: Tue, 25 Jun 2024 16:34:26 GMT
x-served-by: cache-iad-kiad7000091-IAD, cache-lcy-eglc8600078-LCY
x-cache: HIT, HIT
x-cache-hits: 53, 0
x-timer: S1719333266.247892,VS0,VE1
vary: x-pb-domain
content-length: 2191
GET

https://player.ex.co/config?sfid=001Qw000008BdCjIAK&nid=1919177790

chrome.exe

Remote address:

151.101.130.132:443

Request

GET /config?sfid=001Qw000008BdCjIAK&nid=1919177790 HTTP/2.0
host: player.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: W/"9f8-KPVo5kjQUntaZZai9oOTHKUeP3k"

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:35:14 GMT
via: 1.1 varnish
cache-control: no-cache
etag: W/"9f8-KPVo5kjQUntaZZai9oOTHKUeP3k"
age: 4504
x-served-by: cache-lcy-eglc8600078-LCY
x-cache: HIT
x-cache-hits: 1
x-timer: S1719333314.351417,VS0,VE1
vary: x-pb-domain
GET

https://player.ex.co/config?sfid=001Qw000008BdCjIAK&nid=1919177790

chrome.exe

Remote address:

151.101.130.132:443

Request

GET /config?sfid=001Qw000008BdCjIAK&nid=1919177790 HTTP/2.0
host: player.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: W/"9f8-KPVo5kjQUntaZZai9oOTHKUeP3k"

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:35:17 GMT
via: 1.1 varnish
cache-control: no-cache
etag: W/"9f8-KPVo5kjQUntaZZai9oOTHKUeP3k"
age: 4507
x-served-by: cache-lcy-eglc8600078-LCY
x-cache: HIT
x-cache-hits: 2
x-timer: S1719333318.670009,VS0,VE0
vary: x-pb-domain
DNS

up.clickiocdn.com

chrome.exe

Remote address:

8.8.8.8:53

Request

up.clickiocdn.com

IN A

Response

up.clickiocdn.com

IN CNAME

clickiocdn.com

clickiocdn.com

IN A

95.211.66.35

clickiocdn.com

IN A

95.211.66.34
DNS

cdn.clickiocdn.com

chrome.exe

Remote address:

8.8.8.8:53

Request

cdn.clickiocdn.com

IN A

Response

cdn.clickiocdn.com

IN CNAME

s1.clickiocdn.com

s1.clickiocdn.com

IN A

46.8.152.14
DNS

collector-1.ex.co

chrome.exe

Remote address:

8.8.8.8:53

Request

collector-1.ex.co

IN A

Response

collector-1.ex.co

IN A

52.203.56.39

collector-1.ex.co

IN A

54.196.134.74

collector-1.ex.co

IN A

52.202.170.3
DNS

132.130.101.151.in-addr.arpa

Remote address:

8.8.8.8:53

Request

132.130.101.151.in-addr.arpa

IN PTR

Response
DNS

2.152.8.46.in-addr.arpa

Remote address:

8.8.8.8:53

Request

2.152.8.46.in-addr.arpa

IN PTR

Response
DNS

35.66.211.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

35.66.211.95.in-addr.arpa

IN PTR

Response

35.66.211.95.in-addr.arpa

IN PTR

hosted-byleasewebcom
DNS

14.152.8.46.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.152.8.46.in-addr.arpa

IN PTR

Response
DNS

39.56.203.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

39.56.203.52.in-addr.arpa

IN PTR

Response

39.56.203.52.in-addr.arpa

IN PTR

ec2-52-203-56-39 compute-1 amazonawscom
DNS

s.clickiocdn.com

chrome.exe

Remote address:

8.8.8.8:53

Request

s.clickiocdn.com

IN A

Response

s.clickiocdn.com

IN A

95.211.66.35

s.clickiocdn.com

IN A

95.211.66.34
DNS

cdn.ex.co

chrome.exe

Remote address:

8.8.8.8:53

Request

cdn.ex.co

IN A

Response

cdn.ex.co

IN CNAME

exco.map.fastly.net

exco.map.fastly.net

IN A

199.232.197.91

exco.map.fastly.net

IN A

199.232.193.91
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 24 Jun 2024 14:17:17 GMT
etag: "ece7398488f2cec6911e4c33462faeff"
content-encoding: gzip
content-type: application/javascript;charset=utf-8
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:29 GMT
via: 1.1 varnish
age: 94513
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: HIT
x-cache-hits: 3010
x-timer: S1719333269.373046,VS0,VE0
vary: Accept-Encoding
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 104756
GET

https://cdn.ex.co/player/ap/p/4.55.1-bafb08d/player.js

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /player/ap/p/4.55.1-bafb08d/player.js HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 18 Jun 2024 17:26:24 GMT
etag: "615582e23cb234c4396b8fd6023e5ad6"
cache-control: must-revalidate, proxy-revalidate, max-age=604800, s-maxage=31536000
content-encoding: gzip
content-type: text/html;charset=utf-8
server: AmazonS3
accept-ranges: bytes
age: 4439
date: Tue, 25 Jun 2024 16:34:29 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333270.505036,VS0,VE1
vary: Accept-Encoding
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 268
GET

https://cdn.ex.co/sync/0.0.1-112537f/cookie_sync.html?network=368531133%2C1919177790&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /sync/0.0.1-112537f/cookie_sync.html?network=368531133%2C1919177790&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 18 Jun 2024 17:26:24 GMT
etag: "c9abe452e0597d832bec1afcb57fc286"
content-encoding: gzip
content-type: application/javascript;charset=utf-8
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:29 GMT
via: 1.1 varnish
age: 549187
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: HIT
x-cache-hits: 101562
x-timer: S1719333270.552670,VS0,VE0
vary: Accept-Encoding
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 2874
GET

https://cdn.ex.co/sync/0.0.1-112537f/sync-cfbf3e6c.js

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /sync/0.0.1-112537f/sync-cfbf3e6c.js HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
origin: https://cdn.ex.co
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://cdn.ex.co/sync/0.0.1-112537f/cookie_sync.html?network=368531133%2C1919177790&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:29 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333269.373016,VS0,VE318
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/player/hls/1.4.10-exco/hls.min.js

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /player/hls/1.4.10-exco/hls.min.js HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 10:27:10 GMT
etag: "a9642ec59aab3970df7bfdcad710d30a"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:30 GMT
via: 1.1 varnish
age: 44804
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: HIT
x-cache-hits: 712
x-timer: S1719333270.142613,VS0,VE0
vary: Accept-Encoding
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 86803
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035

Response

HTTP/2.0 200

last-modified: Sun, 23 Jun 2024 08:49:31 GMT
etag: "ca77825572ab0fa0e81b33130e08f909"
content-encoding: gzip
content-type: application/javascript;charset=utf-8
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:30 GMT
via: 1.1 varnish
age: 200002
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: HIT
x-cache-hits: 43129
x-timer: S1719333270.258494,VS0,VE0
vary: Accept-Encoding
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 205715
GET

https://cdn.ex.co/player/pb/3.4.3/expb.js

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /player/pb/3.4.3/expb.js HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:30 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333270.193831,VS0,VE86
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4 HTTP/2.0
host: large-cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://mm-watch.com/
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
range: bytes=0-

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:30 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333270.410907,VS0,VE350
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:30 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333270.426265,VS0,VE357
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4 HTTP/2.0
host: large-cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://mm-watch.com/
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
range: bytes=0-

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333271.813638,VS0,VE315
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:30.511881113Z"}}

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333271.809223,VS0,VE333
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4 HTTP/2.0
host: large-cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://mm-watch.com/
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:30.511881113Z"}}
range: bytes=0-

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333271.192985,VS0,VE340
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:30.511881113Z"}}

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333272.599084,VS0,VE89
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:30.511881113Z"}}

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:32 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333272.739551,VS0,VE339
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:30.511881113Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"}}

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:32 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333272.128271,VS0,VE90
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:30.511881113Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"}}

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:29 GMT
etag: "360d10ecd89b2216edb088f182d3f138"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 0
date: Tue, 25 Jun 2024 16:34:32 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333273.595061,VS0,VE349
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 27734
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:30.511881113Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"}}

Response

HTTP/2.0 200

last-modified: Mon, 24 Jun 2024 14:12:23 GMT
etag: "72d1f5a54b84936ce4af1be670e422f5"
content-encoding: gzip
content-type: application/javascript;charset=utf-8
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:35:20 GMT
via: 1.1 varnish
age: 94961
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: HIT
x-cache-hits: 18580
x-timer: S1719333321.556728,VS0,VE0
vary: Accept-Encoding
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 102615
GET

https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/thumbnail-720.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/thumbnail-720.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:30.511881113Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:34:32.28070562Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"}}

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:35:20 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333321.552261,VS0,VE346
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"}}

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:35:21 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333321.001849,VS0,VE332
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/player/ap/4.55.1-efec738/player.js

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /player/ap/4.55.1-efec738/player.js HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"}}

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:35:21 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333321.377950,VS0,VE338
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4 HTTP/2.0
host: large-cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://mm-watch.com/
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"}}
range: bytes=0-

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:15 GMT
etag: "caf04c6706ceb6095e72ed332a719f60"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 444308
date: Tue, 25 Jun 2024 16:35:21 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600062-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333322.963168,VS0,VE1
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 23350
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"}}
GET

https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4 HTTP/2.0
host: large-cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://mm-watch.com/
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"}}
range: bytes=0-
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}
GET

https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4 HTTP/2.0
host: large-cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://mm-watch.com/
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}
range: bytes=0-
GET

https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/thumbnail-360.webp

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}
DNS

p.channelexco.com

chrome.exe

Remote address:

8.8.8.8:53

Request

p.channelexco.com

IN A

Response

p.channelexco.com

IN CNAME

p-lb.cdtx.co

p-lb.cdtx.co

IN A

162.210.193.230
DNS

sync.ex.co

chrome.exe

Remote address:

8.8.8.8:53

Request

sync.ex.co

IN A

Response

sync.ex.co

IN A

3.232.71.25

sync.ex.co

IN A

44.207.87.22

sync.ex.co

IN A

44.206.126.35
DNS

91.197.232.199.in-addr.arpa

Remote address:

8.8.8.8:53

Request

91.197.232.199.in-addr.arpa

IN PTR

Response
DNS

77.196.67.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

77.196.67.172.in-addr.arpa

IN PTR

Response
DNS

ads.pubmatic.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ads.pubmatic.com

IN A

Response

ads.pubmatic.com

IN CNAME

pubmatic.edgekey.net

pubmatic.edgekey.net

IN CNAME

e6603.g.akamaiedge.net

e6603.g.akamaiedge.net

IN A

2.21.188.239
DNS

s-119.channelexco.com

chrome.exe

Remote address:

8.8.8.8:53

Request

s-119.channelexco.com

IN A

Response

s-119.channelexco.com

IN A

162.210.193.230
DNS

ads.stickyadstv.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ads.stickyadstv.com

IN A

Response

ads.stickyadstv.com

IN CNAME

ip1.ads.stickyadstv.com.akadns.net

ip1.ads.stickyadstv.com.akadns.net

IN CNAME

ip2.ads.stickyadstv.com.akadns.net

ip2.ads.stickyadstv.com.akadns.net

IN CNAME

eu-west-dual.ads.stickyadstv.com.akadns.net

eu-west-dual.ads.stickyadstv.com.akadns.net

IN A

154.54.250.81

eu-west-dual.ads.stickyadstv.com.akadns.net

IN A

154.57.158.115
DNS

ads.stickyadstv.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ads.stickyadstv.com

IN A

Response

ads.stickyadstv.com

IN CNAME

ip1.ads.stickyadstv.com.akadns.net

ip1.ads.stickyadstv.com.akadns.net

IN CNAME

ip2.ads.stickyadstv.com.akadns.net

ip2.ads.stickyadstv.com.akadns.net

IN CNAME

eu-west-dual.ads.stickyadstv.com.akadns.net

eu-west-dual.ads.stickyadstv.com.akadns.net

IN A

154.54.250.80

eu-west-dual.ads.stickyadstv.com.akadns.net

IN A

154.57.158.116
DNS

secure-assets.rubiconproject.com

chrome.exe

Remote address:

8.8.8.8:53

Request

secure-assets.rubiconproject.com

IN A

Response

secure-assets.rubiconproject.com

IN CNAME

digicertwc.rubiconproject.com.edgekey.net

digicertwc.rubiconproject.com.edgekey.net

IN CNAME

e8960.e2.akamaiedge.net

e8960.e2.akamaiedge.net

IN A

23.60.223.190
DNS

ssbsync.smartadserver.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ssbsync.smartadserver.com

IN A

Response

ssbsync.smartadserver.com

IN CNAME

ssbsync-geo.smartadserver.com

ssbsync-geo.smartadserver.com

IN CNAME

usersync-geo-global.usersync-prod-sas.akadns.net

usersync-geo-global.usersync-prod-sas.akadns.net

IN CNAME

ssbsync-euw2.smartadserver.com

ssbsync-euw2.smartadserver.com

IN A

91.134.110.133

ssbsync-euw2.smartadserver.com

IN A

149.202.238.101

ssbsync-euw2.smartadserver.com

IN A

149.202.238.100

ssbsync-euw2.smartadserver.com

IN A

164.132.25.180

ssbsync-euw2.smartadserver.com

IN A

5.196.111.68

ssbsync-euw2.smartadserver.com

IN A

178.32.210.231

ssbsync-euw2.smartadserver.com

IN A

91.134.110.132

ssbsync-euw2.smartadserver.com

IN A

217.182.178.228

ssbsync-euw2.smartadserver.com

IN A

164.132.25.181

ssbsync-euw2.smartadserver.com

IN A

217.182.178.229

ssbsync-euw2.smartadserver.com

IN A

51.178.195.212

ssbsync-euw2.smartadserver.com

IN A

178.32.197.52

ssbsync-euw2.smartadserver.com

IN A

5.135.209.100

ssbsync-euw2.smartadserver.com

IN A

178.32.197.53

ssbsync-euw2.smartadserver.com

IN A

5.135.209.101

ssbsync-euw2.smartadserver.com

IN A

178.32.210.230

ssbsync-euw2.smartadserver.com

IN A

5.196.111.69

ssbsync-euw2.smartadserver.com

IN A

51.178.195.213
DNS

ssbsync.smartadserver.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ssbsync.smartadserver.com

IN A

Response

ssbsync.smartadserver.com

IN CNAME

ssbsync-geo.smartadserver.com

ssbsync-geo.smartadserver.com

IN CNAME

usersync-geo-global.usersync-prod-sas.akadns.net

usersync-geo-global.usersync-prod-sas.akadns.net

IN CNAME

ssbsync-euw1.smartadserver.com

ssbsync-euw1.smartadserver.com

IN A

89.149.193.85

ssbsync-euw1.smartadserver.com

IN A

81.17.55.109

ssbsync-euw1.smartadserver.com

IN A

89.149.193.117

ssbsync-euw1.smartadserver.com

IN A

81.17.55.108

ssbsync-euw1.smartadserver.com

IN A

89.149.192.197

ssbsync-euw1.smartadserver.com

IN A

89.149.193.101

ssbsync-euw1.smartadserver.com

IN A

89.149.192.196

ssbsync-euw1.smartadserver.com

IN A

81.17.55.171

ssbsync-euw1.smartadserver.com

IN A

81.17.55.123

ssbsync-euw1.smartadserver.com

IN A

89.149.193.116

ssbsync-euw1.smartadserver.com

IN A

89.149.192.75

ssbsync-euw1.smartadserver.com

IN A

81.17.55.170

ssbsync-euw1.smartadserver.com

IN A

89.149.193.84

ssbsync-euw1.smartadserver.com

IN A

89.149.193.100

ssbsync-euw1.smartadserver.com

IN A

89.149.192.76

ssbsync-euw1.smartadserver.com

IN A

81.17.55.122

ssbsync-euw1.smartadserver.com

IN A

89.149.192.245

ssbsync-euw1.smartadserver.com

IN A

89.149.192.244
DNS

ssum-sec.casalemedia.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ssum-sec.casalemedia.com

IN A

Response

ssum-sec.casalemedia.com

IN A

172.64.151.101

ssum-sec.casalemedia.com

IN A

104.18.36.155
DNS

u.openx.net

chrome.exe

Remote address:

8.8.8.8:53

Request

u.openx.net

IN A

Response

u.openx.net

IN A

35.244.159.8

u.openx.net

IN A

34.98.64.218
GET

https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=17136&endpoint=us-east

chrome.exe

Remote address:

23.60.223.190:443

Request

GET /utils/xapi/multi-sync.html?p=17136&endpoint=us-east HTTP/2.0
host: secure-assets.rubiconproject.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 301

server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=17136&endpoint=us-east
date: Tue, 25 Jun 2024 16:34:30 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
GET

https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=17136_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

23.60.223.190:443

Request

GET /utils/xapi/multi-sync.html?p=17136_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: secure-assets.rubiconproject.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://cdn.ex.co/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: khaos=LXUMMYH8-18-IISD
cookie: receive-cookie-deprecation=1
cookie: audit=1|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

Response

HTTP/2.0 301

server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=17136_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
date: Tue, 25 Jun 2024 16:34:33 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
GET

https://ssum-sec.casalemedia.com/usermatch?s=190719&cb=https%3A%2F%2Frtb.channelexco.com%2Fcookie_sync%3Fbid%3D12517%26srv%3Dchannelexco.com%26cuid%3Defbe3a6d-e5ed-450b-8e47-518e785e2592%26uid%3D

chrome.exe

Remote address:

172.64.151.101:443

Request

GET /usermatch?s=190719&cb=https%3A%2F%2Frtb.channelexco.com%2Fcookie_sync%3Fbid%3D12517%26srv%3Dchannelexco.com%26cuid%3Defbe3a6d-e5ed-450b-8e47-518e785e2592%26uid%3D HTTP/2.0
host: ssum-sec.casalemedia.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:34:30 GMT
content-length: 0
location: /usermatch?cb=https%3A%2F%2Frtb.channelexco.com%2Fcookie_sync%3Fbid%3D12517%26srv%3Dchannelexco.com%26cuid%3Defbe3a6d-e5ed-450b-8e47-518e785e2592%26uid%3D&s=190719&C=1
cf-ray: 89965d8b7dfa79b0-LHR
cf-cache-status: DYNAMIC
cache-control: no-cache
expires: 0
set-cookie: CMID=ZnrxlrmqPq8AAFKyAdC9GwAA; Path=/; Domain=casalemedia.com; Expires=Wed, 25 Jun 2025 16:34:30 GMT; Max-Age=31536000; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMPS=4403; Path=/; Domain=casalemedia.com; Expires=Mon, 23 Sep 2024 16:34:30 GMT; Max-Age=7776000; Secure; SameSite=None
set-cookie: CMPRO=4403; Path=/; Domain=casalemedia.com; Expires=Mon, 23 Sep 2024 16:34:30 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TmlMuJlOeGSuFlLFXdn14XmMj6KtamStv2AW6O0tDjjopYbttvUDimi4hDF2L3q54gxt%2FCKZ74hrVahJ5Ns7NmWcdk1bY3zYA%2FLSUCA4w5lG7%2FWwJqftbIdrHj1z1PzX7iv%2BtenS9T%2B%2FyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
GET

https://dsum-sec.casalemedia.com/rrum?ixi=1&cm_dsp_id=85&cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dbm%26google_cm%26google_sc%26google_hm%3D

chrome.exe

Remote address:

172.64.151.101:443

Request

GET /rrum?ixi=1&cm_dsp_id=85&cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dbm%26google_cm%26google_sc%26google_hm%3D HTTP/2.0
host: dsum-sec.casalemedia.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssum-sec.casalemedia.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: CMPS=4403
cookie: CMID=ZnrxlrmqPq8AAFKyAdC9GwAA
cookie: CMPRO=4403

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:34:30 GMT
content-length: 0
location: https://cm.g.doubleclick.net/pixel?google_nid=casale_media2_dbm&google_cm&google_sc&google_hm=ZnrxlrmqPq8AAFKyAdC9GwAA
cf-ray: 89965d8db91579b0-LHR
cf-cache-status: DYNAMIC
cache-control: no-cache
expires: 0
set-cookie: CMID=ZnrxlrmqPq8AAFKyAdC9GwAA; Path=/; Domain=casalemedia.com; Expires=Wed, 25 Jun 2025 16:34:30 GMT; Max-Age=31536000; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMPRO=4403; Path=/; Domain=casalemedia.com; Expires=Mon, 23 Sep 2024 16:34:30 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mj%2BZZlwk7hxuhMlSY%2B4wNieJnPpRgsiAnNWOuzXY1gojjOdN%2FyHRFYGvNrch2gkM3sPb6ZksaobaSfTlDcvuqVvJ5r55fqs%2F9CUn6FFGrf5zd8fEgVAl2%2FBxp%2Bb71R2JxqXiv0fKIRaM4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
GET

https://dsum.casalemedia.com/crum?cm_dsp_id=191&external_user_id=ee4067c7-6a65-b9ff-686cc0f9

chrome.exe

Remote address:

172.64.151.101:443

Request

GET /crum?cm_dsp_id=191&external_user_id=ee4067c7-6a65-b9ff-686cc0f9 HTTP/2.0
host: dsum.casalemedia.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssum-sec.casalemedia.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: CMPS=4403
cookie: CMID=ZnrxlrmqPq8AAFKyAdC9GwAA
cookie: CMPRO=4403

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:34:30 GMT
content-type: image/gif
content-length: 43
cf-ray: 89965d8f8b3279b0-LHR
cf-cache-status: DYNAMIC
cache-control: no-cache
expires: 0
set-cookie: CMID=ZnrxlrmqPq8AAFKyAdC9GwAA; Path=/; Domain=casalemedia.com; Expires=Wed, 25 Jun 2025 16:34:30 GMT; Max-Age=31536000; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMPRO=4403; Path=/; Domain=casalemedia.com; Expires=Mon, 23 Sep 2024 16:34:30 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nk3wnV%2Fl3XH4kz2pssJQet0Pmb%2FG0iGQf1ANBfNLLgBEOvadQ1GUDB9ZYzfT8EhrzJ6jerU2xnx3zd%2Bn9pbPbH1EgXwiU14XKqPIKGQMRr8n%2FvN3hzHZFO5RxyHhYub%2B5X06c4t0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
GET

https://r.casalemedia.com/rum?cm_dsp_id=64&external_user_id=686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&gdpr=0&gdpr_consent=

chrome.exe

Remote address:

172.64.151.101:443

Request

GET /rum?cm_dsp_id=64&external_user_id=686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&gdpr=0&gdpr_consent= HTTP/2.0
host: r.casalemedia.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssum-sec.casalemedia.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: CMPS=4403
cookie: CMID=ZnrxlrmqPq8AAFKyAdC9GwAA
cookie: CMPRO=4403

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:34:33 GMT
content-type: image/gif
content-length: 43
cf-ray: 89965d9e8a2a79b0-LHR
cf-cache-status: DYNAMIC
cache-control: no-cache
expires: 0
set-cookie: CMID=ZnrxlrmqPq8AAFKyAdC9GwAA; Path=/; Domain=casalemedia.com; Expires=Wed, 25 Jun 2025 16:34:33 GMT; Max-Age=31536000; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMPRO=4403; Path=/; Domain=casalemedia.com; Expires=Mon, 23 Sep 2024 16:34:33 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JtaQsh%2BsK580uzWFmhO4vRFIDJqMaFdfYFDUtUrLJZhZuqAgBZWhcC732zz3GDe3ETJ0b1LslzWi7HCBIuocj4lvFPRkMxV6BV1S7AHU7xQ5buWKCPPvU5pqtYSjY%2BfJaE55"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
DNS

ap.lijit.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ap.lijit.com

IN A

Response

ap.lijit.com

IN CNAME

vap.lijit.com

vap.lijit.com

IN CNAME

emeas.vap.lijit.com

emeas.vap.lijit.com

IN CNAME

eu.vap.lijit.com

eu.vap.lijit.com

IN CNAME

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

63.33.236.25

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.194.13.213

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.246.192.145

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

34.249.225.179

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

34.254.218.2

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

63.32.125.49

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

34.249.248.83

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.75.71.78
DNS

ap.lijit.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ap.lijit.com

IN A

Response

ap.lijit.com

IN CNAME

vap.lijit.com

vap.lijit.com

IN CNAME

emeas.vap.lijit.com

emeas.vap.lijit.com

IN CNAME

eu.vap.lijit.com

eu.vap.lijit.com

IN CNAME

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.229.26.183

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

34.252.158.198

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

79.125.58.169

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

63.35.80.10

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

79.125.108.226

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

34.254.50.66

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.217.7.55

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

52.214.42.132
DNS

secure.adnxs.com

chrome.exe

Remote address:

8.8.8.8:53

Request

secure.adnxs.com

IN A

Response

secure.adnxs.com

IN CNAME

xandr-g-geo.trafficmanager.net

xandr-g-geo.trafficmanager.net

IN CNAME

ib.anycast.adnxs.com

ib.anycast.adnxs.com

IN A

37.252.171.21

ib.anycast.adnxs.com

IN A

37.252.173.215

ib.anycast.adnxs.com

IN A

37.252.171.149

ib.anycast.adnxs.com

IN A

37.252.172.123

ib.anycast.adnxs.com

IN A

37.252.171.85

ib.anycast.adnxs.com

IN A

37.252.171.53

ib.anycast.adnxs.com

IN A

37.252.171.52
DNS

www9.smartadserver.com

chrome.exe

Remote address:

8.8.8.8:53

Request

www9.smartadserver.com

IN A

Response

www9.smartadserver.com

IN CNAME

geo-global-secure.delivery-prod-sas.akadns.net

geo-global-secure.delivery-prod-sas.akadns.net

IN CNAME

euw2.smartadserver.com

euw2.smartadserver.com

IN A

149.202.238.97

euw2.smartadserver.com

IN A

178.32.197.48

euw2.smartadserver.com

IN A

178.32.210.226

euw2.smartadserver.com

IN A

51.178.195.209

euw2.smartadserver.com

IN A

5.135.209.96

euw2.smartadserver.com

IN A

51.178.195.208

euw2.smartadserver.com

IN A

149.202.238.96

euw2.smartadserver.com

IN A

164.132.25.177

euw2.smartadserver.com

IN A

164.132.25.176

euw2.smartadserver.com

IN A

217.182.178.224

euw2.smartadserver.com

IN A

5.135.209.97

euw2.smartadserver.com

IN A

178.32.197.49

euw2.smartadserver.com

IN A

5.196.111.65

euw2.smartadserver.com

IN A

178.32.210.227

euw2.smartadserver.com

IN A

91.134.110.129

euw2.smartadserver.com

IN A

91.134.110.128

euw2.smartadserver.com

IN A

217.182.178.225

euw2.smartadserver.com

IN A

5.196.111.64
GET

https://ssbsync.smartadserver.com/api/sync?callerId=35

chrome.exe

Remote address:

91.134.110.133:443

Request

GET /api/sync?callerId=35 HTTP/2.0
host: ssbsync.smartadserver.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
date: Tue, 25 Jun 2024 16:34:29 GMT
GET

https://ssbsync-global.smartadserver.com/api/sync?callerId=35&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirectUri=sync.ex.co%2Fv1%2Fsetuid%2Fsmartadserver%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%5Bssb_sync_pid%5D

chrome.exe

Remote address:

91.134.110.133:443

Request

GET /api/sync?callerId=35&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirectUri=sync.ex.co%2Fv1%2Fsetuid%2Fsmartadserver%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%5Bssb_sync_pid%5D HTTP/2.0
host: ssbsync-global.smartadserver.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://cdn.ex.co/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: TestIfCookie=ok
cookie: TestIfCookieP=ok
cookie: pbw=%24b%3d16999%3b%24o%3d11100
cookie: sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5
cookie: vs=342899=6038914
cookie: pid=4052082643997295311
cookie: sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1

Response

HTTP/2.0 200

content-length: 3458
content-type: text/html
date: Tue, 25 Jun 2024 16:34:30 GMT
DNS

large-cdn.ex.co

chrome.exe

Remote address:

8.8.8.8:53

Request

large-cdn.ex.co

IN A

Response

large-cdn.ex.co

IN CNAME

exco.map.fastly.net

exco.map.fastly.net

IN A

199.232.197.91

exco.map.fastly.net

IN A

199.232.193.91
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333269149&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

chrome.exe

Remote address:

149.202.238.97:443

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333269149&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:34:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
location: https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333269149&pgdomain=https%3a%2f%2fmm-watch.com%2fcars%2fbcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0%2c1!playbuzz.com%2c001Qw000008BdCjIAK%2c1%2c%2c%2c&gdpr=0&cklb=1
pragma: no-cache
set-cookie: TestIfCookie=ok; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: TestIfCookieP=ok; expires=Wed, 25 Jun 2025 16:34:30 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333269149&pgdomain=https%3a%2f%2fmm-watch.com%2fcars%2fbcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0%2c1!playbuzz.com%2c001Qw000008BdCjIAK%2c1%2c%2c%2c&gdpr=0&cklb=1

chrome.exe

Remote address:

149.202.238.97:443

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333269149&pgdomain=https%3a%2f%2fmm-watch.com%2fcars%2fbcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0%2c1!playbuzz.com%2c001Qw000008BdCjIAK%2c1%2c%2c%2c&gdpr=0&cklb=1 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok

Response

HTTP/1.1 200 OK

content-type: text/xml; charset=UTF-8
date: Tue, 25 Jun 2024 16:34:30 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d16999%3b%24o%3d11100; expires=Wed, 25 Jun 2025 16:34:30 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: vs=218209=6038914; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: TestIfCookie=ok; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: TestIfCookieP=ok; expires=Wed, 25 Jun 2025 16:34:30 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=3150796912416522917; expires=Wed, 25 Jun 2025 16:34:30 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300705478231&o=1; expires=Wed, 26 Jun 2024 16:34:30 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; expires=Wed, 26 Jun 2024 16:34:30 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333279238&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

chrome.exe

Remote address:

149.202.238.97:443

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333279238&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: text/xml; charset=UTF-8
date: Tue, 25 Jun 2024 16:34:40 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038914&218209=6038914; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:34:40 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://u.openx.net/w/1.0/cm?id=f0686912-7fb3-48f6-be19-4d168ad880c0&r=https%3A%2F%2Frtb.channelexco.com%2Fcookie_sync%3Fbid%3D13005%26srv%3Dchannelexco.com%26cuid%3Defbe3a6d-e5ed-450b-8e47-518e785e2592%26uid%3D

chrome.exe

Remote address:

35.244.159.8:443

Request

GET /w/1.0/cm?id=f0686912-7fb3-48f6-be19-4d168ad880c0&r=https%3A%2F%2Frtb.channelexco.com%2Fcookie_sync%3Fbid%3D13005%26srv%3Dchannelexco.com%26cuid%3Defbe3a6d-e5ed-450b-8e47-518e785e2592%26uid%3D HTTP/2.0
host: u.openx.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://playbuzzltd-d.openx.net/w/1.0/pd?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

35.244.159.8:443

Request

GET /w/1.0/pd?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: playbuzzltd-d.openx.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: receive-cookie-deprecation=1
GET

https://eu-u.openx.net/w/1.0/sd?id=537113484&val=6640692441033083723&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

35.244.159.8:443

Request

GET /w/1.0/sd?id=537113484&val=6640692441033083723&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: eu-u.openx.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://playbuzzltd-d.openx.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: receive-cookie-deprecation=1
cookie: i=09202996-6bb0-09cb-1c43-ca5c3d226b0e|1719333273
cookie: pd=v2|1719333274|gen0vNvQiygu
GET

https://us-u.openx.net/w/1.0/sd?id=537072956&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&val=45dKpbOQRPP4lE395pVQ9O2QSvH4lEj848U1iFe8

chrome.exe

Remote address:

35.244.159.8:443

Request

GET /w/1.0/sd?id=537072956&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&val=45dKpbOQRPP4lE395pVQ9O2QSvH4lEj848U1iFe8 HTTP/2.0
host: us-u.openx.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://playbuzzltd-d.openx.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: receive-cookie-deprecation=1
cookie: i=09202996-6bb0-09cb-1c43-ca5c3d226b0e|1719333273
cookie: pd=v2|1719333274|gen0vNvQiygu
GET

https://us-u.openx.net/w/1.0/sd?id=537072971&val=84daa6ca-0538-48d1-9010-ae8e49c9a74c&ttd_puid=da8c16cf-c237-363c-4695-02b4590558f3&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

35.244.159.8:443

Request

GET /w/1.0/sd?id=537072971&val=84daa6ca-0538-48d1-9010-ae8e49c9a74c&ttd_puid=da8c16cf-c237-363c-4695-02b4590558f3&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: us-u.openx.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://playbuzzltd-d.openx.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: receive-cookie-deprecation=1
cookie: i=09202996-6bb0-09cb-1c43-ca5c3d226b0e|1719333273
cookie: pd=v2|1719333274|gen0vNvQiygu
GET

https://ap.lijit.com/pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Frtb.channelexco.com%2Fcookie_sync%3Fbid%3D8197%26srv%3Dchannelexco.com%26cuid%3Defbe3a6d-e5ed-450b-8e47-518e785e2592%26uid%3D%24UID

chrome.exe

Remote address:

63.33.236.25:443

Request

GET /pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Frtb.channelexco.com%2Fcookie_sync%3Fbid%3D8197%26srv%3Dchannelexco.com%26cuid%3Defbe3a6d-e5ed-450b-8e47-518e785e2592%26uid%3D%24UID HTTP/2.0
host: ap.lijit.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:34:30 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type
GET

https://ap.lijit.com/pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fsync.ex.co%2Fv1%2Fsetuid%2Fsovrn%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%24UID

chrome.exe

Remote address:

63.33.236.25:443

Request

GET /pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fsync.ex.co%2Fv1%2Fsetuid%2Fsovrn%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%24UID HTTP/2.0
host: ap.lijit.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cdn.ex.co/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:34:30 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type
GET

https://ap.lijit.com/pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fsync.ex.co%2Fv1%2Fsetuid%2Fsovrn%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%24UID

chrome.exe

Remote address:

63.33.236.25:443

Request

GET /pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fsync.ex.co%2Fv1%2Fsetuid%2Fsovrn%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%24UID HTTP/2.0
host: ap.lijit.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cdn.ex.co/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:20 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type
DNS

eus.rubiconproject.com

chrome.exe

Remote address:

8.8.8.8:53

Request

eus.rubiconproject.com

IN A

Response

eus.rubiconproject.com

IN CNAME

eus.rubiconproject.com.edgekey.net

eus.rubiconproject.com.edgekey.net

IN CNAME

e8960.b.akamaiedge.net

e8960.b.akamaiedge.net

IN A

2.23.9.250
GET

https://eus.rubiconproject.com/usync.html?p=17136&endpoint=us-east

chrome.exe

Remote address:

2.23.9.250:443

Request

GET /usync.html?p=17136&endpoint=us-east HTTP/1.1
Host: eus.rubiconproject.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 21 Mar 2024 15:32:19 GMT
ETag: "2052a-10d-6142d69a886c0"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 224
Content-Type: text/html; charset=UTF-8
Date: Tue, 25 Jun 2024 16:34:30 GMT
Connection: keep-alive
Vary: Accept-Encoding
GET

https://eus.rubiconproject.com/usync.js

chrome.exe

Remote address:

2.23.9.250:443

Request

GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://eus.rubiconproject.com/usync.html?p=17136&endpoint=us-east
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Wed, 15 May 2024 07:30:00 GMT
Content-Encoding: gzip
Content-Length: 11049
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=79829
Expires: Wed, 26 Jun 2024 14:44:59 GMT
Date: Tue, 25 Jun 2024 16:34:30 GMT
Connection: keep-alive
Vary: Accept-Encoding
GET

https://eus.rubiconproject.com/usync.html?p=17136_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

2.23.9.250:443

Request

GET /usync.html?p=17136_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: eus.rubiconproject.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://cdn.ex.co/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 21 Mar 2024 15:32:19 GMT
ETag: "2052a-10d-6142d69a886c0"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 224
Content-Type: text/html; charset=UTF-8
Date: Tue, 25 Jun 2024 16:34:33 GMT
Connection: keep-alive
Vary: Accept-Encoding
GET

https://eus.rubiconproject.com/usync.html?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

2.23.9.250:443

Request

GET /usync.html?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: eus.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

Server: Apache/2.2.15 (CentOS)
Last-Modified: Thu, 21 Mar 2024 15:32:19 GMT
ETag: "2052a-10d-6142d69a886c0"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 224
Content-Type: text/html; charset=UTF-8
Date: Tue, 25 Jun 2024 16:34:33 GMT
Connection: keep-alive
Vary: Accept-Encoding
DNS

api.rlcdn.com

chrome.exe

Remote address:

8.8.8.8:53

Request

api.rlcdn.com

IN A

Response

api.rlcdn.com

IN A

34.120.133.55
DNS

api.rlcdn.com

chrome.exe

Remote address:

8.8.8.8:53

Request

api.rlcdn.com

IN A

Response

api.rlcdn.com

IN A

34.120.133.55
DNS

id.crwdcntrl.net

chrome.exe

Remote address:

8.8.8.8:53

Request

id.crwdcntrl.net

IN A

Response

id.crwdcntrl.net

IN A

52.49.45.15

id.crwdcntrl.net

IN A

63.33.74.9

id.crwdcntrl.net

IN A

52.19.165.229

id.crwdcntrl.net

IN A

34.247.240.165

id.crwdcntrl.net

IN A

34.254.52.227

id.crwdcntrl.net

IN A

52.50.8.163

id.crwdcntrl.net

IN A

52.215.98.156

id.crwdcntrl.net

IN A

52.211.142.73
DNS

match.adsrvr.org

chrome.exe

Remote address:

8.8.8.8:53

Request

match.adsrvr.org

IN A

Response

match.adsrvr.org

IN A

52.223.40.198

match.adsrvr.org

IN A

35.71.131.137

match.adsrvr.org

IN A

3.33.220.150

match.adsrvr.org

IN A

15.197.193.217
DNS

prg.smartadserver.com

chrome.exe

Remote address:

8.8.8.8:53

Request

prg.smartadserver.com

IN A

Response

prg.smartadserver.com

IN CNAME

prga.smartadserver.com

prga.smartadserver.com

IN CNAME

hb-geo.delivery-prod-sas.akadns.net

hb-geo.delivery-prod-sas.akadns.net

IN CNAME

euw2.smartadserver.com

euw2.smartadserver.com

IN A

5.196.111.64

euw2.smartadserver.com

IN A

149.202.238.96

euw2.smartadserver.com

IN A

5.135.209.97

euw2.smartadserver.com

IN A

149.202.238.97

euw2.smartadserver.com

IN A

178.32.210.227

euw2.smartadserver.com

IN A

91.134.110.128

euw2.smartadserver.com

IN A

217.182.178.224

euw2.smartadserver.com

IN A

178.32.210.226

euw2.smartadserver.com

IN A

178.32.197.48

euw2.smartadserver.com

IN A

178.32.197.49

euw2.smartadserver.com

IN A

91.134.110.129

euw2.smartadserver.com

IN A

51.178.195.209

euw2.smartadserver.com

IN A

164.132.25.176

euw2.smartadserver.com

IN A

164.132.25.177

euw2.smartadserver.com

IN A

217.182.178.225

euw2.smartadserver.com

IN A

51.178.195.208

euw2.smartadserver.com

IN A

5.135.209.96

euw2.smartadserver.com

IN A

5.196.111.65
DNS

prebid.media.net

chrome.exe

Remote address:

8.8.8.8:53

Request

prebid.media.net

IN A

Response

prebid.media.net

IN A

34.120.63.153
DNS

rtb.ex.co

chrome.exe

Remote address:

8.8.8.8:53

Request

rtb.ex.co

IN A

Response

rtb.ex.co

IN A

44.207.87.22

rtb.ex.co

IN A

3.232.71.25

rtb.ex.co

IN A

44.206.126.35
DNS

66.97.40.145.in-addr.arpa

chrome.exe

Remote address:

8.8.8.8:53

Request

66.97.40.145.in-addr.arpa

IN PTR

Response
DNS

rtb.openx.net

chrome.exe

Remote address:

8.8.8.8:53

Request

rtb.openx.net

IN A

Response

rtb.openx.net

IN A

35.227.252.103

rtb.openx.net

IN A

35.186.253.211
DNS

prebid-server.rubiconproject.com

chrome.exe

Remote address:

8.8.8.8:53

Request

prebid-server.rubiconproject.com

IN A

Response

prebid-server.rubiconproject.com

IN CNAME

prebid-server.rubiconproject.net.akadns.net

prebid-server.rubiconproject.net.akadns.net

IN CNAME

prebid-server-perf-eu.rubiconproject.net.akadns.net

prebid-server-perf-eu.rubiconproject.net.akadns.net

IN A

69.173.156.150
DNS

ads.yieldmo.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ads.yieldmo.com

IN A

Response

ads.yieldmo.com

IN CNAME

rw.yieldmo.com

rw.yieldmo.com

IN CNAME

gdpr.rw.yieldmo.com

gdpr.rw.yieldmo.com

IN CNAME

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

54.217.164.78

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

52.211.129.237

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

52.16.246.58

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

54.155.87.64

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

52.211.91.163

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

52.213.240.31

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

54.72.64.29

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

52.50.194.100
DNS

bidder.criteo.com

chrome.exe

Remote address:

8.8.8.8:53

Request

bidder.criteo.com

IN A

Response

bidder.criteo.com

IN CNAME

bidder.nl3.vip.prod.criteo.com

bidder.nl3.vip.prod.criteo.com

IN A

178.250.1.8
DNS

btlr.sharethrough.com

chrome.exe

Remote address:

8.8.8.8:53

Request

btlr.sharethrough.com

IN A

Response

btlr.sharethrough.com

IN CNAME

btlr-eu-central-1.sharethrough.com

btlr-eu-central-1.sharethrough.com

IN A

52.57.224.82

btlr-eu-central-1.sharethrough.com

IN A

52.29.6.178

btlr-eu-central-1.sharethrough.com

IN A

18.185.42.31

btlr-eu-central-1.sharethrough.com

IN A

18.197.99.182

btlr-eu-central-1.sharethrough.com

IN A

3.69.14.198

btlr-eu-central-1.sharethrough.com

IN A

3.64.135.1

btlr-eu-central-1.sharethrough.com

IN A

54.93.146.124

btlr-eu-central-1.sharethrough.com

IN A

18.197.138.194
DNS

ad.360yield-basic.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ad.360yield-basic.com

IN A

Response

ad.360yield-basic.com

IN CNAME

ice.360yield-basic.com

ice.360yield-basic.com

IN CNAME

ice.360yield.com

ice.360yield.com

IN CNAME

euw-ice.360yield.com

euw-ice.360yield.com

IN A

52.212.11.67

euw-ice.360yield.com

IN A

52.214.128.20

euw-ice.360yield.com

IN A

54.155.206.189

euw-ice.360yield.com

IN A

52.18.168.73

euw-ice.360yield.com

IN A

52.48.59.220

euw-ice.360yield.com

IN A

52.17.139.76

euw-ice.360yield.com

IN A

54.73.231.133

euw-ice.360yield.com

IN A

52.51.2.157
DNS

ad.360yield-basic.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ad.360yield-basic.com

IN A

Response

ad.360yield-basic.com

IN CNAME

ice.360yield-basic.com

ice.360yield-basic.com

IN CNAME

ice.360yield.com

ice.360yield.com

IN CNAME

euw-ice.360yield.com

euw-ice.360yield.com

IN A

52.51.2.157

euw-ice.360yield.com

IN A

54.73.231.133

euw-ice.360yield.com

IN A

54.155.206.189

euw-ice.360yield.com

IN A

34.255.155.127

euw-ice.360yield.com

IN A

34.246.179.114

euw-ice.360yield.com

IN A

34.255.242.185

euw-ice.360yield.com

IN A

54.194.204.172

euw-ice.360yield.com

IN A

18.200.130.123
POST

https://rtb.openx.net/openrtbb/prebidjs

chrome.exe

Remote address:

35.227.252.103:443

Request

POST /openrtbb/prebidjs HTTP/2.0
host: rtb.openx.net
content-length: 2197
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://prebid.media.net/rtb/prebid?cid=8CUB64530

chrome.exe

Remote address:

34.120.63.153:443

Request

POST /rtb/prebid?cid=8CUB64530 HTTP/2.0
host: prebid.media.net
content-length: 3178
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://api.rlcdn.com/api/identity/envelope?pid=13963&ct=1&cv=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

34.120.133.55:443

Request

GET /api/identity/envelope?pid=13963&ct=1&cv=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: api.rlcdn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://prg.smartadserver.com/prebid/v1

chrome.exe

Remote address:

5.196.111.64:443

Request

POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
Connection: keep-alive
Content-Length: 1121
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok

Response

HTTP/1.1 200 OK

content-type: application/json; charset=UTF-8
date: Tue, 25 Jun 2024 16:34:30 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d16999%3b%24o%3d11100; expires=Wed, 25 Jun 2025 16:34:30 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: vs=342899=6038914; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: TestIfCookie=ok; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: TestIfCookieP=ok; expires=Wed, 25 Jun 2025 16:34:30 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:34:30 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; expires=Wed, 26 Jun 2024 16:34:30 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; expires=Wed, 26 Jun 2024 16:34:30 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://prg.smartadserver.com/prebid/v1

chrome.exe

Remote address:

5.196.111.64:443

Request

POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
Connection: keep-alive
Content-Length: 1122
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: application/json; charset=UTF-8
date: Tue, 25 Jun 2024 16:34:40 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038914; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:34:40 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://prebid-server.rubiconproject.com/openrtb2/auction

chrome.exe

Remote address:

69.173.156.150:443

Request

POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
Connection: keep-alive
Content-Length: 2612
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
x-prebid: pbs-java/3.3.0
Content-Type: application/json
content-encoding: gzip
content-length: 173
POST

https://prebid-server.rubiconproject.com/openrtb2/auction

chrome.exe

Remote address:

69.173.156.150:443

Request

POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
Connection: keep-alive
Content-Length: 2670
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
x-prebid: pbs-java/3.3.0
Content-Type: application/json
content-encoding: gzip
content-length: 174
POST

https://prebid-server.rubiconproject.com/openrtb2/auction

chrome.exe

Remote address:

69.173.156.150:443

Request

POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
Connection: keep-alive
Content-Length: 2670
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
x-prebid: pbs-java/3.3.0
Content-Type: application/json
content-encoding: gzip
content-length: 173
POST

https://prebid-server.rubiconproject.com/openrtb2/auction

chrome.exe

Remote address:

69.173.156.150:443

Request

POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
Connection: keep-alive
Content-Length: 2670
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
x-prebid: pbs-java/3.3.0
Content-Type: application/json
content-encoding: gzip
content-length: 174
POST

https://prebid-server.rubiconproject.com/openrtb2/auction

chrome.exe

Remote address:

69.173.156.150:443

Request

POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
Connection: keep-alive
Content-Length: 2599
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
x-prebid: pbs-java/3.3.0
Content-Type: application/json
content-encoding: gzip
content-length: 173
POST

https://prebid-server.rubiconproject.com/openrtb2/auction

chrome.exe

Remote address:

69.173.156.150:443

Request

POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
Connection: keep-alive
Content-Length: 2648
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
x-prebid: pbs-java/3.3.0
Content-Type: application/json
content-encoding: gzip
content-length: 173
POST

https://prebid-server.rubiconproject.com/openrtb2/auction

chrome.exe

Remote address:

69.173.156.150:443

Request

POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
Connection: keep-alive
Content-Length: 2648
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
x-prebid: pbs-java/3.3.0
Content-Type: application/json
content-encoding: gzip
content-length: 174
POST

https://prebid-server.rubiconproject.com/openrtb2/auction

chrome.exe

Remote address:

69.173.156.150:443

Request

POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
Connection: keep-alive
Content-Length: 2648
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
x-prebid: pbs-java/3.3.0
Content-Type: application/json
content-encoding: gzip
content-length: 172
POST

https://prebid-server.rubiconproject.com/openrtb2/auction

chrome.exe

Remote address:

69.173.156.150:443

Request

POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
Connection: keep-alive
Content-Length: 2648
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gq4J0tTKkqDpS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
x-prebid: pbs-java/3.3.0
Content-Type: application/json
content-encoding: gzip
content-length: 174
POST

https://bidder.criteo.com/cdb?profileId=207&av=36&wv=8.27.0&cb=60021215696&lsavail=0

chrome.exe

Remote address:

178.250.1.8:443

Request

POST /cdb?profileId=207&av=36&wv=8.27.0&cb=60021215696&lsavail=0 HTTP/2.0
host: bidder.criteo.com
content-length: 2608
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:34:29 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://bidder.criteo.com/cdb?ptv=139&profileId=185&av=36&wv=8.27.0&cb=40843460864

chrome.exe

Remote address:

178.250.1.8:443

Request

POST /cdb?ptv=139&profileId=185&av=36&wv=8.27.0&cb=40843460864 HTTP/2.0
host: bidder.criteo.com
content-length: 2977
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:34:39 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://bidder.criteo.com/csm/events

chrome.exe

Remote address:

178.250.1.8:443

Request

POST /csm/events HTTP/2.0
host: bidder.criteo.com
content-length: 223
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:34:39 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
DNS

s.amazon-adsystem.com

chrome.exe

Remote address:

8.8.8.8:53

Request

s.amazon-adsystem.com

IN A

Response

s.amazon-adsystem.com

IN A

52.46.151.131
DNS

i.liadm.com

chrome.exe

Remote address:

8.8.8.8:53

Request

i.liadm.com

IN A

Response

i.liadm.com

IN CNAME

idaas-ext.cph.liveintent.com

idaas-ext.cph.liveintent.com

IN A

34.234.127.232

idaas-ext.cph.liveintent.com

IN A

52.203.46.124

idaas-ext.cph.liveintent.com

IN A

52.205.95.49

idaas-ext.cph.liveintent.com

IN A

52.23.112.231

idaas-ext.cph.liveintent.com

IN A

23.22.69.33

idaas-ext.cph.liveintent.com

IN A

44.198.92.90

idaas-ext.cph.liveintent.com

IN A

52.4.234.210

idaas-ext.cph.liveintent.com

IN A

44.214.123.156
POST

https://ad.360yield-basic.com/pb

chrome.exe

Remote address:

52.212.11.67:443

Request

POST /pb HTTP/2.0
host: ad.360yield-basic.com
content-length: 2140
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:34:30 GMT
access-control-allow-origin: https://mm-watch.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
POST

https://ad.360yield-basic.com/pb

chrome.exe

Remote address:

52.212.11.67:443

Request

POST /pb HTTP/2.0
host: ad.360yield-basic.com
content-length: 2198
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:34:40 GMT
access-control-allow-origin: https://mm-watch.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
POST

https://ad.360yield-basic.com/pb

chrome.exe

Remote address:

52.212.11.67:443

Request

POST /pb HTTP/2.0
host: ad.360yield-basic.com
content-length: 2198
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:34:55 GMT
access-control-allow-origin: https://mm-watch.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
POST

https://ad.360yield-basic.com/pb

chrome.exe

Remote address:

52.212.11.67:443

Request

POST /pb HTTP/2.0
host: ad.360yield-basic.com
content-length: 2197
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:10 GMT
access-control-allow-origin: https://mm-watch.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
POST

https://ad.360yield-basic.com/pb

chrome.exe

Remote address:

52.212.11.67:443

Request

POST /pb HTTP/2.0
host: ad.360yield-basic.com
content-length: 2134
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:20 GMT
access-control-allow-origin: https://mm-watch.com
access-control-allow-credentials: true
POST

https://ad.360yield-basic.com/pb

chrome.exe

Remote address:

52.212.11.67:443

Request

POST /pb HTTP/2.0
host: ad.360yield-basic.com
content-length: 2183
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:29 GMT
access-control-allow-origin: https://mm-watch.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
POST

https://ad.360yield-basic.com/pb

chrome.exe

Remote address:

52.212.11.67:443

Request

POST /pb HTTP/2.0
host: ad.360yield-basic.com
content-length: 2183
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:44 GMT
access-control-allow-origin: https://mm-watch.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
POST

https://ad.360yield-basic.com/pb

chrome.exe

Remote address:

52.212.11.67:443

Request

POST /pb HTTP/2.0
host: ad.360yield-basic.com
content-length: 2183
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:59 GMT
access-control-allow-origin: https://mm-watch.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
POST

https://ad.360yield-basic.com/pb

chrome.exe

Remote address:

52.212.11.67:443

Request

POST /pb HTTP/2.0
host: ad.360yield-basic.com
content-length: 2185
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:36:14 GMT
access-control-allow-origin: https://mm-watch.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
DNS

rtb.channelexco.com

chrome.exe

Remote address:

8.8.8.8:53

Request

rtb.channelexco.com

IN A

Response

rtb.channelexco.com

IN CNAME

p-lb.cdtx.co

p-lb.cdtx.co

IN A

23.81.164.159
DNS

rtb.channelexco.com

chrome.exe

Remote address:

8.8.8.8:53

Request

rtb.channelexco.com

IN A

Response

rtb.channelexco.com

IN CNAME

p-lb.cdtx.co

p-lb.cdtx.co

IN A

23.81.164.159
GET

https://s.amazon-adsystem.com/dcm?pid=78af914c-e755-4b90-bded-1b172aedc763&us_privacy=&gdpr=&gdpr_consent=&id=ZnrxlrmqPq8AAFKyAdC9GwAAETMAAAAB&gpp=&gpp_sid=

chrome.exe

Remote address:

52.46.151.131:443

Request

GET /dcm?pid=78af914c-e755-4b90-bded-1b172aedc763&us_privacy=&gdpr=&gdpr_consent=&id=ZnrxlrmqPq8AAFKyAdC9GwAAETMAAAAB&gpp=&gpp_sid= HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ssum-sec.casalemedia.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

Server: Server
Date: Tue, 25 Jun 2024 16:34:30 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: YR7XAB22XC75G85AT45A
Set-Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI|t; Domain=.amazon-adsystem.com; Expires=Wed, 01-Jan-2025 16:34:30 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/dcm?pid=78af914c-e755-4b90-bded-1b172aedc763&us_privacy=&gdpr=&gdpr_consent=&id=ZnrxlrmqPq8AAFKyAdC9GwAAETMAAAAB&gpp=&gpp_sid=&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://s.amazon-adsystem.com/dcm?pid=78af914c-e755-4b90-bded-1b172aedc763&us_privacy=&gdpr=&gdpr_consent=&id=ZnrxlrmqPq8AAFKyAdC9GwAAETMAAAAB&gpp=&gpp_sid=&dcc=t

chrome.exe

Remote address:

52.46.151.131:443

Request

GET /dcm?pid=78af914c-e755-4b90-bded-1b172aedc763&us_privacy=&gdpr=&gdpr_consent=&id=ZnrxlrmqPq8AAFKyAdC9GwAAETMAAAAB&gpp=&gpp_sid=&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ssum-sec.casalemedia.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI|t

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:34:31 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: KNFB4V7FDK868N6RD8VJ
Set-Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; Domain=.amazon-adsystem.com; Expires=Wed, 01-Jan-2025 16:34:31 GMT; Path=/; Secure; HttpOnly; SameSite=None
Set-Cookie: ad-privacy=0; Domain=.amazon-adsystem.com; Expires=Sun, 01-Jul-2029 16:34:31 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

52.46.151.131:443

Request

GET /dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 302 Found

Server: Server
Date: Tue, 25 Jun 2024 16:34:31 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: B86KG4Z2ZRWB2GHQXJY0
Set-Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; Domain=.amazon-adsystem.com; Expires=Wed, 01-Jan-2025 16:34:31 GMT; Path=/; Secure; HttpOnly; SameSite=None
Set-Cookie: ad-privacy=0; Domain=.amazon-adsystem.com; Expires=Sun, 01-Jul-2029 16:34:31 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://pixel.rubiconproject.com/token?pid=2179&pt=n&puid=-aiq0gcVS-CVYUVZDwpb0A&rk=usync-na&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://s.amazon-adsystem.com/ecm3?id=LXUMMYH8-18-IISD&ex=d-rubiconproject.com&status=ok&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

52.46.151.131:443

Request

GET /ecm3?id=LXUMMYH8-18-IISD&ex=d-rubiconproject.com&status=ok&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:34:31 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: 88W89DN67X14Z6JYP3E0
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://s.amazon-adsystem.com/ecm3?ex=rubiconprojectHMT&id=-aiq0gcVS-CVYUVZDwpb0A&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

52.46.151.131:443

Request

GET /ecm3?ex=rubiconprojectHMT&id=-aiq0gcVS-CVYUVZDwpb0A&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:34:31 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: 5TAB662F18FXBER4PFEZ
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://s.amazon-adsystem.com/dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

52.46.151.131:443

Request

GET /dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:34:33 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: GZ4EXZ7S191H4PZ21N6Z
Set-Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; Domain=.amazon-adsystem.com; Expires=Wed, 01-Jan-2025 16:34:33 GMT; Path=/; Secure; HttpOnly; SameSite=None
Set-Cookie: ad-privacy=0; Domain=.amazon-adsystem.com; Expires=Sun, 01-Jul-2029 16:34:33 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://s.amazon-adsystem.com/dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

52.46.151.131:443

Request

GET /dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:35:25 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: 34GH995R1AAKKBB405XN
Set-Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; Domain=.amazon-adsystem.com; Expires=Wed, 01-Jan-2025 16:35:25 GMT; Path=/; Secure; HttpOnly; SameSite=None
Set-Cookie: ad-privacy=0; Domain=.amazon-adsystem.com; Expires=Sun, 01-Jul-2029 16:35:25 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
DNS

dsum-sec.casalemedia.com

chrome.exe

Remote address:

8.8.8.8:53

Request

dsum-sec.casalemedia.com

IN A

Response

dsum-sec.casalemedia.com

IN A

172.64.151.101

dsum-sec.casalemedia.com

IN A

104.18.36.155
DNS

trace.mediago.io

chrome.exe

Remote address:

8.8.8.8:53

Request

trace.mediago.io

IN A

Response

trace.mediago.io

IN A

35.208.249.213
DNS

dmp.brand-display.com

chrome.exe

Remote address:

8.8.8.8:53

Request

dmp.brand-display.com

IN A

Response

dmp.brand-display.com

IN A

34.160.19.107
DNS

sync-tm.everesttech.net

chrome.exe

Remote address:

8.8.8.8:53

Request

sync-tm.everesttech.net

IN A

Response

sync-tm.everesttech.net

IN CNAME

sync.tubemogul.com

sync.tubemogul.com

IN CNAME

syncf.tubemogul.com

syncf.tubemogul.com

IN CNAME

h2.shared.global.fastly.net

h2.shared.global.fastly.net

IN A

151.101.130.49

h2.shared.global.fastly.net

IN A

151.101.66.49

h2.shared.global.fastly.net

IN A

151.101.194.49

h2.shared.global.fastly.net

IN A

151.101.2.49
DNS

e.channelexco.com

chrome.exe

Remote address:

8.8.8.8:53

Request

e.channelexco.com

IN A

Response

e.channelexco.com

IN CNAME

e-lb.cdtx.co

e-lb.cdtx.co

IN A

23.19.226.132
GET

https://rtb.channelexco.com/cookie_sync?bid=19349&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=8159859772855155319

chrome.exe

Remote address:

23.81.164.159:443

Request

GET /cookie_sync?bid=19349&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=8159859772855155319 HTTP/2.0
host: rtb.channelexco.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592

Response

HTTP/2.0 204

server: openresty
date: Tue, 25 Jun 2024 16:34:31 GMT
set-cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592; Expires=Mon, 23-Sep-24 16:34:31 GMT; Max-Age=7776000; Domain=.channelexco.com; Path=/; Secure; SameSite=None
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: 0
vary: Origin
GET

https://rtb.channelexco.com/cookie_sync?bid=12517&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=ZnrxlrmqPq8AAFKyAdC9GwAA%264403

chrome.exe

Remote address:

23.81.164.159:443

Request

GET /cookie_sync?bid=12517&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=ZnrxlrmqPq8AAFKyAdC9GwAA%264403 HTTP/2.0
host: rtb.channelexco.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssum-sec.casalemedia.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592

Response

HTTP/2.0 204

server: openresty
date: Tue, 25 Jun 2024 16:34:31 GMT
set-cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592; Expires=Mon, 23-Sep-24 16:34:31 GMT; Max-Age=7776000; Domain=.channelexco.com; Path=/; Secure; SameSite=None
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: 0
vary: Origin
GET

https://rtb.channelexco.com/cookie_sync?bid=12295&srv=channelexco.com&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

23.81.164.159:443

Request

GET /cookie_sync?bid=12295&srv=channelexco.com&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: rtb.channelexco.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592

Response

HTTP/2.0 204

server: openresty
date: Tue, 25 Jun 2024 16:34:32 GMT
set-cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592; Expires=Mon, 23-Sep-24 16:34:32 GMT; Max-Age=7776000; Domain=.channelexco.com; Path=/; Secure; SameSite=None
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: 0
vary: Origin
GET

https://rtb.channelexco.com/cookie_sync?bid=20543&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=6F33541D-0234-4D12-A971-323BE606F1A8

chrome.exe

Remote address:

23.81.164.159:443

Request

GET /cookie_sync?bid=20543&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=6F33541D-0234-4D12-A971-323BE606F1A8 HTTP/2.0
host: rtb.channelexco.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592

Response

HTTP/2.0 204

server: openresty
date: Tue, 25 Jun 2024 16:34:34 GMT
set-cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592; Expires=Mon, 23-Sep-24 16:34:34 GMT; Max-Age=7776000; Domain=.channelexco.com; Path=/; Secure; SameSite=None
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: 0
vary: Origin
GET

https://rtb.channelexco.com/cookie_sync?bid=20543&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=6F33541D-0234-4D12-A971-323BE606F1A8

chrome.exe

Remote address:

23.81.164.159:443

Request

GET /cookie_sync?bid=20543&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=6F33541D-0234-4D12-A971-323BE606F1A8 HTTP/2.0
host: rtb.channelexco.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592

Response

HTTP/2.0 204

server: openresty
date: Tue, 25 Jun 2024 16:34:37 GMT
set-cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592; Expires=Mon, 23-Sep-24 16:34:37 GMT; Max-Age=7776000; Domain=.channelexco.com; Path=/; Secure; SameSite=None
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: 0
vary: Origin
GET

https://rtb.channelexco.com/cookie_sync?bid=20543&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=6F33541D-0234-4D12-A971-323BE606F1A8

chrome.exe

Remote address:

23.81.164.159:443

Request

GET /cookie_sync?bid=20543&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=6F33541D-0234-4D12-A971-323BE606F1A8 HTTP/2.0
host: rtb.channelexco.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592

Response

HTTP/2.0 204

server: openresty
date: Tue, 25 Jun 2024 16:35:04 GMT
set-cookie: cedsess=efbe3a6d-e5ed-450b-8e47-518e785e2592; Expires=Mon, 23-Sep-24 16:35:04 GMT; Max-Age=7776000; Domain=.channelexco.com; Path=/; Secure; SameSite=None
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: 0
vary: Origin
DNS

euexchangesync.digitaleast.mobi

chrome.exe

Remote address:

8.8.8.8:53

Request

euexchangesync.digitaleast.mobi

IN A

Response

euexchangesync.digitaleast.mobi

IN A

34.95.81.168
GET

https://dmp.brand-display.com/cm/api/index?cm_dsp_id=191&cm_user_id=%3cIndex_user_id%3e

chrome.exe

Remote address:

34.160.19.107:443

Request

GET /cm/api/index?cm_dsp_id=191&cm_user_id=%3cIndex_user_id%3e HTTP/2.0
host: dmp.brand-display.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssum-sec.casalemedia.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://trace.mediago.io/ju/cs/indexexchange

chrome.exe

Remote address:

35.208.249.213:443

Request

GET /ju/cs/indexexchange HTTP/2.0
host: trace.mediago.io
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssum-sec.casalemedia.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

230.193.210.162.in-addr.arpa

Remote address:

8.8.8.8:53

Request

230.193.210.162.in-addr.arpa

IN PTR

Response
DNS

25.71.232.3.in-addr.arpa

Remote address:

8.8.8.8:53

Request

25.71.232.3.in-addr.arpa

IN PTR

Response

25.71.232.3.in-addr.arpa

IN PTR

ec2-3-232-71-25 compute-1 amazonawscom
DNS

239.188.21.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

239.188.21.2.in-addr.arpa

IN PTR

Response

239.188.21.2.in-addr.arpa

IN PTR

a2-21-188-239deploystaticakamaitechnologiescom
DNS

190.223.60.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

190.223.60.23.in-addr.arpa

IN PTR

Response

190.223.60.23.in-addr.arpa

IN PTR

a23-60-223-190deploystaticakamaitechnologiescom
DNS

101.151.64.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

101.151.64.172.in-addr.arpa

IN PTR

Response
DNS

133.110.134.91.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.110.134.91.in-addr.arpa

IN PTR

Response

133.110.134.91.in-addr.arpa

IN PTR

ip133 ip-91-134-110eu
DNS

81.250.54.154.in-addr.arpa

Remote address:

8.8.8.8:53

Request

81.250.54.154.in-addr.arpa

IN PTR

Response
DNS

8.159.244.35.in-addr.arpa

Remote address:

8.8.8.8:53

Request

8.159.244.35.in-addr.arpa

IN PTR

Response

8.159.244.35.in-addr.arpa

IN PTR

815924435bcgoogleusercontentcom
DNS

97.238.202.149.in-addr.arpa

Remote address:

8.8.8.8:53

Request

97.238.202.149.in-addr.arpa

IN PTR

Response

97.238.202.149.in-addr.arpa

IN PTR

ip97ip-149-202-238eu
DNS

25.236.33.63.in-addr.arpa

Remote address:

8.8.8.8:53

Request

25.236.33.63.in-addr.arpa

IN PTR

Response

25.236.33.63.in-addr.arpa

IN PTR

ec2-63-33-236-25 eu-west-1compute amazonawscom
DNS

50.201.222.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

50.201.222.52.in-addr.arpa

IN PTR

Response

50.201.222.52.in-addr.arpa

IN PTR

server-52-222-201-50cdg50r cloudfrontnet
DNS

250.9.23.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

250.9.23.2.in-addr.arpa

IN PTR

Response

250.9.23.2.in-addr.arpa

IN PTR

a2-23-9-250deploystaticakamaitechnologiescom
DNS

198.40.223.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

198.40.223.52.in-addr.arpa

IN PTR

Response

198.40.223.52.in-addr.arpa

IN PTR

a6370ebea231e0c9aawsglobalacceleratorcom
DNS

153.63.120.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

153.63.120.34.in-addr.arpa

IN PTR

Response

153.63.120.34.in-addr.arpa

IN PTR

1536312034bcgoogleusercontentcom
DNS

15.45.49.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

15.45.49.52.in-addr.arpa

IN PTR

Response

15.45.49.52.in-addr.arpa

IN PTR

ec2-52-49-45-15 eu-west-1compute amazonawscom
DNS

103.252.227.35.in-addr.arpa

Remote address:

8.8.8.8:53

Request

103.252.227.35.in-addr.arpa

IN PTR

Response

103.252.227.35.in-addr.arpa

IN PTR

10325222735bcgoogleusercontentcom
DNS

55.133.120.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

55.133.120.34.in-addr.arpa

IN PTR

Response

55.133.120.34.in-addr.arpa

IN PTR

5513312034bcgoogleusercontentcom
DNS

64.111.196.5.in-addr.arpa

Remote address:

8.8.8.8:53

Request

64.111.196.5.in-addr.arpa

IN PTR

Response

64.111.196.5.in-addr.arpa

IN PTR

ip64ip-5-196-111eu
DNS

78.164.217.54.in-addr.arpa

Remote address:

8.8.8.8:53

Request

78.164.217.54.in-addr.arpa

IN PTR

Response

78.164.217.54.in-addr.arpa

IN PTR

ec2-54-217-164-78 eu-west-1compute amazonawscom
DNS

150.156.173.69.in-addr.arpa

Remote address:

8.8.8.8:53

Request

150.156.173.69.in-addr.arpa

IN PTR

Response
DNS

8.1.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

8.1.250.178.in-addr.arpa

IN PTR

Response
DNS

82.224.57.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

82.224.57.52.in-addr.arpa

IN PTR

Response

82.224.57.52.in-addr.arpa

IN PTR

ec2-52-57-224-82eu-central-1compute amazonawscom
DNS

67.11.212.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.11.212.52.in-addr.arpa

IN PTR

Response

67.11.212.52.in-addr.arpa

IN PTR

ec2-52-212-11-67 eu-west-1compute amazonawscom
GET

https://euexchangesync.digitaleast.mobi/usersync/index.gif?us_privacy=&gdpr=&gdpr_consent=&gpp=&gpp_sid=

chrome.exe

Remote address:

34.95.81.168:443

Request

GET /usersync/index.gif?us_privacy=&gdpr=&gdpr_consent=&gpp=&gpp_sid= HTTP/2.0
host: euexchangesync.digitaleast.mobi
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssum-sec.casalemedia.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

cm.g.doubleclick.net

chrome.exe

Remote address:

8.8.8.8:53

Request

cm.g.doubleclick.net

IN A

Response

cm.g.doubleclick.net

IN A

216.58.201.98
DNS

image6.pubmatic.com

chrome.exe

Remote address:

8.8.8.8:53

Request

image6.pubmatic.com

IN A

Response

image6.pubmatic.com

IN CNAME

image6v2.pubmnet.com

image6v2.pubmnet.com

IN CNAME

pugm-lhrc.pubmnet.com

pugm-lhrc.pubmnet.com

IN A

185.64.190.78
DNS

creatives.sascdn.com

chrome.exe

Remote address:

8.8.8.8:53

Request

creatives.sascdn.com

IN A

Response

creatives.sascdn.com

IN CNAME

creatives.cdn-prod-sas.akadns.net

creatives.cdn-prod-sas.akadns.net

IN CNAME

creatives-ak.sascdn.com

creatives-ak.sascdn.com

IN CNAME

creatives.sascdn.com.edgesuite.net

creatives.sascdn.com.edgesuite.net

IN CNAME

a1831.dscb.akamai.net

a1831.dscb.akamai.net

IN A

23.14.90.90

a1831.dscb.akamai.net

IN A

23.14.90.72
DNS

creatives.sascdn.com

chrome.exe

Remote address:

8.8.8.8:53

Request

creatives.sascdn.com

IN A

Response

creatives.sascdn.com

IN CNAME

creatives.cdn-prod-sas.akadns.net

creatives.cdn-prod-sas.akadns.net

IN CNAME

creatives-ak.sascdn.com

creatives-ak.sascdn.com

IN CNAME

creatives.sascdn.com.edgesuite.net

creatives.sascdn.com.edgesuite.net

IN CNAME

a1831.dscb.akamai.net

a1831.dscb.akamai.net

IN A

23.14.90.90

a1831.dscb.akamai.net

IN A

23.14.90.72
DNS

collector.ex.co

chrome.exe

Remote address:

8.8.8.8:53

Request

collector.ex.co

IN A

Response

collector.ex.co

IN A

52.205.135.229

collector.ex.co

IN A

54.163.249.122

collector.ex.co

IN A

44.219.102.171
GET

https://cm.g.doubleclick.net/pixel?google_nid=casale_media2_dbm&google_cm&google_sc&google_hm=ZnrxlrmqPq8AAFKyAdC9GwAA

chrome.exe

Remote address:

216.58.201.98:443

Request

GET /pixel?google_nid=casale_media2_dbm&google_cm&google_sc&google_hm=ZnrxlrmqPq8AAFKyAdC9GwAA HTTP/2.0
host: cm.g.doubleclick.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssum-sec.casalemedia.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://image6.pubmatic.com/AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=86447134&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=0&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

chrome.exe

Remote address:

185.64.190.78:443

Request

GET /AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=86447134&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=0&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy= HTTP/2.0
host: image6.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
set-cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8; domain=pubmatic.com; path=/; max-age=31536000; SameSite=None; secure;
set-cookie: chkChromeAb67Sec=1; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
set-cookie: pi=158554:2; domain=pubmatic.com; path=/; max-age=86400; SameSite=None; secure;
set-cookie: DPSync3=1720483200%3A201_245_241_227; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
set-cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
date: Tue, 25 Jun 2024 16:34:30 GMT
GET

https://image6.pubmatic.com/AdServer/UCookieSetPug?rd=https%3A%2F%2Fidsync.frontend.weborama.fr%2Fids%3Fkey%3Dpubmatic%26value%3D%23PM_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

185.64.190.78:443

Request

GET /AdServer/UCookieSetPug?rd=https%3A%2F%2Fidsync.frontend.weborama.fr%2Fids%3Fkey%3Dpubmatic%26value%3D%23PM_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: image6.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: PugT=1719333272

Response

HTTP/2.0 302

content-type: text/html; charset=UTF-8
location: https://idsync.frontend.weborama.fr/ids?key=pubmatic&value=6F33541D-0234-4D12-A971-323BE606F1A8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Tue, 25 Jun 2024 16:34:31 GMT
content-length: 0
GET

https://image6.pubmatic.com/AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=22981483&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=1&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

chrome.exe

Remote address:

185.64.190.78:443

Request

GET /AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=22981483&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=1&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy= HTTP/2.0
host: image6.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: PugT=1719333271
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: SPugT=1719333272

Response

HTTP/2.0 200

content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
set-cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8; domain=pubmatic.com; path=/; max-age=31536000; SameSite=None; secure;
set-cookie: chkChromeAb67Sec=2; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
set-cookie: pi=158554:4; domain=pubmatic.com; path=/; max-age=86400; SameSite=None; secure;
set-cookie: DPSync3=1720483200%3A219_197_201_245_241_227_226; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
set-cookie: SyncRTB3=1720569600%3A35%7C1720483200%3A81_249_233_8_13_3_238_251_55_22_254_21_234_264_71_220_56_176_243_54_214_161_166_88_46_266_165_99%7C1720137600%3A63%7C1719878400%3A2_15_223%7C1721865600%3A203%7C1724457600%3A69; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
date: Tue, 25 Jun 2024 16:34:33 GMT
GET

https://image6.pubmatic.com/AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=23923092&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=1&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

chrome.exe

Remote address:

185.64.190.78:443

Request

GET /AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=23923092&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=1&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy= HTTP/2.0
host: image6.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: PugT=1719333271
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: SPugT=1719333272

Response

HTTP/2.0 200

content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
set-cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8; domain=pubmatic.com; path=/; max-age=31536000; SameSite=None; secure;
set-cookie: chkChromeAb67Sec=2; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
set-cookie: pi=158554:4; domain=pubmatic.com; path=/; max-age=86400; SameSite=None; secure;
set-cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
set-cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
date: Tue, 25 Jun 2024 16:34:32 GMT
GET

https://image6.pubmatic.com/AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=71204157&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=1&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

chrome.exe

Remote address:

185.64.190.78:443

Request

GET /AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=71204157&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=1&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy= HTTP/2.0
host: image6.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: pi=160648:3
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY
cookie: PugT=1719333274
cookie: chkChromeAb67Sec=4
cookie: SPugT=1719333275

Response

HTTP/2.0 200

content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
set-cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8; domain=pubmatic.com; path=/; max-age=31536000; SameSite=None; secure;
set-cookie: chkChromeAb67Sec=5; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
set-cookie: pi=158554:4; domain=pubmatic.com; path=/; max-age=86400; SameSite=None; secure;
date: Tue, 25 Jun 2024 16:34:37 GMT
content-length: 47
GET

https://image6.pubmatic.com/AdServer/UCookieSetPug?&rd=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D91%26partneruserid%3D%23PM_USER_ID%26gdpr%3DPM_GDPR%26gdpr_consent%3DPM_CONSENT&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

185.64.190.78:443

Request

GET /AdServer/UCookieSetPug?&rd=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D91%26partneruserid%3D%23PM_USER_ID%26gdpr%3DPM_GDPR%26gdpr_consent%3DPM_CONSENT&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: image6.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY
cookie: PugT=1719333274
cookie: SPugT=1719333275
cookie: chkChromeAb67Sec=5
cookie: pi=158554:4

Response

HTTP/2.0 302

content-type: text/html; charset=UTF-8
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=91&partneruserid=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Tue, 25 Jun 2024 16:35:24 GMT
content-length: 0
GET

https://creatives.sascdn.com/shim.gif

chrome.exe

Remote address:

23.14.90.90:443

Request

GET /shim.gif HTTP/1.1
Host: creatives.sascdn.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Type: image/gif
ETag: "221d8352905f2c38b3cb2bd191d630b0:1534508580"
Last-Modified: Fri, 17 Aug 2018 12:23:00 GMT
Server: AkamaiNetStorage
Content-Length: 43
Cache-Control: max-age=31536000
Expires: Wed, 25 Jun 2025 16:34:30 GMT
Date: Tue, 25 Jun 2024 16:34:30 GMT
Connection: keep-alive
DNS

token.rubiconproject.com

chrome.exe

Remote address:

8.8.8.8:53

Request

token.rubiconproject.com

IN A

Response

token.rubiconproject.com

IN CNAME

pixel.rubiconproject.net.akadns.net

pixel.rubiconproject.net.akadns.net

IN A

69.173.156.148

pixel.rubiconproject.net.akadns.net

IN A

69.173.156.149
DNS

dsum.casalemedia.com

chrome.exe

Remote address:

8.8.8.8:53

Request

dsum.casalemedia.com

IN A

Response

dsum.casalemedia.com

IN A

104.18.36.155

dsum.casalemedia.com

IN A

172.64.151.101
DNS

ssbsync-global.smartadserver.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ssbsync-global.smartadserver.com

IN A

Response

ssbsync-global.smartadserver.com

IN CNAME

usersync-geo-global.usersync-prod-sas.akadns.net

usersync-geo-global.usersync-prod-sas.akadns.net

IN CNAME

ssbsync-euw2.smartadserver.com

ssbsync-euw2.smartadserver.com

IN A

164.132.25.180

ssbsync-euw2.smartadserver.com

IN A

51.178.195.212

ssbsync-euw2.smartadserver.com

IN A

217.182.178.228

ssbsync-euw2.smartadserver.com

IN A

5.135.209.100

ssbsync-euw2.smartadserver.com

IN A

178.32.210.230

ssbsync-euw2.smartadserver.com

IN A

178.32.197.52

ssbsync-euw2.smartadserver.com

IN A

178.32.197.53

ssbsync-euw2.smartadserver.com

IN A

91.134.110.133

ssbsync-euw2.smartadserver.com

IN A

178.32.210.231

ssbsync-euw2.smartadserver.com

IN A

217.182.178.229

ssbsync-euw2.smartadserver.com

IN A

5.196.111.69

ssbsync-euw2.smartadserver.com

IN A

5.135.209.101

ssbsync-euw2.smartadserver.com

IN A

149.202.238.100

ssbsync-euw2.smartadserver.com

IN A

5.196.111.68

ssbsync-euw2.smartadserver.com

IN A

164.132.25.181

ssbsync-euw2.smartadserver.com

IN A

91.134.110.132

ssbsync-euw2.smartadserver.com

IN A

149.202.238.101

ssbsync-euw2.smartadserver.com

IN A

51.178.195.213
GET

https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /khaos.json?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://eus.rubiconproject.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
access-control-allow-credentials: true
access-control-allow-origin: https://eus.rubiconproject.com
content-type: application/json; charset=UTF-8
content-length: 7
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/token?pid=2974&pt=n&a=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /token?pid=2974&pt=n&a=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://pr-bh.ybp.yahoo.com/sync/rubicon/rU7gvgu_pdSO_lqhmayVYMn5EUdSAgOZEtemQ7w0kco?csrc=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/token?pid=2249&pt=n&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /token?pid=2249&pt=n&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://cm.g.doubleclick.net/pixel?google_nid=rubicon&google_hm=NDJjNGZkZDU5ZjgxMjZkNDFiZTM5N2VlNjE5NWU2NGI5OTI0ODExZQ&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
DNS

a.nel.cloudflare.com

chrome.exe

Remote address:

8.8.8.8:53

Request

a.nel.cloudflare.com

IN A

Response

a.nel.cloudflare.com

IN A

35.190.80.1
DNS

dis.criteo.com

chrome.exe

Remote address:

8.8.8.8:53

Request

dis.criteo.com

IN A

Response

dis.criteo.com

IN CNAME

widget.nl3.vip.prod.criteo.com

widget.nl3.vip.prod.criteo.com

IN A

178.250.1.9
OPTIONS

https://a.nel.cloudflare.com/report/v4?s=ajcS%2FkGs6qlTR2l%2FmZbNpoZV7ap%2F3bKYW%2BucuE8jRmEOgP%2Bxdai4GmNjSJ7GNqkggspWcFlZljjUbO%2BawRUIKJJqIOOhAAVOZ5QhgFn7UgRNZbsvThIWYUJvQifVYZAliTD7ydkGHzbtUQ%3D%3D

chrome.exe

Remote address:

35.190.80.1:443

Request

OPTIONS /report/v4?s=ajcS%2FkGs6qlTR2l%2FmZbNpoZV7ap%2F3bKYW%2BucuE8jRmEOgP%2Bxdai4GmNjSJ7GNqkggspWcFlZljjUbO%2BawRUIKJJqIOOhAAVOZ5QhgFn7UgRNZbsvThIWYUJvQifVYZAliTD7ydkGHzbtUQ%3D%3D HTTP/2.0
host: a.nel.cloudflare.com
origin: https://dsum-sec.casalemedia.com
access-control-request-method: POST
access-control-request-headers: content-type
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

aax-eu.amazon-adsystem.com

chrome.exe

Remote address:

8.8.8.8:53

Request

aax-eu.amazon-adsystem.com

IN A

Response

aax-eu.amazon-adsystem.com

IN A

52.95.125.22
GET

https://dis.criteo.com/dis/usersync.aspx?r=3&p=4&cp=pubmaticUS&cu=1&&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&url=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:@@CRITEO_USERID@@

chrome.exe

Remote address:

178.250.1.9:443

Request

GET /dis/usersync.aspx?r=3&p=4&cp=pubmaticUS&cu=1&&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&url=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:@@CRITEO_USERID@@ HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/gif
date: Tue, 25 Jun 2024 16:34:30 GMT
server: Kestrel
cache-control: no-cache
expires: Tue, 25 Jun 2024 00:00:00 GMT
pragma: no-cache
x-errorlevel: 0
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
cross-origin-resource-policy: cross-origin
server-processing-duration-in-ticks: 264187
strict-transport-security: max-age=31536000; preload;
GET

https://dis.criteo.com/dis/usersync.aspx?r=115&p=226&cp=medianet&cu=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&gpp=&gpp_sid=&url=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D1%26type%3Dcrt%26ovsid%3D%40%40CRITEO_USERID%40%40

chrome.exe

Remote address:

178.250.1.9:443

Request

GET /dis/usersync.aspx?r=115&p=226&cp=medianet&cu=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&gpp=&gpp_sid=&url=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D1%26type%3Dcrt%26ovsid%3D%40%40CRITEO_USERID%40%40 HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://contextual.media.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:34:34 GMT
server: Kestrel
cache-control: no-cache
expires: Tue, 25 Jun 2024 00:00:00 GMT
location: https://contextual.media.net/cksync.php?cs=1&type=crt&ovsid=868b39e2-997b-433c-bce9-379e12258c8f&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&gpp=
pragma: no-cache
x-errorlevel: 0
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
cross-origin-resource-policy: cross-origin
server-processing-duration-in-ticks: 883789
strict-transport-security: max-age=31536000; preload;
DNS

ib.adnxs.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ib.adnxs.com

IN A

Response

ib.adnxs.com

IN CNAME

xandr-g-geo.trafficmanager.net

xandr-g-geo.trafficmanager.net

IN CNAME

ib.anycast.adnxs.com

ib.anycast.adnxs.com

IN A

185.89.210.122

ib.anycast.adnxs.com

IN A

185.89.210.212

ib.anycast.adnxs.com

IN A

185.89.210.90

ib.anycast.adnxs.com

IN A

185.89.210.20

ib.anycast.adnxs.com

IN A

185.89.210.82

ib.anycast.adnxs.com

IN A

185.89.211.84

ib.anycast.adnxs.com

IN A

185.89.210.244

ib.anycast.adnxs.com

IN A

185.89.210.153

ib.anycast.adnxs.com

IN A

185.89.210.141

ib.anycast.adnxs.com

IN A

185.89.211.116

ib.anycast.adnxs.com

IN A

185.89.210.180

ib.anycast.adnxs.com

IN A

185.89.210.46
GET

https://aax-eu.amazon-adsystem.com/s/dcm?pid=4bd6ceca-c698-4782-a536-f380f757484c&id=6F33541D-0234-4D12-A971-323BE606F1A8&redir=true&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

52.95.125.22:443

Request

GET /s/dcm?pid=4bd6ceca-c698-4782-a536-f380f757484c&id=6F33541D-0234-4D12-A971-323BE606F1A8&redir=true&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: aax-eu.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI|t

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:34:31 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: GZR99ZYPZS63DV4M3DPM
Set-Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; Domain=.amazon-adsystem.com; Expires=Wed, 01-Jan-2025 16:34:31 GMT; Path=/; Secure; HttpOnly; SameSite=None
Set-Cookie: ad-privacy=0; Domain=.amazon-adsystem.com; Expires=Sun, 01-Jul-2029 16:34:31 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

52.95.125.22:443

Request

GET /s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: aax-eu.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 302 Found

Server: Server
Date: Tue, 25 Jun 2024 16:34:31 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: KK1Q2NM5HZTM3252WZYK
Set-Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; Domain=.amazon-adsystem.com; Expires=Wed, 01-Jan-2025 16:34:31 GMT; Path=/; Secure; HttpOnly; SameSite=None
Set-Cookie: ad-privacy=0; Domain=.amazon-adsystem.com; Expires=Sun, 01-Jul-2029 16:34:31 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://pixel.rubiconproject.com/token?pid=2179&pt=n&puid=VyquXflKSZ-TKfuQZbAPVw&rk=usync-other&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://aax-eu.amazon-adsystem.com/s/ecm3?ex=rubiconprojectHMT&id=VyquXflKSZ-TKfuQZbAPVw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

52.95.125.22:443

Request

GET /s/ecm3?ex=rubiconprojectHMT&id=VyquXflKSZ-TKfuQZbAPVw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: aax-eu.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:34:31 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: SGA3MSK7C01H50TX4S2Q
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://aax-eu.amazon-adsystem.com/s/dcm?pid=fa457a28-e898-4449-9a1d-2b11dd13a271&id=825a6ab2-de9d-8dc6-869b-802331369313&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

52.95.125.22:443

Request

GET /s/dcm?pid=fa457a28-e898-4449-9a1d-2b11dd13a271&id=825a6ab2-de9d-8dc6-869b-802331369313&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: aax-eu.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://playbuzzltd-d.openx.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:34:34 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: SZMWFGJZ8NJCMY0JCVNN
Set-Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; Domain=.amazon-adsystem.com; Expires=Wed, 01-Jan-2025 16:34:34 GMT; Path=/; Secure; HttpOnly; SameSite=None
Set-Cookie: ad-privacy=0; Domain=.amazon-adsystem.com; Expires=Sun, 01-Jul-2029 16:34:34 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
DNS

cms.quantserve.com

chrome.exe

Remote address:

8.8.8.8:53

Request

cms.quantserve.com

IN A

Response

cms.quantserve.com

IN CNAME

2kpixel.quantserve.com

2kpixel.quantserve.com

IN CNAME

global.px.quantserve.com

global.px.quantserve.com

IN A

91.228.74.166

global.px.quantserve.com

IN A

91.228.74.159

global.px.quantserve.com

IN A

91.228.74.200

global.px.quantserve.com

IN A

91.228.74.244
DNS

x.bidswitch.net

chrome.exe

Remote address:

8.8.8.8:53

Request

x.bidswitch.net

IN A

Response

x.bidswitch.net

IN CNAME

user-data-eu.bidswitch.net

user-data-eu.bidswitch.net

IN A

35.214.149.91
DNS

x.bidswitch.net

chrome.exe

Remote address:

8.8.8.8:53

Request

x.bidswitch.net

IN A

Response

x.bidswitch.net

IN CNAME

user-data-eu.bidswitch.net

user-data-eu.bidswitch.net

IN A

35.214.149.91
DNS

sync.srv.stackadapt.com

chrome.exe

Remote address:

8.8.8.8:53

Request

sync.srv.stackadapt.com

IN A

Response

sync.srv.stackadapt.com

IN A

54.174.33.90

sync.srv.stackadapt.com

IN A

54.172.224.53

sync.srv.stackadapt.com

IN A

54.164.16.2

sync.srv.stackadapt.com

IN A

54.204.57.1

sync.srv.stackadapt.com

IN A

52.86.0.224

sync.srv.stackadapt.com

IN A

54.147.209.196

sync.srv.stackadapt.com

IN A

54.159.1.74

sync.srv.stackadapt.com

IN A

54.166.206.131
DNS

dsp.adfarm1.adition.com

chrome.exe

Remote address:

8.8.8.8:53

Request

dsp.adfarm1.adition.com

IN A

Response

dsp.adfarm1.adition.com

IN A

85.114.159.93

dsp.adfarm1.adition.com

IN A

85.114.159.118
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/master.m3u8

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/master.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:15 GMT
etag: "8e3ef57725617315151c350bafa56750"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 447496
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333271.256956,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 328
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/encoded-1.m3u8

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/encoded-1.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:15 GMT
etag: "e3108e8bdc9284b13e7f1b455771b919"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 313034
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333271.319351,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 13176
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_000.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_000.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "73d1c1b435741f3a1cc2f2475aceff2d"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 444259
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333271.372171,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 70124
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_001.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_001.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "a5ee6e188d7431f44af9b6e82ad78bac"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 438827
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333272.520060,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 68996
GET

https://cdn.ex.co/transformations/production/09a35d29-3e0b-4d04-9407-d4f39e199385/master.m3u8

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/09a35d29-3e0b-4d04-9407-d4f39e199385/master.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:31:17 GMT
etag: "8e3ef57725617315151c350bafa56750"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 228180
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333272.610991,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 328
GET

https://cdn.ex.co/transformations/production/09a35d29-3e0b-4d04-9407-d4f39e199385/encoded-1.m3u8

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/09a35d29-3e0b-4d04-9407-d4f39e199385/encoded-1.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:31:17 GMT
etag: "6589d3a1b32b18672e93e6fc679d3752"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 431702
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333272.660429,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 12847
GET

https://cdn.ex.co/transformations/production/09a35d29-3e0b-4d04-9407-d4f39e199385/file_1_000.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/09a35d29-3e0b-4d04-9407-d4f39e199385/file_1_000.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:31:17 GMT
etag: "f7282a37f0e0e9816034c8b41c615ef0"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 431701
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333272.721504,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 292904
GET

https://cdn.ex.co/transformations/production/f5213f0a-1d83-4790-b4b8-119137701636/master.m3u8

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/f5213f0a-1d83-4790-b4b8-119137701636/master.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:30 GMT
etag: "8e3ef57725617315151c350bafa56750"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 228164
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333272.738356,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 328
GET

https://cdn.ex.co/transformations/production/f5213f0a-1d83-4790-b4b8-119137701636/encoded-1.m3u8

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/f5213f0a-1d83-4790-b4b8-119137701636/encoded-1.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:30 GMT
etag: "748c3ca3335641ba02cbdd20e7726a1f"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 227860
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333272.897635,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 10778
GET

https://cdn.ex.co/transformations/production/f5213f0a-1d83-4790-b4b8-119137701636/file_1_000.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/f5213f0a-1d83-4790-b4b8-119137701636/file_1_000.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:30 GMT
etag: "6de3ab65c24f7835bc43c8df0ff4b12f"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:31 GMT
via: 1.1 varnish
age: 430520
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 1
x-timer: S1719333272.957706,VS0,VE2
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 260944
GET

https://large-cdn.ex.co/video-uploads/production/001Qw000008BdCjIAK/23decc06-428e-4825-acd0-90d98963e577.m3u8

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /video-uploads/production/001Qw000008BdCjIAK/23decc06-428e-4825-acd0-90d98963e577.m3u8 HTTP/2.0
host: large-cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:29 GMT
etag: "8e3ef57725617315151c350bafa56750"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 428474
date: Tue, 25 Jun 2024 16:34:32 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333272.265889,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 328
GET

https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/master.m3u8

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/master.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:29 GMT
etag: "62f84d283a08c75b3b8a03553d704171"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 428474
date: Tue, 25 Jun 2024 16:34:32 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333272.332546,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 10771
GET

https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/encoded-1.m3u8

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/encoded-1.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:29 GMT
etag: "dccec3879d063e0e794b36137a16f940"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 428473
date: Tue, 25 Jun 2024 16:34:32 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333272.380155,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 262072
GET

https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_000.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_000.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:29 GMT
etag: "2ea3eb9537b08846401632b46adc0716"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 428471
date: Tue, 25 Jun 2024 16:34:32 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333273.516959,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 487672
GET

https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_001.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_001.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:29 GMT
etag: "3c0f758ef91b69a311bec14fd42208cf"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 428470
date: Tue, 25 Jun 2024 16:34:33 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333273.433063,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 441612
GET

https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_002.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_002.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:29 GMT
etag: "65073716377d267fec5599350db97d78"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 428471
date: Tue, 25 Jun 2024 16:34:43 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333284.531388,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 450824
GET

https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_003.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_003.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:29 GMT
etag: "2f04b0677ab6e7f2c3a5d0193073eb8c"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:34:54 GMT
via: 1.1 varnish
age: 5920
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 2
x-timer: S1719333294.033792,VS0,VE0
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 545952
GET

https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_004.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_004.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 05 Jun 2024 17:18:29 GMT
etag: "666a1f83b1ae1199a0757fc5ab63fec7"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 428471
date: Tue, 25 Jun 2024 16:35:04 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333304.431264,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 462668
GET

https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_005.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_005.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:35:21 GMT
via: 1.1 varnish
etag: "8e3ef57725617315151c350bafa56750"
age: 447547
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 1
x-timer: S1719333322.762714,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/master.m3u8

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/master.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "8e3ef57725617315151c350bafa56750"
if-modified-since: Thu, 06 Jun 2024 12:26:15 GMT

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:35:21 GMT
via: 1.1 varnish
etag: "e3108e8bdc9284b13e7f1b455771b919"
age: 313084
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 1
x-timer: S1719333322.806095,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/encoded-1.m3u8

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/encoded-1.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "e3108e8bdc9284b13e7f1b455771b919"
if-modified-since: Thu, 06 Jun 2024 12:26:15 GMT

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:35:21 GMT
via: 1.1 varnish
etag: "73d1c1b435741f3a1cc2f2475aceff2d"
age: 444309
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 1
x-timer: S1719333322.851649,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_000.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_000.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "73d1c1b435741f3a1cc2f2475aceff2d"
if-modified-since: Thu, 06 Jun 2024 12:26:16 GMT

Response

HTTP/2.0 206

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "a5ee6e188d7431f44af9b6e82ad78bac"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 438877
content-range: bytes 49152-49152/68996
date: Tue, 25 Jun 2024 16:35:21 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333322.924412,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 1
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_001.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_001.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
range: bytes=49152-49152
if-range: "a5ee6e188d7431f44af9b6e82ad78bac"

Response

HTTP/2.0 206

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "a5ee6e188d7431f44af9b6e82ad78bac"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 438877
content-range: bytes 49152-68995/68996
date: Tue, 25 Jun 2024 16:35:21 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333322.975437,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 19844
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_001.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_001.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
range: bytes=49152-68995
if-range: "a5ee6e188d7431f44af9b6e82ad78bac"

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "26e9230ff616b2658f1f4bd513137775"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 313081
date: Tue, 25 Jun 2024 16:35:22 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333322.023185,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 395552
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_002.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_002.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "34516cfa4bec3836c23a21fc6271cea2"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 313080
date: Tue, 25 Jun 2024 16:35:22 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333322.096235,VS0,VE2
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 424504
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_003.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_003.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "2207f72ac91e05285862ab7c62e75d15"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 313086
date: Tue, 25 Jun 2024 16:35:28 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333328.306762,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 539372
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_004.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_004.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "994ce7cd98ff980489c443b1491baa39"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 313095
date: Tue, 25 Jun 2024 16:35:38 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333339.706684,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 459660
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_005.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_005.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "b0df3dea6a08985d074a536f52e9dfa7"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 0
date: Tue, 25 Jun 2024 16:35:49 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333349.106558,VS0,VE376
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 362840
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_006.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_006.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "9f9024be0efbd2204d58fed71256ec37"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 313112
date: Tue, 25 Jun 2024 16:35:57 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333358.905546,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 593892
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_007.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_007.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "d77a09d518e199390da70f9b238b4dab"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 313121
date: Tue, 25 Jun 2024 16:36:08 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333368.307689,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 518504
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_008.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_008.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 06 Jun 2024 12:26:16 GMT
etag: "fdfacdff72752b0f9148a28c0890b598"
content-type: application/octet-stream
server: AmazonS3
accept-ranges: bytes
age: 313131
date: Tue, 25 Jun 2024 16:36:18 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600028-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333379.707814,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
content-length: 504968
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_009.ts

chrome.exe

Remote address:

199.232.197.91:443

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_009.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

simage2.pubmatic.com

chrome.exe

Remote address:

8.8.8.8:53

Request

simage2.pubmatic.com

IN A

Response

simage2.pubmatic.com

IN CNAME

simage2v2.pubmnet.com

simage2v2.pubmnet.com

IN CNAME

pug-ams-bc.pubmnet.com

pug-ams-bc.pubmnet.com

IN A

198.47.127.205
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTc4JnRsPTE1NzY4MDA=&piggybackCookie=8159859772855155319&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTc4JnRsPTE1NzY4MDA=&piggybackCookie=8159859772855155319&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: simage2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:31 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:31 GMT; path=/
set-cookie: PugT=1719333271; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMzOTkmdGw9NDMyMDA%3D&piggybackCookie=7384480169877371019&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMzOTkmdGw9NDMyMDA%3D&piggybackCookie=7384480169877371019&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: simage2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:30 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:30 GMT; path=/
set-cookie: PugT=1719333270; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:30 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MzEmdGw9MTI5NjAw&piggybackCookie=oDHTg3vfVxNfj2Iimit6yL9l0Sc&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MzEmdGw9MTI5NjAw&piggybackCookie=oDHTg3vfVxNfj2Iimit6yL9l0Sc&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: simage2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: PugT=1719333270
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:31 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:31 GMT; path=/
set-cookie: PugT=1719333271; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9MjE5MSZ0bD0yNTkyMDA=&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9MjE5MSZ0bD0yNTkyMDA=&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/2.0
host: simage2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: PugT=1719333270
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:31 GMT
content-type: text/html; charset=utf-8
content-length: 1
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9Mjk0NSZ0bD0xMjk2MDA=&piggybackCookie=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=&us_privacy=

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9Mjk0NSZ0bD0xMjk2MDA=&piggybackCookie=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=&us_privacy= HTTP/2.0
host: simage2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: PugT=1719333271

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:30 GMT
content-type: text/html; charset=utf-8
content-length: 1
set-cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:30 GMT; path=/
set-cookie: PugT=1719333270; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:30 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MzcmdGw9ODY0MDA=&piggybackCookie=37883803138716&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MzcmdGw9ODY0MDA=&piggybackCookie=37883803138716&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: simage2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: PugT=1719333271

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:32 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716; domain=pubmatic.com; SameSite=None; secure; expires=Sat, 24-Aug-2024 16:34:32 GMT; path=/
set-cookie: PugT=1719333272; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:32 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMzMDEmdGw9MTI5NjAw&piggybackCookie=cd0498ca-3310-11ef-9349-8843a12a8555

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMzMDEmdGw9MTI5NjAw&piggybackCookie=cd0498ca-3310-11ef-9349-8843a12a8555 HTTP/2.0
host: simage2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: PugT=1719333272

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:32 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:32 GMT; path=/
set-cookie: PugT=1719333272; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:32 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4NDkmdGw9MTI5NjAw&piggybackCookie=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4NDkmdGw9MTI5NjAw&piggybackCookie=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: simage2.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: PugT=1719333272

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:31 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:31 GMT; path=/
set-cookie: PugT=1719333271; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9ODImdGw9MTU3NjgwMCZkcF9pZD0yMg==&piggybackCookie=3314471828681895967&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9ODImdGw9MTU3NjgwMCZkcF9pZD0yMg==&piggybackCookie=3314471828681895967&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy= HTTP/2.0
host: simage2.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: PugT=1719333271
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:32 GMT
content-type: text/html; charset=utf-8
content-length: 1
set-cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:32 GMT; path=/
set-cookie: PugT=1719333272; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:32 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&piggybackCookie=uid:e9b79c2f-0b03-40c2-b690-5a4d8081b9d0&vcode=bz0yJnR5cGU9MSZjb2RlPTMwNjImdGw9MTI5NjAw

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&piggybackCookie=uid:e9b79c2f-0b03-40c2-b690-5a4d8081b9d0&vcode=bz0yJnR5cGU9MSZjb2RlPTMwNjImdGw9MTI5NjAw HTTP/2.0
host: simage2.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: PugT=1719333271
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:30 GMT
content-type: image/gif; charset=utf-8
content-length: 42
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMwNTQmdGw9NDMyMDA%3D&piggybackCookie=qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&pi=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&tc=1

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMwNTQmdGw9NDMyMDA%3D&piggybackCookie=qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&pi=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&tc=1 HTTP/2.0
host: simage2.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: PugT=1719333271
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:31 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
set-cookie: PugT=1719333271; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4NzUmdGw9NDMyMDA=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=6640692441033083723

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4NzUmdGw9NDMyMDA=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=6640692441033083723 HTTP/2.0
host: simage2.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: PugT=1719333272

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:31 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
set-cookie: PugT=1719333271; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTQ2MSZ0bD0xMDA4MA==&piggybackCookie=AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&expiration=1719419672&nuid=6F33541D-0234-4D12-A971-323BE606F1A8&is_secure=true&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTQ2MSZ0bD0xMDA4MA==&piggybackCookie=AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&expiration=1719419672&nuid=6F33541D-0234-4D12-A971-323BE606F1A8&is_secure=true&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/2.0
host: simage2.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: PugT=1719333271

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:31 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:31 GMT; path=/
set-cookie: PugT=1719333271; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMyMDMmdGw9NDMyMDA=&piggybackCookie=RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMyMDMmdGw9NDMyMDA=&piggybackCookie=RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003 HTTP/2.0
host: simage2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: PugT=1719333271
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: SPugT=1719333272
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: ipc=160648^https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D160648%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fsync-pm.ads.yieldmo.com%252Fsync%253Fpn_id%253Dpub%2526id%253D%2523PMUID%2526gdpr%2531%2526gdpr_consent%253CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA^0^0
cookie: pi=160648:3
cookie: chkChromeAb67Sec=3

Response

HTTP/2.0 302

server: nginx
date: Tue, 25 Jun 2024 16:34:33 GMT
set-cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:33 GMT; path=/
set-cookie: PugT=1719333273; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:33 GMT; path=/
location: https://image8.pubmatic.com/AdServer/ImgSync?sec=1&gdpr=0&gdpr_consent=&us_privacy=${US_PRIVACY}
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage2.pubmatic.com/AdServer/Pug?vcode&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie={viewer_token}&gdpr=1

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie={viewer_token}&gdpr=1 HTTP/2.0
host: simage2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY
cookie: PugT=1719333274
cookie: SPugT=1719333275
cookie: chkChromeAb67Sec=5
cookie: pi=158554:4

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:51 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
DNS

pixel-us-east.rubiconproject.com

chrome.exe

Remote address:

8.8.8.8:53

Request

pixel-us-east.rubiconproject.com

IN A

Response

pixel-us-east.rubiconproject.com

IN CNAME

pixel-us-east.rubiconproject.net.akadns.net

pixel-us-east.rubiconproject.net.akadns.net

IN A

69.173.151.100
DNS

image2.pubmatic.com

chrome.exe

Remote address:

8.8.8.8:53

Request

image2.pubmatic.com

IN A

Response

image2.pubmatic.com

IN CNAME

image2v2.pubmnet.com

image2v2.pubmnet.com

IN CNAME

pug-ams-bc.pubmnet.com

pug-ams-bc.pubmnet.com

IN A

198.47.127.205
DNS

t.adx.opera.com

chrome.exe

Remote address:

8.8.8.8:53

Request

t.adx.opera.com

IN A

Response

t.adx.opera.com

IN CNAME

outspot2-ams.adx.opera.com

outspot2-ams.adx.opera.com

IN A

82.145.213.8
GET

https://image2.pubmatic.com/AdServer/Pug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&vcode=bz0yJnR5cGU9MSZjb2RlPTExMTMmdGw9NDMyMDA=&piggybackCookie=sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&vcode=bz0yJnR5cGU9MSZjb2RlPTExMTMmdGw9NDMyMDA=&piggybackCookie=sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn HTTP/2.0
host: image2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:30 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:30 GMT; path=/
set-cookie: PugT=1719333270; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:30 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0ODkmdGw9NDMyMDA=&piggybackCookie=OPU7d3f53a5e1994323b156921d1da1551d

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0ODkmdGw9NDMyMDA=&piggybackCookie=OPU7d3f53a5e1994323b156921d1da1551d HTTP/2.0
host: image2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: PugT=1719333270
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:30 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d; domain=pubmatic.com; SameSite=None; secure; expires=Tue, 09-Jul-2024 16:34:30 GMT; path=/
set-cookie: PugT=1719333270; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:30 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3MzkmdGw9MTI5NjAw&piggybackCookie=5108559734156128624

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3MzkmdGw9MTI5NjAw&piggybackCookie=5108559734156128624 HTTP/2.0
host: image2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: PugT=1719333270

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:30 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_18=22947-5108559734156128624; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:30 GMT; path=/
set-cookie: PugT=1719333270; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:30 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=934304454267114567

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=934304454267114567 HTTP/2.0
host: image2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: PugT=1719333270

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:31 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_336=5844-934304454267114567; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
set-cookie: PugT=1719333271; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMyOTcmdGw9MTI5NjAw&piggybackCookie=AAD5Jk7M9eMAABdSEix9nA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMyOTcmdGw9MTI5NjAw&piggybackCookie=AAD5Jk7M9eMAABdSEix9nA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: image2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: PugT=1719333272

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:30 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:30 GMT; path=/
set-cookie: PugT=1719333270; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:30 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MjImdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MjImdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: image2.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: PugT=1719333272

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:32 GMT
content-type: image/gif; charset=utf-8
content-length: 42
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTIxNzcmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=CAESENrEVyLDmsXON17PsTfFw-I&google_cver=1

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTIxNzcmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=CAESENrEVyLDmsXON17PsTfFw-I&google_cver=1 HTTP/2.0
host: image2.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: PugT=1719333272

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:31 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:31 GMT; path=/
set-cookie: PugT=1719333271; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5NjkmdGw9MTI5NjAw&piggybackCookie=686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5NjkmdGw9MTI5NjAw&piggybackCookie=686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: image2.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: PugT=1719333271
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:31 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553; domain=pubmatic.com; SameSite=None; secure; expires=Mon, 23-Sep-2024 16:34:31 GMT; path=/
set-cookie: PugT=1719333271; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:31 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw&piggybackCookie=Gp1rLOrtXaWRTWVXhaSnWSaY&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw&piggybackCookie=Gp1rLOrtXaWRTWVXhaSnWSaY&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: image2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: ipc=160648^https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D160648%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fsync-pm.ads.yieldmo.com%252Fsync%253Fpn_id%253Dpub%2526id%253D%2523PMUID%2526gdpr%2531%2526gdpr_consent%253CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA^0^0
cookie: pi=160648:3
cookie: chkChromeAb67Sec=3
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: PugT=1719333273
cookie: SPugT=1719333274

Response

HTTP/2.0 302

server: nginx
date: Tue, 25 Jun 2024 16:34:34 GMT
set-cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:34 GMT; path=/
set-cookie: PugT=1719333274; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:34 GMT; path=/
location: https://image8.pubmatic.com/AdServer/ImgSync?sec=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=${US_PRIVACY}
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw&piggybackCookie=Gp1rLOrtXaWRTWVXhaSnWSaY&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.205:443

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw&piggybackCookie=Gp1rLOrtXaWRTWVXhaSnWSaY&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: image2.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: ipc=160648^https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D160648%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fsync-pm.ads.yieldmo.com%252Fsync%253Fpn_id%253Dpub%2526id%253D%2523PMUID%2526gdpr%2531%2526gdpr_consent%253CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA^0^0
cookie: pi=160648:3
cookie: chkChromeAb67Sec=3
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: PugT=1719333273
cookie: SPugT=1719333274

Response

HTTP/2.0 302

server: nginx
date: Tue, 25 Jun 2024 16:34:34 GMT
set-cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:34 GMT; path=/
set-cookie: PugT=1719333274; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:34 GMT; path=/
location: https://image8.pubmatic.com/AdServer/ImgSync?sec=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=${US_PRIVACY}
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
DNS

dsp.nrich.ai

chrome.exe

Remote address:

8.8.8.8:53

Request

dsp.nrich.ai

IN A

Response

dsp.nrich.ai

IN A

51.68.39.188
GET

https://token.rubiconproject.com/token?pid=36584&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /token?pid=36584&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://px.ads.linkedin.com/setuid?partner=rubiconDb&dbredirect=true&ruxId=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/token?pid=25470&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /token?pid=25470&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://cm.g.doubleclick.net/pixel?google_nid=rp&google_cm&google_hm=TFhVTU1ZSDgtMTgtSUlTRA==&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/token?pid=37556&a=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /token?pid=37556&a=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://pixel.tapad.com/idsync/ex/receive?partner_id=3355&partner_device_id=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6g0LvoUBh5ppFS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /khaos.json?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://eus.rubiconproject.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
access-control-allow-credentials: true
access-control-allow-origin: https://eus.rubiconproject.com
content-type: application/json; charset=UTF-8
content-length: 7
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
DNS

pixel.rubiconproject.com

chrome.exe

Remote address:

8.8.8.8:53

Request

pixel.rubiconproject.com

IN A

Response

pixel.rubiconproject.com

IN CNAME

pixel.rubiconproject.net.akadns.net

pixel.rubiconproject.net.akadns.net

IN A

69.173.156.148

pixel.rubiconproject.net.akadns.net

IN A

69.173.156.149
DNS

pixel.rubiconproject.com

chrome.exe

Remote address:

8.8.8.8:53

Request

pixel.rubiconproject.com

IN A

Response

pixel.rubiconproject.com

IN CNAME

pixel.rubiconproject.net.akadns.net

pixel.rubiconproject.net.akadns.net

IN A

69.173.156.149

pixel.rubiconproject.net.akadns.net

IN A

69.173.156.148
DNS

match.prod.bidr.io

chrome.exe

Remote address:

8.8.8.8:53

Request

match.prod.bidr.io

IN A

Response

match.prod.bidr.io

IN A

34.253.242.146

match.prod.bidr.io

IN A

34.251.183.115

match.prod.bidr.io

IN A

52.213.189.168

match.prod.bidr.io

IN A

34.246.197.210

match.prod.bidr.io

IN A

52.212.235.85

match.prod.bidr.io

IN A

52.17.93.114

match.prod.bidr.io

IN A

52.17.120.207

match.prod.bidr.io

IN A

34.240.216.83
GET

https://dsp.nrich.ai/bidswitch/sync?bidswitch_ssp_id=pubmatic&bsw_custom_parameter=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=&us_privacy=

chrome.exe

Remote address:

51.68.39.188:443

Request

GET /bidswitch/sync?bidswitch_ssp_id=pubmatic&bsw_custom_parameter=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=&us_privacy= HTTP/1.1
Host: dsp.nrich.ai
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

Server: nginx
Date: Tue, 25 Jun 2024 16:34:31 GMT
Content-Type: -
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=5
Location: https://x.bidswitch.net/sync?dsp_id=283&user_id=fc3acab5-30a6-43c6-bbf3-dc5282f7f405&expires=1&user_group=2&ssp=pubmatic&bsw_param=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=
Set-Cookie: _nauid=fc3acab5-30a6-43c6-bbf3-dc5282f7f405; Path=/; Domain=.nrich.ai; Expires=Wed, 17 Dec 2025 16:34:31 GMT; Max-Age=46656000; Secure; SameSite=None
Strict-Transport-Security: max-age=63072000; preload
DNS

pr-bh.ybp.yahoo.com

chrome.exe

Remote address:

8.8.8.8:53

Request

pr-bh.ybp.yahoo.com

IN A

Response

pr-bh.ybp.yahoo.com

IN CNAME

ds-pr-bh.ybp.gysm.yahoodns.net

ds-pr-bh.ybp.gysm.yahoodns.net

IN A

54.171.39.192

ds-pr-bh.ybp.gysm.yahoodns.net

IN A

54.247.33.148

ds-pr-bh.ybp.gysm.yahoodns.net

IN A

34.250.228.35

ds-pr-bh.ybp.gysm.yahoodns.net

IN A

54.217.40.10
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=pbs-apn&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /exchange/sync.php?p=pbs-apn&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://ib.adnxs.com/prebid/setuid?bidder=rubicon&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=8981&nid=2307&put=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&expires=30

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /tap.php?v=8981&nid=2307&put=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gNJ/nfXIUTepS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=pbs-adaptmx&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /exchange/sync.php?p=pbs-adaptmx&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://prebid.a-mo.net/setuid/magnite?uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=17149&nid=2861&put=a2731526-763e-41f3-bfa9-3764fef9c62f&expires=30&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /tap.php?v=17149&nid=2861&put=a2731526-763e-41f3-bfa9-3764fef9c62f&expires=30&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:32 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:32 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:34:32 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=18694&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /exchange/sync.php?p=18694&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://match.sharethrough.com/sync/v1?source_id=UiRtTsXAfjmfSDAKnR1FjWsu&source_user_id=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:34:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=a9us&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /exchange/sync.php?p=a9us&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://s.amazon-adsystem.com/ecm3?id=LXUMMYH8-18-IISD&ex=d-rubiconproject.com&status=ok&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=31950&nid=2974&put=y-UsVTG_JE2oKoqJ_bYKsoib.qoQ18hhpUSbuVHw--~A&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /tap.php?v=31950&nid=2974&put=y-UsVTG_JE2oKoqJ_bYKsoib.qoQ18hhpUSbuVHw--~A&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=primis&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /exchange/sync.php?p=primis&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://live.primis.tech/live/liveCS.php?source=external&advId=100&advUuid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/token?pid=2179&pt=n&puid=VyquXflKSZ-TKfuQZbAPVw&rk=usync-other&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /token?pid=2179&pt=n&puid=VyquXflKSZ-TKfuQZbAPVw&rk=usync-other&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6grAi6Tspj/TdS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://aax-eu.amazon-adsystem.com/s/ecm3?ex=rubiconprojectHMT&id=VyquXflKSZ-TKfuQZbAPVw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=dfp&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_gid=CAESEIohowEVDGcBfXD_8-NJkZM&google_cver=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /exchange/sync.php?p=dfp&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_gid=CAESEIohowEVDGcBfXD_8-NJkZM&google_cver=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://cm.g.doubleclick.net/pixel?google_nid=rp&google_hm=TFhVTU1ZSDgtMTgtSUlTRA==&google_push=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
DNS

rtb-csync.smartadserver.com

chrome.exe

Remote address:

8.8.8.8:53

Request

rtb-csync.smartadserver.com

IN A

Response

rtb-csync.smartadserver.com

IN CNAME

rtb-csync-geo.usersync-prod-sas.akadns.net

rtb-csync-geo.usersync-prod-sas.akadns.net

IN CNAME

rtb-csync-euw2.smartadserver.com

rtb-csync-euw2.smartadserver.com

IN A

51.178.195.216

rtb-csync-euw2.smartadserver.com

IN A

149.202.238.105

rtb-csync-euw2.smartadserver.com

IN A

51.178.195.217

rtb-csync-euw2.smartadserver.com

IN A

5.196.111.72

rtb-csync-euw2.smartadserver.com

IN A

91.134.110.136

rtb-csync-euw2.smartadserver.com

IN A

178.32.197.56

rtb-csync-euw2.smartadserver.com

IN A

217.182.178.234

rtb-csync-euw2.smartadserver.com

IN A

5.135.209.104

rtb-csync-euw2.smartadserver.com

IN A

164.132.25.184

rtb-csync-euw2.smartadserver.com

IN A

149.202.238.104

rtb-csync-euw2.smartadserver.com

IN A

164.132.25.185

rtb-csync-euw2.smartadserver.com

IN A

178.32.197.57

rtb-csync-euw2.smartadserver.com

IN A

91.134.110.137

rtb-csync-euw2.smartadserver.com

IN A

5.135.209.105

rtb-csync-euw2.smartadserver.com

IN A

217.182.178.233

rtb-csync-euw2.smartadserver.com

IN A

5.196.111.73
DNS

bh.contextweb.com

chrome.exe

Remote address:

8.8.8.8:53

Request

bh.contextweb.com

IN A

Response

bh.contextweb.com

IN CNAME

am1-bh.contextweb.com

am1-bh.contextweb.com

IN CNAME

am1-direct-bgp.contextweb.com

am1-direct-bgp.contextweb.com

IN A

208.93.169.131
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=150&partneruserid=0&redirurl=https%3A%2F%2Fwt.rqtrk.eu%3Fpid%3D58a76248-f101-4e52-b8f7-c4de9362ea12%26src%3Dwww%26type%3D100%26sid%3D0%26uid%3DSMART_USER_ID%26gdpr_pd%3D0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

51.178.195.216:443

Request

GET /redir/?issi=1&partnerid=150&partneruserid=0&redirurl=https%3A%2F%2Fwt.rqtrk.eu%3Fpid%3D58a76248-f101-4e52-b8f7-c4de9362ea12%26src%3Dwww%26type%3D100%26sid%3D0%26uid%3DSMART_USER_ID%26gdpr_pd%3D0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ssbsync-global.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:34:31 GMT
cache-control: no-cache,no-store
location: https://wt.rqtrk.eu?pid=58a76248-f101-4e52-b8f7-c4de9362ea12&src=www&type=100&sid=0&uid=4052082643997295311&gdpr_pd=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=150:0; expires=Wed, 25 Jun 2025 16:34:31 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=75&issi=1&partneruserid=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

51.178.195.216:443

Request

GET /redir/?partnerid=75&issi=1&partneruserid=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ssbsync-global.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:34:31 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|160:1; expires=Wed, 25 Jun 2025 16:34:32 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=135&partneruserid=TAM_OK&redirurl=https%3A%2F%2Fs.amazon-adsystem.com%2Fdcm%3Fpid%3D72348060-38ad-4586-8e4f-f1e2a8e789b3%26id%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

51.178.195.216:443

Request

GET /redir/?issi=1&partnerid=135&partneruserid=TAM_OK&redirurl=https%3A%2F%2Fs.amazon-adsystem.com%2Fdcm%3Fpid%3D72348060-38ad-4586-8e4f-f1e2a8e789b3%26id%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|160:1

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:34:32 GMT
cache-control: no-cache,no-store
location: https://s.amazon-adsystem.com/dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|135:TAM_OK|160:1; expires=Wed, 25 Jun 2025 16:34:33 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=160&partneruserid=1&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmartrtb_dbm%26google_cm%26google_sc%26google_hm%3DSMART_USER_ID_B64&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

51.178.195.216:443

Request

GET /redir/?issi=1&partnerid=160&partneruserid=1&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmartrtb_dbm%26google_cm%26google_sc%26google_hm%3DSMART_USER_ID_B64&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ssbsync-global.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:34:30 GMT
cache-control: no-cache,no-store
location: https://cm.g.doubleclick.net/pixel?google_nid=smartrtb_dbm&google_cm&google_sc&google_hm=NDA1MjA4MjY0Mzk5NzI5NTMxMQ==&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=160:1; expires=Wed, 25 Jun 2025 16:34:31 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=92&partneruserid=YZ9IXur4Q8di&ev=1&pid=560288&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

51.178.195.216:443

Request

GET /redir/?issi=1&partnerid=92&partneruserid=YZ9IXur4Q8di&ev=1&pid=560288&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ssbsync-global.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=127:AAD5Jk7M9eMAABdSEix9nA|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:34:32 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|160:1; expires=Wed, 25 Jun 2025 16:34:32 GMT; domain=smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=76&partneruserid=CAESECTx64G1gYoM7aBY6pXkGzM&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_cver=1

chrome.exe

Remote address:

51.178.195.216:443

Request

GET /redir/?partnerid=76&partneruserid=CAESECTx64G1gYoM7aBY6pXkGzM&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_cver=1 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ssbsync-global.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:34:31 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|160:1; expires=Wed, 25 Jun 2025 16:34:32 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=160&partneruserid=1&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmartrtb_dbm%26google_cm%26google_sc%26google_hm%3DSMART_USER_ID_B64&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

51.178.195.216:443

Request

GET /redir/?issi=1&partnerid=160&partneruserid=1&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmartrtb_dbm%26google_cm%26google_sc%26google_hm%3DSMART_USER_ID_B64&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|160:1

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:34:33 GMT
cache-control: no-cache,no-store
location: https://cm.g.doubleclick.net/pixel?google_nid=smartrtb_dbm&google_cm&google_sc&google_hm=NDA1MjA4MjY0Mzk5NzI5NTMxMQ==&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|160:1; expires=Wed, 25 Jun 2025 16:34:33 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://bh.contextweb.com/bh/rtset?pid=560288&ev=1&rurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D92%26partneruserid%3D%25%25VGUID%25%25&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

208.93.169.131:443

Request

GET /bh/rtset?pid=560288&ev=1&rurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D92%26partneruserid%3D%25%25VGUID%25%25&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: bh.contextweb.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssbsync-global.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-7d68d5c85f-srfc8
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
set-cookie: VP=part_YZ9IXur4Q8di;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31104000;Secure;Expires=Fri, 20-Jun-2025 16:34:31 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev_part=3-1s4z|7GB.0.1;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31536000;Secure;Expires=Wed, 25-Jun-2025 16:34:31 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev=3-1s4z|7GB.0.1;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Wed, 25-Jun-2025 16:34:31 GMT;Max-Age=31536000;SameSite=None
set-cookie: V=YZ9IXur4Q8di;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 20-Jun-2025 16:34:31 GMT;Max-Age=31104000;SameSite=None
set-cookie: gdpr=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Thu, 25-Jul-2024 16:34:31 GMT;Max-Age=2592000;SameSite=None
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=92&partneruserid=YZ9IXur4Q8di&ev=1&pid=560288&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1
server: Jetty(10.0.14)
set-cookie: INGRESSCOOKIE=a3f361772168ae08; path=/; HttpOnly; Secure; SameSite=None
GET

https://bh.contextweb.com/bh/rtset?ev=AAD5Jk7M9eMAABdSEix9nA&do=add&pid=558502&rurl=https%3A%2F%2Fmatch.prod.bidr.io%2Fcookie-sync%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26userid%3D4052082643997295311%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26bee_sync_partners%3Dpm%26bee_sync_current_partner%3Dpp%26bee_sync_initiator%3Dadx%26bee_sync_hop_count%3D3&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

208.93.169.131:443

Request

GET /bh/rtset?ev=AAD5Jk7M9eMAABdSEix9nA&do=add&pid=558502&rurl=https%3A%2F%2Fmatch.prod.bidr.io%2Fcookie-sync%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26userid%3D4052082643997295311%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26bee_sync_partners%3Dpm%26bee_sync_current_partner%3Dpp%26bee_sync_initiator%3Dadx%26bee_sync_hop_count%3D3&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: bh.contextweb.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: VP=part_YZ9IXur4Q8di
cookie: pb_rtb_ev_part=3-1s4z|7GB.0.1
cookie: pb_rtb_ev=3-1s4z|7GB.0.1
cookie: V=YZ9IXur4Q8di
cookie: gdpr=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
cookie: INGRESSCOOKIE=a3f361772168ae08

Response

HTTP/2.0 302

p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-7d68d5c85f-srfc8
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
set-cookie: VP=part_YZ9IXur4Q8di;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31104000;Secure;Expires=Fri, 20-Jun-2025 16:34:32 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev_part=3-1s4z|7GB.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31536000;Secure;Expires=Wed, 25-Jun-2025 16:34:32 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev=3-1s4z|7GB.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Wed, 25-Jun-2025 16:34:32 GMT;Max-Age=31536000;SameSite=None
set-cookie: V=YZ9IXur4Q8di;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 20-Jun-2025 16:34:32 GMT;Max-Age=31104000;SameSite=None
set-cookie: gdpr=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Thu, 25-Jul-2024 16:34:32 GMT;Max-Age=2592000;SameSite=None
location: https://match.prod.bidr.io/cookie-sync?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&userid=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&bee_sync_partners=pm&bee_sync_current_partner=pp&bee_sync_initiator=adx&bee_sync_hop_count=3&ev=AAD5Jk7M9eMAABdSEix9nA&pid=558502&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&do=add&gdpr=1
server: Jetty(10.0.14)
GET

https://bh.contextweb.com/bh/rtset?pid=561118&ev=1&rurl=https%3a%2f%2fads.yieldmo.com/v000/sync?userid=%%VGUID%%&pn_id=pp&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=1&us_privacy=

chrome.exe

Remote address:

208.93.169.131:443

Request

GET /bh/rtset?pid=561118&ev=1&rurl=https%3a%2f%2fads.yieldmo.com/v000/sync?userid=%%VGUID%%&pn_id=pp&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=1&us_privacy= HTTP/2.0
host: bh.contextweb.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.yieldmo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: INGRESSCOOKIE=a3f361772168ae08
cookie: VP=part_YZ9IXur4Q8di
cookie: V=YZ9IXur4Q8di
cookie: gdpr=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
cookie: pb_rtb_ev_part=3-1s4z|7GB.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA
cookie: pb_rtb_ev=3-1s4z|7GB.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA

Response

HTTP/2.0 302

p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-7d68d5c85f-srfc8
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
set-cookie: VP=part_YZ9IXur4Q8di;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31104000;Secure;Expires=Fri, 20-Jun-2025 16:34:34 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev_part=3-1s4z|7GB.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31536000;Secure;Expires=Wed, 25-Jun-2025 16:34:34 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev=3-1s4z|7GB.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Wed, 25-Jun-2025 16:34:34 GMT;Max-Age=31536000;SameSite=None
set-cookie: V=YZ9IXur4Q8di;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 20-Jun-2025 16:34:34 GMT;Max-Age=31104000;SameSite=None
set-cookie: gdpr=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Thu, 25-Jul-2024 16:34:34 GMT;Max-Age=2592000;SameSite=None
location: https://ads.yieldmo.com/v000/sync?userid=YZ9IXur4Q8di&ev=1&pn_id=pp&gdpr_pd=1&us_privacy=&pid=561118&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1
server: Jetty(10.0.14)
GET

https://pixel.rubiconproject.com/token?pid=2179&pt=n&puid=-aiq0gcVS-CVYUVZDwpb0A&rk=usync-na&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /token?pid=2179&pt=n&puid=-aiq0gcVS-CVYUVZDwpb0A&rk=usync-na&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gM+ImEWVOUiRS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://s.amazon-adsystem.com/ecm3?ex=rubiconprojectHMT&id=-aiq0gcVS-CVYUVZDwpb0A&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6g+h309NcEIbxS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
DNS

px.ads.linkedin.com

chrome.exe

Remote address:

8.8.8.8:53

Request

px.ads.linkedin.com

IN A

Response

px.ads.linkedin.com

IN CNAME

exp1.www.linkedin.com

exp1.www.linkedin.com

IN CNAME

www-linkedin-com.l-0005.l-msedge.net

www-linkedin-com.l-0005.l-msedge.net

IN CNAME

l-0005.l-msedge.net

l-0005.l-msedge.net

IN A

13.107.42.14
DNS

ad.mrtnsvr.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ad.mrtnsvr.com

IN A

Response

ad.mrtnsvr.com

IN A

34.102.163.6
DNS

ad.mrtnsvr.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ad.mrtnsvr.com

IN A

Response

ad.mrtnsvr.com

IN A

34.102.163.6
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=18694&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

chrome.exe

Remote address:

69.173.156.148:443

Request

GET /exchange/sync.php?p=18694&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://match.sharethrough.com/sync/v1?source_id=UiRtTsXAfjmfSDAKnR1FjWsu&source_user_id=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:34:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
DNS

107.19.160.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

107.19.160.34.in-addr.arpa

IN PTR

Response

107.19.160.34.in-addr.arpa

IN PTR

1071916034bcgoogleusercontentcom
DNS

232.127.234.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

232.127.234.34.in-addr.arpa

IN PTR

Response

232.127.234.34.in-addr.arpa

IN PTR

ec2-34-234-127-232 compute-1 amazonawscom
DNS

131.151.46.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

131.151.46.52.in-addr.arpa

IN PTR

Response
DNS

49.130.101.151.in-addr.arpa

Remote address:

8.8.8.8:53

Request

49.130.101.151.in-addr.arpa

IN PTR

Response
DNS

168.81.95.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

168.81.95.34.in-addr.arpa

IN PTR

Response

168.81.95.34.in-addr.arpa

IN PTR

168819534bcgoogleusercontentcom
DNS

132.226.19.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

132.226.19.23.in-addr.arpa

IN PTR

Response
DNS

213.249.208.35.in-addr.arpa

Remote address:

8.8.8.8:53

Request

213.249.208.35.in-addr.arpa

IN PTR

Response

213.249.208.35.in-addr.arpa

IN PTR

21324920835bcgoogleusercontentcom
DNS

159.164.81.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

159.164.81.23.in-addr.arpa

IN PTR

Response
DNS

98.201.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

98.201.58.216.in-addr.arpa

IN PTR

Response

98.201.58.216.in-addr.arpa

IN PTR

lhr48s48-in-f21e100net

98.201.58.216.in-addr.arpa

IN PTR

prg03s02-in-f2�G

98.201.58.216.in-addr.arpa

IN PTR

prg03s02-in-f98�G
DNS

78.190.64.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

78.190.64.185.in-addr.arpa

IN PTR

Response
DNS

90.90.14.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

90.90.14.23.in-addr.arpa

IN PTR

Response

90.90.14.23.in-addr.arpa

IN PTR

a23-14-90-90deploystaticakamaitechnologiescom
DNS

229.135.205.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

229.135.205.52.in-addr.arpa

IN PTR

Response

229.135.205.52.in-addr.arpa

IN PTR

ec2-52-205-135-229 compute-1 amazonawscom
DNS

148.156.173.69.in-addr.arpa

Remote address:

8.8.8.8:53

Request

148.156.173.69.in-addr.arpa

IN PTR

Response
DNS

1.80.190.35.in-addr.arpa

Remote address:

8.8.8.8:53

Request

1.80.190.35.in-addr.arpa

IN PTR

Response

1.80.190.35.in-addr.arpa

IN PTR

18019035bcgoogleusercontentcom
DNS

9.1.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

9.1.250.178.in-addr.arpa

IN PTR

Response
DNS

22.125.95.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

22.125.95.52.in-addr.arpa

IN PTR

Response
DNS

122.210.89.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

122.210.89.185.in-addr.arpa

IN PTR

Response

122.210.89.185.in-addr.arpa

IN PTR

954bm-nginx-loadbalancermgmtams3adnexusnet
DNS

166.74.228.91.in-addr.arpa

Remote address:

8.8.8.8:53

Request

166.74.228.91.in-addr.arpa

IN PTR

Response
DNS

91.149.214.35.in-addr.arpa

Remote address:

8.8.8.8:53

Request

91.149.214.35.in-addr.arpa

IN PTR

Response

91.149.214.35.in-addr.arpa

IN PTR

9114921435bcgoogleusercontentcom
DNS

93.159.114.85.in-addr.arpa

Remote address:

8.8.8.8:53

Request

93.159.114.85.in-addr.arpa

IN PTR

Response

93.159.114.85.in-addr.arpa

IN PTR

dspadfarm1aditioncom
DNS

205.127.47.198.in-addr.arpa

Remote address:

8.8.8.8:53

Request

205.127.47.198.in-addr.arpa

IN PTR

Response
DNS

90.33.174.54.in-addr.arpa

Remote address:

8.8.8.8:53

Request

90.33.174.54.in-addr.arpa

IN PTR

Response

90.33.174.54.in-addr.arpa

IN PTR

ec2-54-174-33-90 compute-1 amazonawscom
DNS

8.213.145.82.in-addr.arpa

Remote address:

8.8.8.8:53

Request

8.213.145.82.in-addr.arpa

IN PTR

Response

8.213.145.82.in-addr.arpa

IN PTR

n-sysadmin-jumpbox-03feednewsopera technology
DNS

100.151.173.69.in-addr.arpa

Remote address:

8.8.8.8:53

Request

100.151.173.69.in-addr.arpa

IN PTR

Response
DNS

188.39.68.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

188.39.68.51.in-addr.arpa

IN PTR

Response

188.39.68.51.in-addr.arpa

IN PTR

ns3129809ip-51-68-39eu
DNS

146.242.253.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

146.242.253.34.in-addr.arpa

IN PTR

Response

146.242.253.34.in-addr.arpa

IN PTR

ec2-34-253-242-146 eu-west-1compute amazonawscom
DNS

192.39.171.54.in-addr.arpa

Remote address:

8.8.8.8:53

Request

192.39.171.54.in-addr.arpa

IN PTR

Response

192.39.171.54.in-addr.arpa

IN PTR

ec2-54-171-39-192 eu-west-1compute amazonawscom
DNS

216.195.178.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

216.195.178.51.in-addr.arpa

IN PTR

Response

216.195.178.51.in-addr.arpa

IN PTR

ip216 ip-51-178-195eu
DNS

131.169.93.208.in-addr.arpa

Remote address:

8.8.8.8:53

Request

131.169.93.208.in-addr.arpa

IN PTR

Response
DNS

csync.loopme.me

chrome.exe

Remote address:

8.8.8.8:53

Request

csync.loopme.me

IN A

Response

csync.loopme.me

IN CNAME

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

IN A

35.214.243.89

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

IN A

35.214.139.131

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

IN A

35.214.154.224

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

IN A

35.214.226.31

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

IN A

35.214.174.180

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

IN A

35.214.191.66

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

IN A

35.214.230.142

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

IN A

35.214.154.11

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

IN A

35.214.129.72

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

IN A

35.214.157.207

envoy-hl.envoy-csync1.core-b8mf.ov1o.com

IN A

35.214.130.98
DNS

sync.ipredictive.com

chrome.exe

Remote address:

8.8.8.8:53

Request

sync.ipredictive.com

IN A

Response

sync.ipredictive.com

IN A

54.160.38.67

sync.ipredictive.com

IN A

54.161.57.47

sync.ipredictive.com

IN A

52.87.19.33

sync.ipredictive.com

IN A

54.157.154.118

sync.ipredictive.com

IN A

52.87.13.120

sync.ipredictive.com

IN A

52.44.76.179

sync.ipredictive.com

IN A

52.72.140.222

sync.ipredictive.com

IN A

52.87.131.177
DNS

match.sharethrough.com

chrome.exe

Remote address:

8.8.8.8:53

Request

match.sharethrough.com

IN A

Response

match.sharethrough.com

IN CNAME

match-eu-central-1-ecs.sharethrough.com

match-eu-central-1-ecs.sharethrough.com

IN A

18.196.133.194

match-eu-central-1-ecs.sharethrough.com

IN A

3.122.213.30

match-eu-central-1-ecs.sharethrough.com

IN A

18.193.153.32

match-eu-central-1-ecs.sharethrough.com

IN A

35.157.83.226

match-eu-central-1-ecs.sharethrough.com

IN A

52.57.239.98

match-eu-central-1-ecs.sharethrough.com

IN A

18.159.181.185

match-eu-central-1-ecs.sharethrough.com

IN A

18.158.98.19

match-eu-central-1-ecs.sharethrough.com

IN A

35.156.19.8
DNS

ipac.ctnsnet.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ipac.ctnsnet.com

IN A

Response

ipac.ctnsnet.com

IN A

35.186.193.173
DNS

d5p.de17a.com

chrome.exe

Remote address:

8.8.8.8:53

Request

d5p.de17a.com

IN A

Response

d5p.de17a.com

IN A

213.155.156.166

d5p.de17a.com

IN A

213.155.156.169

d5p.de17a.com

IN A

213.155.156.165

d5p.de17a.com

IN A

213.155.156.182

d5p.de17a.com

IN A

213.155.156.181

d5p.de17a.com

IN A

213.155.156.183

d5p.de17a.com

IN A

213.155.156.167

d5p.de17a.com

IN A

213.155.156.184

d5p.de17a.com

IN A

213.155.156.185

d5p.de17a.com

IN A

213.155.156.164

d5p.de17a.com

IN A

213.155.156.180

d5p.de17a.com

IN A

213.155.156.168
GET

https://ipac.ctnsnet.com/int/cm?exc=14&redir=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MTEmdGw9MjAxNjA=&piggybackCookie=[user_id]

chrome.exe

Remote address:

35.186.193.173:443

Request

GET /int/cm?exc=14&redir=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MTEmdGw9MjAxNjA=&piggybackCookie=[user_id] HTTP/2.0
host: ipac.ctnsnet.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://d5p.de17a.com/getuid/pubmatic?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=$UID

chrome.exe

Remote address:

213.155.156.166:443

Request

GET /getuid/pubmatic?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=$UID HTTP/2.0
host: d5p.de17a.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

location: https://d5p.de17a.com/getuid/pubmatic;c?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=$UID
set-cookie: guid=1.934304454267114567; Max-Age=31104000; Path=/; Domain=.de17a.com; SameSite=None; Secure;
content-length: 0
p3p: CP=NON CURa ADMa DEVa TAIa OUR STP IND UNI COM NAV
GET

https://d5p.de17a.com/getuid/pubmatic;c?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=$UID

chrome.exe

Remote address:

213.155.156.166:443

Request

GET /getuid/pubmatic;c?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=$UID HTTP/2.0
host: d5p.de17a.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: guid=1.934304454267114567

Response

HTTP/2.0 302

location: https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=934304454267114567
content-length: 0
p3p: CP=NON CURa ADMa DEVa TAIa OUR STP IND UNI COM NAV
DNS

core.iprom.net

chrome.exe

Remote address:

8.8.8.8:53

Request

core.iprom.net

IN A

Response

core.iprom.net

IN A

195.5.165.20
DNS

p.rfihub.com

chrome.exe

Remote address:

8.8.8.8:53

Request

p.rfihub.com

IN A

Response

p.rfihub.com

IN CNAME

a.rfihub.com

a.rfihub.com

IN CNAME

a.rfihub.com.akadns.net

a.rfihub.com.akadns.net

IN CNAME

a-emea.rfihub.com.akadns.net

a-emea.rfihub.com.akadns.net

IN A

193.0.160.130
GET

https://rtb-csync.smartadserver.com/redir?partneruserid=AAD5Jk7M9eMAABdSEix9nA&partnerid=127&redirurl=https%3A%2F%2Fmatch.prod.bidr.io%2Fcookie-sync%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26bee_sync_partners%3Dpp%252Cpm%26bee_sync_current_partner%3Dsas%26bee_sync_initiator%3Dadx%26bee_sync_hop_count%3D2%26userid%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

51.178.195.216:443

Request

GET /redir?partneruserid=AAD5Jk7M9eMAABdSEix9nA&partnerid=127&redirurl=https%3A%2F%2Fmatch.prod.bidr.io%2Fcookie-sync%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26bee_sync_partners%3Dpp%252Cpm%26bee_sync_current_partner%3Dsas%26bee_sync_initiator%3Dadx%26bee_sync_hop_count%3D2%26userid%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=160:1

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:34:32 GMT
cache-control: no-cache,no-store
location: https://match.prod.bidr.io/cookie-sync?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&bee_sync_partners=pp%2Cpm&bee_sync_current_partner=sas&bee_sync_initiator=adx&bee_sync_hop_count=2&userid=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=127:AAD5Jk7M9eMAABdSEix9nA|160:1; expires=Wed, 25 Jun 2025 16:34:32 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=139&partneruserid=0&redirurl=https%3A%2F%2Fmatch.sharethrough.com%2Fsync%2Fv1%3Fsource_id%3D98KUz37ype9D3X2sf9ovgeTt%26source_user_id%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

51.178.195.216:443

Request

GET /redir/?issi=1&partnerid=139&partneruserid=0&redirurl=https%3A%2F%2Fmatch.sharethrough.com%2Fsync%2Fv1%3Fsource_id%3D98KUz37ype9D3X2sf9ovgeTt%26source_user_id%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|160:1

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:34:33 GMT
cache-control: no-cache,no-store
location: https://match.sharethrough.com/sync/v1?source_id=98KUz37ype9D3X2sf9ovgeTt&source_user_id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; expires=Wed, 25 Jun 2025 16:34:33 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=75&issi=1&partneruserid=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

51.178.195.216:443

Request

GET /redir/?partnerid=75&issi=1&partneruserid=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:34:33 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; expires=Wed, 25 Jun 2025 16:34:33 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=76&partneruserid=CAESECTx64G1gYoM7aBY6pXkGzM&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_cver=1

chrome.exe

Remote address:

51.178.195.216:443

Request

GET /redir/?partnerid=76&partneruserid=CAESECTx64G1gYoM7aBY6pXkGzM&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_cver=1 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; vs=342899=6038914; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:34:33 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; expires=Wed, 25 Jun 2025 16:34:34 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
DNS

cm-supply-web.gammaplatform.com

chrome.exe

Remote address:

8.8.8.8:53

Request

cm-supply-web.gammaplatform.com

IN A

Response

cm-supply-web.gammaplatform.com

IN A

35.186.154.107
DNS

live.primis.tech

chrome.exe

Remote address:

8.8.8.8:53

Request

live.primis.tech

IN A

Response

live.primis.tech

IN CNAME

d2wcz8sc48ztgm.cloudfront.net

d2wcz8sc48ztgm.cloudfront.net

IN A

52.222.201.10

d2wcz8sc48ztgm.cloudfront.net

IN A

52.222.201.14

d2wcz8sc48ztgm.cloudfront.net

IN A

52.222.201.51

d2wcz8sc48ztgm.cloudfront.net

IN A

52.222.201.106
DNS

pixel.tapad.com

chrome.exe

Remote address:

8.8.8.8:53

Request

pixel.tapad.com

IN A

Response

pixel.tapad.com

IN A

34.111.113.62
DNS

prebid.a-mo.net

chrome.exe

Remote address:

8.8.8.8:53

Request

prebid.a-mo.net

IN A

Response

prebid.a-mo.net

IN CNAME

am6-prebid.a-mx.net

am6-prebid.a-mx.net

IN A

145.40.97.66

am6-prebid.a-mx.net

IN A

147.75.84.158

am6-prebid.a-mx.net

IN A

145.40.97.67
DNS

cm.adgrx.com

chrome.exe

Remote address:

8.8.8.8:53

Request

cm.adgrx.com

IN A

Response

cm.adgrx.com

IN CNAME

rtb.adgrx.com

rtb.adgrx.com

IN CNAME

rtb.adgrx.com.tech.akadns.net

rtb.adgrx.com.tech.akadns.net

IN A

52.215.155.11
GET

https://pixel.tapad.com/idsync/ex/receive?partner_id=3355&partner_device_id=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

34.111.113.62:443

Request

GET /idsync/ex/receive?partner_id=3355&partner_device_id=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: pixel.tapad.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://live.primis.tech/live/liveCS.php?source=external&advId=100&advUuid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

52.222.201.10:443

Request

GET /live/liveCS.php?source=external&advId=100&advUuid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: live.primis.tech
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
server: nginx
date: Tue, 25 Jun 2024 16:34:31 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-store
pragma: no-cache
set-cookie: csuuid=667af19851332; expires=Sat, 20-Jul-2024 16:34:32 GMT; Max-Age=2160000; path=/; domain=.primis.tech; secure; SameSite=None
vary: Accept-Encoding
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 d5ee2aa873a3cb23609433e0272dd41c.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P2
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: lioTUuZliQ8dn_6JokMbAOPHcelWfn9lPRdPxhfFFg1tr97_zcHR1Q==
age: 0
GET

https://prebid.a-mo.net/setuid/magnite?uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

145.40.97.66:443

Request

GET /setuid/magnite?uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: prebid.a-mo.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

cache-control: max-age=0, private, must-revalidate
date: Tue, 25 Jun 2024 16:34:31 GMT
server: envoy
vary: accept-encoding, Accept-Encoding
set-cookie: _Amc_b=497; path=/; expires=Tue, 25 Jun 2024 16:39:32 GMT; max-age=300; secure; HttpOnly; SameSite=None
set-cookie: _Amc_s=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA; path=/; expires=Tue, 25 Jun 2024 16:39:32 GMT; max-age=300; secure; HttpOnly; SameSite=None
set-cookie: _Amc_t=_T; path=/; expires=Tue, 25 Jun 2024 16:39:32 GMT; max-age=300; secure; HttpOnly; SameSite=None
set-cookie: _sv3_7=1; path=/; domain=a-mo.net; expires=Wed, 26 Jun 2024 16:34:32 GMT; max-age=86400; secure; HttpOnly; SameSite=None
set-cookie: amuid2=50886587-c2de-464e-b418-0cae300d20be; path=/; domain=a-mo.net; expires=Wed, 25 Jun 2025 16:34:32 GMT; max-age=31536000; secure; HttpOnly; SameSite=None
set-cookie: sd_amuid2=50886587-c2de-464e-b418-0cae300d20be; path=/; domain=prebid.a-mo.net; expires=Wed, 25 Jun 2025 16:34:32 GMT; max-age=31536000; secure; HttpOnly; SameSite=None
x-envoy-upstream-service-time: 2
DNS

sync.crwdcntrl.net

chrome.exe

Remote address:

8.8.8.8:53

Request

sync.crwdcntrl.net

IN A

Response

sync.crwdcntrl.net

IN A

54.72.120.129

sync.crwdcntrl.net

IN A

63.33.74.9

sync.crwdcntrl.net

IN A

52.50.8.163

sync.crwdcntrl.net

IN A

54.229.28.67

sync.crwdcntrl.net

IN A

34.247.240.165

sync.crwdcntrl.net

IN A

52.215.98.156

sync.crwdcntrl.net

IN A

34.254.52.227

sync.crwdcntrl.net

IN A

52.211.142.73
DNS

cr.frontend.weborama.fr

chrome.exe

Remote address:

8.8.8.8:53

Request

cr.frontend.weborama.fr

IN A

Response

cr.frontend.weborama.fr

IN A

34.111.129.221
DNS

mwzeom.zeotap.com

chrome.exe

Remote address:

8.8.8.8:53

Request

mwzeom.zeotap.com

IN A

Response

mwzeom.zeotap.com

IN A

104.22.50.98

mwzeom.zeotap.com

IN A

172.67.40.173

mwzeom.zeotap.com

IN A

104.22.51.98
DNS

um.simpli.fi

chrome.exe

Remote address:

8.8.8.8:53

Request

um.simpli.fi

IN A

Response

um.simpli.fi

IN A

34.91.62.186

um.simpli.fi

IN A

35.204.158.49

um.simpli.fi

IN A

35.204.74.118
DNS

c1.adform.net

chrome.exe

Remote address:

8.8.8.8:53

Request

c1.adform.net

IN A

Response

c1.adform.net

IN CNAME

track.adformnet.akadns.net

track.adformnet.akadns.net

IN A

37.157.6.243

track.adformnet.akadns.net

IN A

37.157.6.254

track.adformnet.akadns.net

IN A

37.157.6.233

track.adformnet.akadns.net

IN A

37.157.6.232

track.adformnet.akadns.net

IN A

37.157.6.237
DNS

ups.analytics.yahoo.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ups.analytics.yahoo.com

IN A

Response

ups.analytics.yahoo.com

IN CNAME

prod.ups-ats.aolp-ds-prd.aws.oath.cloud

prod.ups-ats.aolp-ds-prd.aws.oath.cloud

IN CNAME

prod.ups-ats.eu-central-1.aolp-ds-prd.aws.oath.cloud

prod.ups-ats.eu-central-1.aolp-ds-prd.aws.oath.cloud

IN CNAME

ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud

ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud

IN A

3.75.62.37

ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud

IN A

3.71.149.231
DNS

creativecdn.com

chrome.exe

Remote address:

8.8.8.8:53

Request

creativecdn.com

IN A

Response

creativecdn.com

IN A

185.184.8.90
DNS

pixel-sync.sitescout.com

chrome.exe

Remote address:

8.8.8.8:53

Request

pixel-sync.sitescout.com

IN A

Response

pixel-sync.sitescout.com

IN A

34.36.216.150
DNS

pubmatic-match.dotomi.com

chrome.exe

Remote address:

8.8.8.8:53

Request

pubmatic-match.dotomi.com

IN A

Response

pubmatic-match.dotomi.com

IN CNAME

bfp.global.dual.dotomi.weighted.com.akadns.net

bfp.global.dual.dotomi.weighted.com.akadns.net

IN A

64.158.223.140
DNS

ad.turn.com

chrome.exe

Remote address:

8.8.8.8:53

Request

ad.turn.com

IN A

Response

ad.turn.com

IN CNAME

ad.turn.com.akadns.net

ad.turn.com.akadns.net

IN A

46.228.164.11
GET

https://cr.frontend.weborama.fr/cr?key=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

34.111.129.221:443

Request

GET /cr?key=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: cr.frontend.weborama.fr
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://mwzeom.zeotap.com/mw?zpartnerid=1384&env=mWeb&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&cid=6F33541D-0234-4D12-A971-323BE606F1A8

chrome.exe

Remote address:

104.22.50.98:443

Request

GET /mw?zpartnerid=1384&env=mWeb&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&cid=6F33541D-0234-4D12-A971-323BE606F1A8 HTTP/2.0
host: mwzeom.zeotap.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:34:32 GMT
content-type: image/png
content-length: 95
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://ads.pubmatic.com
set-cookie: zc=06f6dea0-fa5b-4b8a-6cad-6036b48366e4; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
strict-transport-security: max-age=2592000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 89965d98ce4e1c92-AMS
GET

https://creativecdn.com/cm-notify?pi=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

185.184.8.90:443

Request

GET /cm-notify?pi=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: creativecdn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:34:32 GMT
vary: Accept-Encoding
set-cookie: g=UJCh3uSeuqfbsNFPwYCX_1719333272447;Path=/;Domain=.creativecdn.com;Expires=Wed, 25-Jun-2025 16:34:32 GMT;Max-Age=31536000;Secure;SameSite=None
set-cookie: ts=1719333272;Path=/;Domain=.creativecdn.com;Expires=Wed, 25-Jun-2025 16:34:32 GMT;Max-Age=31536000;Secure;SameSite=None;Partitioned
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
location: https://creativecdn.com/cm-notify?pi=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&tc=1
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Tue, 25 Jun 2024 16:34:32 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 0
GET

https://creativecdn.com/cm-notify?pi=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&tc=1

chrome.exe

Remote address:

185.184.8.90:443

Request

GET /cm-notify?pi=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&tc=1 HTTP/2.0
host: creativecdn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: g=UJCh3uSeuqfbsNFPwYCX_1719333272447
cookie: ts=1719333272

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:34:32 GMT
vary: Accept-Encoding
location: https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMwNTQmdGw9NDMyMDA%3D&piggybackCookie=qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&pi=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&tc=1
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Tue, 25 Jun 2024 16:34:32 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 0
GET

https://creativecdn.com/cm-notify?pi=sharethrough&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

185.184.8.90:443

Request

GET /cm-notify?pi=sharethrough&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: creativecdn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: g=UJCh3uSeuqfbsNFPwYCX_1719333272447
cookie: ts=1719333272

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:34:33 GMT
vary: Accept-Encoding
location: https://match.sharethrough.com/sync/v1?source_id=PNoZYBiDuXiYZvaVd8ixzJNL&source_user_id=qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&pi=sharethrough&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Tue, 25 Jun 2024 16:34:33 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 0
GET

https://creativecdn.com/cm-notify?pi=openx&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

185.184.8.90:443

Request

GET /cm-notify?pi=openx&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: creativecdn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://playbuzzltd-d.openx.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: g=UJCh3uSeuqfbsNFPwYCX_1719333272447
cookie: ts=1719333272

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:35:24 GMT
vary: Accept-Encoding
location: https://us-u.openx.net/w/1.0/sd?id=537073053&val=qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&pi=openx&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Tue, 25 Jun 2024 16:35:24 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 0
GET

https://pixel-sync.sitescout.com/dmp/pixelSync?nid=3&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

34.36.216.150:443

Request

GET /dmp/pixelSync?nid=3&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: pixel-sync.sitescout.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://ups.analytics.yahoo.com/ups/58292/sync?_origin=1&uid=6F33541D-0234-4D12-A971-323BE606F1A8&redir=true&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

3.75.62.37:443

Request

GET /ups/58292/sync?_origin=1&uid=6F33541D-0234-4D12-A971-323BE606F1A8&redir=true&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: ups.analytics.yahoo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: A3=d=AQABBJfxemYCEMZfJSxI9-F-DdVmFyZWQEYFEgEBAQFDfGaEZgAAAAAA_eMAAA&S=AQAAApLfxwmpso0Up4KdxUt20Vo
GET

https://cms.analytics.yahoo.com/cms?partner_id=DELI&gdpr=0

chrome.exe

Remote address:

3.75.62.37:443

Request

GET /cms?partner_id=DELI&gdpr=0 HTTP/2.0
host: cms.analytics.yahoo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: A3=d=AQABBJfxemYCEMZfJSxI9-F-DdVmFyZWQEYFEgEBAQFDfGaEZgAAAAAA_eMAAA&S=AQAAApLfxwmpso0Up4KdxUt20Vo
cookie: IDSYNC=18z8~2j74
GET

https://ups.analytics.yahoo.com/ups/58679/cms?partner_id=DELI&gdpr=0

chrome.exe

Remote address:

3.75.62.37:443

Request

GET /ups/58679/cms?partner_id=DELI&gdpr=0 HTTP/2.0
host: ups.analytics.yahoo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: A3=d=AQABBJfxemYCEMZfJSxI9-F-DdVmFyZWQEYFEgEBAQFDfGaEZgAAAAAA_eMAAA&S=AQAAApLfxwmpso0Up4KdxUt20Vo
cookie: IDSYNC=18z8~2j74
GET

https://ups.analytics.yahoo.com/ups/55940/sync?_origin=1&redir2=true&uid=ZnrxlrmqPq8AAFKyAdC9GwAAETMAAAAB&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&gdpr=1&gpp=&gpp_sid=

chrome.exe

Remote address:

3.75.62.37:443

Request

GET /ups/55940/sync?_origin=1&redir2=true&uid=ZnrxlrmqPq8AAFKyAdC9GwAAETMAAAAB&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&gdpr=1&gpp=&gpp_sid= HTTP/2.0
host: ups.analytics.yahoo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssum-sec.casalemedia.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: A3=d=AQABBJfxemYCEMZfJSxI9-F-DdVmFyZWQEYFEgEBAQFDfGaEZgAAAAAA_eMAAA&S=AQAAApLfxwmpso0Up4KdxUt20Vo
cookie: IDSYNC=18z8~2j74
GET

https://pubmatic-match.dotomi.com/match/bounce/current?networkId=17100&version=1&nuid=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

64.158.223.140:443

Request

GET /match/bounce/current?networkId=17100&version=1&nuid=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: pubmatic-match.dotomi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

server: nginx
date: Tue, 25 Jun 2024 16:34:32 GMT
content-length: 0
set-cookie: DotomiTest=232cd4d287601583; Expires=Tue, 25 Jun 2024 16:35:02 GMT; Path=/; Domain=.dotomi.com; Secure; SameSite=None;
cache-control: no-cache, private, max-age=0, no-store
expires: 0
pragma: no-cache
location: https://pubmatic-match.dotomi.com/match/bounce/current?DotomiTest=232cd4d287601583&is_secure=true&networkId=17100&version=1&nuid=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
GET

https://pubmatic-match.dotomi.com/match/bounce/current?DotomiTest=232cd4d287601583&is_secure=true&networkId=17100&version=1&nuid=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

64.158.223.140:443

Request

GET /match/bounce/current?DotomiTest=232cd4d287601583&is_secure=true&networkId=17100&version=1&nuid=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: pubmatic-match.dotomi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: DotomiTest=232cd4d287601583

Response

HTTP/2.0 302

server: nginx
date: Tue, 25 Jun 2024 16:34:32 GMT
content-length: 0
cache-control: no-cache, private, max-age=0, no-store
expires: 0
pragma: no-cache
location: https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTQ2MSZ0bD0xMDA4MA==&piggybackCookie=AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&expiration=1719419672&nuid=6F33541D-0234-4D12-A971-323BE606F1A8&is_secure=true&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1
GET

https://medianet-match.dotomi.com/match/bounce/current?version=1&networkId=57734&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D8%26vsid%3D3623348742093549000V10%26type%3Dcon%26refUrl%3D%26vid%3D93332740063623348742093549000V10%26axid_e%3D%26ovsid%3D%24UID

chrome.exe

Remote address:

64.158.223.140:443

Request

GET /match/bounce/current?version=1&networkId=57734&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D8%26vsid%3D3623348742093549000V10%26type%3Dcon%26refUrl%3D%26vid%3D93332740063623348742093549000V10%26axid_e%3D%26ovsid%3D%24UID HTTP/2.0
host: medianet-match.dotomi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://contextual.media.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: DotomiTest=232cd4d287601583

Response

HTTP/2.0 302

server: nginx
date: Tue, 25 Jun 2024 16:34:35 GMT
content-length: 0
set-cookie: DotomiTest=132caacea90c170a; Expires=Tue, 25 Jun 2024 16:35:05 GMT; Path=/; Domain=.dotomi.com; Secure; SameSite=None;
cache-control: no-cache, private, max-age=0, no-store
expires: 0
pragma: no-cache
location: https://medianet-match.dotomi.com/match/bounce/current?DotomiTest=132caacea90c170a&is_secure=true&version=1&networkId=57734&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D8%26vsid%3D3623348742093549000V10%26type%3Dcon%26refUrl%3D%26vid%3D93332740063623348742093549000V10%26axid_e%3D%26ovsid%3D%24UID
GET

https://medianet-match.dotomi.com/match/bounce/current?DotomiTest=132caacea90c170a&is_secure=true&version=1&networkId=57734&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D8%26vsid%3D3623348742093549000V10%26type%3Dcon%26refUrl%3D%26vid%3D93332740063623348742093549000V10%26axid_e%3D%26ovsid%3D%24UID

chrome.exe

Remote address:

64.158.223.140:443

Request

GET /match/bounce/current?DotomiTest=132caacea90c170a&is_secure=true&version=1&networkId=57734&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D8%26vsid%3D3623348742093549000V10%26type%3Dcon%26refUrl%3D%26vid%3D93332740063623348742093549000V10%26axid_e%3D%26ovsid%3D%24UID HTTP/2.0
host: medianet-match.dotomi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://contextual.media.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: DotomiTest=132caacea90c170a

Response

HTTP/2.0 302

server: nginx
date: Tue, 25 Jun 2024 16:34:35 GMT
content-length: 0
cache-control: no-cache, private, max-age=0, no-store
expires: 0
pragma: no-cache
location: https://contextual.media.net/cksync.php?cs=8&vsid=3623348742093549000V10&type=con&refUrl=&vid=93332740063623348742093549000V10&axid_e=&ovsid=AQAGxOftSrzMowIMxUtUAQEBAQEBAQCRUT7HGQEBAJFRPscZ&expiration=1719419675&is_secure=true&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1
GET

https://ad.turn.com/r/cs?pid=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

46.228.164.11:443

Request

GET /r/cs?pid=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: ad.turn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=3314471828681895967; Domain=.turn.com; Expires=Sun, 22-Dec-2024 16:34:32 GMT; Path=/; Secure; SameSite=None
location: https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9ODImdGw9MTU3NjgwMCZkcF9pZD0yMg==&piggybackCookie=3314471828681895967&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=
content-length: 0
date: Tue, 25 Jun 2024 16:34:32 GMT
GET

https://ad.turn.com/r/cs?pid=45&rndcb=752804979

chrome.exe

Remote address:

46.228.164.11:443

Request

GET /r/cs?pid=45&rndcb=752804979 HTTP/2.0
host: ad.turn.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=3314471828681895967

Response

HTTP/2.0 302

p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=3314471828681895967; Domain=.turn.com; Expires=Sun, 22-Dec-2024 16:34:34 GMT; Path=/; Secure; SameSite=None
location: https://sync.1rx.io/usersync/turn/3314471828681895967?dspret=1&gdpr=&gdpr_consent=&us_privacy=
content-length: 0
date: Tue, 25 Jun 2024 16:34:34 GMT
GET

https://ad.turn.com/r/cs?pid=45&rndcb=2246083055

chrome.exe

Remote address:

46.228.164.11:443

Request

GET /r/cs?pid=45&rndcb=2246083055 HTTP/2.0
host: ad.turn.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=3314471828681895967

Response

HTTP/2.0 302

p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=3314471828681895967; Domain=.turn.com; Expires=Sun, 22-Dec-2024 16:34:34 GMT; Path=/; Secure; SameSite=None
location: https://sync.1rx.io/usersync/turn/3314471828681895967?dspret=1&gdpr=&gdpr_consent=&us_privacy=
content-length: 0
date: Tue, 25 Jun 2024 16:34:34 GMT
DNS

match.adsby.bidtheatre.com

chrome.exe

Remote address:

8.8.8.8:53

Request

match.adsby.bidtheatre.com

IN A

Response

match.adsby.bidtheatre.com

IN A

188.166.17.21

match.adsby.bidtheatre.com

IN A

64.227.64.62

match.adsby.bidtheatre.com

IN A

134.122.57.34
GET

https://match.adsby.bidtheatre.com/pubmaticmatch?redir=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMwNjImdGw9MTI5NjAw&piggybackCookie=uid:$UID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

188.166.17.21:443

Request

GET /pubmaticmatch?redir=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMwNjImdGw9MTI5NjAw&piggybackCookie=uid:$UID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: match.adsby.bidtheatre.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 302

Date: Tue, 25 Jun 2024 16:34:32 GMT
Server: Apache
P3P: policyref="/w3c/p3p.xml", CP="DSP NON LAW OUR CUR DEVo PSAo PSDo IND STA NAV COM INT"
Set-Cookie: __kuid=e9b79c2f-0b03-40c2-b690-5a4d8081b9d0.488547272; Max-Age=604800; Domain=.adsby.bidtheatre.com; SameSite=None; Secure
Location: https://simage2.pubmatic.com/AdServer/Pug?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&piggybackCookie=uid:e9b79c2f-0b03-40c2-b690-5a4d8081b9d0&vcode=bz0yJnR5cGU9MSZjb2RlPTMwNjImdGw9MTI5NjAw
Content-Length: 0
Keep-Alive: timeout=5, max=3000
Connection: Keep-Alive
DNS

wt.rqtrk.eu

chrome.exe

Remote address:

8.8.8.8:53

Request

wt.rqtrk.eu

IN A

Response

wt.rqtrk.eu

IN A

57.129.18.109

wt.rqtrk.eu

IN A

57.129.18.111

wt.rqtrk.eu

IN A

57.129.18.121

wt.rqtrk.eu

IN A

57.129.18.113

wt.rqtrk.eu

IN A

57.129.18.105
DNS

0.160.250.34.in-addr.arpa

chrome.exe

Remote address:

8.8.8.8:53

Request

0.160.250.34.in-addr.arpa

IN PTR

Response

0.160.250.34.in-addr.arpa

IN PTR

ec2-34-250-160-0 eu-west-1compute amazonawscom
DNS

14.42.107.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.42.107.13.in-addr.arpa

IN PTR

Response
DNS

6.163.102.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

6.163.102.34.in-addr.arpa

IN PTR

Response

6.163.102.34.in-addr.arpa

IN PTR

616310234bcgoogleusercontentcom
DNS

194.133.196.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

194.133.196.18.in-addr.arpa

IN PTR

Response

194.133.196.18.in-addr.arpa

IN PTR

ec2-18-196-133-194eu-central-1compute amazonawscom
DNS

173.193.186.35.in-addr.arpa

Remote address:

8.8.8.8:53

Request

173.193.186.35.in-addr.arpa

IN PTR

Response

173.193.186.35.in-addr.arpa

IN PTR

17319318635bcgoogleusercontentcom
DNS

166.156.155.213.in-addr.arpa

Remote address:

8.8.8.8:53

Request

166.156.155.213.in-addr.arpa

IN PTR

Response
DNS

166.156.155.213.in-addr.arpa

Remote address:

8.8.8.8:53

Request

166.156.155.213.in-addr.arpa

IN PTR

Response
DNS

67.38.160.54.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.38.160.54.in-addr.arpa

IN PTR

Response

67.38.160.54.in-addr.arpa

IN PTR

ec2-54-160-38-67 compute-1 amazonawscom
DNS

130.160.0.193.in-addr.arpa

Remote address:

8.8.8.8:53

Request

130.160.0.193.in-addr.arpa

IN PTR

Response
DNS

20.165.5.195.in-addr.arpa

Remote address:

8.8.8.8:53

Request

20.165.5.195.in-addr.arpa

IN PTR

Response
DNS

62.113.111.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

62.113.111.34.in-addr.arpa

IN PTR

Response

62.113.111.34.in-addr.arpa

IN PTR

6211311134bcgoogleusercontentcom
DNS

10.201.222.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

10.201.222.52.in-addr.arpa

IN PTR

Response

10.201.222.52.in-addr.arpa

IN PTR

server-52-222-201-10cdg50r cloudfrontnet
DNS

11.155.215.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.155.215.52.in-addr.arpa

IN PTR

Response

11.155.215.52.in-addr.arpa

IN PTR

ec2-52-215-155-11 eu-west-1compute amazonawscom
DNS

129.120.72.54.in-addr.arpa

Remote address:

8.8.8.8:53

Request

129.120.72.54.in-addr.arpa

IN PTR

Response

129.120.72.54.in-addr.arpa

IN PTR

ec2-54-72-120-129 eu-west-1compute amazonawscom
DNS

221.129.111.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

221.129.111.34.in-addr.arpa

IN PTR

Response

221.129.111.34.in-addr.arpa

IN PTR

22112911134bcgoogleusercontentcom
DNS

150.216.36.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

150.216.36.34.in-addr.arpa

IN PTR

Response

150.216.36.34.in-addr.arpa

IN PTR

1502163634bcgoogleusercontentcom
DNS

98.50.22.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

98.50.22.104.in-addr.arpa

IN PTR

Response
DNS

90.8.184.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

90.8.184.185.in-addr.arpa

IN PTR

Response

90.8.184.185.in-addr.arpa

IN PTR

ip-185-184-8-90rtbhousenet
DNS

186.62.91.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

186.62.91.34.in-addr.arpa

IN PTR

Response

186.62.91.34.in-addr.arpa

IN PTR

186629134bcgoogleusercontentcom
DNS

243.6.157.37.in-addr.arpa

Remote address:

8.8.8.8:53

Request

243.6.157.37.in-addr.arpa

IN PTR

Response
DNS

37.62.75.3.in-addr.arpa

Remote address:

8.8.8.8:53

Request

37.62.75.3.in-addr.arpa

IN PTR

Response

37.62.75.3.in-addr.arpa

IN PTR

ec2-3-75-62-37eu-central-1compute amazonawscom
DNS

140.223.158.64.in-addr.arpa

Remote address:

8.8.8.8:53

Request

140.223.158.64.in-addr.arpa

IN PTR

Response

140.223.158.64.in-addr.arpa

IN PTR

ams02-nessy-float2dotomicom
DNS

11.164.228.46.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.164.228.46.in-addr.arpa

IN PTR

Response

11.164.228.46.in-addr.arpa

IN PTR

presentation-ams1turncom
DNS

21.17.166.188.in-addr.arpa

Remote address:

8.8.8.8:53

Request

21.17.166.188.in-addr.arpa

IN PTR

Response
GET

https://wt.rqtrk.eu/?pid=58a76248-f101-4e52-b8f7-c4de9362ea12&src=www&type=100&sid=0&uid=4052082643997295311&gdpr_pd=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

57.129.18.109:443

Request

GET /?pid=58a76248-f101-4e52-b8f7-c4de9362ea12&src=www&type=100&sid=0&uid=4052082643997295311&gdpr_pd=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: wt.rqtrk.eu
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssbsync-global.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: istio-envoy
date: Tue, 25 Jun 2024 16:34:32 GMT
content-type: image/gif
content-length: 43
p3p: CP="NOI DSP COR DEVa PSAa PSDa OUR BUS UNI COM NAV STA"
cache-control: no-cache,private
pragma: no-cache
expires: Tue, 25 Jun 2024 16:34:31 GMT
set-cookie: browser_id=1:b7892654-d793-4c1f-abca-dc0093db2878; Expires=Tue, 02 Jul 2024 16:34:32 GMT; Domain=.rqtrk.eu; Secure; SameSite=None
x-envoy-upstream-service-time: 8
DNS

image4.pubmatic.com

chrome.exe

Remote address:

8.8.8.8:53

Request

image4.pubmatic.com

IN A

Response

image4.pubmatic.com

IN CNAME

image4-v2.pubmnet.com

image4-v2.pubmnet.com

IN CNAME

spug-amsfpairbc.pubmnet.com

spug-amsfpairbc.pubmnet.com

IN A

198.47.127.20
GET

https://image4.pubmatic.com/AdServer/SPug?partnerID=156078&xid=y-9Ec1PTxE2uVm5pQeI5j82hUnYgoJFEA-~A&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.20:443

Request

GET /AdServer/SPug?partnerID=156078&xid=y-9Ec1PTxE2uVm5pQeI5j82hUnYgoJFEA-~A&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: image4.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: chkChromeAb67Sec=1
cookie: pi=158554:2
cookie: DPSync3=1720483200%3A201_245_241_227
cookie: SyncRTB3=1720483200%3A234_55_81_56_249_46_238_233_8_266_264_13_54_251_71_22_214_161_165_3_254_220_21_166%7C1720569600%3A35%7C1719878400%3A223_2_15%7C1721865600%3A203%7C1720137600%3A63
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: PugT=1719333271
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:32 GMT
set-cookie: SPugT=1719333272; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:32 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image4.pubmatic.com/AdServer/SPug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&p=160648&pmc=1&pr=https%3A%2F%2Fsync-pm.ads.yieldmo.com%2Fsync%3Fpn_id%3Dpub%26id%3D6F33541D-0234-4D12-A971-323BE606F1A8%26gdpr1%26gdpr_consent%3CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.20:443

Request

GET /AdServer/SPug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&p=160648&pmc=1&pr=https%3A%2F%2Fsync-pm.ads.yieldmo.com%2Fsync%3Fpn_id%3Dpub%26id%3D6F33541D-0234-4D12-A971-323BE606F1A8%26gdpr1%26gdpr_consent%3CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: image4.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.yieldmo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: PugT=1719333271
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: SPugT=1719333272
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: ipc=160648^https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D160648%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fsync-pm.ads.yieldmo.com%252Fsync%253Fpn_id%253Dpub%2526id%253D%2523PMUID%2526gdpr%2531%2526gdpr_consent%253CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA^0^0
cookie: pi=160648:3
cookie: chkChromeAb67Sec=3

Response

HTTP/2.0 302

server: nginx
date: Tue, 25 Jun 2024 16:34:32 GMT
set-cookie: SPugT=1719333272; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:32 GMT; path=/
location: https://sync-pm.ads.yieldmo.com/sync?pn_id=pub&id=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr1&gdpr_consent<QAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage4.pubmatic.com/AdServer/SPug?partnerID=158554&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

chrome.exe

Remote address:

198.47.127.20:443

Request

GET /AdServer/SPug?partnerID=158554&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy= HTTP/2.0
host: simage4.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: PugT=1719333271
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: SPugT=1719333272
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: ipc=160648^https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D160648%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fsync-pm.ads.yieldmo.com%252Fsync%253Fpn_id%253Dpub%2526id%253D%2523PMUID%2526gdpr%2531%2526gdpr_consent%253CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA^0^0
cookie: pi=160648:3
cookie: chkChromeAb67Sec=3

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:34 GMT
set-cookie: SPugT=1719333274; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:34 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image4.pubmatic.com/AdServer/SPug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&p=160648&pmc=1&pr=https%3A%2F%2Fsync-pm.ads.yieldmo.com%2Fsync%3Fpn_id%3Dpub%26id%3D6F33541D-0234-4D12-A971-323BE606F1A8%26gdpr1%26gdpr_consent%3CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=%24%7BUS_PRIVACY%7D

chrome.exe

Remote address:

198.47.127.20:443

Request

GET /AdServer/SPug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&p=160648&pmc=1&pr=https%3A%2F%2Fsync-pm.ads.yieldmo.com%2Fsync%3Fpn_id%3Dpub%26id%3D6F33541D-0234-4D12-A971-323BE606F1A8%26gdpr1%26gdpr_consent%3CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=%24%7BUS_PRIVACY%7D HTTP/2.0
host: image4.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: pi=160648:3
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: SPugT=1719333274
cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY
cookie: PugT=1719333274
cookie: chkChromeAb67Sec=4

Response

HTTP/2.0 302

server: nginx
date: Tue, 25 Jun 2024 16:34:34 GMT
set-cookie: SPugT=1719333274; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:34 GMT; path=/
location: https://sync-pm.ads.yieldmo.com/sync?pn_id=pub&id=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr1&gdpr_consent<QAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://image4.pubmatic.com/AdServer/SPug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&p=160648&pmc=1&pr=https%3A%2F%2Fsync-pm.ads.yieldmo.com%2Fsync%3Fpn_id%3Dpub%26id%3D6F33541D-0234-4D12-A971-323BE606F1A8%26gdpr1%26gdpr_consent%3CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=%24%7BUS_PRIVACY%7D

chrome.exe

Remote address:

198.47.127.20:443

Request

GET /AdServer/SPug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&p=160648&pmc=1&pr=https%3A%2F%2Fsync-pm.ads.yieldmo.com%2Fsync%3Fpn_id%3Dpub%26id%3D6F33541D-0234-4D12-A971-323BE606F1A8%26gdpr1%26gdpr_consent%3CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=%24%7BUS_PRIVACY%7D HTTP/2.0
host: image4.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: pi=160648:3
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: SPugT=1719333274
cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY
cookie: PugT=1719333274
cookie: chkChromeAb67Sec=4

Response

HTTP/2.0 302

server: nginx
date: Tue, 25 Jun 2024 16:34:34 GMT
set-cookie: SPugT=1719333274; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:34 GMT; path=/
location: https://sync-pm.ads.yieldmo.com/sync?pn_id=pub&id=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr1&gdpr_consent<QAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage4.pubmatic.com/AdServer/SPug?partnerID=158554&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

chrome.exe

Remote address:

198.47.127.20:443

Request

GET /AdServer/SPug?partnerID=158554&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy= HTTP/2.0
host: simage4.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: pi=160648:3
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: SPugT=1719333274
cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY
cookie: PugT=1719333274
cookie: chkChromeAb67Sec=4

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:35 GMT
set-cookie: SPugT=1719333275; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:35 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
GET

https://simage4.pubmatic.com/AdServer/SPug?partnerID=158554&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

chrome.exe

Remote address:

198.47.127.20:443

Request

GET /AdServer/SPug?partnerID=158554&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy= HTTP/2.0
host: simage4.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: pi=160648:3
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY
cookie: PugT=1719333274
cookie: chkChromeAb67Sec=4
cookie: SPugT=1719333275

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:35 GMT
set-cookie: SPugT=1719333275; domain=pubmatic.com; SameSite=None; secure; expires=Thu, 25-Jul-2024 16:34:35 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
DNS

idsync.frontend.weborama.fr

chrome.exe

Remote address:

8.8.8.8:53

Request

idsync.frontend.weborama.fr

IN A

Response

idsync.frontend.weborama.fr

IN A

34.111.131.239
DNS

pm.w55c.net

chrome.exe

Remote address:

8.8.8.8:53

Request

pm.w55c.net

IN A

Response

pm.w55c.net

IN CNAME

cdn.w55c.net

cdn.w55c.net

IN A

34.251.19.157

cdn.w55c.net

IN A

54.77.130.68

cdn.w55c.net

IN A

34.250.160.0
DNS

casale-match.dotomi.com

chrome.exe

Remote address:

8.8.8.8:53

Request

casale-match.dotomi.com

IN A

Response

casale-match.dotomi.com

IN CNAME

bfp.global.dual.dotomi.weighted.com.akadns.net

bfp.global.dual.dotomi.weighted.com.akadns.net

IN A

89.207.16.140
DNS

casale-match.dotomi.com

chrome.exe

Remote address:

8.8.8.8:53

Request

casale-match.dotomi.com

IN A

Response

casale-match.dotomi.com

IN CNAME

bfp.global.dual.dotomi.weighted.com.akadns.net

bfp.global.dual.dotomi.weighted.com.akadns.net

IN A

89.207.16.140
GET

https://idsync.frontend.weborama.fr/ids?key=pubmatic&value=6F33541D-0234-4D12-A971-323BE606F1A8

chrome.exe

Remote address:

34.111.131.239:443

Request

GET /ids?key=pubmatic&value=6F33541D-0234-4D12-A971-323BE606F1A8 HTTP/2.0
host: idsync.frontend.weborama.fr
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: AFFICHE_W=mFmdoVuFaOqY90
DNS

static.criteo.net

chrome.exe

Remote address:

8.8.8.8:53

Request

static.criteo.net

IN A

Response

static.criteo.net

IN CNAME

static.nl3.vip.prod.criteo.net

static.nl3.vip.prod.criteo.net

IN A

178.250.1.3
GET

https://static.criteo.net/js/ld/publishertag.prebid.139.js

chrome.exe

Remote address:

178.250.1.3:443

Request

GET /js/ld/publishertag.prebid.139.js HTTP/2.0
host: static.criteo.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:34:33 GMT
content-type: text/javascript
last-modified: Thu, 26 Oct 2023 13:53:27 GMT
etag: W/"653a6f57-17cae"
expires: Wed, 26 Jun 2024 16:34:33 GMT
cache-control: max-age=86400
cross-origin-resource-policy: cross-origin
cache-control: public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
DNS

109.18.129.57.in-addr.arpa

Remote address:

8.8.8.8:53

Request

109.18.129.57.in-addr.arpa

IN PTR

Response

109.18.129.57.in-addr.arpa

IN PTR

haproxy-eu-012roqadpl
DNS

20.127.47.198.in-addr.arpa

Remote address:

8.8.8.8:53

Request

20.127.47.198.in-addr.arpa

IN PTR

Response
DNS

239.131.111.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

239.131.111.34.in-addr.arpa

IN PTR

Response

239.131.111.34.in-addr.arpa

IN PTR

23913111134bcgoogleusercontentcom
DNS

140.16.207.89.in-addr.arpa

Remote address:

8.8.8.8:53

Request

140.16.207.89.in-addr.arpa

IN PTR

Response

140.16.207.89.in-addr.arpa

IN PTR

ams03-nessy-float2dotomicom
DNS

157.19.251.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

157.19.251.34.in-addr.arpa

IN PTR

Response

157.19.251.34.in-addr.arpa

IN PTR

ec2-34-251-19-157 eu-west-1compute amazonawscom
DNS

3.1.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

3.1.250.178.in-addr.arpa

IN PTR

Response
DNS

gum.criteo.com

chrome.exe

Remote address:

8.8.8.8:53

Request

gum.criteo.com

IN A

Response

gum.criteo.com

IN CNAME

gum.nl3.vip.prod.criteo.com

gum.nl3.vip.prod.criteo.com

IN A

178.250.1.11
GET

https://gum.criteo.com/syncframe?origin=publishertag&topUrl=mm-watch.com&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

178.250.1.11:443

Request

GET /syncframe?origin=publishertag&topUrl=mm-watch.com&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
date: Tue, 25 Jun 2024 16:34:33 GMT
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f; expires=Sun, 20 Jul 2025 16:34:33 GMT; domain=.criteo.com; path=/; secure; samesite=none
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
x-robots-tag: noindex
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 419226
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
GET

https://gum.criteo.com/sid/json?origin=publishertag&domain=mm-watch.com&sn=ChromeSyncframe&so=0&topUrl=mm-watch.com&cw=1&lsw=1&topicsavail=0&fledgeavail=0

chrome.exe

Remote address:

178.250.1.11:443

Request

GET /sid/json?origin=publishertag&domain=mm-watch.com&sn=ChromeSyncframe&so=0&topUrl=mm-watch.com&cw=1&lsw=1&topicsavail=0&fledgeavail=0 HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/syncframe?origin=publishertag&topUrl=mm-watch.com&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Tue, 25 Jun 2024 16:34:34 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
server-processing-duration-in-ticks: 1456778
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
GET

https://gum.criteo.com/sync?r=2&c=321&gdpr=1&gdpr_pd=0&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&j=window.advBidxc.mnetRtusId

chrome.exe

Remote address:

178.250.1.11:443

Request

GET /sync?r=2&c=321&gdpr=1&gdpr_pd=0&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&j=window.advBidxc.mnetRtusId HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://contextual.media.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
date: Tue, 25 Jun 2024 16:34:34 GMT
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 1270081
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
DNS

playbuzzltd-d.openx.net

chrome.exe

Remote address:

8.8.8.8:53

Request

playbuzzltd-d.openx.net

IN A

Response

playbuzzltd-d.openx.net

IN A

34.98.64.218

playbuzzltd-d.openx.net

IN A

35.244.159.8
DNS

contextual.media.net

chrome.exe

Remote address:

8.8.8.8:53

Request

contextual.media.net

IN A

Response

contextual.media.net

IN A

2.23.8.24
DNS

contextual.media.net

chrome.exe

Remote address:

8.8.8.8:53

Request

contextual.media.net

IN A

Response

contextual.media.net

IN A

2.23.8.24
DNS

sync.adkernel.com

chrome.exe

Remote address:

8.8.8.8:53

Request

sync.adkernel.com

IN A

Response

sync.adkernel.com

IN CNAME

1.cpm.ak-is2.net

1.cpm.ak-is2.net

IN A

77.245.57.72
GET

https://contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUB64530&prvid=77%2C2034%2C2033%2C2043%2C2030%2C2041%2C262%2C461%2C2027%2C4%2C159%2C2026%2C10000%2C459%2C9%2C109%2C97%2C2109&itype=PREBID&purpose1=1&gdprconsent=1&gdpr=1&gdprstring=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&coppa=0&usp_status=0&usp_consent=1

chrome.exe

Remote address:

2.23.8.24:443

Request

GET /checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUB64530&prvid=77%2C2034%2C2033%2C2043%2C2030%2C2041%2C262%2C461%2C2027%2C4%2C159%2C2026%2C10000%2C459%2C9%2C109%2C97%2C2109&itype=PREBID&purpose1=1&gdprconsent=1&gdpr=1&gdprstring=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&coppa=0&usp_status=0&usp_consent=1 HTTP/2.0
host: contextual.media.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: Apache
content-type: text/html; charset=UTF-8
set-cookie: visitor-id=3623348742093549000V10; Expires=Wed, 25 Jun 2025 16:34:34 GMT; domain=.media.net; Path=/; sameSite=none; secure=true
x-mnet-hl2: E
p3p: CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
alt-svc: h3=":443"; ma=93600
vary: Accept-Encoding
content-encoding: gzip
expires: Tue, 25 Jun 2024 16:34:34 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 25 Jun 2024 16:34:34 GMT
content-length: 11677
DNS

image8.pubmatic.com

chrome.exe

Remote address:

8.8.8.8:53

Request

image8.pubmatic.com

IN A

Response

image8.pubmatic.com

IN CNAME

image8-v2.pubmnet.com

image8-v2.pubmnet.com

IN CNAME

imgsync-amsfpairbc.pubmnet.com

imgsync-amsfpairbc.pubmnet.com

IN A

198.47.127.18
GET

https://image8.pubmatic.com/AdServer/ImgSync?p=160648&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D160648%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fsync-pm.ads.yieldmo.com%252Fsync%253Fpn_id%253Dpub%2526id%253D%2523PMUID%2526gdpr%2531%2526gdpr_consent%253CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

198.47.127.18:443

Request

GET /AdServer/ImgSync?p=160648&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D160648%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fsync-pm.ads.yieldmo.com%252Fsync%253Fpn_id%253Dpub%2526id%253D%2523PMUID%2526gdpr%2531%2526gdpr_consent%253CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: image8.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.yieldmo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: PugT=1719333271
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: SPugT=1719333272
cookie: chkChromeAb67Sec=2
cookie: pi=158554:4
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99

Response

HTTP/2.0 302

cache-control: private,max-age=86400
content-type: text/html; charset=utf-8
location: https://image4.pubmatic.com/AdServer/SPug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&p=160648&pmc=1&pr=https%3A%2F%2Fsync-pm.ads.yieldmo.com%2Fsync%3Fpn_id%3Dpub%26id%3D6F33541D-0234-4D12-A971-323BE606F1A8%26gdpr1%26gdpr_consent%3CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
set-cookie: ipc=160648^https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D160648%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fsync-pm.ads.yieldmo.com%252Fsync%253Fpn_id%253Dpub%2526id%253D%2523PMUID%2526gdpr%2531%2526gdpr_consent%253CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA^0^0; domain=pubmatic.com; path=/; max-age=3; SameSite=None; secure;
set-cookie: pi=160648:3; domain=pubmatic.com; path=/; max-age=86400; SameSite=None; secure;
set-cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8; domain=pubmatic.com; path=/; max-age=31536000; SameSite=None; secure;
set-cookie: chkChromeAb67Sec=3; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
date: Tue, 25 Jun 2024 16:34:32 GMT
content-length: 1241
GET

https://image8.pubmatic.com/AdServer/ImgSync?sec=1&gdpr=0&gdpr_consent=&us_privacy=${US_PRIVACY}

chrome.exe

Remote address:

198.47.127.18:443

Request

GET /AdServer/ImgSync?sec=1&gdpr=0&gdpr_consent=&us_privacy=${US_PRIVACY} HTTP/2.0
host: image8.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: SPugT=1719333272
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: ipc=160648^https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D160648%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fsync-pm.ads.yieldmo.com%252Fsync%253Fpn_id%253Dpub%2526id%253D%2523PMUID%2526gdpr%2531%2526gdpr_consent%253CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA^0^0
cookie: pi=160648:3
cookie: chkChromeAb67Sec=3
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: PugT=1719333273

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:34:33 GMT
content-length: 0
GET

https://image8.pubmatic.com/AdServer/ImgSync?sec=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=${US_PRIVACY}

chrome.exe

Remote address:

198.47.127.18:443

Request

GET /AdServer/ImgSync?sec=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=${US_PRIVACY} HTTP/2.0
host: image8.pubmatic.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: ipc=160648^https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D160648%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fsync-pm.ads.yieldmo.com%252Fsync%253Fpn_id%253Dpub%2526id%253D%2523PMUID%2526gdpr%2531%2526gdpr_consent%253CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA^0^0
cookie: pi=160648:3
cookie: chkChromeAb67Sec=3
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: SPugT=1719333274
cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY
cookie: PugT=1719333274

Response

HTTP/2.0 302

cache-control: private,max-age=86400
content-type: text/html; charset=utf-8
location: https://image4.pubmatic.com/AdServer/SPug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&p=160648&pmc=1&pr=https%3A%2F%2Fsync-pm.ads.yieldmo.com%2Fsync%3Fpn_id%3Dpub%26id%3D6F33541D-0234-4D12-A971-323BE606F1A8%26gdpr1%26gdpr_consent%3CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=%24%7BUS_PRIVACY%7D
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
set-cookie: ipc=; domain=pubmatic.com; path=/; max-age=0; SameSite=None; secure;
set-cookie: pi=160648:3; domain=pubmatic.com; path=/; max-age=86400; SameSite=None; secure;
set-cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8; domain=pubmatic.com; path=/; max-age=31536000; SameSite=None; secure;
set-cookie: chkChromeAb67Sec=4; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
date: Tue, 25 Jun 2024 16:34:33 GMT
content-length: 1276
DNS

us-u.openx.net

chrome.exe

Remote address:

8.8.8.8:53

Request

us-u.openx.net

IN A

Response

us-u.openx.net

IN A

35.244.159.8

us-u.openx.net

IN A

34.98.64.218
DNS

eu-u.openx.net

chrome.exe

Remote address:

8.8.8.8:53

Request

eu-u.openx.net

IN A

Response

eu-u.openx.net

IN A

34.98.64.218

eu-u.openx.net

IN A

35.244.159.8
DNS

green.erne.co

chrome.exe

Remote address:

8.8.8.8:53

Request

green.erne.co

IN A

Response

green.erne.co

IN A

141.95.171.140

green.erne.co

IN A

141.95.171.142

green.erne.co

IN A

141.94.242.206

green.erne.co

IN A

141.95.172.216

green.erne.co

IN A

141.94.242.204

green.erne.co

IN A

141.95.171.139

green.erne.co

IN A

141.94.242.226

green.erne.co

IN A

141.95.171.141

green.erne.co

IN A

141.94.161.158

green.erne.co

IN A

141.94.161.190

green.erne.co

IN A

141.94.240.143
GET

https://green.erne.co/pubmatic/cm?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

141.95.171.140:443

Request

GET /pubmatic/cm?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: green.erne.co
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

server: envoy
date: Tue, 25 Jun 2024 16:34:34 GMT
content-type: text/html
content-length: 145
location: https://pixel-eu.onaudience.com/?partner=270&smartmap=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirect=image2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%26piggybackCookie%3D%25_rid%26gdpr%3D1%26gdpr_consent%3D%25_gdpr_consent
x-envoy-upstream-service-time: 0
GET

https://green.erne.co/pubmatic/cm?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

141.95.171.140:443

Request

GET /pubmatic/cm?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: green.erne.co
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

server: envoy
date: Tue, 25 Jun 2024 16:34:34 GMT
content-type: text/html
content-length: 145
location: https://pixel-eu.onaudience.com/?partner=270&smartmap=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirect=image2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%26piggybackCookie%3D%25_rid%26gdpr%3D1%26gdpr_consent%3D%25_gdpr_consent
x-envoy-upstream-service-time: 0
DNS

sync.1rx.io

chrome.exe

Remote address:

8.8.8.8:53

Request

sync.1rx.io

IN A

Response

sync.1rx.io

IN A

46.228.174.117
DNS

a.tribalfusion.com

chrome.exe

Remote address:

8.8.8.8:53

Request

a.tribalfusion.com

IN A

Response

a.tribalfusion.com

IN A

104.18.25.173

a.tribalfusion.com

IN A

104.18.24.173
DNS

matching.truffle.bid

chrome.exe

Remote address:

8.8.8.8:53

Request

matching.truffle.bid

IN A

Response

matching.truffle.bid

IN A

162.55.120.196

matching.truffle.bid

IN A

23.88.86.2
GET

https://a.tribalfusion.com/i.match?p=b11&redirect=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%26piggybackCookie%3D%24TF_USER_ID_ENC%24&u=${PUBMATIC_UID}

chrome.exe

Remote address:

104.18.25.173:443

Request

GET /i.match?p=b11&redirect=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%26piggybackCookie%3D%24TF_USER_ID_ENC%24&u=${PUBMATIC_UID} HTTP/2.0
host: a.tribalfusion.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:34:34 GMT
content-type: text/html
location: https://s.tribalfusion.com/z/i.match?p=b11&redirect=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%26piggybackCookie%3D%24TF_USER_ID_ENC%24&u=${PUBMATIC_UID}
p3p: CP="NOI DEVo TAIa OUR BUS"
x-function: 206
x-reuse-index: 3781
cache-control: no-cache
cache-control: private
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
set-cookie: ANON_ID=aKnoeUxNeTwBeZdwWNu0G5e7WX0Yq6Q8DyJHrioKW; path=/; domain=.tribalfusion.com; expires=Mon, 23-Sep-2024 16:34:34 GMT; SameSite=None; Secure;
set-cookie: ANON_ID_old=aKnoeUxNeTwBeZdwWNu0G5e7WX0Yq6Q8DyJHrioKW; path=/; domain=.tribalfusion.com; expires=Mon, 23-Sep-2024 16:34:34 GMT;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 89965da59ed123ed-LHR
alt-svc: h3=":443"; ma=86400
GET

https://s.tribalfusion.com/z/i.match?p=b11&redirect=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%26piggybackCookie%3D%24TF_USER_ID_ENC%24&u=${PUBMATIC_UID}

chrome.exe

Remote address:

104.18.25.173:443

Request

GET /z/i.match?p=b11&redirect=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%26piggybackCookie%3D%24TF_USER_ID_ENC%24&u=${PUBMATIC_UID} HTTP/2.0
host: s.tribalfusion.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ANON_ID=aKnoeUxNeTwBeZdwWNu0G5e7WX0Yq6Q8DyJHrioKW

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:34:34 GMT
content-type: image/gif; charset=utf-8
content-length: 43
p3p: CP="NOI DEVo TAIa OUR BUS"
x-function: 302
cache-control: no-cache
cache-control: private
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
set-cookie: ANON_ID=aYntuJyKalHobWm8ZaCyPtMeZbBCFtiZdDU7ZbFi7lyaUcwHYe0dXASsuWucJVKZam3p1UKjgRZaZby5rySraZbFa84i5fgX; path=/; domain=.tribalfusion.com; expires=Mon, 23-Sep-2024 16:34:34 GMT; SameSite=None; Secure;
set-cookie: ANON_ID_old=aYntuJyKalHobWm8ZaCyPtMeZbBCFtiZdDU7ZbFi7lyaUcwHYe0dXASsuWucJVKZam3p1UKjgRZaZby5rySraZbFa84i5fgX; path=/; domain=.tribalfusion.com; expires=Mon, 23-Sep-2024 16:34:34 GMT;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 89965da7492623ed-LHR
alt-svc: h3=":443"; ma=86400
DNS

pixel-eu.onaudience.com

chrome.exe

Remote address:

8.8.8.8:53

Request

pixel-eu.onaudience.com

IN A

Response

pixel-eu.onaudience.com

IN A

141.94.171.214

pixel-eu.onaudience.com

IN A

146.59.148.16

pixel-eu.onaudience.com

IN A

141.94.171.215

pixel-eu.onaudience.com

IN A

141.94.171.213

pixel-eu.onaudience.com

IN A

141.94.170.77

pixel-eu.onaudience.com

IN A

141.94.171.216

pixel-eu.onaudience.com

IN A

141.94.170.64

pixel-eu.onaudience.com

IN A

141.94.171.212
GET

https://pixel-eu.onaudience.com/?partner=270&smartmap=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirect=image2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%26piggybackCookie%3D%25_rid%26gdpr%3D1%26gdpr_consent%3D%25_gdpr_consent

chrome.exe

Remote address:

141.94.171.214:443

Request

GET /?partner=270&smartmap=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirect=image2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%26piggybackCookie%3D%25_rid%26gdpr%3D1%26gdpr_consent%3D%25_gdpr_consent HTTP/1.1
Host: pixel-eu.onaudience.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

set-cookie: cookie=20497452b08e4803; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:34 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
set-cookie: done_redirects153=1; Max-Age=86400; Expires=Wed, 26 Jun 2024 16:34:34 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
location: https://pixel-eu.onaudience.com/?partner=153&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3D0rif2bu%26t%3Dr%26uid%3D%25m%26r%3Dhttps%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%2526piggybackCookie%253DGp1rLOrtXaWRTWVXhaSnWSaY%2526gdpr%253D1%2526gdpr_consent%253DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
GET

https://pixel-eu.onaudience.com/?partner=153&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3D0rif2bu%26t%3Dr%26uid%3D%25m%26r%3Dhttps%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%2526piggybackCookie%253DGp1rLOrtXaWRTWVXhaSnWSaY%2526gdpr%253D1%2526gdpr_consent%253DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

141.94.171.214:443

Request

GET /?partner=153&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3D0rif2bu%26t%3Dr%26uid%3D%25m%26r%3Dhttps%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%2526piggybackCookie%253DGp1rLOrtXaWRTWVXhaSnWSaY%2526gdpr%253D1%2526gdpr_consent%253DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: pixel-eu.onaudience.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: cookie=20497452b08e4803; done_redirects153=1

Response

HTTP/1.1 302 Found

set-cookie: cookie=20497452b08e4803; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:34 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
location: https://ps.eyeota.net/pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&pid=0rif2bu&t=r&uid=cbe8d35acab15103&r=https%3A%2F%2Fimage2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%26piggybackCookie%3DGp1rLOrtXaWRTWVXhaSnWSaY%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
GET

https://pixel-eu.onaudience.com/?partner=270&smartmap=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirect=image2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%26piggybackCookie%3D%25_rid%26gdpr%3D1%26gdpr_consent%3D%25_gdpr_consent

chrome.exe

Remote address:

141.94.171.214:443

Request

GET /?partner=270&smartmap=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirect=image2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%26piggybackCookie%3D%25_rid%26gdpr%3D1%26gdpr_consent%3D%25_gdpr_consent HTTP/1.1
Host: pixel-eu.onaudience.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: cookie=20497452b08e4803; done_redirects153=1

Response

HTTP/1.1 302 Found

set-cookie: cookie=20497452b08e4803; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:34 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
set-cookie: done_redirects154=1; Max-Age=86400; Expires=Wed, 26 Jun 2024 16:34:34 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
location: https://pixel-eu.onaudience.com/?partner=154&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3Db2c3o90%26t%3Dr%26uid%3D%25m%26r%3Dhttps%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%2526piggybackCookie%253DGp1rLOrtXaWRTWVXhaSnWSaY%2526gdpr%253D1%2526gdpr_consent%253DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
GET

https://pixel-eu.onaudience.com/?partner=154&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3Db2c3o90%26t%3Dr%26uid%3D%25m%26r%3Dhttps%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%2526piggybackCookie%253DGp1rLOrtXaWRTWVXhaSnWSaY%2526gdpr%253D1%2526gdpr_consent%253DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

141.94.171.214:443

Request

GET /?partner=154&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3Db2c3o90%26t%3Dr%26uid%3D%25m%26r%3Dhttps%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%2526piggybackCookie%253DGp1rLOrtXaWRTWVXhaSnWSaY%2526gdpr%253D1%2526gdpr_consent%253DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: pixel-eu.onaudience.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: done_redirects153=1; cookie=20497452b08e4803; done_redirects154=1

Response

HTTP/1.1 302 Found

set-cookie: cookie=20497452b08e4803; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:34 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
location: https://ps.eyeota.net/pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&pid=b2c3o90&t=r&uid=ccdfb4871e1adf80&r=https%3A%2F%2Fimage2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%26piggybackCookie%3DGp1rLOrtXaWRTWVXhaSnWSaY%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
DNS

uipglob.semasio.net

chrome.exe

Remote address:

8.8.8.8:53

Request

uipglob.semasio.net

IN A

Response

uipglob.semasio.net

IN CNAME

uipglob.trafficmanager.net

uipglob.trafficmanager.net

IN CNAME

uip.semasio.net

uip.semasio.net

IN A

77.243.51.121

uip.semasio.net

IN A

77.243.51.122
DNS

pixel.onaudience.com

chrome.exe

Remote address:

8.8.8.8:53

Request

pixel.onaudience.com

IN A

Response

pixel.onaudience.com

IN A

141.94.171.212

pixel.onaudience.com

IN A

148.113.153.94

pixel.onaudience.com

IN A

141.94.171.215

pixel.onaudience.com

IN A

141.94.171.213

pixel.onaudience.com

IN A

141.94.170.77

pixel.onaudience.com

IN A

141.94.171.214

pixel.onaudience.com

IN A

148.113.153.93

pixel.onaudience.com

IN A

141.94.170.64

pixel.onaudience.com

IN A

141.94.171.216

pixel.onaudience.com

IN A

146.59.148.16
DNS

sync-pm.ads.yieldmo.com

chrome.exe

Remote address:

8.8.8.8:53

Request

sync-pm.ads.yieldmo.com

IN A

Response

sync-pm.ads.yieldmo.com

IN CNAME

sync.ads.yieldmo.com

sync.ads.yieldmo.com

IN CNAME

eu-west-1-sync.ads.yieldmo.com

eu-west-1-sync.ads.yieldmo.com

IN CNAME

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

54.229.31.146

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

52.30.120.118

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

52.30.110.0

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

52.31.121.40

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

54.216.188.132

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

52.209.221.228

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

54.171.30.155

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

34.250.157.234
GET

https://pixel.onaudience.com/?partner=214&mapped=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

141.94.171.212:443

Request

GET /?partner=214&mapped=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: pixel.onaudience.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

set-cookie: cookie=72b1ac189048971b; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:34 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
set-cookie: done_redirects252=1; Max-Age=86400; Expires=Wed, 26 Jun 2024 16:34:34 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
location: https://cms.analytics.yahoo.com/cms?partner_id=DELI&gdpr=0
content-length: 0
GET

https://pixel.onaudience.com/?partner=214&mapped=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

141.94.171.212:443

Request

GET /?partner=214&mapped=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: pixel.onaudience.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

set-cookie: cookie=e6fe732152462df6; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:34 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
set-cookie: done_redirects162=1; Max-Age=86400; Expires=Wed, 26 Jun 2024 16:34:34 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
location: https://pixel.onaudience.com/?partner=162&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3Ddn5h51u%26t%3Dgif%26uid%3D%25m
content-length: 0
GET

https://pixel.onaudience.com/?partner=162&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3Ddn5h51u%26t%3Dgif%26uid%3D%25m

chrome.exe

Remote address:

141.94.171.212:443

Request

GET /?partner=162&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3Ddn5h51u%26t%3Dgif%26uid%3D%25m HTTP/1.1
Host: pixel.onaudience.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: done_redirects153=1; done_redirects154=1; done_redirects252=1; cookie=e6fe732152462df6; done_redirects162=1

Response

HTTP/1.1 302 Found

set-cookie: cookie=e6fe732152462df6; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:34:34 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
location: https://ps.eyeota.net/pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&pid=dn5h51u&t=gif&uid=12c1fc1e0306a66d
content-length: 0
GET

https://uipglob.semasio.net/pubmatic/1/info?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

77.243.51.121:443

Request

GET /pubmatic/1/info?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: uipglob.semasio.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

location: /pubmatic/1/info2?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
uip-response-status: Ok
frontend-id: 3
set-cookie: SEUNCY=7CC4E515DD2A261E; Expires=Wed, 25 Jun 2025 16:34:33 GMT; Path=/; Domain=.semasio.net; SameSite=None; HttpOnly; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sat, 01 Jan 2011 12:00:00 GMT
p3p: policyref="http://uip.semasio.net/w3c/p3p.xml", CP="NOI PSAa PSDa OUR IND UNI CNT"
pragma: no-cache
date: Tue, 25 Jun 2024 16:34:33 GMT
content-length: 0
routing-server-id: -1
access-control-allow-origin: *
GET

https://uipglob.semasio.net/pubmatic/1/info?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

77.243.51.121:443

Request

GET /pubmatic/1/info?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: uipglob.semasio.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

location: /pubmatic/1/info2?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
uip-response-status: Ok
frontend-id: 15
set-cookie: SEUNCY=B33A6DD4B9D190C; Expires=Wed, 25 Jun 2025 16:34:34 GMT; Path=/; Domain=.semasio.net; SameSite=None; HttpOnly; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sat, 01 Jan 2011 12:00:00 GMT
p3p: policyref="http://uip.semasio.net/w3c/p3p.xml", CP="NOI PSAa PSDa OUR IND UNI CNT"
pragma: no-cache
date: Tue, 25 Jun 2024 16:34:34 GMT
content-length: 0
routing-server-id: -1
access-control-allow-origin: *
DNS

sync.targeting.unrulymedia.com

chrome.exe

Remote address:

8.8.8.8:53

Request

sync.targeting.unrulymedia.com

IN A

Response

sync.targeting.unrulymedia.com

IN CNAME

sync.1rx.io

sync.1rx.io

IN A

46.228.174.117
DNS

ps.eyeota.net

chrome.exe

Remote address:

8.8.8.8:53

Request

ps.eyeota.net

IN A

Response

ps.eyeota.net

IN A

3.125.70.222
DNS

s.tribalfusion.com

chrome.exe

Remote address:

8.8.8.8:53

Request

s.tribalfusion.com

IN A

Response

s.tribalfusion.com

IN A

104.18.24.173

s.tribalfusion.com

IN A

104.18.25.173
DNS

11.1.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.1.250.178.in-addr.arpa

IN PTR

Response
DNS

72.57.245.77.in-addr.arpa

Remote address:

8.8.8.8:53

Request

72.57.245.77.in-addr.arpa

IN PTR

Response
DNS

18.127.47.198.in-addr.arpa

Remote address:

8.8.8.8:53

Request

18.127.47.198.in-addr.arpa

IN PTR

Response
DNS

140.171.95.141.in-addr.arpa

Remote address:

8.8.8.8:53

Request

140.171.95.141.in-addr.arpa

IN PTR

Response

140.171.95.141.in-addr.arpa

IN PTR

bixel-6cloudyovh
DNS

117.174.228.46.in-addr.arpa

Remote address:

8.8.8.8:53

Request

117.174.228.46.in-addr.arpa

IN PTR

Response
DNS

24.8.23.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

24.8.23.2.in-addr.arpa

IN PTR

Response

24.8.23.2.in-addr.arpa

IN PTR

a2-23-8-24deploystaticakamaitechnologiescom
DNS

173.25.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

173.25.18.104.in-addr.arpa

IN PTR

Response
DNS

214.171.94.141.in-addr.arpa

Remote address:

8.8.8.8:53

Request

214.171.94.141.in-addr.arpa

IN PTR

Response

214.171.94.141.in-addr.arpa

IN PTR

pikafka-eu-8cloudyovh
DNS

196.120.55.162.in-addr.arpa

Remote address:

8.8.8.8:53

Request

196.120.55.162.in-addr.arpa

IN PTR

Response

196.120.55.162.in-addr.arpa

IN PTR

static19612055162clientsyour-serverde
GET

https://uipglob.semasio.net/pubmatic/1/info2?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

77.243.51.121:443

Request

GET /pubmatic/1/info2?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: uipglob.semasio.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: SEUNCY=7CC4E515DD2A261E

Response

HTTP/1.1 200 OK

content-type: image/gif
uip-response-status: Ok
frontend-id: 7
set-cookie: SEUNCY=7CC4E515DD2A261E; Expires=Wed, 25 Jun 2025 16:34:34 GMT; Path=/; Domain=.semasio.net; SameSite=None; HttpOnly; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sat, 01 Jan 2011 12:00:00 GMT
p3p: policyref="http://uip.semasio.net/w3c/p3p.xml", CP="NOI PSAa PSDa OUR IND UNI CNT"
pragma: no-cache
date: Tue, 25 Jun 2024 16:34:34 GMT
content-length: 42
routing-server-id: -1
access-control-allow-origin: *
GET

https://uipglob.semasio.net/pubmatic/1/info2?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

chrome.exe

Remote address:

77.243.51.121:443

Request

GET /pubmatic/1/info2?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: uipglob.semasio.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ads.pubmatic.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: SEUNCY=B33A6DD4B9D190C

Response

HTTP/1.1 200 OK

content-type: image/gif
uip-response-status: Ok
frontend-id: 0
set-cookie: SEUNCY=B33A6DD4B9D190C; Expires=Wed, 25 Jun 2025 16:34:34 GMT; Path=/; Domain=.semasio.net; SameSite=None; HttpOnly; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sat, 01 Jan 2011 12:00:00 GMT
p3p: policyref="http://uip.semasio.net/w3c/p3p.xml", CP="NOI PSAa PSDa OUR IND UNI CNT"
pragma: no-cache
date: Tue, 25 Jun 2024 16:34:34 GMT
content-length: 42
routing-server-id: -1
access-control-allow-origin: *
DNS

simage4.pubmatic.com

chrome.exe

Remote address:

8.8.8.8:53

Request

simage4.pubmatic.com

IN A

Response

simage4.pubmatic.com

IN CNAME

image4-v2.pubmnet.com

image4-v2.pubmnet.com

IN CNAME

spug-amsfpairbc.pubmnet.com

spug-amsfpairbc.pubmnet.com

IN A

198.47.127.20
DNS

cms.analytics.yahoo.com

chrome.exe

Remote address:

8.8.8.8:53

Request

cms.analytics.yahoo.com

IN A

Response

cms.analytics.yahoo.com

IN CNAME

prod.ups-ats.aolp-ds-prd.aws.oath.cloud

prod.ups-ats.aolp-ds-prd.aws.oath.cloud

IN CNAME

prod.ups-ats.eu-central-1.aolp-ds-prd.aws.oath.cloud

prod.ups-ats.eu-central-1.aolp-ds-prd.aws.oath.cloud

IN CNAME

ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud

ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud

IN A

3.71.149.231

ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud

IN A

3.75.62.37
DNS

hbx.media.net

chrome.exe

Remote address:

8.8.8.8:53

Request

hbx.media.net

IN A

Response

hbx.media.net

IN A

2.21.188.27
DNS

hbx.media.net

chrome.exe

Remote address:

8.8.8.8:53

Request

hbx.media.net

IN A

Response

hbx.media.net

IN A

2.21.188.27
DNS

c21lg-d.media.net

chrome.exe

Remote address:

8.8.8.8:53

Request

c21lg-d.media.net

IN A

Response

c21lg-d.media.net

IN CNAME

star.media.net.edgekey.net

star.media.net.edgekey.net

IN CNAME

e607.d.akamaiedge.net

e607.d.akamaiedge.net

IN A

2.21.188.27
DNS

medianet-match.dotomi.com

chrome.exe

Remote address:

8.8.8.8:53

Request

medianet-match.dotomi.com

IN A

Response

medianet-match.dotomi.com

IN CNAME

bfp.global.dual.dotomi.weighted.com.akadns.net

bfp.global.dual.dotomi.weighted.com.akadns.net

IN A

64.158.223.140
GET

https://c21lg-d.media.net/log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct

chrome.exe

Remote address:

2.21.188.27:443

Request

GET /log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct HTTP/1.1
Host: c21lg-d.media.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://contextual.media.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: visitor-id=3623348742093549000V10

Response

HTTP/1.1 200 OK

Content-Type: image/gif
Access-Control-Allow-Origin: *
Content-Length: 35
Expires: Tue, 25 Jun 2024 16:34:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 25 Jun 2024 16:34:35 GMT
Connection: keep-alive
GET

https://hbx.media.net/pubcid.php?itype=HB&cb=window.advBidxc.mnetCoRtusId

chrome.exe

Remote address:

2.21.188.27:443

Request

GET /pubcid.php?itype=HB&cb=window.advBidxc.mnetCoRtusId HTTP/2.0
host: hbx.media.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://contextual.media.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: visitor-id=3623348742093549000V10

Response

HTTP/2.0 200

server: Apache
content-type: text/html; charset=UTF-8
x-mnet-hl2: E
strict-transport-security: max-age=86400 ; includeSubDomains
strict-transport-security: max-age=604800
alt-svc: h3=":443"; ma=93600
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1800
expires: Tue, 25 Jun 2024 17:04:35 GMT
date: Tue, 25 Jun 2024 16:34:35 GMT
content-length: 18543
GET

https://c21lg-d.media.net/log?logid=kfk&evtid=cs&origin=1&pvgid=data-con&ovsid=b2e15d9b-d063-436c-854b-7ae570093bcb&cs=15&vsid=3623348742093549000V10

chrome.exe

Remote address:

2.21.188.27:443

Request

GET /log?logid=kfk&evtid=cs&origin=1&pvgid=data-con&ovsid=b2e15d9b-d063-436c-854b-7ae570093bcb&cs=15&vsid=3623348742093549000V10 HTTP/2.0
host: c21lg-d.media.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://contextual.media.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: visitor-id=3623348742093549000V10

Response

HTTP/2.0 200

content-type: image/gif
access-control-allow-origin: *
content-length: 35
expires: Tue, 25 Jun 2024 16:34:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 25 Jun 2024 16:34:35 GMT
GET

https://c21lg-d.media.net/log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct

chrome.exe

Remote address:

2.21.188.27:443

Request

GET /log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct HTTP/2.0
host: c21lg-d.media.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://contextual.media.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: visitor-id=3623348742093549000V10
cookie: data-g=CAESECwH1UczWMWFpTPAOLSJyfY~~52
cookie: data-bs=4f62fbba-ecd4-4b71-afc7-4916045d677d~~52
cookie: data-c=868b39e2-997b-433c-bce9-379e12258c8f~~52
cookie: data-c-ts=1719333275
cookie: data-co=AQAGxOftSrzMowIMxUtUAQEBAQEBAQCRUT7HGQEBAJFRPscZ~~52
cookie: data-lop=20bd0165-7caa-4b7b-8b83-5936300ad204~~52

Response

HTTP/2.0 200

content-type: image/gif
access-control-allow-origin: *
content-length: 35
expires: Tue, 25 Jun 2024 16:35:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 25 Jun 2024 16:35:24 GMT
DNS

cs.media.net

chrome.exe

Remote address:

8.8.8.8:53

Request

cs.media.net

IN A

Response

cs.media.net

IN A

2.21.188.27
DNS

cs.media.net

chrome.exe

Remote address:

8.8.8.8:53

Request

cs.media.net

IN A

Response

cs.media.net

IN A

2.21.188.27
GET

https://c21lg-d.media.net/log?logid=kfk&evtid=cs&origin=1&pvgid=data-c&ovsid=Z3wY3d2fGaHy4B7mg3yH_EBgFrrrDyLv&cs=15&vsid=3623348742093549000V10

chrome.exe

Remote address:

2.21.188.27:443

Request

GET /log?logid=kfk&evtid=cs&origin=1&pvgid=data-c&ovsid=Z3wY3d2fGaHy4B7mg3yH_EBgFrrrDyLv&cs=15&vsid=3623348742093549000V10 HTTP/1.1
Host: c21lg-d.media.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://contextual.media.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: visitor-id=3623348742093549000V10

Response

HTTP/1.1 200 OK

Content-Type: image/gif
Access-Control-Allow-Origin: *
Content-Length: 35
Expires: Tue, 25 Jun 2024 16:34:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 25 Jun 2024 16:34:35 GMT
Connection: keep-alive
GET

https://cs.media.net/cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c

chrome.exe

Remote address:

2.21.188.27:443

Request

GET /cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c HTTP/1.1
Host: cs.media.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://contextual.media.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: visitor-id=3623348742093549000V10

Response

HTTP/1.1 200 OK

Server: Apache
Content-Length: 59
Content-Type: image/gif
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA"
x-mnet-hl2: E
Expires: Tue, 25 Jun 2024 16:34:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 25 Jun 2024 16:34:35 GMT
Connection: keep-alive
GET

https://cs.media.net/cksync?type=g&cs=8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_gid=CAESECwH1UczWMWFpTPAOLSJyfY&google_cver=1

chrome.exe

Remote address:

2.21.188.27:443

Request

GET /cksync?type=g&cs=8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_gid=CAESECwH1UczWMWFpTPAOLSJyfY&google_cver=1 HTTP/1.1
Host: cs.media.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://contextual.media.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: visitor-id=3623348742093549000V10

Response

HTTP/1.1 200 OK

Server: Apache
Content-Length: 151
Content-Type: image/gif
Set-Cookie: data-g=CAESECwH1UczWMWFpTPAOLSJyfY~~52;Expires=Tue, 09 Jul 2024 16:34:35 GMT;path=/;domain=.media.net; sameSite=none; secure=true
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA"
P3P: CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
x-mnet-hl2: E
Expires: Tue, 25 Jun 2024 16:34:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 25 Jun 2024 16:34:35 GMT
Connection: keep-alive
GET

https://cs.media.net/cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c

chrome.exe

Remote address:

2.21.188.27:443

Request

GET /cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c HTTP/1.1
Host: cs.media.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://contextual.media.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: visitor-id=3623348742093549000V10; data-g=CAESECwH1UczWMWFpTPAOLSJyfY~~52; data-bs=4f62fbba-ecd4-4b71-afc7-4916045d677d~~52; data-c=868b39e2-997b-433c-bce9-379e12258c8f~~52; data-c-ts=1719333275; data-co=AQAGxOftSrzMowIMxUtUAQEBAQEBAQCRUT7HGQEBAJFRPscZ~~52; data-lop=20bd0165-7caa-4b7b-8b83-5936300ad204~~52

Response

HTTP/1.1 200 OK

Server: Apache
Content-Length: 59
Content-Type: image/gif
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA"
x-mnet-hl2: E
Expires: Tue, 25 Jun 2024 16:35:24 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 25 Jun 2024 16:35:24 GMT
Connection: keep-alive
DNS

vop.sundaysky.com

chrome.exe

Remote address:

8.8.8.8:53

Request

vop.sundaysky.com

IN A

Response

vop.sundaysky.com

IN CNAME

ssky-vop-tracking-1576957348.us-east-1.elb.amazonaws.com

ssky-vop-tracking-1576957348.us-east-1.elb.amazonaws.com

IN A

34.203.44.126

ssky-vop-tracking-1576957348.us-east-1.elb.amazonaws.com

IN A

34.234.198.234

ssky-vop-tracking-1576957348.us-east-1.elb.amazonaws.com

IN A

54.237.180.194

ssky-vop-tracking-1576957348.us-east-1.elb.amazonaws.com

IN A

54.156.208.114
DNS

d.turn.com

chrome.exe

Remote address:

8.8.8.8:53

Request

d.turn.com

IN A

Response

d.turn.com

IN CNAME

d-ams1.turn.com

d-ams1.turn.com

IN A

46.228.164.13
GET

https://d.turn.com/r/dd/id/L2NzaWQvMS9jaWQvMjg0NTA1NDYvdC8w/url/https://ps.eyeota.net/match?bid=1mpjpn0&turn_id=$!{TURN_UUID}&newuser=1&dc_rc=2&dc_mr=5&dc_orig=dn5h51u&&referrer_pid=dn5h51u

chrome.exe

Remote address:

46.228.164.13:443

Request

GET /r/dd/id/L2NzaWQvMS9jaWQvMjg0NTA1NDYvdC8w/url/https://ps.eyeota.net/match?bid=1mpjpn0&turn_id=$!{TURN_UUID}&newuser=1&dc_rc=2&dc_mr=5&dc_orig=dn5h51u&&referrer_pid=dn5h51u HTTP/2.0
host: d.turn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=3314471828681895967

Response

HTTP/2.0 302

p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=3314471828681895967; Domain=.turn.com; Expires=Sun, 22-Dec-2024 16:34:35 GMT; Path=/; Secure; SameSite=None
location: https://ps.eyeota.net/match?bid=1mpjpn0&turn_id=3314471828681895967&newuser=1&dc_rc=2&dc_mr=5&dc_orig=dn5h51u&&referrer_pid=dn5h51u
content-length: 0
date: Tue, 25 Jun 2024 16:34:34 GMT
DNS

212.171.94.141.in-addr.arpa

Remote address:

8.8.8.8:53

Request

212.171.94.141.in-addr.arpa

IN PTR

Response

212.171.94.141.in-addr.arpa

IN PTR

pikafka-eu-4cloudyovh
DNS

121.51.243.77.in-addr.arpa

Remote address:

8.8.8.8:53

Request

121.51.243.77.in-addr.arpa

IN PTR

Response
DNS

146.31.229.54.in-addr.arpa

Remote address:

8.8.8.8:53

Request

146.31.229.54.in-addr.arpa

IN PTR

Response

146.31.229.54.in-addr.arpa

IN PTR

ec2-54-229-31-146 eu-west-1compute amazonawscom
DNS

222.70.125.3.in-addr.arpa

Remote address:

8.8.8.8:53

Request

222.70.125.3.in-addr.arpa

IN PTR

Response

222.70.125.3.in-addr.arpa

IN PTR

ec2-3-125-70-222eu-central-1compute amazonawscom
DNS

27.188.21.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

27.188.21.2.in-addr.arpa

IN PTR

Response

27.188.21.2.in-addr.arpa

IN PTR

a2-21-188-27deploystaticakamaitechnologiescom
DNS

13.164.228.46.in-addr.arpa

Remote address:

8.8.8.8:53

Request

13.164.228.46.in-addr.arpa

IN PTR

Response

13.164.228.46.in-addr.arpa

IN PTR

d-ams1turncom
DNS

126.44.203.34.in-addr.arpa

Request

126.44.203.34.in-addr.arpa

IN PTR

Response

126.44.203.34.in-addr.arpa

IN PTR

ec2-34-203-44-126 compute-1 amazonawscom
DNS

a.channelexco.com

Request

a.channelexco.com

IN A

Response

a.channelexco.com

IN CNAME

a-lb.cdtx.co

a-lb.cdtx.co

IN A

209.58.138.146
DNS

146.138.58.209.in-addr.arpa

Request

146.138.58.209.in-addr.arpa

IN PTR

Response
DNS

beacons.gcp.gvt2.com

Request

beacons.gcp.gvt2.com

IN A

Response

beacons.gcp.gvt2.com

IN CNAME

beacons-handoff.gcp.gvt2.com

beacons-handoff.gcp.gvt2.com

IN A

216.58.213.3
POST

https://beacons.gcp.gvt2.com/domainreliability/upload

Request

POST /domainreliability/upload HTTP/2.0
host: beacons.gcp.gvt2.com
content-length: 539
content-type: application/json; charset=utf-8
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

3.213.58.216.in-addr.arpa

Request

3.213.58.216.in-addr.arpa

IN PTR

Response

3.213.58.216.in-addr.arpa

IN PTR

ber01s14-in-f31e100net

3.213.58.216.in-addr.arpa

IN PTR

lhr25s25-in-f3�F
GET

https://csync.loopme.me/?pubid=11331&redirect=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MzImdGw9MTI5NjAw&piggybackCookie={viewer_token}&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /?pubid=11331&redirect=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MzImdGw9MTI5NjAw&piggybackCookie={viewer_token}&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: csync.loopme.me
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 307

set-cookie: viewer_token=25c1019a-cb1c-4dea-bd5d-3a22aca38f6e; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Wed, 25-Sep-2024 16:34:52 GMT; SameSite=None
location: https://simage2.pubmatic.com/AdServer/Pug?vcode&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie={viewer_token}&gdpr=1
content-length: 0
date: Tue, 25 Jun 2024 16:34:52 GMT
server: _
GET

https://csync.loopme.me/?pubid=11498&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirect=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D1%26ovsid%3D%7Bviewer_token%7D%26type%3Dloop

Request

GET /?pubid=11498&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirect=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D1%26ovsid%3D%7Bviewer_token%7D%26type%3Dloop HTTP/2.0
host: csync.loopme.me
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://contextual.media.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 307

set-cookie: viewer_token=20bd0165-7caa-4b7b-8b83-5936300ad204; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Wed, 25-Sep-2024 16:34:52 GMT; SameSite=None
location: https://contextual.media.net/cksync.php?cs=1&ovsid=20bd0165-7caa-4b7b-8b83-5936300ad204&type=loop&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1
content-length: 0
date: Tue, 25 Jun 2024 16:34:52 GMT
server: _
DNS

131.139.214.35.in-addr.arpa

Request

131.139.214.35.in-addr.arpa

IN PTR

Response

131.139.214.35.in-addr.arpa

IN PTR

13113921435bcgoogleusercontentcom
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333294240&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333294240&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; vs=342899=6038914&218209=6038914

Response

HTTP/1.1 200 OK

content-type: text/xml; charset=UTF-8
date: Tue, 25 Jun 2024 16:34:55 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038914&218209=6038914; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:34:55 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://prg.smartadserver.com/prebid/v1

Request

POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
Connection: keep-alive
Content-Length: 1122
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; vs=342899=6038914&218209=6038914

Response

HTTP/1.1 200 OK

content-type: application/json; charset=UTF-8
date: Tue, 25 Jun 2024 16:34:55 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038914&218209=6038914; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:34:55 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://bidder.criteo.com/cdb?ptv=139&profileId=185&av=36&wv=8.27.0&cb=44385043519

Request

POST /cdb?ptv=139&profileId=185&av=36&wv=8.27.0&cb=44385043519 HTTP/2.0
host: bidder.criteo.com
content-length: 2977
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:34:55 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://bidder.criteo.com/csm/events

Request

POST /csm/events HTTP/2.0
host: bidder.criteo.com
content-length: 270
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:34:54 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
DNS

cs.admanmedia.com

Request

cs.admanmedia.com

IN A

Response

cs.admanmedia.com

IN A

80.77.87.163
DNS

163.87.77.80.in-addr.arpa

Request

163.87.77.80.in-addr.arpa

IN PTR

Response
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333309241&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333309241&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; vs=342899=6038914&218209=6038914

Response

HTTP/1.1 200 OK

content-type: text/xml; charset=UTF-8
date: Tue, 25 Jun 2024 16:35:09 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038914&218209=6038915; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:35:10 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://bidder.criteo.com/cdb?ptv=139&profileId=185&av=36&wv=8.27.0&cb=17885834111

Request

POST /cdb?ptv=139&profileId=185&av=36&wv=8.27.0&cb=17885834111 HTTP/2.0
host: bidder.criteo.com
content-length: 2977
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:09 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://bidder.criteo.com/csm/events

Request

POST /csm/events HTTP/2.0
host: bidder.criteo.com
content-length: 270
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:09 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://prg.smartadserver.com/prebid/v1

Request

POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
Connection: keep-alive
Content-Length: 1122
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; vs=342899=6038914&218209=6038914

Response

HTTP/1.1 200 OK

content-type: application/json; charset=UTF-8
date: Tue, 25 Jun 2024 16:35:09 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038915&218209=6038914; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:35:10 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=2&partnerid=22&partneruserid=6640692441033083723&gdpr=0&gdpr_consent=

Request

GET /redir/?issi=2&partnerid=22&partneruserid=6640692441033083723&gdpr=0&gdpr_consent= HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; csync=75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; vs=342899=6038914&218209=6038915

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:10 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:10 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
DNS

csm.nl3.eu.criteo.net

Request

csm.nl3.eu.criteo.net

IN A

Response

csm.nl3.eu.criteo.net

IN CNAME

csm.nl3.vip.prod.criteo.net

csm.nl3.vip.prod.criteo.net

IN A

178.250.1.25
POST

https://csm.nl3.eu.criteo.net/iev?entry=c~Gum.ChromeSyncframe.CookieRead.uid~1&entry=c~Gum.ChromeSyncframe.SidReadSuccess~1&entry=h~Gum.ChromeSyncframe.SidReadSuccessDuration~52

Request

POST /iev?entry=c~Gum.ChromeSyncframe.CookieRead.uid~1&entry=c~Gum.ChromeSyncframe.SidReadSuccess~1&entry=h~Gum.ChromeSyncframe.SidReadSuccessDuration~52 HTTP/2.0
host: csm.nl3.eu.criteo.net
content-length: 0
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://gum.criteo.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:35:13 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
DNS

25.1.250.178.in-addr.arpa

Request

25.1.250.178.in-addr.arpa

IN PTR

Response
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333319838&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333319838&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038914&218209=6038915; csync=22:6640692441033083723|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: text/xml; charset=UTF-8
date: Tue, 25 Jun 2024 16:35:20 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038914&218209=6038915; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:35:20 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333328733&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333328733&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: text/xml; charset=UTF-8
date: Tue, 25 Jun 2024 16:35:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038915&218209=6038915; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:35:29 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://bidder.criteo.com/cdb?profileId=207&av=36&wv=8.27.0&cb=97808766568&lsavail=0

Request

POST /cdb?profileId=207&av=36&wv=8.27.0&cb=97808766568&lsavail=0 HTTP/2.0
host: bidder.criteo.com
content-length: 2609
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:20 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://bidder.criteo.com/cdb?ptv=139&profileId=185&av=36&wv=8.27.0&bundle=xBM0Jl8xcEdCOXZZa1Q1WUZDS201cDBjJTJCUiUyQjBiNzRJVnAlMkZxZVVtRDllTDRCZXRVWThSODIwZmFrZHNHWFo1dUk1cTFGc05MemRVMG1rajEzV1NtVUJBN29LVHhjeFdHU1oyVG0yR2JQU1A1UzZZU1pRSzJUU3F1T1ZVSDZxS0hlNXJWSDA0bEZEOG41S0l4TzdwZkRmWFl1bEElM0QlM0Q&cb=39068125119

Request

POST /cdb?ptv=139&profileId=185&av=36&wv=8.27.0&bundle=xBM0Jl8xcEdCOXZZa1Q1WUZDS201cDBjJTJCUiUyQjBiNzRJVnAlMkZxZVVtRDllTDRCZXRVWThSODIwZmFrZHNHWFo1dUk1cTFGc05MemRVMG1rajEzV1NtVUJBN29LVHhjeFdHU1oyVG0yR2JQU1A1UzZZU1pRSzJUU3F1T1ZVSDZxS0hlNXJWSDA0bEZEOG41S0l4TzdwZkRmWFl1bEElM0QlM0Q&cb=39068125119 HTTP/2.0
host: bidder.criteo.com
content-length: 2969
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:29 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://bidder.criteo.com/csm/events

Request

POST /csm/events HTTP/2.0
host: bidder.criteo.com
content-length: 268
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:29 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://prg.smartadserver.com/prebid/v1

Request

POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
Connection: keep-alive
Content-Length: 1124
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038914&218209=6038915; csync=22:6640692441033083723|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: application/json; charset=UTF-8
date: Tue, 25 Jun 2024 16:35:20 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038915&218209=6038915; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:35:21 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://prg.smartadserver.com/prebid/v1

Request

POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
Connection: keep-alive
Content-Length: 1124
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: application/json; charset=UTF-8
date: Tue, 25 Jun 2024 16:35:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038915&218209=6038915; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:35:29 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
DNS

sync.mathtag.com

Request

sync.mathtag.com

IN A

Response

sync.mathtag.com

IN CNAME

pixel-origin.mathtag.com

pixel-origin.mathtag.com

IN A

74.121.140.211

pixel-origin.mathtag.com

IN A

216.200.232.249

pixel-origin.mathtag.com

IN A

216.200.232.253
GET

https://rtb-csync.smartadserver.com/redir/?issi=2&partnerid=25&partneruserid=f689667a-f1c9-4200-9125-af04e7ae017d&gdpr=0&gdpr_consent=

Request

GET /redir/?issi=2&partnerid=25&partneruserid=f689667a-f1c9-4200-9125-af04e7ae017d&gdpr=0&gdpr_consent= HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; csync=22:6640692441033083723|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; vs=342899=6038915&218209=6038915

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:21 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:21 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=91&partneruserid=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=91&partneruserid=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:24 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=134&partneruserid=OB_OK&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmart_adserver_eb%26google_hm%3DSMART_USER_ID_B64&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=134&partneruserid=OB_OK&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmart_adserver_eb%26google_hm%3DSMART_USER_ID_B64&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:35:25 GMT
cache-control: no-cache,no-store
location: https://cm.g.doubleclick.net/pixel?google_nid=smart_adserver_eb&google_hm=NDA1MjA4MjY0Mzk5NzI5NTMxMQ==&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=32&partneruserid=3314471828681895967&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=32&partneruserid=3314471828681895967&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:25 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|32:3314471828681895967|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=135&partneruserid=TAM_OK&redirurl=https%3A%2F%2Fs.amazon-adsystem.com%2Fdcm%3Fpid%3D72348060-38ad-4586-8e4f-f1e2a8e789b3%26id%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=135&partneruserid=TAM_OK&redirurl=https%3A%2F%2Fs.amazon-adsystem.com%2Fdcm%3Fpid%3D72348060-38ad-4586-8e4f-f1e2a8e789b3%26id%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:35:25 GMT
cache-control: no-cache,no-store
location: https://s.amazon-adsystem.com/dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; secure; samesite=none
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=133&partneruserid=be50d39d3b

Request

GET /redir/?issi=1&partnerid=133&partneruserid=be50d39d3b HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|32:3314471828681895967|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:24 GMT
transfer-encoding: chunked
DNS

211.140.121.74.in-addr.arpa

Request

211.140.121.74.in-addr.arpa

IN PTR

Response
GET

https://gum.criteo.com/sid/json?origin=publishertag&domain=mm-watch.com&sn=ChromeSyncframe&so=3&topUrl=mm-watch.com&bundle=xBM0Jl8xcEdCOXZZa1Q1WUZDS201cDBjJTJCUiUyQjBiNzRJVnAlMkZxZVVtRDllTDRCZXRVWThSODIwZmFrZHNHWFo1dUk1cTFGc05MemRVMG1rajEzV1NtVUJBN29LVHhjeFdHU1oyVG0yR2JQU1A1UzZZU1pRSzJUU3F1T1ZVSDZxS0hlNXJWSDA0bEZEOG41S0l4TzdwZkRmWFl1bEElM0QlM0Q&cw=1&lsw=1&topicsavail=0&fledgeavail=0

Request

GET /sid/json?origin=publishertag&domain=mm-watch.com&sn=ChromeSyncframe&so=3&topUrl=mm-watch.com&bundle=xBM0Jl8xcEdCOXZZa1Q1WUZDS201cDBjJTJCUiUyQjBiNzRJVnAlMkZxZVVtRDllTDRCZXRVWThSODIwZmFrZHNHWFo1dUk1cTFGc05MemRVMG1rajEzV1NtVUJBN29LVHhjeFdHU1oyVG0yR2JQU1A1UzZZU1pRSzJUU3F1T1ZVSDZxS0hlNXJWSDA0bEZEOG41S0l4TzdwZkRmWFl1bEElM0QlM0Q&cw=1&lsw=1&topicsavail=0&fledgeavail=0 HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/syncframe?origin=publishertag&topUrl=mm-watch.com&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Tue, 25 Jun 2024 16:35:23 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
server-processing-duration-in-ticks: 856403
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
DNS

csync.smartadserver.com

Request

csync.smartadserver.com

IN A

Response

csync.smartadserver.com

IN CNAME

csync.smartadserver.com.edgesuite.net

csync.smartadserver.com.edgesuite.net

IN CNAME

a577.dscb.akamai.net

a577.dscb.akamai.net

IN A

23.14.90.112

a577.dscb.akamai.net

IN A

23.14.90.72
GET

https://dis.criteo.com/dis/usersync.aspx?r=41&p=244&cp=sharethrough&cu=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&url=https%3A%2F%2Fmatch.sharethrough.com%2Fsync%2Fv1%3Fsource_id%3D7658cb1d77a660882b48db06%26source_user_id%3D%40%40CRITEO_USERID%40%40

Request

GET /dis/usersync.aspx?r=41&p=244&cp=sharethrough&cu=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&url=https%3A%2F%2Fmatch.sharethrough.com%2Fsync%2Fv1%3Fsource_id%3D7658cb1d77a660882b48db06%26source_user_id%3D%40%40CRITEO_USERID%40%40 HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:35:23 GMT
server: Kestrel
cache-control: no-cache
expires: Tue, 25 Jun 2024 00:00:00 GMT
location: https://match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-V4WfyxnzN9zpEzKn2pDKknjmvMr1ZvoyY_IDjg&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=
pragma: no-cache
x-errorlevel: 0
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
cross-origin-resource-policy: cross-origin
server-processing-duration-in-ticks: 692675
strict-transport-security: max-age=31536000; preload;
GET

https://dis.criteo.com/dis/usersync.aspx?r=55&p=104&cp=yieldmo&cu=1&url=https%3A%2F%2Fads.yieldmo.com%2Fv000%2Fsync%3Fpn_id%3Dcriteo%26id%3D%40%40CRITEO_USERID%40%40&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=1&us_privacy=

Request

GET /dis/usersync.aspx?r=55&p=104&cp=yieldmo&cu=1&url=https%3A%2F%2Fads.yieldmo.com%2Fv000%2Fsync%3Fpn_id%3Dcriteo%26id%3D%40%40CRITEO_USERID%40%40&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=1&us_privacy= HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ads.yieldmo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:35:24 GMT
server: Kestrel
cache-control: no-cache
expires: Tue, 25 Jun 2024 00:00:00 GMT
location: https://ads.yieldmo.com/v000/sync?pn_id=criteo&id=868b39e2-997b-433c-bce9-379e12258c8f&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=
pragma: no-cache
x-errorlevel: 0
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
cross-origin-resource-policy: cross-origin
server-processing-duration-in-ticks: 1039071
strict-transport-security: max-age=31536000; preload;
GET

https://dis.criteo.com/dis/usersync.aspx?r=6&p=70&cp=Rubicon&cu=1&url=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D6434%26nid%3D2149%26put%3D%40%40CRITEO_USERID%40%40&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /dis/usersync.aspx?r=6&p=70&cp=Rubicon&cu=1&url=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D6434%26nid%3D2149%26put%3D%40%40CRITEO_USERID%40%40&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:35:24 GMT
server: Kestrel
cache-control: no-cache
expires: Tue, 25 Jun 2024 00:00:00 GMT
location: https://pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=868b39e2-997b-433c-bce9-379e12258c8f&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
x-errorlevel: 0
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
cross-origin-resource-policy: cross-origin
server-processing-duration-in-ticks: 743180
strict-transport-security: max-age=31536000; preload;
GET

https://dis.criteo.com/dis/usersync.aspx?r=30&p=273&cp=smartortb&cu=1&url=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D79%26partneruserid%3D%40%40CRITEO_USERID%40%40&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /dis/usersync.aspx?r=30&p=273&cp=smartortb&cu=1&url=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D79%26partneruserid%3D%40%40CRITEO_USERID%40%40&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:35:24 GMT
server: Kestrel
cache-control: no-cache
expires: Tue, 25 Jun 2024 00:00:00 GMT
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=79&partneruserid=868b39e2-997b-433c-bce9-379e12258c8f&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
x-errorlevel: 0
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
cross-origin-resource-policy: cross-origin
server-processing-duration-in-ticks: 856367
strict-transport-security: max-age=31536000; preload;
DNS

s.ad.smaato.net

Request

s.ad.smaato.net

IN A

Response

s.ad.smaato.net

IN A

18.164.52.116

s.ad.smaato.net

IN A

18.164.52.25

s.ad.smaato.net

IN A

18.164.52.4

s.ad.smaato.net

IN A

18.164.52.46
DNS

s.ad.smaato.net

Request

s.ad.smaato.net

IN A

Response

s.ad.smaato.net

IN A

18.164.52.25

s.ad.smaato.net

IN A

18.164.52.4

s.ad.smaato.net

IN A

18.164.52.116

s.ad.smaato.net

IN A

18.164.52.46
GET

https://csync.smartadserver.com/diff/rtb/csync/CookieSync.html?hasrtb=true&nwid=3039&dcid=14&iscname=false&cname=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /diff/rtb/csync/CookieSync.html?hasrtb=true&nwid=3039&dcid=14&iscname=false&cname=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Type: text/html
ETag: "4b81e967df07d41c24270ccf669f7336:1645524911.683358"
Last-Modified: Tue, 22 Feb 2022 09:59:54 GMT
Server: AkamaiNetStorage
Content-Length: 435
Cache-Control: max-age=3600
Date: Tue, 25 Jun 2024 16:35:24 GMT
Connection: keep-alive
GET

https://csync.smartadserver.com/diff/rtb/csync/CookieSync.min.js

Request

GET /diff/rtb/csync/CookieSync.min.js HTTP/1.1
Host: csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://csync.smartadserver.com/diff/rtb/csync/CookieSync.html?hasrtb=true&nwid=3039&dcid=14&iscname=false&cname=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "395d89bd132e361e6d8e25d2669ef585:1718888307.528248"
Last-Modified: Thu, 20 Jun 2024 12:55:38 GMT
Server: AkamaiNetStorage
Content-Length: 16393
Cache-Control: max-age=3600
Date: Tue, 25 Jun 2024 16:35:24 GMT
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
GET

https://csync.smartadserver.com/diff/rtb/csync/TemplatePool.min.js

Request

GET /diff/rtb/csync/TemplatePool.min.js HTTP/1.1
Host: csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://csync.smartadserver.com/diff/rtb/csync/CookieSync.html?hasrtb=true&nwid=3039&dcid=14&iscname=false&cname=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "34381a5e2494423e9ba1c45b9bd23dc7:1717677888.374516"
Last-Modified: Thu, 06 Jun 2024 12:29:01 GMT
Server: AkamaiNetStorage
Content-Length: 4394
Cache-Control: max-age=3600
Date: Tue, 25 Jun 2024 16:35:24 GMT
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
GET

https://s.ad.smaato.net/c/?adExInit=s&redir=https%3A%2F%2Fmatch.sharethrough.com%2Fsync%2Fv1%3Fsource_id%3DxTFJbLbs37tyhbKsPP9VC2cm%26source_user_id%3D%24UID

Request

GET /c/?adExInit=s&redir=https%3A%2F%2Fmatch.sharethrough.com%2Fsync%2Fv1%3Fsource_id%3DxTFJbLbs37tyhbKsPP9VC2cm%26source_user_id%3D%24UID HTTP/2.0
host: s.ad.smaato.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

server: CloudFront
date: Tue, 25 Jun 2024 16:34:46 GMT
cache-control: no-cache, must-revalidate
x-cache: Hit from cloudfront
via: 1.1 36376b65972305e899227563992d580e.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P4
x-amz-cf-id: nb-MmuV3YhADHMUj4qNYF61C6G0Hx7DOuLaOXpbnbafvZiftBM4PVw==
age: 38
GET

https://s.ad.smaato.net/c/?adExInit=sas&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D133%26partneruserid%3D$UID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /c/?adExInit=sas&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D133%26partneruserid%3D$UID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: s.ad.smaato.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=133&partneruserid=be50d39d3b
server: CloudFront
date: Tue, 25 Jun 2024 16:35:25 GMT
cache-control: no-cache, must-revalidate
set-cookie: SCM=be50d39d3b; Max-Age=1814400; Domain=.smaato.net; SameSite=None; Path=/; Secure
set-cookie: SCMsas=be50d39d3b; Max-Age=1814400; Domain=.smaato.net; Path=/; SameSite=None; Secure
x-cache: Miss from cloudfront
via: 1.1 36376b65972305e899227563992d580e.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P4
x-amz-cf-id: KPKHIveLu0uQzcVVI6Ik7HOQZXpsH-rxXtCm50ROl3VkYBmqfQa7_A==
DNS

pixel-eu.rubiconproject.com

Request

pixel-eu.rubiconproject.com

IN A

Response

pixel-eu.rubiconproject.com

IN CNAME

pixel-eu.rubiconproject.net.akadns.net

pixel-eu.rubiconproject.net.akadns.net

IN A

69.173.156.148

pixel-eu.rubiconproject.net.akadns.net

IN A

69.173.156.149
DNS

pixel-eu.rubiconproject.com

Request

pixel-eu.rubiconproject.com

IN A

Response

pixel-eu.rubiconproject.com

IN CNAME

pixel-eu.rubiconproject.net.akadns.net

pixel-eu.rubiconproject.net.akadns.net

IN A

69.173.156.149

pixel-eu.rubiconproject.net.akadns.net

IN A

69.173.156.148
DNS

openx2-match.dotomi.com

Request

openx2-match.dotomi.com

IN A

Response

openx2-match.dotomi.com

IN CNAME

bfp.global.dual.dotomi.weighted.com.akadns.net

bfp.global.dual.dotomi.weighted.com.akadns.net

IN A

89.207.16.204
GET

https://pixel-eu.rubiconproject.com/exchange/sync.php?p=yieldmo&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=1&us_privacy=

Request

GET /exchange/sync.php?p=yieldmo&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=1&us_privacy= HTTP/1.1
Host: pixel-eu.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ads.yieldmo.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://ads.yieldmo.com/sync?pn_id=rc&id=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=1
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:24 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:24 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:24 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

Request

GET /khaos.json?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://eus.rubiconproject.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
access-control-allow-credentials: true
access-control-allow-origin: https://eus.rubiconproject.com
content-type: application/json; charset=UTF-8
content-length: 7
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:24 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gqhlySAH8+I1S8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:24 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
DNS

ced-ns.sascdn.com

Request

ced-ns.sascdn.com

IN A

Response

ced-ns.sascdn.com

IN CNAME

cdn-ns.cdn-prod-sas.akadns.net

cdn-ns.cdn-prod-sas.akadns.net

IN CNAME

akns.sascdn.com.edgesuite.net

akns.sascdn.com.edgesuite.net

IN CNAME

a1845.dscb.akamai.net

a1845.dscb.akamai.net

IN A

23.14.90.105

a1845.dscb.akamai.net

IN A

23.14.90.106
DNS

218.64.98.34.in-addr.arpa

Request

218.64.98.34.in-addr.arpa

IN PTR

Response

218.64.98.34.in-addr.arpa

IN PTR

218649834bcgoogleusercontentcom
DNS

116.52.164.18.in-addr.arpa

Request

116.52.164.18.in-addr.arpa

IN PTR

Response

116.52.164.18.in-addr.arpa

IN PTR

server-18-164-52-116cdg50r cloudfrontnet
DNS

112.90.14.23.in-addr.arpa

Request

112.90.14.23.in-addr.arpa

IN PTR

Response

112.90.14.23.in-addr.arpa

IN PTR

a23-14-90-112deploystaticakamaitechnologiescom
DNS

ads.avct.cloud

Request

ads.avct.cloud

IN A

Response
GET

https://ced-ns.sascdn.com/diff/js/modules/cmp.js

Request

GET /diff/js/modules/cmp.js HTTP/1.1
Host: ced-ns.sascdn.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "c04f5c151b3102b31bc84489b1471653:1718783076.704179"
Last-Modified: Tue, 18 Jun 2024 14:58:34 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3729
Cache-Control: max-age=86400
Date: Tue, 25 Jun 2024 16:35:24 GMT
Connection: keep-alive
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=19564&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=19564&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gqhlySAH8+I1S8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://capi.connatix.com/us/pixel?puid=LXUMMYH8-18-IISD&pId=11&gdpr=&gdpr_consent=&us_privacy=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=seedtag&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=seedtag&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://s.seedtag.com/cs/cookiesync/Rubicon?channeluid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=outbrain&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=outbrain&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://sync.outbrain.com/cookie-sync?p=rubicon&uid=LXUMMYH8-18-IISD&obUid=&initiator=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gPG7gkEnHcVBS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=sovrn&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=sovrn&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://ce.lijit.com/merge?pid=80&3pid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gN2I/Hn/NlKlS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=unruly&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=unruly&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://sync.1rx.io/usersync/rubicon/LXUMMYH8-18-IISD?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=33across&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=33across&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gN2I/Hn/NlKlS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://ssc-cms.33across.com/ps/?xi=1&xu=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=731524&nid=3858&put=oDHTg3vfVxNfj2Iimit6yL9l0Sc

Request

GET /tap.php?v=731524&nid=3858&put=oDHTg3vfVxNfj2Iimit6yL9l0Sc HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=4894&nid=1986&put=8159859772855155319&expires=30&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /tap.php?v=4894&nid=1986&put=8159859772855155319&expires=30&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://ad.turn.com/r/cs?pid=33&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D32%26partneruserid%3D%23USER_ID%23%26gdpr%3D%23GDPR_APPLICABLE%23%26gdpr_consent%3D%23GDPR_CONSENT%23&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /r/cs?pid=33&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D32%26partneruserid%3D%23USER_ID%23%26gdpr%3D%23GDPR_APPLICABLE%23%26gdpr_consent%3D%23GDPR_CONSENT%23&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: ad.turn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=3314471828681895967

Response

HTTP/2.0 302

p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=3314471828681895967; Domain=.turn.com; Expires=Sun, 22-Dec-2024 16:35:25 GMT; Path=/; Secure; SameSite=None
location: https://pixel.rubiconproject.com/tap.php?v=4212&nid=1185&put=3314471828681895967&expires=60&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
date: Tue, 25 Jun 2024 16:35:25 GMT
GET

https://ad.turn.com/r/cs?pid=6&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /r/cs?pid=6&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/2.0
host: ad.turn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=3314471828681895967

Response

HTTP/2.0 302

p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=3314471828681895967; Domain=.turn.com; Expires=Sun, 22-Dec-2024 16:35:25 GMT; Path=/; Secure; SameSite=None
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=32&partneruserid=3314471828681895967&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
date: Tue, 25 Jun 2024 16:35:25 GMT
DNS

bttrack.com

Request

bttrack.com

IN A

Response

bttrack.com

IN A

192.132.33.67

bttrack.com

IN A

192.132.33.69

bttrack.com

IN A

192.132.33.68
GET

https://pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=868b39e2-997b-433c-bce9-379e12258c8f&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /tap.php?v=6434&nid=2149&put=868b39e2-997b-433c-bce9-379e12258c8f&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=4212&nid=1185&put=3314471828681895967&expires=60&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /tap.php?v=4212&nid=1185&put=3314471828681895967&expires=60&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6geiJlFfPi2rVS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=186028&nid=4112&put=RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&expires=30&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /tap.php?v=186028&nid=4112&put=RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&expires=30&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gQ5gPYcLhMGpS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=minute_media&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=minute_media&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://cs.minutemedia-prebid.com/cs?aid=21479&id=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
DNS

id.rlcdn.com

Request

id.rlcdn.com

IN A

Response

id.rlcdn.com

IN A

35.244.174.68
GET

https://pixel.rubiconproject.com/tap.php?v=14240&nid=2676&put=6640692441033083723

Request

GET /tap.php?v=14240&nid=2676&put=6640692441033083723 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=rise_engage&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=rise_engage&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://cs.yellowblue.io/cs?aid=11590&id=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:35:25 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
DNS

capi.connatix.com

Request

capi.connatix.com

IN A

Response

capi.connatix.com

IN CNAME

capi.connatix.com.cdn.cloudflare.net

capi.connatix.com.cdn.cloudflare.net

IN A

104.18.41.104

capi.connatix.com.cdn.cloudflare.net

IN A

172.64.146.152
DNS

ce.lijit.com

Request

ce.lijit.com

IN A

Response

ce.lijit.com

IN CNAME

ce-ew1.lijit.com

ce-ew1.lijit.com

IN CNAME

raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com

raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com

IN A

52.215.32.4

raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com

IN A

63.33.158.21

raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com

IN A

54.194.45.245

raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com

IN A

52.213.218.173

raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com

IN A

52.30.114.214

raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com

IN A

52.211.128.173

raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com

IN A

52.19.170.170

raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com

IN A

52.19.164.206
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=100&partneruserid=cf058137-53f5-0950-0107-bc887f168335&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=100&partneruserid=cf058137-53f5-0950-0107-bc887f168335&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eu-u.openx.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:25 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|127:AAD5Jk7M9eMAABdSEix9nA|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=80&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&partneruserid=xwYLfpcBBSjcBQwmwgQRL8kBCyrcBQknx1QhuGa2

Request

GET /redir/?partnerid=80&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&partneruserid=xwYLfpcBBSjcBQwmwgQRL8kBCyrcBQknx1QhuGa2 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:24 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|80:xwYLfpcBBSjcBQwmwgQRL8kBCyrcBQknx1QhuGa2|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=113&partneruserid=RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?partnerid=113&partneruserid=RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:24 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|113:RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
DNS

tr.blismedia.com

Request

tr.blismedia.com

IN A

Response

tr.blismedia.com

IN A

34.96.105.8
DNS

sync.adotmob.com

Request

sync.adotmob.com

IN A

Response

sync.adotmob.com

IN A

45.137.176.88
DNS

pxl.iqm.com

Request

pxl.iqm.com

IN A

Response

pxl.iqm.com

IN A

54.88.142.103

pxl.iqm.com

IN A

34.193.171.116

pxl.iqm.com

IN A

3.229.202.201
GET

https://rtb-csync.smartadserver.com/redir/?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&issi=1&partnerid=33&partneruserid=ZnrxlrmqPq8AAFKyAdC9GwAA%264403

Request

GET /redir/?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&issi=1&partnerid=33&partneruserid=ZnrxlrmqPq8AAFKyAdC9GwAA%264403 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ssum-sec.casalemedia.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:24 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=150&partneruserid=0&redirurl=https%3A%2F%2Fwt.rqtrk.eu%3Fpid%3D58a76248-f101-4e52-b8f7-c4de9362ea12%26src%3Dwww%26type%3D100%26sid%3D0%26uid%3DSMART_USER_ID%26gdpr_pd%3D0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=150&partneruserid=0&redirurl=https%3A%2F%2Fwt.rqtrk.eu%3Fpid%3D58a76248-f101-4e52-b8f7-c4de9362ea12%26src%3Dwww%26type%3D100%26sid%3D0%26uid%3DSMART_USER_ID%26gdpr_pd%3D0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|32:3314471828681895967|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:35:25 GMT
cache-control: no-cache,no-store
location: https://wt.rqtrk.eu?pid=58a76248-f101-4e52-b8f7-c4de9362ea12&src=www&type=100&sid=0&uid=4052082643997295311&gdpr_pd=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|32:3314471828681895967|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|150:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://id.rlcdn.com/709414.gif?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /709414.gif?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/2.0
host: id.rlcdn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

id5-sync.com

Request

id5-sync.com

IN A

Response

id5-sync.com

IN A

162.19.138.82

id5-sync.com

IN A

162.19.138.119

id5-sync.com

IN A

162.19.138.117

id5-sync.com

IN A

162.19.138.116

id5-sync.com

IN A

141.95.33.120

id5-sync.com

IN A

162.19.138.118

id5-sync.com

IN A

141.95.98.65

id5-sync.com

IN A

162.19.138.83

id5-sync.com

IN A

141.95.98.64

id5-sync.com

IN A

162.19.138.120
GET

https://capi.connatix.com/us/pixel?puid=LXUMMYH8-18-IISD&pId=11&gdpr=&gdpr_consent=&us_privacy=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /us/pixel?puid=LXUMMYH8-18-IISD&pId=11&gdpr=&gdpr_consent=&us_privacy=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: capi.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:35:25 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
vary: Accept-Encoding
access-control-allow-headers: x-sec-ch-ua-platform-version, x-sec-ch-ua-full-version-list, x-sec-ch-ua-arch, x-sec-ch-ua-bitness, x-sec-ch-ua-model
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 89965ee2eddb94fd-LHR
alt-svc: h3=":443"; ma=86400
DNS

b1sync.zemanta.com

Request

b1sync.zemanta.com

IN A

Response

b1sync.zemanta.com

IN CNAME

b1-use1.zemanta.com

b1-use1.zemanta.com

IN CNAME

zemanta-nychi2.outbrain.org

zemanta-nychi2.outbrain.org

IN CNAME

chidc2.outbrain.org

chidc2.outbrain.org

IN A

64.74.236.159
GET

https://ce.lijit.com/merge?pid=80&3pid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /merge?pid=80&3pid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: ce.lijit.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:35:25 GMT
content-length: 0
location: https://ce.lijit.com/merge?pid=80&3pid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&dnr=1
vary: Accept-Encoding
set-cookie: ljt_reader=I4uDAQZHJDC8w6ABR_qOoSte; Path=/; Domain=.lijit.com; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Max-Age=31536000;Secure;SameSite=None
expires: Fri, 20 Mar 2009 00:00:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
GET

https://ce.lijit.com/merge?pid=80&3pid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&dnr=1

Request

GET /merge?pid=80&3pid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&dnr=1 HTTP/2.0
host: ce.lijit.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ljt_reader=I4uDAQZHJDC8w6ABR_qOoSte

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:35:25 GMT
content-type: image/gif
content-length: 43
vary: Accept-Encoding
set-cookie: _ljtrtb_80=LXUMMYH8-18-IISD; Path=/; Domain=.lijit.com; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Max-Age=31536000;Secure;SameSite=None
expires: Fri, 20 Mar 2009 00:00:00 GMT
set-cookie: ljt_reader=I4uDAQZHJDC8w6ABR_qOoSte; Path=/; Domain=.lijit.com; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Max-Age=31536000;Secure;SameSite=None
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=79&partneruserid=868b39e2-997b-433c-bce9-379e12258c8f&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=79&partneruserid=868b39e2-997b-433c-bce9-379e12258c8f&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:24 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|79:868b39e2-997b-433c-bce9-379e12258c8f|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=94&partneruserid=ZnrxlgAEOxAPqQAz&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /redir/?issi=1&partnerid=94&partneruserid=ZnrxlgAEOxAPqQAz&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:25 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|94:ZnrxlgAEOxAPqQAz|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=66&partneruserid=0aac2204007e7569b1dc9e0e&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=66&partneruserid=0aac2204007e7569b1dc9e0e&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:24 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=111&partneruserid=ID5-665c5AT0yhmwvaN1kyvfwePV3qMzF15gjk4qlqQ_HQ&redirurl=https%3A%2F%2Fid5-sync.com%2Fc%2F102%2F102%2F8%2F2.gif%3Fpuid%3DSMART_USER_ID%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?partnerid=111&partneruserid=ID5-665c5AT0yhmwvaN1kyvfwePV3qMzF15gjk4qlqQ_HQ&redirurl=https%3A%2F%2Fid5-sync.com%2Fc%2F102%2F102%2F8%2F2.gif%3Fpuid%3DSMART_USER_ID%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:35:24 GMT
cache-control: no-cache,no-store
location: https://id5-sync.com/c/102/102/8/2.gif?puid=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|111:ID5-665c5AT0yhmwvaN1kyvfwePV3qMzF15gjk4qlqQ_HQ|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
DNS

a.audrte.com

Request

a.audrte.com

IN A

Response

a.audrte.com

IN A

52.48.136.182

a.audrte.com

IN A

34.249.118.94

a.audrte.com

IN A

54.171.24.213
DNS

s.seedtag.com

Request

s.seedtag.com

IN A

Response

s.seedtag.com

IN A

34.149.50.64
DNS

s.company-target.com

Request

s.company-target.com

IN A

Response

s.company-target.com

IN CNAME

s.dsp-prod.demandbase.com

s.dsp-prod.demandbase.com

IN A

34.96.71.22
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=147&partneruserid=ad2eca5c-43a1-4141-acd4-a81773d9aee2&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?partnerid=147&partneruserid=ad2eca5c-43a1-4141-acd4-a81773d9aee2&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:25 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|147:ad2eca5c-43a1-4141-acd4-a81773d9aee2|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=49&partneruserid=7384480169877371019&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?partnerid=49&partneruserid=7384480169877371019&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:24 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|49:7384480169877371019|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&issi=1&partnerid=152&partneruserid=4b6bdba3-8177-47de-9c38-c61c3b4e9ca9

Request

GET /redir/?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&issi=1&partnerid=152&partneruserid=4b6bdba3-8177-47de-9c38-c61c3b4e9ca9 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:25 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368

Request

GET /redir/?issi=1&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:25 GMT
transfer-encoding: chunked
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=31&partneruserid=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?partnerid=31&partneruserid=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:25 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=116&partneruserid=o2xr0KqECEsyaRFTaZXc&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=116&partneruserid=o2xr0KqECEsyaRFTaZXc&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:25 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=2&partnerid=100&partneruserid=cf058137-53f5-0950-0107-bc887f168335&gdpr=0&gdpr_consent=

Request

GET /redir/?issi=2&partnerid=100&partneruserid=cf058137-53f5-0950-0107-bc887f168335&gdpr=0&gdpr_consent= HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:29 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:35:30 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
DNS

ws.rqtrk.eu

Request

ws.rqtrk.eu

IN A

Response

ws.rqtrk.eu

IN A

57.129.18.109

ws.rqtrk.eu

IN A

57.129.18.105

ws.rqtrk.eu

IN A

57.129.18.111

ws.rqtrk.eu

IN A

57.129.18.113

ws.rqtrk.eu

IN A

57.129.18.121
GET

https://tr.blismedia.com/v1/api/sync/openx?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /v1/api/sync/openx?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: tr.blismedia.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eu-u.openx.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://sync.adotmob.com/cookie/indexexchange?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&r=https%3A%2F%2Fdsum-sec.casalemedia.com%2Fcrum%3Fcm_dsp_id%3D13%26external_user_id%3D%7Bamob_user_id%7D%26expiration%3D%5BEXPIRATION%5D&gpp=&gpp_sid=

Request

GET /cookie/indexexchange?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&r=https%3A%2F%2Fdsum-sec.casalemedia.com%2Fcrum%3Fcm_dsp_id%3D13%26external_user_id%3D%7Bamob_user_id%7D%26expiration%3D%5BEXPIRATION%5D&gpp=&gpp_sid= HTTP/1.1
Host: sync.adotmob.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://ssum-sec.casalemedia.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

x-powered-by: Express
vary: Origin
access-control-allow-credentials: true
set-cookie: uid=0aac2204004197862f044149; Domain=.adotmob.com; Path=/; Expires=Sun, 22 Dec 2024 16:35:25 GMT; Secure; SameSite=None
set-cookie: uuid=0aac2204004197862f044149; Domain=.adotmob.com; Path=/; Expires=Sun, 22 Dec 2024 16:35:25 GMT; Secure; SameSite=None
set-cookie: partners=IX%3A1719333325305; Domain=.adotmob.com; Path=/; Expires=Sun, 22 Dec 2024 16:35:25 GMT; Secure; SameSite=None
location: https://dsum-sec.casalemedia.com/crum?cm_dsp_id=13&external_user_id=0aac2204004197862f044149&expiration=[EXPIRATION]&gdpr=1&gdprConsent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
date: Tue, 25 Jun 2024 16:35:25 GMT
keep-alive: timeout=5
content-length: 0
GET

https://sync.adotmob.com/cookie/smart?r=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D66%26partneruserid%3D%7Bamob_user_id%7D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /cookie/smart?r=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D66%26partneruserid%3D%7Bamob_user_id%7D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: sync.adotmob.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

x-powered-by: Express
vary: Origin
access-control-allow-credentials: true
set-cookie: uid=0aac2204007e7569b1dc9e0e; Domain=.adotmob.com; Path=/; Expires=Sun, 22 Dec 2024 16:35:25 GMT; Secure; SameSite=None
set-cookie: uuid=0aac2204007e7569b1dc9e0e; Domain=.adotmob.com; Path=/; Expires=Sun, 22 Dec 2024 16:35:25 GMT; Secure; SameSite=None
set-cookie: partners=SMA%3A1719333325305; Domain=.adotmob.com; Path=/; Expires=Sun, 22 Dec 2024 16:35:25 GMT; Secure; SameSite=None
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=66&partneruserid=0aac2204007e7569b1dc9e0e&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
date: Tue, 25 Jun 2024 16:35:25 GMT
keep-alive: timeout=5
content-length: 0
GET

https://pxl.iqm.com/i/ck/equativ?cid=SMART_USER_ID&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D154%26partneruserid%3D%7BIQM_COOKIE%7D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /i/ck/equativ?cid=SMART_USER_ID&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D154%26partneruserid%3D%7BIQM_COOKIE%7D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: pxl.iqm.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

Server: openresty
Date: Tue, 25 Jun 2024 16:35:25 GMT
Content-Type: image/avif;charset=UTF-8
Content-Length: 114
Connection: keep-alive
Set-Cookie: equativ=MTcyMDU0MjkyNTQ3MQ==; Domain=.pxl.iqm.com; Path=/; max-age=2592000; SameSite=None; Secure;
Set-Cookie: iqm.retarget.uid=e2bae657-511e-4b25-b352-44a63fb9b368; Domain=.pxl.iqm.com; Path=/; max-age=2592000; SameSite=None; Secure;
Location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
GET

https://pxl.iqm.com/i/ck/equativ?cid=SMART_USER_ID&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D2%26partnerid%3D154%26partneruserid%3D%7BIQM_COOKIE%7D&gdpr=0&gdpr_consent=

Request

GET /i/ck/equativ?cid=SMART_USER_ID&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D2%26partnerid%3D154%26partneruserid%3D%7BIQM_COOKIE%7D&gdpr=0&gdpr_consent= HTTP/1.1
Host: pxl.iqm.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: equativ=MTcyMDU0MjkyNTQ3MQ==; iqm.retarget.uid=e2bae657-511e-4b25-b352-44a63fb9b368

Response

HTTP/1.1 302 Found

Server: openresty
Date: Tue, 25 Jun 2024 16:35:45 GMT
Content-Type: image/avif;charset=UTF-8
Content-Length: 114
Connection: keep-alive
Set-Cookie: equativ=MTcyMDU0Mjk0NTExMg==; Domain=.pxl.iqm.com; Path=/; max-age=2592000; SameSite=None; Secure;
Set-Cookie: iqm.retarget.uid=e2bae657-511e-4b25-b352-44a63fb9b368; Domain=.pxl.iqm.com; Path=/; max-age=2592000; SameSite=None; Secure;
Location: https://rtb-csync.smartadserver.com/redir/?issi=2&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
GET

https://pxl.iqm.com/i/ck/equativ?cid=SMART_USER_ID&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D2%26partnerid%3D154%26partneruserid%3D%7BIQM_COOKIE%7D&gdpr=0&gdpr_consent=

Request

GET /i/ck/equativ?cid=SMART_USER_ID&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D2%26partnerid%3D154%26partneruserid%3D%7BIQM_COOKIE%7D&gdpr=0&gdpr_consent= HTTP/1.1
Host: pxl.iqm.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: iqm.retarget.uid=e2bae657-511e-4b25-b352-44a63fb9b368; equativ=MTcyMDU0Mjk0NTExMg==

Response

HTTP/1.1 302 Found

Server: openresty
Date: Tue, 25 Jun 2024 16:36:15 GMT
Content-Type: image/avif;charset=UTF-8
Content-Length: 114
Connection: keep-alive
Set-Cookie: equativ=MTcyMDU0Mjk3NTExNg==; Domain=.pxl.iqm.com; Path=/; max-age=2592000; SameSite=None; Secure;
Set-Cookie: iqm.retarget.uid=e2bae657-511e-4b25-b352-44a63fb9b368; Domain=.pxl.iqm.com; Path=/; max-age=2592000; SameSite=None; Secure;
Location: https://rtb-csync.smartadserver.com/redir/?issi=2&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=86&partneruserid=8159859772855155319&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=86&partneruserid=8159859772855155319&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:24 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|160:1; expires=Wed, 25 Jun 2025 16:35:25 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://s.company-target.com/s/ix?cm_dsp_id=18&us_privacy=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gpp=&gpp_sid=

Request

GET /s/ix?cm_dsp_id=18&us_privacy=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gpp=&gpp_sid= HTTP/2.0
host: s.company-target.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://ssum-sec.casalemedia.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://s.company-target.com/s/eqx?sspurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D152%26partneruserid%3DPARTNER_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /s/eqx?sspurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D152%26partneruserid%3DPARTNER_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: s.company-target.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://s.seedtag.com/cs/cookiesync/Rubicon?channeluid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /cs/cookiesync/Rubicon?channeluid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: s.seedtag.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://id5-sync.com/i/102/9.gif?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /i/102/9.gif?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#1; Max-Age=300; Expires=Tue, 25-Jun-2024 16:40:25 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://id5-sync.com/c/102/0/9/1.gif?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=
date: Tue, 25 Jun 2024 16:35:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/c/102/0/9/1.gif?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

Request

GET /c/102/0/9/1.gif?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy= HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#1

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#2; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:35:25 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: 3pi=; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:35:25 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://rtb-csync.smartadserver.com/redir/?partnerid=111&partneruserid=ID5-665c5AT0yhmwvaN1kyvfwePV3qMzF15gjk4qlqQ_HQ&redirurl=https%3A%2F%2Fid5-sync.com%2Fc%2F102%2F102%2F8%2F2.gif%3Fpuid%3DSMART_USER_ID%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
date: Tue, 25 Jun 2024 16:35:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/c/102/102/8/2.gif?puid=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /c/102/102/8/2.gif?puid=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#2
cookie: 3pi=

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: 3pi=102#1719333325507#-1647219912; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:35:25 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=gif; Max-Age=300; Expires=Tue, 25-Jun-2024 16:40:25 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=102; Max-Age=300; Expires=Tue, 25-Jun-2024 16:40:25 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=7; Max-Age=300; Expires=Tue, 25-Jun-2024 16:40:25 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=3; Max-Age=300; Expires=Tue, 25-Jun-2024 16:40:25 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=1|CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA; Max-Age=300; Expires=Tue, 25-Jun-2024 16:40:25 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://match.adsrvr.org/track/cmf/generic?ttd_pid=8h9u11h&ttd_tpi=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
date: Tue, 25 Jun 2024 16:35:25 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/k/264.gif?puid=84daa6ca-0538-48d1-9010-ae8e49c9a74c&ttl=%%TTL%%

Request

GET /k/264.gif?puid=84daa6ca-0538-48d1-9010-ae8e49c9a74c&ttl=%%TTL%% HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#2
cookie: 3pi=102#1719333325507#-1647219912
cookie: cf=gif
cookie: cip=102
cookie: cnac=7
cookie: car=3
cookie: gdpr=1|CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: 3pi=102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:35:25 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://uipglob.semasio.net/id5/1/get?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&_url=https%3A%2F%2Fid5-sync.com%2Fc%2F102%2F112%2F6%2F4.gif%3Fpuid%3D%24%7BUIPID%7D%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
date: Tue, 25 Jun 2024 16:35:25 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/c/102/112/6/4.gif?puid=B33A6DD4B9D190C&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /c/102/112/6/4.gif?puid=B33A6DD4B9D190C&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#2
cookie: 3pi=102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:35:25 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://ib.adnxs.com/getuid?https://id5-sync.com/c/102/2/5/5.gif?puid=$UID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
date: Tue, 25 Jun 2024 16:35:25 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/c/102/2/5/5.gif?puid=8159859772855155319&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /c/102/2/5/5.gif?puid=8159859772855155319&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#2
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:35:26 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://ps.eyeota.net/match?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&bid=1mpr7m0&r=https%3A%2F%2Fid5-sync.com%2Fc%2F102%2F123%2F4%2F6.gif%3Fpuid%3D%7BUUID%7D%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
date: Tue, 25 Jun 2024 16:35:25 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/c/102/123/4/6.gif?puid=190503fc590-5d5e0000010f4341&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /c/102/123/4/6.gif?puid=190503fc590-5d5e0000010f4341&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#2
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|123#1719333326365#1833520096; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:35:26 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://x.bidswitch.net/check_uuid/https%3A%2F%2Fid5-sync.com%2Fc%2F102%2F104%2F3%2F7.gif%3Fpuid%3D%24%7BBSW_UUID%7D%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
date: Tue, 25 Jun 2024 16:35:25 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/c/102/104/3/7.gif?puid=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /c/102/104/3/7.gif?puid=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#2
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|123#1719333326365#1833520096

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|123#1719333326365#1833520096; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:35:26 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://c1.adform.net/serving/cookie/match?party=1135&callback=https%3A%2F%2Fid5-sync.com%2Fc%2F102%2F10%2F2%2F8.gif%3Fpuid%3D%5Badformuid%5D%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1
date: Tue, 25 Jun 2024 16:35:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/c/102/10/2/8.gif?puid=6640692441033083723&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /c/102/10/2/8.gif?puid=6640692441033083723&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#2
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|123#1719333326365#1833520096

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:35:26 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://cookie-matching.mediarithmics.com/v1/get_user_agent_id?dom_token=id517&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9MSZjYXNjYWRlc0RvbmU9OSZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY
date: Tue, 25 Jun 2024 16:35:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
DNS

sync.outbrain.com

Request

sync.outbrain.com

IN A

Response

sync.outbrain.com

IN CNAME

alldcs.outbrain.org

alldcs.outbrain.org

IN CNAME

chidc2.outbrain.org

chidc2.outbrain.org

IN A

50.31.142.223
DNS

ssc-cms.33across.com

Request

ssc-cms.33across.com

IN A

Response

ssc-cms.33across.com

IN CNAME

pixel.33across.com

pixel.33across.com

IN A

67.202.105.21

pixel.33across.com

IN A

67.202.105.22
GET

https://ws.rqtrk.eu/pull?pid=6298098f-c92c-4c68-bdfc-f454f26a86ac&redirect=https%3A%2F%2Fx.bidswitch.net%2Fsync%3Fdsp_id%3D193%26user_id%3D%24BROWSER_ID%26gdpr%3D%24GDPR%26gdpr_consent%3D%24GDPR_CONSENT%26expires%3D1%26ssp%3D%24bidswitch_ssp_id&return-unstable=true&eb=&bidswitch_ssp_id=smartadserver&g=1&gdpr_pd=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /pull?pid=6298098f-c92c-4c68-bdfc-f454f26a86ac&redirect=https%3A%2F%2Fx.bidswitch.net%2Fsync%3Fdsp_id%3D193%26user_id%3D%24BROWSER_ID%26gdpr%3D%24GDPR%26gdpr_consent%3D%24GDPR_CONSENT%26expires%3D1%26ssp%3D%24bidswitch_ssp_id&return-unstable=true&eb=&bidswitch_ssp_id=smartadserver&g=1&gdpr_pd=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: ws.rqtrk.eu
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: browser_id=1:b7892654-d793-4c1f-abca-dc0093db2878

Response

HTTP/2.0 302

server: istio-envoy
date: Tue, 25 Jun 2024 16:35:25 GMT
content-length: 0
p3p: CP="NOI DSP COR DEVa PSAa PSDa OUR BUS UNI COM NAV STA"
cache-control: no-cache,private
pragma: no-cache
expires: Tue, 25 Jun 2024 16:35:24 GMT
set-cookie: browser_id=b7892654-d793-4c1f-abca-dc0093db2878; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Domain=.rqtrk.eu; Secure; SameSite=None
set-cookie: rc=1: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; Expires=Wed, 26 Jun 2024 16:35:25 GMT; Domain=.rqtrk.eu; Secure; SameSite=None
location: https://secure.adnxs.com/getuid?https://ws.rqtrk.eu/push?pid%3Dd01d36c7-983a-48ac-901e-290ea14b9f2a%26uid%3D$UID%26tr%3D0
x-envoy-upstream-service-time: 1
GET

https://wt.rqtrk.eu/?pid=58a76248-f101-4e52-b8f7-c4de9362ea12&src=www&type=100&sid=0&uid=4052082643997295311&gdpr_pd=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /?pid=58a76248-f101-4e52-b8f7-c4de9362ea12&src=www&type=100&sid=0&uid=4052082643997295311&gdpr_pd=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: wt.rqtrk.eu
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: browser_id=1:b7892654-d793-4c1f-abca-dc0093db2878

Response

HTTP/2.0 200

server: istio-envoy
date: Tue, 25 Jun 2024 16:35:25 GMT
content-type: image/gif
content-length: 43
p3p: CP="NOI DSP COR DEVa PSAa PSDa OUR BUS UNI COM NAV STA"
cache-control: no-cache,private
pragma: no-cache
expires: Tue, 25 Jun 2024 16:35:24 GMT
set-cookie: browser_id=b7892654-d793-4c1f-abca-dc0093db2878; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Domain=.rqtrk.eu; Secure; SameSite=None
x-envoy-upstream-service-time: 0
GET

https://ws.rqtrk.eu/push?pid=d01d36c7-983a-48ac-901e-290ea14b9f2a&uid=8159859772855155319&tr=0

Request

GET /push?pid=d01d36c7-983a-48ac-901e-290ea14b9f2a&uid=8159859772855155319&tr=0 HTTP/2.0
host: ws.rqtrk.eu
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: rc=1:aHR0cHM6Ly94LmJpZHN3aXRjaC5uZXQvc3luYz9kc3BfaWQ9MTkzJnVzZXJfaWQ9Yjc4OTI2NTQtZDc5My00YzFmLWFiY2EtZGMwMDkzZGIyODc4JmdkcHI9MSZnZHByX2NvbnNlbnQ9Q1FBeEZVQVFBeEZVQUFfQUVBRU5BNkVzQVBfZ0FFUGdBQUFBS1R0Vl9HX19iV2xyOFg3M2FmdGtlWTFQOV9oNzdzUXhCaGZKRS00RnpMdldfSndYeDJFeE5BMzZ0cUlLbVJJRXUzYkJJUU5sSEpEVVRWQ2dhb2dWcnlETWFrMmNvVE5LSjZCa2lGTVJPMmRZQ0Y1dm13dGotUUtZNXZyOTkzZHgyQi10X2R2ODNkenl6NFZIbjNhNV8yZTBXSkNkQTU4dERmdjliUk9iLTlJT2RfNTh2NHY4X0ZfckUyX2VUMWxfdGV2cDdEOS1jdHM3X1hXLTlfZmZmNzlMbF8tbUJfZ3BLQVdZYUZSQUdXUklTRUdnWVFRSUFWQldFQkZBZ0FBQUJJR2lBZ0JNR0JUc0RBSmRZU0lBUUFvQUJnZ0JBQUNqSUFFQUFBa0FDRVFBUUFGQWdBQWdFQ2dBREFBZ0dBZ0FZR0FBTUFGZ0lCQUFDQTZCQ21CQkFvRmdBa1prUkNtQkNGQWtFQkxaVUlKQUVDQ3VFSVJaNEVFQWlKZ29BQUFTQUNzQUFRRmdzRGlTUUVyRWdnUzRnMmdBQUlBRUFnZ0FxRVVuWmdDQ0FNMldxdkZrMmpLMGdMUjh3WHZhWUFBQS5ZQUFBQUFBQUFBQUEmZXhwaXJlcz0xJnNzcD1zbWFydGFkc2VydmVy
cookie: browser_id=b7892654-d793-4c1f-abca-dc0093db2878

Response

HTTP/2.0 302

server: istio-envoy
date: Tue, 25 Jun 2024 16:35:25 GMT
content-length: 0
p3p: CP="NOI DSP COR DEVa PSAa PSDa OUR BUS UNI COM NAV STA"
cache-control: no-cache,private
pragma: no-cache
expires: Tue, 25 Jun 2024 16:35:24 GMT
set-cookie: rc=1:; Expires=Wed, 26 Jun 2024 16:35:25 GMT; Domain=.rqtrk.eu; Secure; SameSite=None
location: https://x.bidswitch.net/sync?dsp_id=193&user_id=b7892654-d793-4c1f-abca-dc0093db2878&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&expires=1&ssp=smartadserver
x-envoy-upstream-service-time: 3
GET

https://ssc-cms.33across.com/ps/?xi=1&xu=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /ps/?xi=1&xu=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: ssc-cms.33across.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

x-33x-status: 2000208
server: 33XP009
date: Tue, 25 Jun 2024 16:35:25 GMT
DNS

cs.yellowblue.io

Request

cs.yellowblue.io

IN A

Response

cs.yellowblue.io

IN A

52.208.159.70

cs.yellowblue.io

IN A

52.209.21.214

cs.yellowblue.io

IN A

3.248.68.207
DNS

cs.minutemedia-prebid.com

Request

cs.minutemedia-prebid.com

IN A

Response

cs.minutemedia-prebid.com

IN CNAME

cs.digbearings.com

cs.digbearings.com

IN A

3.248.68.207

cs.digbearings.com

IN A

52.208.159.70

cs.digbearings.com

IN A

52.209.21.214
GET

https://uipglob.semasio.net/id5/1/get?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&_url=https%3A%2F%2Fid5-sync.com%2Fc%2F102%2F112%2F6%2F4.gif%3Fpuid%3D%24%7BUIPID%7D%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /id5/1/get?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&_url=https%3A%2F%2Fid5-sync.com%2Fc%2F102%2F112%2F6%2F4.gif%3Fpuid%3D%24%7BUIPID%7D%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: uipglob.semasio.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: SEUNCY=B33A6DD4B9D190C

Response

HTTP/1.1 302 Found

location: https://id5-sync.com/c/102/112/6/4.gif?puid=B33A6DD4B9D190C&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
uip-response-status: Ok
frontend-id: 0
set-cookie: SEUNCY=B33A6DD4B9D190C; Expires=Wed, 25 Jun 2025 16:35:25 GMT; Path=/; Domain=.semasio.net; SameSite=None; HttpOnly; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sat, 01 Jan 2011 12:00:00 GMT
p3p: policyref="http://uip.semasio.net/w3c/p3p.xml", CP="NOI PSAa PSDa OUR IND UNI CNT"
pragma: no-cache
date: Tue, 25 Jun 2024 16:35:25 GMT
content-length: 0
routing-server-id: -1
access-control-allow-origin: *
DNS

204.16.207.89.in-addr.arpa

Request

204.16.207.89.in-addr.arpa

IN PTR

Response

204.16.207.89.in-addr.arpa

IN PTR

ams04-nessy-float2dotomicom
DNS

105.90.14.23.in-addr.arpa

Request

105.90.14.23.in-addr.arpa

IN PTR

Response

105.90.14.23.in-addr.arpa

IN PTR

a23-14-90-105deploystaticakamaitechnologiescom
DNS

68.174.244.35.in-addr.arpa

Request

68.174.244.35.in-addr.arpa

IN PTR

Response

68.174.244.35.in-addr.arpa

IN PTR

6817424435bcgoogleusercontentcom
DNS

104.41.18.104.in-addr.arpa

Request

104.41.18.104.in-addr.arpa

IN PTR

Response
DNS

4.32.215.52.in-addr.arpa

Request

4.32.215.52.in-addr.arpa

IN PTR

Response

4.32.215.52.in-addr.arpa

IN PTR

ec2-52-215-32-4 eu-west-1compute amazonawscom
DNS

8.105.96.34.in-addr.arpa

Request

8.105.96.34.in-addr.arpa

IN PTR

Response

8.105.96.34.in-addr.arpa

IN PTR

81059634bcgoogleusercontentcom
DNS

88.176.137.45.in-addr.arpa

Request

88.176.137.45.in-addr.arpa

IN PTR

Response
DNS

67.33.132.192.in-addr.arpa

Request

67.33.132.192.in-addr.arpa

IN PTR

Response

67.33.132.192.in-addr.arpa

IN PTR

NET-33-132-19267 bidtellectcom
DNS

22.71.96.34.in-addr.arpa

Request

22.71.96.34.in-addr.arpa

IN PTR

Response

22.71.96.34.in-addr.arpa

IN PTR

22719634bcgoogleusercontentcom
DNS

64.50.149.34.in-addr.arpa

Request

64.50.149.34.in-addr.arpa

IN PTR

Response

64.50.149.34.in-addr.arpa

IN PTR

645014934bcgoogleusercontentcom
DNS

182.136.48.52.in-addr.arpa

Request

182.136.48.52.in-addr.arpa

IN PTR

Response

182.136.48.52.in-addr.arpa

IN PTR

ec2-52-48-136-182 eu-west-1compute amazonawscom
DNS

82.138.19.162.in-addr.arpa

Request

82.138.19.162.in-addr.arpa

IN PTR

Response

82.138.19.162.in-addr.arpa

IN PTR

ns31532337 ip-162-19-138eu
DNS

103.142.88.54.in-addr.arpa

Request

103.142.88.54.in-addr.arpa

IN PTR

Response

103.142.88.54.in-addr.arpa

IN PTR

ec2-54-88-142-103 compute-1 amazonawscom
DNS

159.236.74.64.in-addr.arpa

Request

159.236.74.64.in-addr.arpa

IN PTR

Response

159.236.74.64.in-addr.arpa

IN PTR

chioutbraincom
DNS

21.105.202.67.in-addr.arpa

Request

21.105.202.67.in-addr.arpa

IN PTR

Response

21.105.202.67.in-addr.arpa

IN PTR

ip21 67-202-105staticsteadfastdnsnet
DNS

223.142.31.50.in-addr.arpa

Request

223.142.31.50.in-addr.arpa

IN PTR

Response

223.142.31.50.in-addr.arpa

IN PTR

chioutbraincom
DNS

70.159.208.52.in-addr.arpa

Request

70.159.208.52.in-addr.arpa

IN PTR

Response

70.159.208.52.in-addr.arpa

IN PTR

ec2-52-208-159-70 eu-west-1compute amazonawscom
DNS

207.68.248.3.in-addr.arpa

Request

207.68.248.3.in-addr.arpa

IN PTR

Response

207.68.248.3.in-addr.arpa

IN PTR

ec2-3-248-68-207 eu-west-1compute amazonawscom
DNS

207.68.248.3.in-addr.arpa

Request

207.68.248.3.in-addr.arpa

IN PTR

Response

207.68.248.3.in-addr.arpa

IN PTR

ec2-3-248-68-207 eu-west-1compute amazonawscom
DNS

cookie-matching.mediarithmics.com

Request

cookie-matching.mediarithmics.com

IN A

Response

cookie-matching.mediarithmics.com

IN CNAME

lb.mediarithmics.com

lb.mediarithmics.com

IN A

54.36.150.181

lb.mediarithmics.com

IN A

54.36.150.186

lb.mediarithmics.com

IN A

54.36.150.182

lb.mediarithmics.com

IN A

54.36.150.185

lb.mediarithmics.com

IN A

54.36.150.184

lb.mediarithmics.com

IN A

54.36.150.187

lb.mediarithmics.com

IN A

54.36.150.180

lb.mediarithmics.com

IN A

54.36.150.183
GET

https://cookie-matching.mediarithmics.com/v1/get_user_agent_id?dom_token=id517&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9MSZjYXNjYWRlc0RvbmU9OSZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY

Request

GET /v1/get_user_agent_id?dom_token=id517&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9MSZjYXNjYWRlc0RvbmU9OSZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY HTTP/2.0
host: cookie-matching.mediarithmics.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 303

location: /v1/get_or_create?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9MSZjYXNjYWRlc0RvbmU9OSZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&domid=1033
content-length: 0
date: Tue, 25 Jun 2024 16:35:26 GMT
strict-transport-security: max-age=63072000;includeSubDomains;preload
GET

https://cookie-matching.mediarithmics.com/v1/get_or_create?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9MSZjYXNjYWRlc0RvbmU9OSZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&domid=1033

Request

GET /v1/get_or_create?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9MSZjYXNjYWRlc0RvbmU9OSZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&domid=1033 HTTP/2.0
host: cookie-matching.mediarithmics.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 303

location: https://cm.g.doubleclick.net/pixel?google_nid=medr&google_cm&key=GOO&sd=Y2FzY2FkZXNSZW1haW5pbmc9MSZjYXNjYWRlc0RvbmU9OSZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&action=GET_ID&opid=goo&etid=&domid=1033&ops=apx
content-length: 0
date: Tue, 25 Jun 2024 16:35:26 GMT
strict-transport-security: max-age=63072000;includeSubDomains;preload
GET

https://cookie-matching.mediarithmics.com/input?key=GOO&key=GOO&sd=Y2FzY2FkZXNSZW1haW5pbmc9MSZjYXNjYWRlc0RvbmU9OSZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&action=GET_ID&opid=goo&etid=&domid=1033&ops=apx&google_gid=CAESEGtt1wxakE-WnBpE36XEr3E&google_cver=1

Request

GET /input?key=GOO&key=GOO&sd=Y2FzY2FkZXNSZW1haW5pbmc9MSZjYXNjYWRlc0RvbmU9OSZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&action=GET_ID&opid=goo&etid=&domid=1033&ops=apx&google_gid=CAESEGtt1wxakE-WnBpE36XEr3E&google_cver=1 HTTP/2.0
host: cookie-matching.mediarithmics.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 303

location: https://ib.adnxs.com/getuid?https://cookie-matching.mediarithmics.com/input?key=APX&apx_uid=$UID&opid=apx&ops=&utidl=tech:goo:CAESEGtt1wxakE-WnBpE36XEr3E&sd=Y2FzY2FkZXNSZW1haW5pbmc9MSZjYXNjYWRlc0RvbmU9OSZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&action=GET_ID&etid=&domid=1033
content-length: 0
date: Tue, 25 Jun 2024 16:35:26 GMT
strict-transport-security: max-age=63072000;includeSubDomains;preload
DNS

181.150.36.54.in-addr.arpa

Request

181.150.36.54.in-addr.arpa

IN PTR

Response

181.150.36.54.in-addr.arpa

IN PTR

ip181ip-54-36-150eu
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333343736&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333343736&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: text/xml; charset=UTF-8
date: Tue, 25 Jun 2024 16:35:44 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038915&218209=6038915; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:35:44 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://prg.smartadserver.com/prebid/v1

Request

POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
Connection: keep-alive
Content-Length: 1124
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: application/json; charset=UTF-8
date: Tue, 25 Jun 2024 16:35:44 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038915&218209=6038915; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:35:44 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://bidder.criteo.com/cdb?ptv=139&profileId=185&av=36&wv=8.27.0&bundle=xBM0Jl8xcEdCOXZZa1Q1WUZDS201cDBjJTJCUiUyQjBiNzRJVnAlMkZxZVVtRDllTDRCZXRVWThSODIwZmFrZHNHWFo1dUk1cTFGc05MemRVMG1rajEzV1NtVUJBN29LVHhjeFdHU1oyVG0yR2JQU1A1UzZZU1pRSzJUU3F1T1ZVSDZxS0hlNXJWSDA0bEZEOG41S0l4TzdwZkRmWFl1bEElM0QlM0Q&cb=22100930434

Request

POST /cdb?ptv=139&profileId=185&av=36&wv=8.27.0&bundle=xBM0Jl8xcEdCOXZZa1Q1WUZDS201cDBjJTJCUiUyQjBiNzRJVnAlMkZxZVVtRDllTDRCZXRVWThSODIwZmFrZHNHWFo1dUk1cTFGc05MemRVMG1rajEzV1NtVUJBN29LVHhjeFdHU1oyVG0yR2JQU1A1UzZZU1pRSzJUU3F1T1ZVSDZxS0hlNXJWSDA0bEZEOG41S0l4TzdwZkRmWFl1bEElM0QlM0Q&cb=22100930434 HTTP/2.0
host: bidder.criteo.com
content-length: 2970
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:44 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://bidder.criteo.com/csm/events

Request

POST /csm/events HTTP/2.0
host: bidder.criteo.com
content-length: 270
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:44 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
DNS

btlr.sharethrough.com

Request

btlr.sharethrough.com

IN A

Response

btlr.sharethrough.com

IN CNAME

btlr-eu-central-1.sharethrough.com

btlr-eu-central-1.sharethrough.com

IN A

52.59.30.68

btlr-eu-central-1.sharethrough.com

IN A

52.57.224.82

btlr-eu-central-1.sharethrough.com

IN A

3.78.200.244

btlr-eu-central-1.sharethrough.com

IN A

18.197.138.194

btlr-eu-central-1.sharethrough.com

IN A

52.59.2.9

btlr-eu-central-1.sharethrough.com

IN A

18.196.200.186

btlr-eu-central-1.sharethrough.com

IN A

3.78.111.63

btlr-eu-central-1.sharethrough.com

IN A

52.58.29.89
GET

https://rtb-csync.smartadserver.com/redir/?issi=2&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368

Request

GET /redir/?issi=2&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:35:45 GMT
transfer-encoding: chunked
DNS

68.30.59.52.in-addr.arpa

Request

68.30.59.52.in-addr.arpa

IN PTR

Response

68.30.59.52.in-addr.arpa

IN PTR

ec2-52-59-30-68eu-central-1compute amazonawscom
GET

https://csync.loopme.me/?redirect=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D124%26partneruserid%3D%7Bdevice_id%7D&pubid=5679&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /?redirect=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D124%26partneruserid%3D%7Bdevice_id%7D&pubid=5679&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: csync.loopme.me
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: viewer_token=20bd0165-7caa-4b7b-8b83-5936300ad204

Response

HTTP/2.0 504

content-length: 24
content-type: text/plain
date: Tue, 25 Jun 2024 16:35:46 GMT
server: _
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333358735&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333358735&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: text/xml; charset=UTF-8
date: Tue, 25 Jun 2024 16:35:59 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038915&218209=6038915; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:35:59 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://bidder.criteo.com/cdb?ptv=139&profileId=185&av=36&wv=8.27.0&bundle=xBM0Jl8xcEdCOXZZa1Q1WUZDS201cDBjJTJCUiUyQjBiNzRJVnAlMkZxZVVtRDllTDRCZXRVWThSODIwZmFrZHNHWFo1dUk1cTFGc05MemRVMG1rajEzV1NtVUJBN29LVHhjeFdHU1oyVG0yR2JQU1A1UzZZU1pRSzJUU3F1T1ZVSDZxS0hlNXJWSDA0bEZEOG41S0l4TzdwZkRmWFl1bEElM0QlM0Q&cb=46199044765

Request

POST /cdb?ptv=139&profileId=185&av=36&wv=8.27.0&bundle=xBM0Jl8xcEdCOXZZa1Q1WUZDS201cDBjJTJCUiUyQjBiNzRJVnAlMkZxZVVtRDllTDRCZXRVWThSODIwZmFrZHNHWFo1dUk1cTFGc05MemRVMG1rajEzV1NtVUJBN29LVHhjeFdHU1oyVG0yR2JQU1A1UzZZU1pRSzJUU3F1T1ZVSDZxS0hlNXJWSDA0bEZEOG41S0l4TzdwZkRmWFl1bEElM0QlM0Q&cb=46199044765 HTTP/2.0
host: bidder.criteo.com
content-length: 2970
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:59 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://bidder.criteo.com/csm/events

Request

POST /csm/events HTTP/2.0
host: bidder.criteo.com
content-length: 270
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:35:59 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://prg.smartadserver.com/prebid/v1

Request

POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
Connection: keep-alive
Content-Length: 1124
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: application/json; charset=UTF-8
date: Tue, 25 Jun 2024 16:35:59 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038915&218209=6038915; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:35:59 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333373736&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333373736&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: text/xml; charset=UTF-8
date: Tue, 25 Jun 2024 16:36:14 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038915&218209=6038916; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:36:14 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://bidder.criteo.com/cdb?ptv=139&profileId=185&av=36&wv=8.27.0&bundle=xBM0Jl8xcEdCOXZZa1Q1WUZDS201cDBjJTJCUiUyQjBiNzRJVnAlMkZxZVVtRDllTDRCZXRVWThSODIwZmFrZHNHWFo1dUk1cTFGc05MemRVMG1rajEzV1NtVUJBN29LVHhjeFdHU1oyVG0yR2JQU1A1UzZZU1pRSzJUU3F1T1ZVSDZxS0hlNXJWSDA0bEZEOG41S0l4TzdwZkRmWFl1bEElM0QlM0Q&cb=235007153

Request

POST /cdb?ptv=139&profileId=185&av=36&wv=8.27.0&bundle=xBM0Jl8xcEdCOXZZa1Q1WUZDS201cDBjJTJCUiUyQjBiNzRJVnAlMkZxZVVtRDllTDRCZXRVWThSODIwZmFrZHNHWFo1dUk1cTFGc05MemRVMG1rajEzV1NtVUJBN29LVHhjeFdHU1oyVG0yR2JQU1A1UzZZU1pRSzJUU3F1T1ZVSDZxS0hlNXJWSDA0bEZEOG41S0l4TzdwZkRmWFl1bEElM0QlM0Q&cb=235007153 HTTP/2.0
host: bidder.criteo.com
content-length: 2970
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:36:14 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://bidder.criteo.com/csm/events

Request

POST /csm/events HTTP/2.0
host: bidder.criteo.com
content-length: 270
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:36:14 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://prg.smartadserver.com/prebid/v1

Request

POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
Connection: keep-alive
Content-Length: 1124
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038915&218209=6038915; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: application/json; charset=UTF-8
date: Tue, 25 Jun 2024 16:36:14 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038916&218209=6038915; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:36:14 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=2&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368

Request

GET /redir/?issi=2&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookie=ok; TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; vs=342899=6038915&218209=6038916

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:36:15 GMT
transfer-encoding: chunked
DNS

consent.google.com

Request

consent.google.com

IN A

Response

consent.google.com

IN A

172.217.169.14
POST

https://consent.google.com/save?continue=https://www.google.com/search?q%3Dpixelpoint%2Btv%26oq%3Dpixelpoint%2Btv%26aqs%3Dchrome..69i57.13836j0j7%26sourceid%3Dchrome%26ie%3DUTF-8&gl=UK&m=0&pc=srp&x=5&src=2&hl=en&bl=gws_20240620-0_RC1&uxe=none&cm=2&set_eom=false&set_aps=true&set_sc=true

Request

POST /save?continue=https://www.google.com/search?q%3Dpixelpoint%2Btv%26oq%3Dpixelpoint%2Btv%26aqs%3Dchrome..69i57.13836j0j7%26sourceid%3Dchrome%26ie%3DUTF-8&gl=UK&m=0&pc=srp&x=5&src=2&hl=en&bl=gws_20240620-0_RC1&uxe=none&cm=2&set_eom=false&set_aps=true&set_sc=true HTTP/2.0
host: consent.google.com
content-length: 0
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.google.com
x-client-data: CJmLywE=
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.google.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: AEC=AQTF6HysrSYTbI3Icaj3vIZl49e-qxXb6PQIBDhPhzQdQg7Cznmpd-V8IPs
cookie: __Secure-ENID=20.SE=RFAZ5llPC1Prm25LN0HPn1rIJX4OkBgkR4EsKtipRZLYdu2zRP03U2BEm_urmg1F4MYXGFR5MaZf7CfHfU8p3nvHWlrMvlqB26t_A7FzE3VEBFVOkvYQq_-yn9H_rOt6krZJIBZT-YVpL-rpTzqEcNkIHQhaib5F4GqsjIZKQIoF8GVvigyBv9TGv1yX
cookie: SOCS=CAISHAgCEhJnd3NfMjAyNDA2MjAtMF9SQzEaAmVuIAEaBgiAkeizBg
GET

https://www.youtube.com/iframe_api?version=3

Request

GET /iframe_api?version=3 HTTP/2.0
host: www.youtube.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
x-client-data: CJmLywE=
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.google.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

pixelpoint.tv

Request

pixelpoint.tv

IN A

Response

pixelpoint.tv

IN A

107.21.38.241

pixelpoint.tv

IN A

34.198.123.123
DNS

kit.fontawesome.com

Request

kit.fontawesome.com

IN A

Response

kit.fontawesome.com

IN CNAME

kit.fontawesome.com.cdn.cloudflare.net

kit.fontawesome.com.cdn.cloudflare.net

IN A

172.64.147.188

kit.fontawesome.com.cdn.cloudflare.net

IN A

104.18.40.68
DNS

platform.twitter.com

Request

platform.twitter.com

IN A

Response

platform.twitter.com

IN CNAME

cs472.wac.edgecastcdn.net

cs472.wac.edgecastcdn.net

IN CNAME

cs1-apr-8315.wac.edgecastcdn.net

cs1-apr-8315.wac.edgecastcdn.net

IN CNAME

wac.apr-8315.edgecastdns.net

wac.apr-8315.edgecastdns.net

IN CNAME

cs1-lb-eu.8315.ecdns.net

cs1-lb-eu.8315.ecdns.net

IN CNAME

cs491.wac.edgecastcdn.net

cs491.wac.edgecastcdn.net

IN A

192.229.233.25
DNS

hideout.tv

Request

hideout.tv

IN A

Response

hideout.tv

IN A

34.195.21.152

hideout.tv

IN A

34.239.217.40
DNS

cmp.inmobi.com

Request

cmp.inmobi.com

IN A

Response

cmp.inmobi.com

IN CNAME

cmp-prod.inmobi-choice.io

cmp-prod.inmobi-choice.io

IN CNAME

d23sp3kzv1t6m5.cloudfront.net

d23sp3kzv1t6m5.cloudfront.net

IN A

52.222.149.52

d23sp3kzv1t6m5.cloudfront.net

IN A

52.222.149.100

d23sp3kzv1t6m5.cloudfront.net

IN A

52.222.149.104

d23sp3kzv1t6m5.cloudfront.net

IN A

52.222.149.95
GET

https://kit.fontawesome.com/34088199f7.js

Request

GET /34088199f7.js HTTP/2.0
host: kit.fontawesome.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
origin: https://pixelpoint.tv
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:22 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F9rsfsUsLg9P2UyJJ8gh
cf-cache-status: HIT
age: 31
server: cloudflare
cf-ray: 899661c0b8b34916-LHR
content-encoding: gzip
GET

https://cmp.inmobi.com/choice/B-mDacn5U_bef/pixelpoint.tv/choice.js?tag_version=V3&_=1719333441372

Request

GET /choice/B-mDacn5U_bef/pixelpoint.tv/choice.js?tag_version=V3&_=1719333441372 HTTP/2.0
host: cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript
last-modified: Tue, 04 Jun 2024 07:30:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
cache-control: max-age=900
date: Tue, 25 Jun 2024 16:36:48 GMT
etag: W/"e5ca196e3c4acd5410c88f09cf4b9951"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ba7789e51500bb7b69a0c33a90aec410.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: JEK6XqTMdv2RTpd9NgRCILttaxAhyUXcL8Vm0lnd5_etUZwCIhX1yw==
age: 35
GET

https://cmp.inmobi.com/tcfv2/53/cmp2.js?referer=pixelpoint.tv

Request

GET /tcfv2/53/cmp2.js?referer=pixelpoint.tv HTTP/2.0
host: cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
cache-control: max-age=172800
date: Tue, 25 Jun 2024 12:31:29 GMT
last-modified: Mon, 03 Jun 2024 09:45:41 GMT
etag: W/"db6c513b7a9d1bf38b36047c185655a2"
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ba7789e51500bb7b69a0c33a90aec410.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: tyjU689Ulh4h09hkTpN4n-dcgCQ06REi18gyau4uTWsveO74tWm0Ww==
age: 14754
GET

https://cmp.inmobi.com/tcfv2/53/cmp2ui-en.js

Request

GET /tcfv2/53/cmp2ui-en.js HTTP/2.0
host: cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
cache-control: max-age=172800
date: Tue, 25 Jun 2024 12:31:25 GMT
last-modified: Mon, 03 Jun 2024 09:45:44 GMT
etag: W/"991fbc793ffbdf15116c0458b5a2027a"
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ba7789e51500bb7b69a0c33a90aec410.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: mYvcETtkCTiNT1DUnWK1f1zDQb_-S5fubDAkSbS1P0RGDjdhlWVG9g==
age: 14759
GET

https://cmp.inmobi.com/choice/B-mDacn5U_bef/pixelpoint.tv/choice.js?tag_version=V3&_=1719333447387

Request

GET /choice/B-mDacn5U_bef/pixelpoint.tv/choice.js?tag_version=V3&_=1719333447387 HTTP/2.0
host: cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript
last-modified: Tue, 04 Jun 2024 07:30:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
cache-control: max-age=900
date: Tue, 25 Jun 2024 16:36:48 GMT
etag: W/"e5ca196e3c4acd5410c88f09cf4b9951"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ba7789e51500bb7b69a0c33a90aec410.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: CoAhK3LOAxUvFyv60wr71i9VlpmBhDjo5hptcKpPfUjmq9pm8_J79A==
age: 41
GET

https://platform.twitter.com/widgets.js

Request

GET /widgets.js HTTP/1.1
Host: platform.twitter.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://pixelpoint.tv/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 634
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Tue, 25 Jun 2024 16:37:22 GMT
Etag: "824beb891744db98ccbd3a456e59e0f7+gzip"
Last-Modified: Mon, 11 Dec 2023 17:20:28 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (frb/67BD)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 27597
GET

https://platform.twitter.com/widgets/widget_iframe.2f70fb173b9000da126c79afe2098f02.html?origin=https%3A%2F%2Fpixelpoint.tv

Request

GET /widgets/widget_iframe.2f70fb173b9000da126c79afe2098f02.html?origin=https%3A%2F%2Fpixelpoint.tv HTTP/1.1
Host: platform.twitter.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://pixelpoint.tv/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 7991112
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Tue, 25 Jun 2024 16:37:23 GMT
Etag: "81267302efdfb3e4524a22631a8fc99e+gzip"
Last-Modified: Mon, 11 Dec 2023 17:19:49 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (frb/67BA)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105429
GET

https://platform.twitter.com/js/button.856debeac157d9669cf51e73a08fbc93.js

Request

GET /js/button.856debeac157d9669cf51e73a08fbc93.js HTTP/1.1
Host: platform.twitter.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://pixelpoint.tv/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 8001081
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Tue, 25 Jun 2024 16:37:23 GMT
Etag: "fdf02dd038ed38dbf3c240d56262af0c+gzip"
Last-Modified: Mon, 11 Dec 2023 17:19:47 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (frb/67BD)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2620
GET

https://platform.twitter.com/widgets/follow_button.2f70fb173b9000da126c79afe2098f02.en.html

Request

GET /widgets/follow_button.2f70fb173b9000da126c79afe2098f02.en.html HTTP/1.1
Host: platform.twitter.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://pixelpoint.tv/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 8001081
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Tue, 25 Jun 2024 16:37:24 GMT
Etag: "bf4801052efb5f8f12057c849e9b590f+gzip"
Last-Modified: Mon, 11 Dec 2023 17:19:47 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (frb/67BD)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13712
GET

https://platform.twitter.com/widgets/tweet_button.2f70fb173b9000da126c79afe2098f02.en.html

Request

GET /widgets/tweet_button.2f70fb173b9000da126c79afe2098f02.en.html HTTP/1.1
Host: platform.twitter.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://pixelpoint.tv/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 8001058
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Tue, 25 Jun 2024 16:37:29 GMT
Etag: "e29e65db7bf0a096587728e1faacfd9c+gzip"
Last-Modified: Mon, 11 Dec 2023 17:19:48 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (frb/67BD)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 12332
DNS

www.googletagservices.com

Request

www.googletagservices.com

IN A

Response

www.googletagservices.com

IN A

142.250.187.226
DNS

ka-f.fontawesome.com

Request

ka-f.fontawesome.com

IN A

Response

ka-f.fontawesome.com

IN CNAME

ka-f.fontawesome.com.cdn.cloudflare.net

ka-f.fontawesome.com.cdn.cloudflare.net

IN A

104.21.26.223

ka-f.fontawesome.com.cdn.cloudflare.net

IN A

172.67.139.119
DNS

cd.connatix.com

Request

cd.connatix.com

IN A

Response

cd.connatix.com

IN CNAME

cd.connatix.com.cdn.cloudflare.net

cd.connatix.com.cdn.cloudflare.net

IN A

104.18.41.104

cd.connatix.com.cdn.cloudflare.net

IN A

172.64.146.152
GET

https://ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=34088199f7

Request

GET /releases/v5.15.4/css/free.min.css?token=34088199f7 HTTP/2.0
host: ka-f.fontawesome.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:22 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6c20cfa39bd3094f7e3b4598e3d2c402.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: 2fCCRi8mGnzFtPJHMkTwtKkO-Q3ap26G-ADyB4o-iRjH5hQHGZNy-A==
age: 8192768
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=82sfBSzKI0oZJDMoH39KDjj%2BSkqRB%2Byavfq1%2BK1WqT7H3UlLKM1l8zaiUw%2BDJ%2BYLYCBiBmRFzlipu%2BSY7vHp79aAAk7%2BqXtgvRFOSr5zzoFzq7INPkuh7g%2F5PKsuWEdQtH%2FQpBAzyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 899661c20b5b94ae-LHR
alt-svc: h3=":443"; ma=86400
GET

https://www.googletagservices.com/tag/js/gpt.js?_=1719333441373

Request

GET /tag/js/gpt.js?_=1719333441373 HTTP/2.0
host: www.googletagservices.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://cd.connatix.com/connatix.player.js?cid=b7688636-064d-4865-8581-6a912dd1e8f6

Request

GET /connatix.player.js?cid=b7688636-064d-4865-8581-6a912dd1e8f6 HTTP/2.0
host: cd.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:22 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-headers: x-sec-ch-ua-platform-version, x-sec-ch-ua-full-version-list, x-sec-ch-ua-arch, x-sec-ch-ua-bitness, x-sec-ch-ua-model
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 899661c24e8a6388-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://img.connatix.com/5f33eab7-e78b-46fe-a089-8fdb12e17385/1_th.jpg?height=270&crop=16:9

Request

GET /5f33eab7-e78b-46fe-a089-8fdb12e17385/1_th.jpg?height=270&crop=16:9 HTTP/2.0
host: img.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: image/webp
content-length: 11188
cf-ray: 899661c45a616388-LHR
cf-cache-status: HIT
accept-ranges: bytes
cache-control: public,max-stale=31536000,stale-while-revalidate=31536000,immutable,max-age=31536000
etag: "cf7IpdpEWtmgGzhZ2k7Rv6tQ2j60eXQd0PhBi7HIZrDQ:1887c9ef9d8234db1898db71595740c3"
last-modified: Sun, 10 Mar 2024 23:14:39 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=49+0 c=0+15 v=2024.3.2 l=11188
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "crop fit mode needs both width and height"
x-content-type-options: nosniff
access-control-allow-headers: range
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 86400
server: cloudflare
alt-svc: h3=":443"; ma=86400
GET

https://img.connatix.com/5f58ff71-7df7-4e28-8908-9a5df15cc41f/1_th.jpg?height=270&crop=16:9

Request

GET /5f58ff71-7df7-4e28-8908-9a5df15cc41f/1_th.jpg?height=270&crop=16:9 HTTP/2.0
host: img.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: image/webp
content-length: 12336
cf-ray: 899661c45a656388-LHR
cf-cache-status: HIT
accept-ranges: bytes
cache-control: public,max-stale=31536000,stale-while-revalidate=31536000,immutable,max-age=31536000
etag: "cfiWEu921Ds5w-a_j27WYM9cY560eXQd0PhBi7HIZrDQ:78d7cf647c4c1826869dceed076b47b9"
last-modified: Tue, 05 Mar 2024 21:20:22 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=26+0 c=1+18 v=2024.3.2 l=12336
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "crop fit mode needs both width and height"
x-content-type-options: nosniff
access-control-allow-headers: range
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 86400
server: cloudflare
alt-svc: h3=":443"; ma=86400
GET

https://img.connatix.com/f1ceb33a-ee5a-4e02-8c12-718058aa74ea/1_th.jpg?height=270&crop=16:9

Request

GET /f1ceb33a-ee5a-4e02-8c12-718058aa74ea/1_th.jpg?height=270&crop=16:9 HTTP/2.0
host: img.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: image/webp
content-length: 25502
cf-ray: 899661c45a666388-LHR
cf-cache-status: HIT
accept-ranges: bytes
cache-control: public,max-stale=31536000,stale-while-revalidate=31536000,immutable,max-age=31536000
etag: "cfWwTpw0nJHD1_oGYGkSVDg0J160eXQd0PhBi7HIZrDQ:742e3cfc1569f75b217619fe63b16632"
last-modified: Wed, 28 Feb 2024 22:01:44 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=27+0 c=1+27 v=2024.3.2 l=25502
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "crop fit mode needs both width and height"
x-content-type-options: nosniff
access-control-allow-headers: range
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 86400
server: cloudflare
alt-svc: h3=":443"; ma=86400
GET

https://img.connatix.com/fdbfdc8e-1571-4cc9-9a76-e88ded376c30/1_th.jpg?height=270&crop=16:9

Request

GET /fdbfdc8e-1571-4cc9-9a76-e88ded376c30/1_th.jpg?height=270&crop=16:9 HTTP/2.0
host: img.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: image/webp
content-length: 16124
cf-ray: 899661c45a6a6388-LHR
cf-cache-status: HIT
accept-ranges: bytes
cache-control: public,max-stale=31536000,stale-while-revalidate=31536000,immutable,max-age=31536000
etag: "cfk20CEQ0xVyPOmHddp__gvbIysZ7-Tzt04sSdBa-5DQ:1762af10b5f9658746cdd195267380d1"
last-modified: Fri, 21 Jun 2024 21:51:28 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=35+0 c=1+19 v=2024.6.0 l=16124
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
access-control-allow-headers: range
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 86400
server: cloudflare
alt-svc: h3=":443"; ma=86400
GET

https://img.connatix.com/56a3d651-a668-4de5-90e8-902a639ce645/1_th.jpg

Request

GET /56a3d651-a668-4de5-90e8-902a639ce645/1_th.jpg HTTP/2.0
host: img.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: image/webp
content-length: 15652
cf-ray: 899661c45a6b6388-LHR
cf-cache-status: HIT
accept-ranges: bytes
cache-control: public,max-stale=31536000,stale-while-revalidate=31536000,immutable,max-age=31536000
etag: "cfQX6DJJ9lc8Yjxi6EyYWYhvhY60eXQd0PhBi7HIZrDQ:112d87506ad0600d819d850106f51ab1"
last-modified: Thu, 15 Feb 2024 22:45:33 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=23+0 c=1+20 v=2024.6.0 l=15652
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "crop fit mode needs both width and height"
x-content-type-options: nosniff
access-control-allow-headers: range
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 86400
server: cloudflare
alt-svc: h3=":443"; ma=86400
GET

https://img.connatix.com/0b24cf43-790c-4130-9feb-d83002ff2c86/1_th.jpg?height=270&crop=16:9

Request

GET /0b24cf43-790c-4130-9feb-d83002ff2c86/1_th.jpg?height=270&crop=16:9 HTTP/2.0
host: img.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: image/jpeg
content-length: 27359
cf-ray: 899661c47a926388-LHR
cf-cache-status: HIT
accept-ranges: bytes
cache-control: public,max-stale=31536000,stale-while-revalidate=31536000,immutable,max-age=31536000
etag: "cfLoqcdmj63Rx0fCCBYTMAU1fn60eXQd0PhBi7HIZrDQ:cd46b715cd10d53840ccbdec99da865e"
last-modified: Wed, 28 Feb 2024 22:01:44 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:0,h2pri
cf-resized: internal=ok/h q=0 n=19+0 c=1+18 v=2024.6.0 l=27359
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
priority: u=1;i=?0,cf-chb=(258;u=3;i=?0 2509;u=5;i=?0 11145;u=6;i=?0)
warning: cf-images 299 "crop fit mode needs both width and height"
warning: cf-images 299 "original is 6037B smaller"
x-content-type-options: nosniff
access-control-allow-headers: range
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 86400
server: cloudflare
alt-svc: h3=":443"; ma=86400
GET

https://img.connatix.com/ebaad8a0-47c1-4296-bc24-6d971457e85b/1_th.jpg?height=270&crop=16:9

Request

GET /ebaad8a0-47c1-4296-bc24-6d971457e85b/1_th.jpg?height=270&crop=16:9 HTTP/2.0
host: img.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: image/webp
content-length: 20490
cf-ray: 899661c45a686388-LHR
cf-cache-status: HIT
accept-ranges: bytes
cache-control: public,max-stale=31536000,stale-while-revalidate=31536000,immutable,max-age=31536000
etag: "cfbSewf8M9gSCQ_RvmOQ2lOtyt60eXQd0PhBi7HIZrDQ:235d08eff1d35b5f7d6db09dd9063e77"
last-modified: Fri, 16 Feb 2024 14:00:16 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=20+0 c=2+21 v=2024.6.0 l=20490
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "crop fit mode needs both width and height"
x-content-type-options: nosniff
access-control-allow-headers: range
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 86400
server: cloudflare
alt-svc: h3=":443"; ma=86400
GET

https://cds.connatix.com/p/503394/elLoader.js

Request

GET /p/503394/elLoader.js HTTP/2.0
host: cds.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: application/javascript
content-length: 1212
x-amz-replication-status: FAILED
last-modified: Tue, 25 Jun 2024 12:38:24 GMT
etag: "3033aa8a4f2d692eb49db48d84b79b53"
content-encoding: br
x-amz-version-id: pE2GF1N8C7gtKhmuAudMTFhc94VCkKuC
cf-cache-status: HIT
expires: Wed, 25 Jun 2025 16:37:23 GMT
cache-control: public,max-stale=31536000,stale-while-revalidate=31536000,immutable,max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: range
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 86400
server: cloudflare
cf-ray: 899661c5ac8c6388-LHR
alt-svc: h3=":443"; ma=86400
GET

https://cks.connatix.com/cks?pid=21&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Amobee&api-tier=1&uid=3314471828681895967

Request

GET /cks?pid=21&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Amobee&api-tier=1&uid=3314471828681895967 HTTP/2.0
host: cks.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cnx_userId=47e9e2b2192a4ec59ceb8e832648c812

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 899661d71de16388-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://cks.connatix.com/cks?pid=6&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=AppNexus&api-tier=1&uid=8159859772855155319=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /cks?pid=6&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=AppNexus&api-tier=1&uid=8159859772855155319=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: cks.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cnx_userId=47e9e2b2192a4ec59ceb8e832648c812

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 899661d71dd46388-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://cks.connatix.com/cks?pid=9&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Centro&api-tier=1&uid=686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /cks?pid=9&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Centro&api-tier=1&uid=686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: cks.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cnx_userId=47e9e2b2192a4ec59ceb8e832648c812

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 899661d71dd86388-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://cks.connatix.com/cks?pid=19&uid=84daa6ca-0538-48d1-9010-ae8e49c9a74c&ttl=1721925446

Request

GET /cks?pid=19&uid=84daa6ca-0538-48d1-9010-ae8e49c9a74c&ttl=1721925446 HTTP/2.0
host: cks.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cnx_userId=47e9e2b2192a4ec59ceb8e832648c812

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 899661d71dd66388-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://cks.connatix.com/cks?gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&pid=17&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Index&api-tier=1&uid=ZnrxlrmqPq8AAFKyAdC9GwAA%264403

Request

GET /cks?gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&pid=17&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Index&api-tier=1&uid=ZnrxlrmqPq8AAFKyAdC9GwAA%264403 HTTP/2.0
host: cks.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cnx_userId=47e9e2b2192a4ec59ceb8e832648c812

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 899661d71de26388-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://cks.connatix.com/cks?pid=28&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Crimtan&api-tier=1&uid=c230be8ec37b4e1584f77677cd0bc943

Request

GET /cks?pid=28&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Crimtan&api-tier=1&uid=c230be8ec37b4e1584f77677cd0bc943 HTTP/2.0
host: cks.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cnx_userId=47e9e2b2192a4ec59ceb8e832648c812

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 899661d71dda6388-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://cks.connatix.com/cks?pid=46&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=AdForm&api-tier=1&uid=6640692441033083723

Request

GET /cks?pid=46&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=AdForm&api-tier=1&uid=6640692441033083723 HTTP/2.0
host: cks.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cnx_userId=47e9e2b2192a4ec59ceb8e832648c812

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 899661d71ddf6388-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://cks.connatix.com/cks?pid=15&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Beeswax&api-tier=1&uid=AAD5Jk7M9eMAABdSEix9nA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /cks?pid=15&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Beeswax&api-tier=1&uid=AAD5Jk7M9eMAABdSEix9nA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: cks.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cnx_userId=47e9e2b2192a4ec59ceb8e832648c812

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 899661d71de56388-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://cks.connatix.com/cks?pid=13&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=PulsePoint&api-tier=1&uid=YZ9IXur4Q8di

Request

GET /cks?pid=13&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=PulsePoint&api-tier=1&uid=YZ9IXur4Q8di HTTP/2.0
host: cks.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cnx_userId=47e9e2b2192a4ec59ceb8e832648c812

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 899661d71dde6388-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://ck.connatix.com/cks?pid=11&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /cks?pid=11&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: ck.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cnx_userId=47e9e2b2192a4ec59ceb8e832648c812

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:37:28 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
location: https://capi.connatix.com/core/us?DemandPartner=11&DemandPartnerUserId=LXUMMYH8-18-IISD&UserId=47e9e2b2192a4ec59ceb8e832648c812
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
server: cloudflare
cf-ray: 899661e358e16388-LHR
alt-svc: h3=":443"; ma=86400
DNS

241.38.21.107.in-addr.arpa

Request

241.38.21.107.in-addr.arpa

IN PTR

Response

241.38.21.107.in-addr.arpa

IN PTR

ec2-107-21-38-241 compute-1 amazonawscom
DNS

74.204.58.216.in-addr.arpa

Request

74.204.58.216.in-addr.arpa

IN PTR

Response

74.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f741e100net

74.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f10�H

74.204.58.216.in-addr.arpa

IN PTR

lhr48s49-in-f10�H
DNS

188.147.64.172.in-addr.arpa

Request

188.147.64.172.in-addr.arpa

IN PTR

Response
DNS

72.169.217.172.in-addr.arpa

Request

72.169.217.172.in-addr.arpa

IN PTR

Response

72.169.217.172.in-addr.arpa

IN PTR

lhr48s09-in-f81e100net
DNS

52.149.222.52.in-addr.arpa

Request

52.149.222.52.in-addr.arpa

IN PTR

Response

52.149.222.52.in-addr.arpa

IN PTR

server-52-222-149-52cdg52r cloudfrontnet
DNS

25.233.229.192.in-addr.arpa

Request

25.233.229.192.in-addr.arpa

IN PTR

Response
DNS

152.21.195.34.in-addr.arpa

Request

152.21.195.34.in-addr.arpa

IN PTR

Response

152.21.195.34.in-addr.arpa

IN PTR

ec2-34-195-21-152 compute-1 amazonawscom
DNS

img.connatix.com

Request

img.connatix.com

IN A

Response

img.connatix.com

IN CNAME

img.connatix.com.cdn.cloudflare.net

img.connatix.com.cdn.cloudflare.net

IN A

104.18.41.104

img.connatix.com.cdn.cloudflare.net

IN A

172.64.146.152
DNS

region1.google-analytics.com

Request

region1.google-analytics.com

IN A

Response

region1.google-analytics.com

IN A

216.239.34.36

region1.google-analytics.com

IN A

216.239.32.36
GET

https://cmp.inmobi.com/geoip

Request

GET /geoip HTTP/2.0
host: cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: CloudFront
date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: application/json
content-length: 48
x-cache: FunctionGeneratedResponse from cloudfront
via: 1.1 5c0a9fbe4f8b2e7835a09c41c52efb12.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: 3q5wD0NHMHKJdECr8VmdmKTFstOL_CFD8afPv63MNhvoSn4fQAeaKw==
access-control-allow-origin: *
access-control-expose-headers: *
GET

https://cmp.inmobi.com/GVL-v2/cmp-list.json

Request

GET /GVL-v2/cmp-list.json HTTP/2.0
host: cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Tue, 25 Jun 2024 12:31:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Tue, 25 Jun 2024 03:00:42 GMT
etag: W/"827669b93a7ac16ce875c2b552f14696"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 5c0a9fbe4f8b2e7835a09c41c52efb12.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: kfpb-1EX6IOAmY5BI5qlBlMB3gFB6bXmZKK87hnjXaVpCrIe_ID-FQ==
age: 14763
GET

https://cmp.inmobi.com/GVL-v3/vendor-list-trimmed-v1.json

Request

GET /GVL-v3/vendor-list-trimmed-v1.json HTTP/2.0
host: cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
access-control-max-age: 3000
cache-control: max-age=86400
date: Tue, 25 Jun 2024 12:31:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Thu, 20 Jun 2024 23:59:19 GMT
etag: W/"b9ef025c1e2e7a8bd49659c0bc0c0816"
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 5c0a9fbe4f8b2e7835a09c41c52efb12.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: GFlXNaZaPHcElSpyHJscBzu2JxEUqsI9-qXuXk83BbS_o9sBd0Nv0w==
age: 14763
GET

https://cmp.inmobi.com/tcfv2/google-atp-list.json

Request

GET /tcfv2/google-atp-list.json HTTP/2.0
host: cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Tue, 25 Jun 2024 09:58:37 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Tue, 25 Jun 2024 03:00:24 GMT
etag: W/"1ec7c43a6ba7c25fb30966aeccbd7ac0"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 5c0a9fbe4f8b2e7835a09c41c52efb12.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: iTtUXCdeLuxKqWyr8oF_7HN47BPT9SR5EHHocEquNwm8kLaepC4NKA==
age: 23927
GET

https://cmp.inmobi.com/google-basic-consent/v1/purposes-en.json

Request

GET /google-basic-consent/v1/purposes-en.json HTTP/2.0
host: cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
access-control-max-age: 3000
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Thu, 29 Feb 2024 13:53:11 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 25 Jun 2024 16:24:11 GMT
cache-control: max-age=900
etag: W/"63eb241f2eff549c61a71fcd388a6d3b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5c0a9fbe4f8b2e7835a09c41c52efb12.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: lkCIyXPYH2C7DGObLYJVcYNesHcW4q34BGcvfy-dmEfI7SKMpo0KLw==
age: 792
GET

https://cmp.inmobi.com/geoip

Request

GET /geoip HTTP/2.0
host: cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: CloudFront
date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: application/json
content-length: 48
x-cache: FunctionGeneratedResponse from cloudfront
via: 1.1 5c0a9fbe4f8b2e7835a09c41c52efb12.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: 4zNYkSZH45nKZlswENguQJC8QyvMIMJ7DAcistR5RKYNwcqi0KFb9w==
access-control-allow-origin: *
access-control-expose-headers: *
GET

https://cmp.inmobi.com/geoip

Request

GET /geoip HTTP/2.0
host: cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: CloudFront
date: Tue, 25 Jun 2024 16:37:28 GMT
content-type: application/json
content-length: 48
x-cache: FunctionGeneratedResponse from cloudfront
via: 1.1 5c0a9fbe4f8b2e7835a09c41c52efb12.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: F-5jTEJFQ9budLF459rDzH1EjAfAxb5nSSmFzmUIEVPTqwaOd0Rvhg==
access-control-allow-origin: *
access-control-expose-headers: *
DNS

cds.connatix.com

Request

cds.connatix.com

IN A

Response

cds.connatix.com

IN CNAME

cds.connatix.com.cdn.cloudflare.net

cds.connatix.com.cdn.cloudflare.net

IN A

104.18.41.104

cds.connatix.com.cdn.cloudflare.net

IN A

172.64.146.152
DNS

securepubads.g.doubleclick.net

Request

securepubads.g.doubleclick.net

IN A

Response

securepubads.g.doubleclick.net

IN A

142.250.200.34
POST

https://region1.google-analytics.com/g/collect?v=2&tid=G-PSJEJGL7PR&gtm=45je46j0v9169560408za200&_p=1719333441493&gcd=13l3l3l3l1&npa=0&dma=0&tcfd=10000&tag_exp=0&cid=455681644.1719333442&ul=en-us&sr=1280x720&lps=1&uaa=x86&uab=64&uafvl=Chromium%3B106.0.5249.119%7CGoogle%2520Chrome%3B106.0.5249.119%7CNot%253BA%253DBrand%3B99.0.0.0&uamb=0&uam=&uap=Windows&uapv=4.0.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1719333442&sct=1&seg=0&dl=https%3A%2F%2Fpixelpoint.tv%2F&dr=https%3A%2F%2Fwww.google.com%2F&dt=PixelPointTV%20-%20Watch%20Your%20Favorite%20Content%2C%20Engage%20with%20Content%20Creators%2C%20and%20More&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1945&_z=fetch

Request

POST /g/collect?v=2&tid=G-PSJEJGL7PR&gtm=45je46j0v9169560408za200&_p=1719333441493&gcd=13l3l3l3l1&npa=0&dma=0&tcfd=10000&tag_exp=0&cid=455681644.1719333442&ul=en-us&sr=1280x720&lps=1&uaa=x86&uab=64&uafvl=Chromium%3B106.0.5249.119%7CGoogle%2520Chrome%3B106.0.5249.119%7CNot%253BA%253DBrand%3B99.0.0.0&uamb=0&uam=&uap=Windows&uapv=4.0.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1719333442&sct=1&seg=0&dl=https%3A%2F%2Fpixelpoint.tv%2F&dr=https%3A%2F%2Fwww.google.com%2F&dt=PixelPointTV%20-%20Watch%20Your%20Favorite%20Content%2C%20Engage%20with%20Content%20Creators%2C%20and%20More&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1945&_z=fetch HTTP/2.0
host: region1.google-analytics.com
content-length: 0
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://securepubads.g.doubleclick.net/pagead/managed/js/gpt/m202406180101/pubads_impl.js

Request

GET /pagead/managed/js/gpt/m202406180101/pubads_impl.js HTTP/2.0
host: securepubads.g.doubleclick.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: IDE=AHWqTUl03jq_bthyhifBEZ9fDiJgS8pVBm-t1LkXePh6iL5-8jWB4MLlzWgmuhJ_HnI
DNS

syndication.twitter.com

Request

syndication.twitter.com

IN A

Response

syndication.twitter.com

IN A

104.244.42.200
GET

https://syndication.twitter.com/settings?session_id=df55396fcfff04239ca2e9b207fed4d847e07668

Request

GET /settings?session_id=df55396fcfff04239ca2e9b207fed4d847e07668 HTTP/2.0
host: syndication.twitter.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://platform.twitter.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://platform.twitter.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
perf: 7402827104
vary: Origin
server: tsa_f
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Tue, 25 Jun 2024 16:37:23 GMT
content-length: 337
content-encoding: gzip
x-transaction-id: e7e15c915a7ab05a
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 115
x-connection-hash: 2ab3515ac0a3c7d4397ded8b1aa8f697fbbe555ba1ad3f4ebf8afa9c94b2c312
GET

https://syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fpixelpoint.tv%2F%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22pixelpoint.tv%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1719333442992%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=df55396fcfff04239ca2e9b207fed4d847e07668

Request

GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fpixelpoint.tv%2F%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22pixelpoint.tv%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1719333442992%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=df55396fcfff04239ca2e9b207fed4d847e07668 HTTP/2.0
host: syndication.twitter.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
perf: 7402827104
vary: Origin
server: tsa_f
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Tue, 25 Jun 2024 16:37:24 GMT
content-length: 43
x-transaction-id: a4ec23b6539d4973
strict-transport-security: max-age=631138519
x-response-time: 116
x-connection-hash: 2ab3515ac0a3c7d4397ded8b1aa8f697fbbe555ba1ad3f4ebf8afa9c94b2c312
GET

https://syndication.twitter.com/settings?session_id=333895ee068ad0fee2eb58e3ab1d999208b75c55

Request

GET /settings?session_id=333895ee068ad0fee2eb58e3ab1d999208b75c55 HTTP/2.0
host: syndication.twitter.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://platform.twitter.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://platform.twitter.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:27 GMT
perf: 7402827104
vary: Origin
server: tsa_f
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Tue, 25 Jun 2024 16:37:28 GMT
content-length: 337
content-encoding: gzip
x-transaction-id: 8d7ebc6246829e91
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 108
x-connection-hash: 2ab3515ac0a3c7d4397ded8b1aa8f697fbbe555ba1ad3f4ebf8afa9c94b2c312
GET

https://syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fpixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22pixelpoint.tv%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1719333448032%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=333895ee068ad0fee2eb58e3ab1d999208b75c55

Request

GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fpixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22pixelpoint.tv%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1719333448032%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=333895ee068ad0fee2eb58e3ab1d999208b75c55 HTTP/2.0
host: syndication.twitter.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:28 GMT
perf: 7402827104
vary: Origin
server: tsa_f
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Tue, 25 Jun 2024 16:37:29 GMT
content-length: 43
x-transaction-id: deb31bb7e936d96a
strict-transport-security: max-age=631138519
x-response-time: 108
x-connection-hash: 2ab3515ac0a3c7d4397ded8b1aa8f697fbbe555ba1ad3f4ebf8afa9c94b2c312
GET

https://syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fpixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22pixelpoint.tv%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1719333448033%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=333895ee068ad0fee2eb58e3ab1d999208b75c55

Request

GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fpixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22pixelpoint.tv%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1719333448033%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=333895ee068ad0fee2eb58e3ab1d999208b75c55 HTTP/2.0
host: syndication.twitter.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:28 GMT
perf: 7402827104
vary: Origin
server: tsa_f
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Tue, 25 Jun 2024 16:37:29 GMT
content-length: 43
x-transaction-id: 8544ccdc54449cb9
strict-transport-security: max-age=631138519
x-response-time: 109
x-connection-hash: 2ab3515ac0a3c7d4397ded8b1aa8f697fbbe555ba1ad3f4ebf8afa9c94b2c312
GET

https://syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fpixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22pixelpoint.tv%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1719333448713%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=333895ee068ad0fee2eb58e3ab1d999208b75c55

Request

GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fpixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22pixelpoint.tv%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1719333448713%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=333895ee068ad0fee2eb58e3ab1d999208b75c55 HTTP/2.0
host: syndication.twitter.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:29 GMT
perf: 7402827104
vary: Origin
server: tsa_f
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Tue, 25 Jun 2024 16:37:29 GMT
content-length: 43
x-transaction-id: e2f62d3e228139ad
strict-transport-security: max-age=631138519
x-response-time: 107
x-connection-hash: 2ab3515ac0a3c7d4397ded8b1aa8f697fbbe555ba1ad3f4ebf8afa9c94b2c312
GET

https://syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fpixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22pixelpoint.tv%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1719333451063%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=333895ee068ad0fee2eb58e3ab1d999208b75c55

Request

GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fpixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22pixelpoint.tv%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1719333451063%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=333895ee068ad0fee2eb58e3ab1d999208b75c55 HTTP/2.0
host: syndication.twitter.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
perf: 7402827104
vary: Origin
server: tsa_f
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Tue, 25 Jun 2024 16:37:32 GMT
content-length: 43
x-transaction-id: e04a8cd4c2ed3f96
strict-transport-security: max-age=631138519
x-response-time: 115
x-connection-hash: 2ab3515ac0a3c7d4397ded8b1aa8f697fbbe555ba1ad3f4ebf8afa9c94b2c312
DNS

api.cmp.inmobi.com

Request

api.cmp.inmobi.com

IN A

Response

api.cmp.inmobi.com

IN CNAME

cmp-api-prod.inmobi-choice.io

cmp-api-prod.inmobi-choice.io

IN CNAME

choice-apis-prod-2120274730.eu-central-1.elb.amazonaws.com

choice-apis-prod-2120274730.eu-central-1.elb.amazonaws.com

IN A

18.157.128.118

choice-apis-prod-2120274730.eu-central-1.elb.amazonaws.com

IN A

18.184.161.125

choice-apis-prod-2120274730.eu-central-1.elb.amazonaws.com

IN A

52.58.158.46
GET

https://api.cmp.inmobi.com/?log=%7B%22accountId%22%3A%22B-mDacn5U_bef%22%2C%22domain%22%3A%22pixelpoint.tv%22%2C%22publisher%22%3A%22Pixelpoint%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.53%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22%2F5ON6Ww8dGofq%2F40PH1xIw%22%2C%22tagVersion%22%3A%22V3%22%2C%22gvlVersion%22%3A3%2C%22clientTimestamp%22%3A1719333442740%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-wf3j3d4yrgzc9gboipxj%22%7D

Request

GET /?log=%7B%22accountId%22%3A%22B-mDacn5U_bef%22%2C%22domain%22%3A%22pixelpoint.tv%22%2C%22publisher%22%3A%22Pixelpoint%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.53%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22%2F5ON6Ww8dGofq%2F40PH1xIw%22%2C%22tagVersion%22%3A%22V3%22%2C%22gvlVersion%22%3A3%2C%22clientTimestamp%22%3A1719333442740%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-wf3j3d4yrgzc9gboipxj%22%7D HTTP/2.0
host: api.cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
GET

https://api.cmp.inmobi.com/?log=%7B%22accountId%22%3A%22B-mDacn5U_bef%22%2C%22domain%22%3A%22pixelpoint.tv%22%2C%22publisher%22%3A%22Pixelpoint%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.53%22%2C%22displayType%22%3A%22gbc%3Amandatory%22%2C%22configurationHashCode%22%3A%22%2F5ON6Ww8dGofq%2F40PH1xIw%22%2C%22tagVersion%22%3A%22V3%22%2C%22clientTimestamp%22%3A1719333442740%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GBC-smlj3ewilz9381vqs518%22%7D

Request

GET /?log=%7B%22accountId%22%3A%22B-mDacn5U_bef%22%2C%22domain%22%3A%22pixelpoint.tv%22%2C%22publisher%22%3A%22Pixelpoint%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.53%22%2C%22displayType%22%3A%22gbc%3Amandatory%22%2C%22configurationHashCode%22%3A%22%2F5ON6Ww8dGofq%2F40PH1xIw%22%2C%22tagVersion%22%3A%22V3%22%2C%22clientTimestamp%22%3A1719333442740%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GBC-smlj3ewilz9381vqs518%22%7D HTTP/2.0
host: api.cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:23 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
GET

https://api.cmp.inmobi.com/?log=%7B%22userEvents%22%3A%5B%7B%22clientTimestamp%22%3A1719333442740%2C%22event%22%3A%22startOnPage%3AGDPR_0%22%7D%2C%7B%22clientTimestamp%22%3A1719333444776%2C%22event%22%3A%22acceptAll%3Aclick%22%7D%5D%2C%22acceptanceState%22%3A%22All%22%2C%22objectionState%22%3A%22None%22%2C%22tcData%22%3A%22CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA%22%2C%22nonIabConsentData%22%3A%22%22%2C%22clientTimestamp%22%3A1719333444776%2C%22operationType%22%3A%22done%22%2C%22sessionId%22%3A%22GDPR-wf3j3d4yrgzc9gboipxj%22%7D

Request

GET /?log=%7B%22userEvents%22%3A%5B%7B%22clientTimestamp%22%3A1719333442740%2C%22event%22%3A%22startOnPage%3AGDPR_0%22%7D%2C%7B%22clientTimestamp%22%3A1719333444776%2C%22event%22%3A%22acceptAll%3Aclick%22%7D%5D%2C%22acceptanceState%22%3A%22All%22%2C%22objectionState%22%3A%22None%22%2C%22tcData%22%3A%22CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA%22%2C%22nonIabConsentData%22%3A%22%22%2C%22clientTimestamp%22%3A1719333444776%2C%22operationType%22%3A%22done%22%2C%22sessionId%22%3A%22GDPR-wf3j3d4yrgzc9gboipxj%22%7D HTTP/2.0
host: api.cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:25 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
GET

https://api.cmp.inmobi.com/?log=%7B%22userEvents%22%3A%5B%7B%22clientTimestamp%22%3A1719333442740%2C%22event%22%3A%22startOnPage%3AGDPR_0%22%7D%2C%7B%22clientTimestamp%22%3A1719333444776%2C%22event%22%3A%22acceptAll%3Aclick%22%7D%5D%2C%22acceptanceState%22%3A%22All%22%2C%22gbcData%22%3A%22%7B%5C%221%5C%22%3A%5C%22granted%5C%22%2C%5C%222%5C%22%3A%5C%22granted%5C%22%2C%5C%223%5C%22%3A%5C%22granted%5C%22%2C%5C%224%5C%22%3A%5C%22granted%5C%22%2C%5C%225%5C%22%3A%5C%22granted%5C%22%2C%5C%226%5C%22%3A%5C%22granted%5C%22%2C%5C%227%5C%22%3A%5C%22granted%5C%22%7D%22%2C%22clientTimestamp%22%3A1719333444776%2C%22operationType%22%3A%22done%22%2C%22sessionId%22%3A%22GBC-smlj3ewilz9381vqs518%22%7D

Request

GET /?log=%7B%22userEvents%22%3A%5B%7B%22clientTimestamp%22%3A1719333442740%2C%22event%22%3A%22startOnPage%3AGDPR_0%22%7D%2C%7B%22clientTimestamp%22%3A1719333444776%2C%22event%22%3A%22acceptAll%3Aclick%22%7D%5D%2C%22acceptanceState%22%3A%22All%22%2C%22gbcData%22%3A%22%7B%5C%221%5C%22%3A%5C%22granted%5C%22%2C%5C%222%5C%22%3A%5C%22granted%5C%22%2C%5C%223%5C%22%3A%5C%22granted%5C%22%2C%5C%224%5C%22%3A%5C%22granted%5C%22%2C%5C%225%5C%22%3A%5C%22granted%5C%22%2C%5C%226%5C%22%3A%5C%22granted%5C%22%2C%5C%227%5C%22%3A%5C%22granted%5C%22%7D%22%2C%22clientTimestamp%22%3A1719333444776%2C%22operationType%22%3A%22done%22%2C%22sessionId%22%3A%22GBC-smlj3ewilz9381vqs518%22%7D HTTP/2.0
host: api.cmp.inmobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:25 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
DNS

226.187.250.142.in-addr.arpa

Request

226.187.250.142.in-addr.arpa

IN PTR

Response

226.187.250.142.in-addr.arpa

IN PTR

lhr25s34-in-f21e100net
DNS

223.26.21.104.in-addr.arpa

Request

223.26.21.104.in-addr.arpa

IN PTR

Response
DNS

36.34.239.216.in-addr.arpa

Request

36.34.239.216.in-addr.arpa

IN PTR

Response
DNS

34.200.250.142.in-addr.arpa

Request

34.200.250.142.in-addr.arpa

IN PTR

Response

34.200.250.142.in-addr.arpa

IN PTR

lhr48s30-in-f21e100net
DNS

twitter.com

Request

twitter.com

IN A

Response

twitter.com

IN A

104.244.42.129

twitter.com

IN A

104.244.42.193

twitter.com

IN A

104.244.42.1

twitter.com

IN A

104.244.42.65
DNS

pl.connatix.com

Request

pl.connatix.com

IN A

Response

pl.connatix.com

IN CNAME

pl.connatix.com.cdn.cloudflare.net

pl.connatix.com.cdn.cloudflare.net

IN A

172.64.146.152

pl.connatix.com.cdn.cloudflare.net

IN A

104.18.41.104
DNS

ins.connatix.com

Request

ins.connatix.com

IN A

Response

ins.connatix.com

IN CNAME

ins.connatix.com.cdn.cloudflare.net

ins.connatix.com.cdn.cloudflare.net

IN A

172.64.146.152

ins.connatix.com.cdn.cloudflare.net

IN A

104.18.41.104
DNS

vid.connatix.com

Request

vid.connatix.com

IN A

Response

vid.connatix.com

IN CNAME

vid.connatix.com.cdn.cloudflare.net

vid.connatix.com.cdn.cloudflare.net

IN A

104.18.41.104

vid.connatix.com.cdn.cloudflare.net

IN A

172.64.146.152
GET

https://ins.connatix.com/60764267-557e-410f-85cb-f102d92ee134/2/insights.bin

Request

GET /60764267-557e-410f-85cb-f102d92ee134/2/insights.bin HTTP/2.0
host: ins.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:24 GMT
content-type: application/x-protobuf
access-control-allow-methods: GET, HEAD
last-modified: Sun, 26 May 2024 15:02:15 GMT
etag: W/"5dab87646127815ef9916df17696157b"
cf-cache-status: HIT
expires: Wed, 25 Jun 2025 16:37:24 GMT
cache-control: public,max-stale=31536000,stale-while-revalidate=31536000,immutable,max-age=31536000
access-control-allow-origin: *
access-control-max-age: 86400
vary: Accept-Encoding
server: cloudflare
cf-ray: 899661cbdbae23c6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://ins.connatix.com/3525daa36fcfe4ad60ec02258d6e663e/insights.bin

Request

GET /3525daa36fcfe4ad60ec02258d6e663e/insights.bin HTTP/2.0
host: ins.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:24 GMT
content-type: application/x-protobuf
access-control-allow-methods: GET, HEAD
last-modified: Tue, 30 Apr 2024 09:57:01 GMT
etag: W/"a592c104b7e60b695fe940291dee10dd"
cf-cache-status: HIT
expires: Wed, 25 Jun 2025 16:37:24 GMT
cache-control: public,max-stale=31536000,stale-while-revalidate=31536000,immutable,max-age=31536000
access-control-allow-origin: *
access-control-max-age: 86400
vary: Accept-Encoding
server: cloudflare
cf-ray: 899661cbdbaa23c6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://vid.connatix.com/pid-4f595373-63cb-474f-b26a-d350bbd537e9/60764267-557e-410f-85cb-f102d92ee134/4d238f89-6d1d-40ee-8e94-898ecc353e16/2_media.bin

Request

GET /pid-4f595373-63cb-474f-b26a-d350bbd537e9/60764267-557e-410f-85cb-f102d92ee134/4d238f89-6d1d-40ee-8e94-898ecc353e16/2_media.bin HTTP/2.0
host: vid.connatix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:24 GMT
content-type: application/x-protobuf
cf-ray: 899661cbdd447200-LHR
cf-cache-status: HIT
cache-control: public,max-stale=31536000,stale-while-revalidate=31536000,immutable,max-age=31536000
etag: W/"d93307570fb0223c4322c0366fcd900d"
expires: Wed, 25 Jun 2025 16:37:24 GMT
last-modified: Wed, 19 Jun 2024 15:45:52 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
access-control-allow-headers: range
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 86400
xpid: 4f595373-63cb-474f-b26a-d350bbd537e9
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST

https://pl.connatix.com/

Request

POST / HTTP/2.0
host: pl.connatix.com
content-length: 737
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 202

date: Tue, 25 Jun 2024 16:37:24 GMT
content-type: application/json
content-length: 2
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
accept-encoding: identity,gzip,x-gzip,deflate,x-deflate,zstd
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 899661cbdb2b76ba-LHR
alt-svc: h3=":443"; ma=86400
DNS

imasdk.googleapis.com

Request

imasdk.googleapis.com

IN A

Response

imasdk.googleapis.com

IN A

142.250.187.202
DNS

onetag-sys.com

Request

onetag-sys.com

IN A

Response

onetag-sys.com

IN A

51.89.9.252

onetag-sys.com

IN A

51.75.86.98

onetag-sys.com

IN A

51.89.9.253

onetag-sys.com

IN A

51.89.9.251

onetag-sys.com

IN A

51.38.120.206

onetag-sys.com

IN A

51.89.9.254
DNS

vast.aniview.com

Request

vast.aniview.com

IN A

Response

vast.aniview.com

IN CNAME

go.aniview.com.edgekey.net

go.aniview.com.edgekey.net

IN CNAME

e11385.dscd.akamaiedge.net

e11385.dscd.akamaiedge.net

IN A

2.21.189.169
GET

https://imasdk.googleapis.com/js/sdkloader/ima3.js

Request

GET /js/sdkloader/ima3.js HTTP/2.0
host: imasdk.googleapis.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

c.amazon-adsystem.com

Request

c.amazon-adsystem.com

IN A

Response

c.amazon-adsystem.com

IN CNAME

d1ykf07e75w7ss.cloudfront.net

d1ykf07e75w7ss.cloudfront.net

IN A

52.222.145.16
GET

https://onetag-sys.com/vast/5a0ab1005419176/?placement_id=242544436&placement_type=1&encoded_location_url=pixelpoint.tv%2F&encoded_referrer_url=pixelpoint.tv%2F&player_width=276&player_height=155&muted=0&autoplay=1&vpaid_supported=1&gdpr_consent_string=null&usprivacy_consent_string=

Request

GET /vast/5a0ab1005419176/?placement_id=242544436&placement_type=1&encoded_location_url=pixelpoint.tv%2F&encoded_referrer_url=pixelpoint.tv%2F&player_width=276&player_height=155&muted=0&autoplay=1&vpaid_supported=1&gdpr_consent_string=null&usprivacy_consent_string= HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

access-control-allow-origin: https://pixelpoint.tv
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/xml;charset=UTF-8
content-encoding: gzip
content-length: 80
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/usync/?pubId=57e618150c70d90&gdpr=1&gdpr_consent=null&us_privacy=1---

Request

GET /usync/?pubId=57e618150c70d90&gdpr=1&gdpr_consent=null&us_privacy=1--- HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/vast/5a0ab1005419176/?placement_id=242544436&placement_type=1&encoded_location_url=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&encoded_referrer_url=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&player_width=897&player_height=505&muted=0&autoplay=1&vpaid_supported=1&gdpr_consent_string=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&usprivacy_consent_string=

Request

GET /vast/5a0ab1005419176/?placement_id=242544436&placement_type=1&encoded_location_url=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&encoded_referrer_url=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&player_width=897&player_height=505&muted=0&autoplay=1&vpaid_supported=1&gdpr_consent_string=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&usprivacy_consent_string= HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

access-control-allow-origin: https://pixelpoint.tv
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/xml;charset=UTF-8
content-encoding: gzip
content-length: 80
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?int_id=113&callback=https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Donetag.com%26id%3D%24%7BUSER_TOKEN%7D&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /match/?int_id=113&callback=https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Donetag.com%26id%3D%24%7BUSER_TOKEN%7D&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/usync/?pubId=69f48c2160c8113&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /usync/?pubId=69f48c2160c8113&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://cs-tam.yellowblue.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:55:48; domain=onetag-sys.com; SameSite=None; Secure
content-type: text/html
cache-control: no-transform, no-cache
content-encoding: gzip
content-length: 1521
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?int_id=106&redir=1&ot_initiated=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /match/?int_id=106&redir=1&ot_initiated=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/usync/?pubId=69f48c2160c8113&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Response

HTTP/2.0 302

cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:55:51; domain=onetag-sys.com; SameSite=None; Secure;
location: https://cm.g.doubleclick.net/pixel?google_nid=one_tag&google_hm=AAABkFBCfeLAphM7ojXbvOECiMWBkd2ZR1Y-Lg&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?int_id=113&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&callback=https%3A%2F%2Fs.amazon-adsystem.com%2Fecm3%3Fex%3Donetag.com%26id%3D%24%7BUSER_TOKEN%7D&ot_initiated=1

Request

GET /match/?int_id=113&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&callback=https%3A%2F%2Fs.amazon-adsystem.com%2Fecm3%3Fex%3Donetag.com%26id%3D%24%7BUSER_TOKEN%7D&ot_initiated=1 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/usync/?pubId=69f48c2160c8113&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Response

HTTP/2.0 302

cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:55:51; domain=onetag-sys.com; SameSite=None; Secure;
location: https://s.amazon-adsystem.com/ecm3?ex=onetag.com&id=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?int_id=2&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /match/?int_id=2&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Response

HTTP/2.0 200

cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:56:00; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?int_id=3&uid=c8c7976584f14fb4448a4ab62824b11&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /match/?int_id=3&uid=c8c7976584f14fb4448a4ab62824b11&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Response

HTTP/2.0 200

cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:55:51; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?int_id=98&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&uid=8159859772855155319

Request

GET /match/?int_id=98&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&uid=8159859772855155319 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Response

HTTP/2.0 200

cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:55:49; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?int_id=114&gdpr=${GDPR}&gdpr_consent=${GDPR_STRING}&uid=6F33541D-0234-4D12-A971-323BE606F1A8

Request

GET /match/?int_id=114&gdpr=${GDPR}&gdpr_consent=${GDPR_STRING}&uid=6F33541D-0234-4D12-A971-323BE606F1A8 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Response

HTTP/2.0 200

cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:55:51; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?int_id=106&google_gid=CAESEDVar8gOL3I8aVoQOZ1onvI&google_cver=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /match/?int_id=106&google_gid=CAESEDVar8gOL3I8aVoQOZ1onvI&google_cver=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Response

HTTP/2.0 200

cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:55:49; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?int_id=107&uid=4052082643997295311

Request

GET /match/?int_id=107&uid=4052082643997295311 HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Response

HTTP/2.0 200

cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:55:51; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&int_id=168&uid=OPU7d3f53a5e1994323b156921d1da1551d

Request

GET /match/?gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&int_id=168&uid=OPU7d3f53a5e1994323b156921d1da1551d HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Response

HTTP/2.0 200

cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:55:51; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?int_id=30&uid=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&us_privacy=

Request

GET /match/?int_id=30&uid=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&us_privacy= HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Response

HTTP/2.0 200

cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:55:51; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://onetag-sys.com/match/?int_id=1&uid=f689667a-f1c9-4200-9125-af04e7ae017d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /match/?int_id=1&uid=f689667a-f1c9-4200-9125-af04e7ae017d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: onetag-sys.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Response

HTTP/2.0 200

cache-control: no-transform, no-cache
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
set-cookie: OTP=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4; path=/; expires=Sat, 26 Jul 2025 08:55:51; domain=onetag-sys.com; SameSite=None; Secure;
content-length: 0
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
GET

https://c.amazon-adsystem.com/aax2/apstag.js

Request

GET /aax2/apstag.js HTTP/2.0
host: c.amazon-adsystem.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI
cookie: ad-privacy=0

Response

HTTP/2.0 200

content-type: application/javascript
date: Tue, 25 Jun 2024 15:56:17 GMT
last-modified: Mon, 24 Jun 2024 18:51:06 GMT
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 df3b3b9f4fa0f79195c56a91cf242364.cloudfront.net (CloudFront), 1.1 5c0a9fbe4f8b2e7835a09c41c52efb12.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA60-P1
etag: W/"502747a8cb0b7a6c67daf1bf3f761588"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: KQNal_OKGW9087jbd2K2Q8RjeXBr6uCcwu9JGouiZuaWih7Y7T_kKw==
age: 2468
GET

https://c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fpixelpoint.tv&pubid=9927c109-8a15-4b15-a23d-3b374dae661b

Request

GET /cdn/prod/config?src=600&u=https%3A%2F%2Fpixelpoint.tv&pubid=9927c109-8a15-4b15-a23d-3b374dae661b HTTP/2.0
host: c.amazon-adsystem.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI
cookie: ad-privacy=0

Response

HTTP/2.0 200

content-type: application/json;charset=UTF-8
content-length: 488
access-control-allow-origin: https://pixelpoint.tv
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Tue, 25 Jun 2024 14:43:14 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 5c0a9fbe4f8b2e7835a09c41c52efb12.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: U8CvkvC45ajfC3ecRzl4d2-2EKGqZQpHKvte0sA7qtR2gqIlmAZ8Sw==
age: 6850
GET

https://c.amazon-adsystem.com/aax2/apstag.js

Request

GET /aax2/apstag.js HTTP/2.0
host: c.amazon-adsystem.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI
cookie: ad-privacy=0

Response

HTTP/2.0 200

content-type: application/javascript
date: Tue, 25 Jun 2024 15:56:17 GMT
last-modified: Mon, 24 Jun 2024 18:51:06 GMT
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 df3b3b9f4fa0f79195c56a91cf242364.cloudfront.net (CloudFront), 1.1 5c0a9fbe4f8b2e7835a09c41c52efb12.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA60-P1
etag: W/"502747a8cb0b7a6c67daf1bf3f761588"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: 0FCaJTVgPyYDMIUiq7ljwV8Qa_RVlP1BEFlu37unl5DMrV_rRb92Jw==
age: 2470
GET

https://c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fcds.connatix.com&pubid=1ad7261b-91ea-4b6f-b9e9-b83522205b75

Request

GET /cdn/prod/config?src=600&u=https%3A%2F%2Fcds.connatix.com&pubid=1ad7261b-91ea-4b6f-b9e9-b83522205b75 HTTP/2.0
host: c.amazon-adsystem.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI
cookie: ad-privacy=0

Response

HTTP/2.0 200

content-type: application/json;charset=UTF-8
content-length: 4094
access-control-allow-origin: https://cds.connatix.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Tue, 25 Jun 2024 16:37:26 GMT
server: Server
x-cache: Miss from cloudfront
via: 1.1 5c0a9fbe4f8b2e7835a09c41c52efb12.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: a48IBsWKqGZgIseDajFsRZeAEm2v_CQsigsuVFys4DS1SCHy6TUONA==
DNS

118.128.157.18.in-addr.arpa

Request

118.128.157.18.in-addr.arpa

IN PTR

Response

118.128.157.18.in-addr.arpa

IN PTR

ec2-18-157-128-118eu-central-1compute amazonawscom
DNS

152.146.64.172.in-addr.arpa

Request

152.146.64.172.in-addr.arpa

IN PTR

Response
DNS

202.187.250.142.in-addr.arpa

Request

202.187.250.142.in-addr.arpa

IN PTR

Response

202.187.250.142.in-addr.arpa

IN PTR

lhr25s33-in-f101e100net
DNS

252.9.89.51.in-addr.arpa

Request

252.9.89.51.in-addr.arpa

IN PTR

Response

252.9.89.51.in-addr.arpa

IN PTR

ip252 ip-51-89-9eu
DNS

s0.2mdn.net

Request

s0.2mdn.net

IN A

Response

s0.2mdn.net

IN A

216.58.204.70
GET

https://s0.2mdn.net/instream/video/client.js

Request

GET /instream/video/client.js HTTP/2.0
host: s0.2mdn.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js

Request

GET /bao-csm/aps-comm/aps_csm.js HTTP/2.0
host: c.amazon-adsystem.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 29 Feb 2024 02:13:08 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: r5.lR.LJ66XEXzxUUVo7iMemjL_F_GoE
server: AmazonS3
content-encoding: gzip
date: Tue, 25 Jun 2024 05:55:21 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 bfd596aba0de57f83442d2ebd6b268f4.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: n1xpF3VNeS30Jd24PF12ybeSNvQMcFZpq7eoZ_mKg4ojlHGV6V8EXg==
age: 38525
GET

https://c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js

Request

GET /bao-csm/aps-comm/aps_csm.js HTTP/2.0
host: c.amazon-adsystem.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 29 Feb 2024 02:13:08 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: r5.lR.LJ66XEXzxUUVo7iMemjL_F_GoE
server: AmazonS3
content-encoding: gzip
date: Tue, 25 Jun 2024 03:55:26 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 bfd596aba0de57f83442d2ebd6b268f4.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P1
x-amz-cf-id: wuCs56doLT3Qu3RBDvAGPVwfAA_ZwZZCc6AHCGa9fc0O7ycdigpRUQ==
age: 45722
DNS

servedby.grouprvn.com

Request

servedby.grouprvn.com

IN A

Response

servedby.grouprvn.com

IN A

104.21.63.187

servedby.grouprvn.com

IN A

172.67.149.83
DNS

config.aps.amazon-adsystem.com

Request

config.aps.amazon-adsystem.com

IN A

Response

config.aps.amazon-adsystem.com

IN A

52.84.174.6

config.aps.amazon-adsystem.com

IN A

52.84.174.40

config.aps.amazon-adsystem.com

IN A

52.84.174.75

config.aps.amazon-adsystem.com

IN A

52.84.174.60
GET

https://servedby.grouprvn.com/vpaid?channel=1118&cb=db3d4305-bedd-4e56-8771-2f47d2ec60d3&city=%5BCITY%5D&country=%5BCOUNTRY%5D&dnt=0&domain=pixelpoint.tv&full_domain=pixelpoint.tv%2F&gdpr=1&gdpr_consent=null&height=155&ip_address=191.101.209.39&lat=51.5074&lon=-0.1196&os=%5BOS%5D&osv=%5BOSV%5D&schain=1.0,1!connatix.com,520667175065539,1,,,,&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F106.0.0.0%20Safari%2F537.36&us_privacy=&user_id=undefined&viewability=%5BVIEWABILITY%5D&width=276&zip=%5BZIP%5D&language=%5BLANGUAGE%5D&device_id=%5BDEVICE_ID%5D

Request

GET /vpaid?channel=1118&cb=db3d4305-bedd-4e56-8771-2f47d2ec60d3&city=%5BCITY%5D&country=%5BCOUNTRY%5D&dnt=0&domain=pixelpoint.tv&full_domain=pixelpoint.tv%2F&gdpr=1&gdpr_consent=null&height=155&ip_address=191.101.209.39&lat=51.5074&lon=-0.1196&os=%5BOS%5D&osv=%5BOSV%5D&schain=1.0,1!connatix.com,520667175065539,1,,,,&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F106.0.0.0%20Safari%2F537.36&us_privacy=&user_id=undefined&viewability=%5BVIEWABILITY%5D&width=276&zip=%5BZIP%5D&language=%5BLANGUAGE%5D&device_id=%5BDEVICE_ID%5D HTTP/2.0
host: servedby.grouprvn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:25 GMT
content-type: application/xml
content-length: 751
content-encoding: gzip
access-control-allow-credentials: true
access-control-allow-headers: Keep-Alive,User-Agent,Cache-Control,Content-Type,Authorization,X-Requested-With
access-control-allow-methods: HEAD,GET,POST,DELETE,PUT,OPTIONS,INDEX
access-control-allow-origin: https://pixelpoint.tv
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q7ELbON4aOTz5TIvAW8MC9ugnt3Vq%2Bt7wYkIG7uYfvQ8hzS8fKaUBfztspIAzNoP4d3ZPkBug8hikqxHHxMTAoE9G4LljZp%2F4kZ53iYRSMJiDiCcAFFWNRU9lMVuKlH%2FMH%2BP%2F8sGAGc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 899661d109006545-LHR
alt-svc: h3=":443"; ma=86400
GET

https://config.aps.amazon-adsystem.com/configs/9927c109-8a15-4b15-a23d-3b374dae661b

Request

GET /configs/9927c109-8a15-4b15-a23d-3b374dae661b HTTP/2.0
host: config.aps.amazon-adsystem.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI
cookie: ad-privacy=0

Response

HTTP/2.0 200

content-type: application/javascript
content-length: 563
server: CloudFront
date: Tue, 25 Jun 2024 15:44:53 GMT
cache-control: max-age=3600
x-cache: Hit from cloudfront
via: 1.1 1c6904dfe9ea43b8174ab14c939bf754.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P1
x-amz-cf-id: IXBmABv2BAa69OYidE2rpcoT4boCGX5q81Ji3VExf3ev-RcdhjuKoQ==
age: 3152
GET

https://config.aps.amazon-adsystem.com/configs/1ad7261b-91ea-4b6f-b9e9-b83522205b75

Request

GET /configs/1ad7261b-91ea-4b6f-b9e9-b83522205b75 HTTP/2.0
host: config.aps.amazon-adsystem.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI
cookie: ad-privacy=0

Response

HTTP/2.0 200

content-type: application/javascript
content-length: 563
server: CloudFront
date: Tue, 25 Jun 2024 15:46:52 GMT
cache-control: max-age=3600
x-cache: Hit from cloudfront
via: 1.1 1c6904dfe9ea43b8174ab14c939bf754.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P1
x-amz-cf-id: 93fvXg9p0kNqEggH7nl863tZHWQjYm6uXqDBnLxPk4ZBip1-xB8rig==
age: 3035
DNS

cdn.id5-sync.com

Request

cdn.id5-sync.com

IN A

Response

cdn.id5-sync.com

IN A

172.67.38.106

cdn.id5-sync.com

IN A

104.22.53.86

cdn.id5-sync.com

IN A

104.22.52.86
GET

https://cdn.id5-sync.com/api/1.0/id5-api.js

Request

GET /api/1.0/id5-api.js HTTP/2.0
host: cdn.id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#2
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:25 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: 4NYxZkRwd2mqr9eLfdQQtAgqoFVvv1+Vc7KWH14UmMpb9a6b+MGpodlHb63Dl/POJ2V3JaePcZR7fCwze8eomZd4zk/HjS3QaGgtAyCuAcM=
x-amz-request-id: QY9KM1BASNJBMAKB
last-modified: Wed, 19 Jun 2024 08:15:00 GMT
etag: W/"7549ecdacdd2ca9502744f648799d58a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 17
expires: Tue, 25 Jun 2024 17:37:25 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 899661d2bbb860f8-LHR
content-encoding: br
GET

https://cdn.id5-sync.com/api/1.0/id5-api.js

Request

GET /api/1.0/id5-api.js HTTP/2.0
host: cdn.id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#3

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:27 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: 4NYxZkRwd2mqr9eLfdQQtAgqoFVvv1+Vc7KWH14UmMpb9a6b+MGpodlHb63Dl/POJ2V3JaePcZR7fCwze8eomZd4zk/HjS3QaGgtAyCuAcM=
x-amz-request-id: QY9KM1BASNJBMAKB
last-modified: Wed, 19 Jun 2024 08:15:00 GMT
etag: W/"7549ecdacdd2ca9502744f648799d58a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 19
expires: Tue, 25 Jun 2024 17:37:27 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 899661df2ea060f8-LHR
content-encoding: br
DNS

player.aniview.com

Request

player.aniview.com

IN A

Response

player.aniview.com

IN CNAME

stackpath-migration.edgesuite.net

stackpath-migration.edgesuite.net

IN CNAME

a1970.dscd.akamai.net

a1970.dscd.akamai.net

IN A

184.31.15.24

a1970.dscd.akamai.net

IN A

184.31.15.75
GET

https://player.aniview.com/script/6.1/AVmanager.js?AV_PUBLISHERID=5f1b027a97ccc82f270594f7

Request

GET /script/6.1/AVmanager.js?AV_PUBLISHERID=5f1b027a97ccc82f270594f7 HTTP/1.1
Host: player.aniview.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://cds.connatix.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Last-Modified: Thu, 20 Jun 2024 05:29:36 GMT
ETag: "25851d979c841f8b89dbe3218c12160b"
x-goog-generation: 1718861376119663
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 145501
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
x-goog-hash: crc32c=o/XhFQ==
x-goog-hash: md5=JYUdl5yEH4uJ2+MhjBIWCw==
x-goog-storage-class: MULTI_REGIONAL
Accept-Ranges: bytes
Content-Length: 145501
Access-Control-Expose-Headers: Content-Type
X-GUploader-UploadID: ACJd0NrhTKEcl7_J_o6MmNVITaeEA3gR66h3gx4afdjTP9q_GgtDVxV39S9XH4jZ71S4Zg5I4qpfe5nILQ
Server: UploadServer
Cache-Control: public, no-transform, max-age=900
Expires: Tue, 25 Jun 2024 16:52:25 GMT
Date: Tue, 25 Jun 2024 16:37:25 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
DNS

player.privateserving.com

Request

player.privateserving.com

IN A

Response

player.privateserving.com

IN A

104.21.5.89

player.privateserving.com

IN A

172.67.133.59
GET

https://player.privateserving.com/fa_v_x13.js

Request

GET /fa_v_x13.js HTTP/2.0
host: player.privateserving.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:25 GMT
content-type: application/javascript
x-amz-id-2: SKW1e35nvnWBrxYoMZLsSVL4uAJzulcIaLDcSIvfErHI2irVd8vfZtNCEmLYoItr+yndTUfdneo=
x-amz-request-id: ZAPYXJ9KCA9TW7WJ
last-modified: Thu, 06 Jun 2024 10:45:50 GMT
etag: W/"034532133be3cb109b8215a6e5f895db"
x-amz-server-side-encryption: AES256
cache-control: max-age=14400
cf-cache-status: HIT
age: 3185
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9TBxdRrF%2FiIJ7giPA9ZSsm64PYnNN3AOO2Y0K7ci6RXjjPg7t%2FQzSOaKlvmVLgA9fmQG3%2FKXlMuhvAHhrC%2BPtfaFP6p0wJ0TPiHygPCO4kf8RPJNaQg6G0CHfjoHsBK18NaxTd0FUE9XPiRv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 899661d3fdcd9502-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
DNS

ib.adnxs.com

Request

ib.adnxs.com

IN A

Response

ib.adnxs.com

IN CNAME

xandr-g-geo.trafficmanager.net

xandr-g-geo.trafficmanager.net

IN CNAME

ib.anycast.adnxs.com

ib.anycast.adnxs.com

IN A

37.252.171.21

ib.anycast.adnxs.com

IN A

37.252.171.52

ib.anycast.adnxs.com

IN A

37.252.171.53

ib.anycast.adnxs.com

IN A

37.252.172.123

ib.anycast.adnxs.com

IN A

37.252.171.85

ib.anycast.adnxs.com

IN A

37.252.173.215

ib.anycast.adnxs.com

IN A

37.252.171.149
DNS

prebid.media.net

Request

prebid.media.net

IN A

Response

prebid.media.net

IN A

34.120.63.153
DNS

hb.yellowblue.io

Request

hb.yellowblue.io

IN A

Response

hb.yellowblue.io

IN A

18.244.28.121

hb.yellowblue.io

IN A

18.244.28.86

hb.yellowblue.io

IN A

18.244.28.105

hb.yellowblue.io

IN A

18.244.28.8
DNS

ssum.casalemedia.com

Request

ssum.casalemedia.com

IN A

Response

ssum.casalemedia.com

IN A

172.64.151.101

ssum.casalemedia.com

IN A

104.18.36.155
DNS

match.prod.bidr.io

Request

match.prod.bidr.io

IN A

Response

match.prod.bidr.io

IN A

34.240.216.83

match.prod.bidr.io

IN A

52.17.120.207

match.prod.bidr.io

IN A

52.213.189.168

match.prod.bidr.io

IN A

34.253.242.146

match.prod.bidr.io

IN A

34.251.183.115

match.prod.bidr.io

IN A

52.17.93.114

match.prod.bidr.io

IN A

52.214.45.172

match.prod.bidr.io

IN A

34.246.197.210
DNS

eb2.3lift.com

Request

eb2.3lift.com

IN A

Response

eb2.3lift.com

IN CNAME

eu-eb2.3lift.com

eu-eb2.3lift.com

IN A

13.248.245.213

eu-eb2.3lift.com

IN A

76.223.111.18
GET

https://ad.turn.com/r/cs?pid=67&redir=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D21%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DAmobee%26api-tier%3D1%26uid%3D%23USER_ID%23&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /r/cs?pid=67&redir=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D21%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DAmobee%26api-tier%3D1%26uid%3D%23USER_ID%23&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: ad.turn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=3314471828681895967

Response

HTTP/2.0 302

p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=3314471828681895967; Domain=.turn.com; Expires=Sun, 22-Dec-2024 16:37:26 GMT; Path=/; Secure; SameSite=None
location: https://cks.connatix.com/cks?pid=21&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Amobee&api-tier=1&uid=3314471828681895967
content-length: 0
date: Tue, 25 Jun 2024 16:37:25 GMT
GET

https://eb2.3lift.com/getuid?redir=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D25%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DTripleLift%26api-tier%3D1%26uid%3D%24UID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /getuid?redir=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D25%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DTripleLift%26api-tier%3D1%26uid%3D%24UID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: eb2.3lift.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:37:26 GMT
content-length: 0
location: /getuid?ld=1&gdpr=1&cmp_cs=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&us_privacy=&redir=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D25%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DTripleLift%26api-tier%3D1%26uid%3D%24UID
cache-control: no-cache, no-store, must-revalidate
set-cookie: tluidp=4402637554117482127785; Path=/; Domain=.3lift.com; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:26 GMT; Secure; SameSite=None; Partitioned;
p3p: policyref="http://cdn.3lift.com/w3c/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
set-cookie: tluid=4402637554117482127785; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:26 GMT; Path=/; Domain=.3lift.com; Secure; SameSite=None
GET

https://eb2.3lift.com/getuid?ld=1&gdpr=1&cmp_cs=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&us_privacy=&redir=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D25%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DTripleLift%26api-tier%3D1%26uid%3D%24UID

Request

GET /getuid?ld=1&gdpr=1&cmp_cs=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&us_privacy=&redir=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D25%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DTripleLift%26api-tier%3D1%26uid%3D%24UID HTTP/2.0
host: eb2.3lift.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: tluidp=4402637554117482127785
cookie: tluid=4402637554117482127785

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:37:26 GMT
content-length: 0
location: https://cks.connatix.com/cks?pid=25&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=TripleLift&api-tier=1&uid=4402637554117482127785
cache-control: no-cache, no-store, must-revalidate
set-cookie: tluidp=4402637554117482127785; Path=/; Domain=.3lift.com; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:26 GMT; Secure; SameSite=None; Partitioned;
p3p: policyref="http://cdn.3lift.com/w3c/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
set-cookie: tluid=4402637554117482127785; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:26 GMT; Path=/; Domain=.3lift.com; Secure; SameSite=None
GET

https://ssum.casalemedia.com/usermatchredir?s=190549&cb=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D17%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DIndex%26api-tier%3D1%26uid%3D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /usermatchredir?s=190549&cb=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D17%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DIndex%26api-tier%3D1%26uid%3D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: ssum.casalemedia.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: CMID=ZnrxlrmqPq8AAFKyAdC9GwAA
cookie: CMPRO=4403
cookie: CMPS=4403

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:37:26 GMT
content-length: 0
location: https://cks.connatix.com/cks?gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&pid=17&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Index&api-tier=1&uid=ZnrxlrmqPq8AAFKyAdC9GwAA%264403
cf-ray: 899661d5dd31654a-LHR
cf-cache-status: DYNAMIC
cache-control: no-cache
expires: 0
set-cookie: CMID=ZnrxlrmqPq8AAFKyAdC9GwAA; Path=/; Domain=casalemedia.com; Expires=Wed, 25 Jun 2025 16:37:26 GMT; Max-Age=31536000; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMPRO=4403; Path=/; Domain=casalemedia.com; Expires=Mon, 23 Sep 2024 16:37:26 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ya0KCQgu%2FxWrkgeKfzNUeSFwT7ZQMCSH%2FZiYwflv92DiTJ58Y9kCsV%2BXuRd1vm7MHcKP%2BBfyQvWQOmFRAmmDrPB2oAB2hU6OVCCoTg%2B3TV9E2B8WnI6MrJZiJi0T03JO%2Fo38pHnS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
POST

https://hb.yellowblue.io/hb-multi

Request

POST /hb-multi HTTP/2.0
host: hb.yellowblue.io
content-length: 2480
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
content-length: 83
date: Tue, 25 Jun 2024 16:37:26 GMT
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF, X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://pixelpoint.tv
x-reason: maxmind anonymous
x-envoy-upstream-service-time: 0
server: istio-envoy
x-cache: Miss from cloudfront
via: 1.1 9d9d26d9703b4c6c3675b4a7241fe21e.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P5
x-amz-cf-id: aJ4NlQ8nqG_HXLHmsJHaGcZJacwr184ziVsQkMZc63HXfr6kzG9OtA==
POST

https://hb.yellowblue.io/hb-multi

Request

POST /hb-multi HTTP/2.0
host: hb.yellowblue.io
content-length: 2534
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
content-length: 83
date: Tue, 25 Jun 2024 16:37:30 GMT
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF, X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://pixelpoint.tv
x-reason: maxmind anonymous
x-envoy-upstream-service-time: 1
server: istio-envoy
x-cache: Miss from cloudfront
via: 1.1 9d9d26d9703b4c6c3675b4a7241fe21e.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P5
x-amz-cf-id: UJEQksjZU-vIb1RkxE62jtOb4lRsnzhyREcswRffmyBakqj-4Sb6DQ==
DNS

ssbsync.smartadserver.com

Request

ssbsync.smartadserver.com

IN A

Response

ssbsync.smartadserver.com

IN CNAME

ssbsync-geo.smartadserver.com

ssbsync-geo.smartadserver.com

IN CNAME

usersync-geo-global.usersync-prod-sas.akadns.net

usersync-geo-global.usersync-prod-sas.akadns.net

IN CNAME

ssbsync-euw2.smartadserver.com

ssbsync-euw2.smartadserver.com

IN A

5.135.209.100

ssbsync-euw2.smartadserver.com

IN A

217.182.178.228

ssbsync-euw2.smartadserver.com

IN A

91.134.110.133

ssbsync-euw2.smartadserver.com

IN A

164.132.25.181

ssbsync-euw2.smartadserver.com

IN A

178.32.197.53

ssbsync-euw2.smartadserver.com

IN A

178.32.197.52

ssbsync-euw2.smartadserver.com

IN A

178.32.210.230

ssbsync-euw2.smartadserver.com

IN A

149.202.238.100

ssbsync-euw2.smartadserver.com

IN A

5.135.209.101

ssbsync-euw2.smartadserver.com

IN A

149.202.238.101

ssbsync-euw2.smartadserver.com

IN A

5.196.111.68

ssbsync-euw2.smartadserver.com

IN A

164.132.25.180

ssbsync-euw2.smartadserver.com

IN A

178.32.210.231

ssbsync-euw2.smartadserver.com

IN A

217.182.178.229

ssbsync-euw2.smartadserver.com

IN A

5.196.111.69

ssbsync-euw2.smartadserver.com

IN A

91.134.110.132

ssbsync-euw2.smartadserver.com

IN A

51.178.195.212

ssbsync-euw2.smartadserver.com

IN A

51.178.195.213
DNS

secure-assets.rubiconproject.com

Request

secure-assets.rubiconproject.com

IN A

Response

secure-assets.rubiconproject.com

IN CNAME

digicertwc.rubiconproject.com.edgekey.net

digicertwc.rubiconproject.com.edgekey.net

IN CNAME

e8960.e2.akamaiedge.net

e8960.e2.akamaiedge.net

IN A

23.60.223.190
DNS

match.sharethrough.com

Request

match.sharethrough.com

IN A

Response

match.sharethrough.com

IN CNAME

match-eu-central-1-ecs.sharethrough.com

match-eu-central-1-ecs.sharethrough.com

IN A

3.122.213.30

match-eu-central-1-ecs.sharethrough.com

IN A

35.156.19.8

match-eu-central-1-ecs.sharethrough.com

IN A

18.196.251.50

match-eu-central-1-ecs.sharethrough.com

IN A

3.120.213.138

match-eu-central-1-ecs.sharethrough.com

IN A

35.157.83.226

match-eu-central-1-ecs.sharethrough.com

IN A

52.57.239.98

match-eu-central-1-ecs.sharethrough.com

IN A

18.196.133.194

match-eu-central-1-ecs.sharethrough.com

IN A

18.159.181.185
DNS

match.sharethrough.com

Request

match.sharethrough.com

IN A

Response

match.sharethrough.com

IN CNAME

match-eu-central-1-ecs.sharethrough.com

match-eu-central-1-ecs.sharethrough.com

IN A

52.57.239.98

match-eu-central-1-ecs.sharethrough.com

IN A

3.122.213.30

match-eu-central-1-ecs.sharethrough.com

IN A

18.158.98.19

match-eu-central-1-ecs.sharethrough.com

IN A

18.193.153.32

match-eu-central-1-ecs.sharethrough.com

IN A

3.120.213.138

match-eu-central-1-ecs.sharethrough.com

IN A

35.157.83.226

match-eu-central-1-ecs.sharethrough.com

IN A

18.196.251.50

match-eu-central-1-ecs.sharethrough.com

IN A

18.159.181.185
DNS

ssc-cms.33across.com

Request

ssc-cms.33across.com

IN A

Response

ssc-cms.33across.com

IN CNAME

pixel.33across.com

pixel.33across.com

IN A

67.202.105.22

pixel.33across.com

IN A

67.202.105.23
DNS

ssc-cms.33across.com

Request

ssc-cms.33across.com

IN A

Response

ssc-cms.33across.com

IN CNAME

pixel.33across.com

pixel.33across.com

IN A

67.202.105.22

pixel.33across.com

IN A

67.202.105.21
DNS

i.ctnsnet.com

Request

i.ctnsnet.com

IN A

Response

i.ctnsnet.com

IN A

35.186.193.173
DNS

sync.go.sonobi.com

Request

sync.go.sonobi.com

IN A

Response

sync.go.sonobi.com

IN CNAME

iad-2-sync.go.sonobi.com

iad-2-sync.go.sonobi.com

IN A

69.166.1.66

iad-2-sync.go.sonobi.com

IN A

69.166.1.67

iad-2-sync.go.sonobi.com

IN A

69.166.1.34

iad-2-sync.go.sonobi.com

IN A

69.166.1.35
DNS

sync.go.sonobi.com

Request

sync.go.sonobi.com

IN A

Response

sync.go.sonobi.com

IN CNAME

iad-2-sync.go.sonobi.com

iad-2-sync.go.sonobi.com

IN A

69.166.1.34

iad-2-sync.go.sonobi.com

IN A

69.166.1.67

iad-2-sync.go.sonobi.com

IN A

69.166.1.66

iad-2-sync.go.sonobi.com

IN A

69.166.1.35
DNS

ads.pubmatic.com

Request

ads.pubmatic.com

IN A

Response

ads.pubmatic.com

IN CNAME

pubmatic.edgekey.net

pubmatic.edgekey.net

IN CNAME

e6603.g.akamaiedge.net

e6603.g.akamaiedge.net

IN A

2.21.188.239
DNS

x.bidswitch.net

Request

x.bidswitch.net

IN A

Response

x.bidswitch.net

IN CNAME

user-data-eu.bidswitch.net

user-data-eu.bidswitch.net

IN A

35.214.149.91
DNS

x.bidswitch.net

Request

x.bidswitch.net

IN A

Response

x.bidswitch.net

IN CNAME

user-data-eu.bidswitch.net

user-data-eu.bidswitch.net

IN A

35.214.149.91
DNS

16.145.222.52.in-addr.arpa

Request

16.145.222.52.in-addr.arpa

IN PTR

Response

16.145.222.52.in-addr.arpa

IN PTR

server-52-222-145-16cdg52r cloudfrontnet
DNS

169.189.21.2.in-addr.arpa

Request

169.189.21.2.in-addr.arpa

IN PTR

Response

169.189.21.2.in-addr.arpa

IN PTR

a2-21-189-169deploystaticakamaitechnologiescom
DNS

70.204.58.216.in-addr.arpa

Request

70.204.58.216.in-addr.arpa

IN PTR

Response

70.204.58.216.in-addr.arpa

IN PTR

lhr48s49-in-f61e100net

70.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f70�G

70.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f6�G
DNS

2.180.250.142.in-addr.arpa

Request

2.180.250.142.in-addr.arpa

IN PTR

Response

2.180.250.142.in-addr.arpa

IN PTR

lhr25s32-in-f21e100net
DNS

187.63.21.104.in-addr.arpa

Request

187.63.21.104.in-addr.arpa

IN PTR

Response
DNS

6.174.84.52.in-addr.arpa

Request

6.174.84.52.in-addr.arpa

IN PTR

Response

6.174.84.52.in-addr.arpa

IN PTR

server-52-84-174-6cdg50r cloudfrontnet
DNS

106.38.67.172.in-addr.arpa

Request

106.38.67.172.in-addr.arpa

IN PTR

Response
DNS

24.15.31.184.in-addr.arpa

Request

24.15.31.184.in-addr.arpa

IN PTR

Response

24.15.31.184.in-addr.arpa

IN PTR

a184-31-15-24deploystaticakamaitechnologiescom
DNS

89.5.21.104.in-addr.arpa

Request

89.5.21.104.in-addr.arpa

IN PTR

Response
DNS

89.5.21.104.in-addr.arpa

Request

89.5.21.104.in-addr.arpa

IN PTR

Response
GET

https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=19564_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /utils/xapi/multi-sync.html?p=19564_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: secure-assets.rubiconproject.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: khaos=LXUMMYH8-18-IISD
cookie: receive-cookie-deprecation=1
cookie: audit=1|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

Response

HTTP/2.0 301

server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=19564_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
date: Tue, 25 Jun 2024 16:37:26 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
GET

https://eus.rubiconproject.com/usync.html?p=19564_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /usync.html?p=19564_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: eus.rubiconproject.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: khaos=LXUMMYH8-18-IISD
cookie: receive-cookie-deprecation=1
cookie: audit=1|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

Response

HTTP/2.0 200

server: Apache/2.2.15 (CentOS)
last-modified: Thu, 21 Mar 2024 15:32:19 GMT
etag: "28052a-10d-6142d69a886c0"
accept-ranges: bytes
content-encoding: gzip
content-length: 224
content-type: text/html; charset=UTF-8
date: Tue, 25 Jun 2024 16:37:26 GMT
vary: Accept-Encoding
GET

https://eus.rubiconproject.com/usync.js

Request

GET /usync.js HTTP/2.0
host: eus.rubiconproject.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://eus.rubiconproject.com/usync.html?p=19564_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: khaos=LXUMMYH8-18-IISD
cookie: receive-cookie-deprecation=1
cookie: audit=1|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

Response

HTTP/2.0 200

server: Apache/2.2.15 (CentOS)
x-powered-by: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
last-modified: Wed, 15 May 2024 10:00:23 GMT
content-encoding: gzip
content-length: 11049
content-type: text/html; charset=UTF-8
cache-control: max-age=79541
expires: Wed, 26 Jun 2024 14:43:07 GMT
date: Tue, 25 Jun 2024 16:37:26 GMT
vary: Accept-Encoding
GET

https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=aniview&endpoint=us-east

Request

GET /utils/xapi/multi-sync.html?p=aniview&endpoint=us-east HTTP/2.0
host: secure-assets.rubiconproject.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: khaos=LXUMMYH8-18-IISD
cookie: receive-cookie-deprecation=1
cookie: audit=1|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

Response

HTTP/2.0 301

server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=aniview&endpoint=us-east
date: Tue, 25 Jun 2024 16:37:26 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
GET

https://eus.rubiconproject.com/usync.html?p=aniview&endpoint=us-east

Request

GET /usync.html?p=aniview&endpoint=us-east HTTP/2.0
host: eus.rubiconproject.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: khaos=LXUMMYH8-18-IISD
cookie: receive-cookie-deprecation=1
cookie: audit=1|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

Response

HTTP/2.0 200

server: Apache/2.2.15 (CentOS)
last-modified: Thu, 21 Mar 2024 15:32:19 GMT
etag: "28052a-10d-6142d69a886c0"
accept-ranges: bytes
content-encoding: gzip
content-length: 224
content-type: text/html; charset=UTF-8
date: Tue, 25 Jun 2024 16:37:26 GMT
vary: Accept-Encoding
GET

https://eus.rubiconproject.com/usync.html?p=a9eu&endpoint=eu&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /usync.html?p=a9eu&endpoint=eu&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: eus.rubiconproject.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: khaos=LXUMMYH8-18-IISD
cookie: receive-cookie-deprecation=1
cookie: audit=1|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

Response

HTTP/2.0 200

server: Apache/2.2.15 (CentOS)
last-modified: Thu, 21 Mar 2024 15:32:19 GMT
etag: "28052a-10d-6142d69a886c0"
accept-ranges: bytes
content-encoding: gzip
content-length: 224
content-type: text/html; charset=UTF-8
date: Tue, 25 Jun 2024 16:37:31 GMT
vary: Accept-Encoding
GET

https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=rise_engage&endpoint=eu

Request

GET /utils/xapi/multi-sync.html?p=rise_engage&endpoint=eu HTTP/2.0
host: secure-assets.rubiconproject.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://cs-tam.yellowblue.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: khaos=LXUMMYH8-18-IISD
cookie: receive-cookie-deprecation=1
cookie: audit=1|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

Response

HTTP/2.0 301

server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=rise_engage&endpoint=eu
date: Tue, 25 Jun 2024 16:37:33 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
GET

https://eus.rubiconproject.com/usync.html?p=rise_engage&endpoint=eu

Request

GET /usync.html?p=rise_engage&endpoint=eu HTTP/2.0
host: eus.rubiconproject.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://cs-tam.yellowblue.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: khaos=LXUMMYH8-18-IISD
cookie: receive-cookie-deprecation=1
cookie: audit=1|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

Response

HTTP/2.0 200

server: Apache/2.2.15 (CentOS)
last-modified: Thu, 21 Mar 2024 15:32:19 GMT
etag: "28052a-10d-6142d69a886c0"
accept-ranges: bytes
content-encoding: gzip
content-length: 224
content-type: text/html; charset=UTF-8
date: Tue, 25 Jun 2024 16:37:33 GMT
vary: Accept-Encoding
GET

https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=medianet

Request

GET /utils/xapi/multi-sync.html?p=medianet HTTP/2.0
host: secure-assets.rubiconproject.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://contextual.media.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: khaos=LXUMMYH8-18-IISD
cookie: receive-cookie-deprecation=1
cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gZUpDP4CVbqNS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=

Response

HTTP/2.0 301

server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=medianet
date: Tue, 25 Jun 2024 16:37:34 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
GET

https://eus.rubiconproject.com/usync.html?p=medianet

Request

GET /usync.html?p=medianet HTTP/2.0
host: eus.rubiconproject.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://contextual.media.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: khaos=LXUMMYH8-18-IISD
cookie: receive-cookie-deprecation=1
cookie: audit=1|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

Response

HTTP/2.0 200

server: Apache/2.2.15 (CentOS)
last-modified: Thu, 21 Mar 2024 15:32:19 GMT
etag: "28052a-10d-6142d69a886c0"
accept-ranges: bytes
content-encoding: gzip
content-length: 224
content-type: text/html; charset=UTF-8
date: Tue, 25 Jun 2024 16:37:34 GMT
vary: Accept-Encoding
DNS

s.ad.smaato.net

Request

s.ad.smaato.net

IN A

Response

s.ad.smaato.net

IN A

18.164.52.116

s.ad.smaato.net

IN A

18.164.52.25

s.ad.smaato.net

IN A

18.164.52.4

s.ad.smaato.net

IN A

18.164.52.46
GET

https://ssbsync.smartadserver.com/api/sync?callerId=6&nwid=3630&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&url=https%3a%2f%2fcks.connatix.com%2fcks%3fpid%3d40%26ev%3d47e9e2b2192a4ec59ceb8e832648c812%26pname%3dSmartAdServer%26api-tier%3d1%26uid%3D%5Bsas_uid%5D

Request

GET /api/sync?callerId=6&nwid=3630&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&url=https%3a%2f%2fcks.connatix.com%2fcks%3fpid%3d40%26ev%3d47e9e2b2192a4ec59ceb8e832648c812%26pname%3dSmartAdServer%26api-tier%3d1%26uid%3D%5Bsas_uid%5D HTTP/2.0
host: ssbsync.smartadserver.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: TestIfCookieP=ok
cookie: pbw=%24b%3d16999%3b%24o%3d11100
cookie: sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5
cookie: pid=4052082643997295311
cookie: sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1
cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:37:25 GMT
location: https://capi.connatix.com/us/pixel?puid=4052082643997295311&pId=40&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
GET

https://ssbsync.smartadserver.com/api/sync?callerId=54&gdpr=1&gdpr_consent=null&rdir=

Request

GET /api/sync?callerId=54&gdpr=1&gdpr_consent=null&rdir= HTTP/2.0
host: ssbsync.smartadserver.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: TestIfCookieP=ok
cookie: pbw=%24b%3d16999%3b%24o%3d11100
cookie: sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5
cookie: pid=4052082643997295311
cookie: sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1
cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/2.0 200

content-length: 0
date: Tue, 25 Jun 2024 16:37:26 GMT
GET

https://ssbsync.smartadserver.com/api/sync?callerId=87&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /api/sync?callerId=87&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: ssbsync.smartadserver.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: TestIfCookieP=ok
cookie: pbw=%24b%3d16999%3b%24o%3d11100
cookie: sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5
cookie: pid=4052082643997295311
cookie: sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1
cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:37:29 GMT
location: https://pixel.rubiconproject.com/tap.php?v=333994&nid=4804&put=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
GET

https://ssbsync.smartadserver.com/api/sync?callerId=2&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /api/sync?callerId=2&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: ssbsync.smartadserver.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: TestIfCookieP=ok
cookie: pbw=%24b%3d16999%3b%24o%3d11100
cookie: sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5
cookie: pid=4052082643997295311
cookie: sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1
cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:37:31 GMT
location: https://aax-eu.amazon-adsystem.com/s/ecm3?ex=smart.com&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
GET

https://ssbsync.smartadserver.com/api/sync?callerId=77&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /api/sync?callerId=77&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: ssbsync.smartadserver.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cs-tam.yellowblue.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: TestIfCookieP=ok
cookie: pbw=%24b%3d16999%3b%24o%3d11100
cookie: sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5
cookie: pid=4052082643997295311
cookie: sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1
cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:37:32 GMT
location: https://cs.yellowblue.io/cs?aid=11600&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
GET

https://ssbsync-global.smartadserver.com/api/sync?callerId=5&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&us_privacy=&redirectUri=https%3A%2F%2Fonetag-sys.com%2Fmatch%2F%3Fint_id%3D107%26uid%3D[ssb_sync_pid]

Request

GET /api/sync?callerId=5&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&us_privacy=&redirectUri=https%3A%2F%2Fonetag-sys.com%2Fmatch%2F%3Fint_id%3D107%26uid%3D[ssb_sync_pid] HTTP/2.0
host: ssbsync-global.smartadserver.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: TestIfCookieP=ok
cookie: pbw=%24b%3d16999%3b%24o%3d11100
cookie: sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5
cookie: pid=4052082643997295311
cookie: sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1
cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:37:33 GMT
location: https://onetag-sys.com/match/?int_id=107&uid=4052082643997295311
GET

https://ssbsync.smartadserver.com/api/sync?callerId=47&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /api/sync?callerId=47&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: ssbsync.smartadserver.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: TestIfCookieP=ok
cookie: pbw=%24b%3d16999%3b%24o%3d11100
cookie: sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5
cookie: sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1
cookie: pid=4052082643997295311
cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1
cookie: vs=342899=6038917

Response

HTTP/2.0 200

content-length: 3558
content-type: text/html
date: Tue, 25 Jun 2024 16:37:42 GMT
GET

https://ssbsync.smartadserver.com/api/sync?callerId=81&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /api/sync?callerId=81&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: ssbsync.smartadserver.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://playbuzzltd-d.openx.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: TestIfCookieP=ok
cookie: pbw=%24b%3d16999%3b%24o%3d11100
cookie: sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5
cookie: sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1
cookie: pid=4052082643997295311
cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1
cookie: vs=342899=6038917

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:37:42 GMT
location: https://u.openx.net/w/1.0/sd?id=540394477&val=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
GET

https://i.ctnsnet.com/int/cm?exc=24&redir=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D28%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DCrimtan%26api-tier%3D1%26uid%3D%5Buser_id%5D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /int/cm?exc=24&redir=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D28%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DCrimtan%26api-tier%3D1%26uid%3D%5Buser_id%5D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: i.ctnsnet.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cid_c230be8ec37b4e1584f77677cd0bc943=1
GET

https://bh.contextweb.com/bh/rtset?pid=561340&daaqp=1&ev=1&rurl=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D13%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DPulsePoint%26api-tier%3D1%26uid%3D%25%25VGUID%25%25&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /bh/rtset?pid=561340&daaqp=1&ev=1&rurl=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D13%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DPulsePoint%26api-tier%3D1%26uid%3D%25%25VGUID%25%25&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: bh.contextweb.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: V=YZ9IXur4Q8di
cookie: VP=part_YZ9IXur4Q8di
cookie: gdpr=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
cookie: pb_rtb_ev=3-1s4z|7GB.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA
cookie: pb_rtb_ev_part=3-1s4z|7GB.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA

Response

HTTP/2.0 302

p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-7d68d5c85f-jrzbc
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
set-cookie: VP=part_YZ9IXur4Q8di;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31104000;Secure;Expires=Fri, 20-Jun-2025 16:37:26 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev_part=3-1s4z|7GB.0.1|7Xz.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31536000;Secure;Expires=Wed, 25-Jun-2025 16:37:26 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev=3-1s4z|7GB.0.1|7Xz.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Wed, 25-Jun-2025 16:37:26 GMT;Max-Age=31536000;SameSite=None
set-cookie: V=YZ9IXur4Q8di;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 20-Jun-2025 16:37:26 GMT;Max-Age=31104000;SameSite=None
set-cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Thu, 25-Jul-2024 16:37:26 GMT;Max-Age=2592000;SameSite=None
location: https://cks.connatix.com/cks?pid=13&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=PulsePoint&api-tier=1&uid=YZ9IXur4Q8di
server: Jetty(10.0.14)
set-cookie: INGRESSCOOKIE=b0e96f86afbaca8d; path=/; HttpOnly; Secure; SameSite=None
GET

https://bh.contextweb.com/bh/rtset?pid=560687&ev=1&rurl=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D390200%26nid%3D5120%26put%3D%25%25VGUID%25%25&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /bh/rtset?pid=560687&ev=1&rurl=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D390200%26nid%3D5120%26put%3D%25%25VGUID%25%25&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: bh.contextweb.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: VP=part_YZ9IXur4Q8di
cookie: V=YZ9IXur4Q8di
cookie: pb_rtb_ev_part=3-1s4z|7GB.0.1|7Xz.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA
cookie: pb_rtb_ev=3-1s4z|7GB.0.1|7Xz.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA
cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
cookie: INGRESSCOOKIE=b0e96f86afbaca8d

Response

HTTP/2.0 302

p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-7d68d5c85f-jrzbc
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
set-cookie: VP=part_YZ9IXur4Q8di;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31104000;Secure;Expires=Fri, 20-Jun-2025 16:37:27 GMT;SameSite=None;Partitioned
set-cookie: V=YZ9IXur4Q8di;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 20-Jun-2025 16:37:27 GMT;Max-Age=31104000;SameSite=None
set-cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Thu, 25-Jul-2024 16:37:27 GMT;Max-Age=2592000;SameSite=None
location: https://pixel.rubiconproject.com/tap.php?v=390200&nid=5120&put=YZ9IXur4Q8di&ev=1&pid=560687&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1
server: Jetty(10.0.14)
GET

https://bh.contextweb.com/visitormatch?p=547259,530912,534301,548607,543793,561117&rurl=https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fid%3D%25%25VGUID%25%25%26ex%3DPulsepoint

Request

GET /visitormatch?p=547259,530912,534301,548607,543793,561117&rurl=https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fid%3D%25%25VGUID%25%25%26ex%3DPulsepoint HTTP/2.0
host: bh.contextweb.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: VP=part_YZ9IXur4Q8di
cookie: V=YZ9IXur4Q8di
cookie: pb_rtb_ev_part=3-1s4z|7GB.0.1|7Xz.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA
cookie: pb_rtb_ev=3-1s4z|7GB.0.1|7Xz.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA
cookie: INGRESSCOOKIE=b0e96f86afbaca8d
cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Response

HTTP/2.0 200

p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-7d68d5c85f-jrzbc
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
content-type: text/html;charset=iso-8859-1
set-cookie: VP=part_YZ9IXur4Q8di;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31104000;Secure;Expires=Fri, 20-Jun-2025 16:37:31 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev_part=3-1s4z|2N.0|3oy.0|4is.0|7TY.0;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31536000;Secure;Expires=Wed, 25-Jun-2025 16:37:31 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev=3-1s4z|2N.0|3oy.0|4is.0|7TY.0;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Wed, 25-Jun-2025 16:37:31 GMT;Max-Age=31536000;SameSite=None
set-cookie: V=YZ9IXur4Q8di;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 20-Jun-2025 16:37:31 GMT;Max-Age=31104000;SameSite=None
set-cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Thu, 25-Jul-2024 16:37:31 GMT;Max-Age=2592000;SameSite=None
content-length: 2442
server: Jetty(10.0.14)
GET

https://bh.contextweb.com/bh/rtset?pid=562615&ev=1&us_privacy=[US_PRIVACY]&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&rurl=https%3A%2F%2Fcs-tam.yellowblue.io%2Fcs%3Faid%3D11592%26uid%3D%25%25VGUID%25%25

Request

GET /bh/rtset?pid=562615&ev=1&us_privacy=[US_PRIVACY]&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&rurl=https%3A%2F%2Fcs-tam.yellowblue.io%2Fcs%3Faid%3D11592%26uid%3D%25%25VGUID%25%25 HTTP/2.0
host: bh.contextweb.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cs-tam.yellowblue.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: VP=part_YZ9IXur4Q8di
cookie: V=YZ9IXur4Q8di
cookie: INGRESSCOOKIE=b0e96f86afbaca8d
cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
cookie: pb_rtb_ev_part=3-1s4z|2N.0|3oy.0|4is.0|7TY.0
cookie: pb_rtb_ev=3-1s4z|2N.0|3oy.0|4is.0|7TY.0

Response

HTTP/2.0 302

p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-7d68d5c85f-jrzbc
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
set-cookie: VP=part_YZ9IXur4Q8di;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31104000;Secure;Expires=Fri, 20-Jun-2025 16:37:33 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev_part=3-1s4z|7GB.0.1|7Xz.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31536000;Secure;Expires=Wed, 25-Jun-2025 16:37:33 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev=3-1s4z|7GB.0.1|7Xz.0.1|7TZ.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Wed, 25-Jun-2025 16:37:33 GMT;Max-Age=31536000;SameSite=None
set-cookie: V=YZ9IXur4Q8di;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 20-Jun-2025 16:37:33 GMT;Max-Age=31104000;SameSite=None
set-cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Thu, 25-Jul-2024 16:37:33 GMT;Max-Age=2592000;SameSite=None
location: https://cs-tam.yellowblue.io/cs?aid=11592&uid=YZ9IXur4Q8di&ev=1&us_privacy=[US_PRIVACY]&pid=562615&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1
server: Jetty(10.0.14)
GET

https://bh.contextweb.com/bh/rtset?do=add&pid=547259&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&ev=CAESEHDT8C2QDDK7-lWAMSrVwkY&google_cver=1

Request

GET /bh/rtset?do=add&pid=547259&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&ev=CAESEHDT8C2QDDK7-lWAMSrVwkY&google_cver=1 HTTP/2.0
host: bh.contextweb.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bh.contextweb.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: VP=part_YZ9IXur4Q8di
cookie: V=YZ9IXur4Q8di
cookie: INGRESSCOOKIE=b0e96f86afbaca8d
cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
cookie: pb_rtb_ev_part=3-1s4z|2N.0|3oy.0|4is.0|7TY.0
cookie: pb_rtb_ev=3-1s4z|2N.0|3oy.0|4is.0|7TY.0

Response

HTTP/2.0 200

p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-7d68d5c85f-jrzbc
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
content-type: image/gif;charset=iso-8859-1
set-cookie: VP=part_YZ9IXur4Q8di;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31104000;Secure;Expires=Fri, 20-Jun-2025 16:37:33 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev_part=3-1s4z|4is.0.CAESEHDT8C2QDDK7-lWAMSrVwkY|7Xz.0.1|7TZ.0.1|7GB.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31536000;Secure;Expires=Wed, 25-Jun-2025 16:37:33 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev=3-1s4z|4is.0.CAESEHDT8C2QDDK7-lWAMSrVwkY|7Xz.0.1|7TZ.0.1|7GB.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Wed, 25-Jun-2025 16:37:33 GMT;Max-Age=31536000;SameSite=None
set-cookie: V=YZ9IXur4Q8di;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 20-Jun-2025 16:37:33 GMT;Max-Age=31104000;SameSite=None
set-cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Thu, 25-Jul-2024 16:37:33 GMT;Max-Age=2592000;SameSite=None
server: Jetty(10.0.14)
GET

https://bh.contextweb.com/bh/rtset?do=add&pid=543793&ev=686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&gdpr_in_effect=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /bh/rtset?do=add&pid=543793&ev=686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&gdpr_in_effect=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: bh.contextweb.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bh.contextweb.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: VP=part_YZ9IXur4Q8di
cookie: V=YZ9IXur4Q8di
cookie: INGRESSCOOKIE=b0e96f86afbaca8d
cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
cookie: pb_rtb_ev_part=3-1s4z|4is.0.CAESEHDT8C2QDDK7-lWAMSrVwkY|7Xz.0.1|7TZ.0.1|7GB.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1
cookie: pb_rtb_ev=3-1s4z|4is.0.CAESEHDT8C2QDDK7-lWAMSrVwkY|7Xz.0.1|7TZ.0.1|7GB.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1

Response

HTTP/2.0 200

p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-7d68d5c85f-jrzbc
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
content-type: image/gif;charset=iso-8859-1
set-cookie: VP=part_YZ9IXur4Q8di;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31104000;Secure;Expires=Fri, 20-Jun-2025 16:37:33 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev_part=3-1s4z|4is.0.CAESEHDT8C2QDDK7-lWAMSrVwkY|7Xz.0.1|7TZ.0.1|7GB.0.1|3oy.0.686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31536000;Secure;Expires=Wed, 25-Jun-2025 16:37:33 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev=3-1s4z|4is.0.CAESEHDT8C2QDDK7-lWAMSrVwkY|7Xz.0.1|7TZ.0.1|7GB.0.1|3oy.0.686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Wed, 25-Jun-2025 16:37:33 GMT;Max-Age=31536000;SameSite=None
set-cookie: V=YZ9IXur4Q8di;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 20-Jun-2025 16:37:33 GMT;Max-Age=31104000;SameSite=None
set-cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Thu, 25-Jul-2024 16:37:33 GMT;Max-Age=2592000;SameSite=None
server: Jetty(10.0.14)
GET

https://bh.contextweb.com/bh/rtset?do=add&pid=530912&ev=AQAI2axvdutxSAI0FWWmAQEBAQEBAQCRUUN0swEBAJFRQ3Sz&expiration=1719419852&nuid=&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /bh/rtset?do=add&pid=530912&ev=AQAI2axvdutxSAI0FWWmAQEBAQEBAQCRUUN0swEBAJFRQ3Sz&expiration=1719419852&nuid=&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: bh.contextweb.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bh.contextweb.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: VP=part_YZ9IXur4Q8di
cookie: V=YZ9IXur4Q8di
cookie: INGRESSCOOKIE=b0e96f86afbaca8d
cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
cookie: pb_rtb_ev_part=3-1s4z|4is.0.CAESEHDT8C2QDDK7-lWAMSrVwkY|7Xz.0.1|7TZ.0.1|7GB.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1
cookie: pb_rtb_ev=3-1s4z|4is.0.CAESEHDT8C2QDDK7-lWAMSrVwkY|7Xz.0.1|7TZ.0.1|7GB.0.1|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1

Response

HTTP/2.0 200

p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-7d68d5c85f-jrzbc
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
content-type: image/gif;charset=iso-8859-1
set-cookie: VP=part_YZ9IXur4Q8di;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31104000;Secure;Expires=Fri, 20-Jun-2025 16:37:33 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev_part=3-1s4z|4is.0.CAESEHDT8C2QDDK7-lWAMSrVwkY|7Xz.0.1|7TZ.0.1|7GB.0.1|2N.0.AQAI2axvdutxSAI0FWWmAQEBAQEBAQCRUUN0swEBAJFRQ3Sz|3oy.0.686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1;Version=0;Path=/;Domain=.contextweb.com;Max-Age=31536000;Secure;Expires=Wed, 25-Jun-2025 16:37:33 GMT;SameSite=None;Partitioned
set-cookie: pb_rtb_ev=3-1s4z|4is.0.CAESEHDT8C2QDDK7-lWAMSrVwkY|7Xz.0.1|7TZ.0.1|7GB.0.1|2N.0.AQAI2axvdutxSAI0FWWmAQEBAQEBAQCRUUN0swEBAJFRQ3Sz|3oy.0.686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553|7dN.0.AAD5Jk7M9eMAABdSEix9nA|8i8.0.1;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Wed, 25-Jun-2025 16:37:33 GMT;Max-Age=31536000;SameSite=None
set-cookie: V=YZ9IXur4Q8di;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 20-Jun-2025 16:37:33 GMT;Max-Age=31104000;SameSite=None
set-cookie: gdpr=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Thu, 25-Jul-2024 16:37:33 GMT;Max-Age=2592000;SameSite=None
server: Jetty(10.0.14)
DNS

openrtb-us-east-1.axonix.com

Request

openrtb-us-east-1.axonix.com

IN A

Response

openrtb-us-east-1.axonix.com

IN CNAME

openrtb-dc11.axonix.com

openrtb-dc11.axonix.com

IN A

155.204.117.12

openrtb-dc11.axonix.com

IN A

155.204.117.1

openrtb-dc11.axonix.com

IN A

155.204.117.11
DNS

connatix-supply-partners.tremorhub.com

Request

connatix-supply-partners.tremorhub.com

IN A

Response

connatix-supply-partners.tremorhub.com

IN CNAME

partners-alb-1113315349.us-east-1.elb.amazonaws.com

partners-alb-1113315349.us-east-1.elb.amazonaws.com

IN A

54.209.73.107

partners-alb-1113315349.us-east-1.elb.amazonaws.com

IN A

35.169.21.146

partners-alb-1113315349.us-east-1.elb.amazonaws.com

IN A

3.93.159.191

partners-alb-1113315349.us-east-1.elb.amazonaws.com

IN A

44.215.243.136

partners-alb-1113315349.us-east-1.elb.amazonaws.com

IN A

52.200.110.116

partners-alb-1113315349.us-east-1.elb.amazonaws.com

IN A

18.210.215.242

partners-alb-1113315349.us-east-1.elb.amazonaws.com

IN A

44.206.97.111

partners-alb-1113315349.us-east-1.elb.amazonaws.com

IN A

3.210.66.7
DNS

ads.yieldmo.com

Request

ads.yieldmo.com

IN A

Response

ads.yieldmo.com

IN CNAME

rw.yieldmo.com

rw.yieldmo.com

IN CNAME

gdpr.rw.yieldmo.com

gdpr.rw.yieldmo.com

IN CNAME

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

52.211.91.163

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

34.250.77.252

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

54.155.87.64

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

54.217.164.78

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

52.211.129.237

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

54.72.64.29

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

52.213.240.31

rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com

IN A

52.16.246.58
DNS

sync.resetdigital.co

Request

sync.resetdigital.co

IN A

Response

sync.resetdigital.co

IN A

143.244.222.249

sync.resetdigital.co

IN A

138.197.63.78

sync.resetdigital.co

IN A

159.89.252.170

sync.resetdigital.co

IN A

143.244.220.80

sync.resetdigital.co

IN A

159.203.147.11

sync.resetdigital.co

IN A

165.227.251.217
DNS

cs-server-s2s.yellowblue.io

Request

cs-server-s2s.yellowblue.io

IN A

Response

cs-server-s2s.yellowblue.io

IN A

3.232.87.104

cs-server-s2s.yellowblue.io

IN A

100.25.225.255

cs-server-s2s.yellowblue.io

IN A

34.234.226.97

cs-server-s2s.yellowblue.io

IN A

184.72.174.29

cs-server-s2s.yellowblue.io

IN A

34.230.93.105

cs-server-s2s.yellowblue.io

IN A

3.86.75.19

cs-server-s2s.yellowblue.io

IN A

44.214.224.191

cs-server-s2s.yellowblue.io

IN A

3.230.90.51
DNS

id.rlcdn.com

Request

id.rlcdn.com

IN A

Response

id.rlcdn.com

IN A

35.244.174.68
DNS

o4504469071069184.ingest.sentry.io

Request

o4504469071069184.ingest.sentry.io

IN A

Response

o4504469071069184.ingest.sentry.io

IN A

34.120.195.249
POST

https://o4504469071069184.ingest.sentry.io/api/4505784273338368/envelope/?sentry_key=4da555b107a53cfc323924f1779094a2&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.65.0

Request

POST /api/4505784273338368/envelope/?sentry_key=4da555b107a53cfc323924f1779094a2&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.65.0 HTTP/2.0
host: o4504469071069184.ingest.sentry.io
content-length: 492
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://s.ad.smaato.net/c/?adExInit=g&gdpr={gdpr}&gdpr_consent={gdpr_consent}&redir=https%3a%2f%2fcks.connatix.com%2fcks%3fpid%3d48%26ev%3d47e9e2b2192a4ec59ceb8e832648c812%26pname%3dSmaato%26api-tier%3d1%26uid%3D%24UID

Request

GET /c/?adExInit=g&gdpr={gdpr}&gdpr_consent={gdpr_consent}&redir=https%3a%2f%2fcks.connatix.com%2fcks%3fpid%3d48%26ev%3d47e9e2b2192a4ec59ceb8e832648c812%26pname%3dSmaato%26api-tier%3d1%26uid%3D%24UID HTTP/2.0
host: s.ad.smaato.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: SCM=be50d39d3b
cookie: SCMsas=be50d39d3b

Response

HTTP/2.0 204

server: CloudFront
date: Tue, 25 Jun 2024 16:37:26 GMT
cache-control: no-cache, must-revalidate
x-cache: Miss from cloudfront
via: 1.1 62c19c8529da15502cb35329ecc9b474.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P4
x-amz-cf-id: SoWh-lw01vEj-l0DjnJdc77gEUl5YmW7botPG4JWISxz-LUWOnp2Cw==
GET

https://s.ad.smaato.net/c/?adExInit=g&gdpr={gdpr}&gdpr_consent={gdpr_consent}&redir=https%3a%2f%2fcks.connatix.com%2fcks%3fpid%3d48%26ev%3d47e9e2b2192a4ec59ceb8e832648c812%26pname%3dSmaato%26api-tier%3d1%26uid%3D%24UID

Request

GET /c/?adExInit=g&gdpr={gdpr}&gdpr_consent={gdpr_consent}&redir=https%3a%2f%2fcks.connatix.com%2fcks%3fpid%3d48%26ev%3d47e9e2b2192a4ec59ceb8e832648c812%26pname%3dSmaato%26api-tier%3d1%26uid%3D%24UID HTTP/2.0
host: s.ad.smaato.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: SCM=be50d39d3b
cookie: SCMsas=be50d39d3b

Response

HTTP/2.0 204

server: CloudFront
date: Tue, 25 Jun 2024 16:37:26 GMT
cache-control: no-cache, must-revalidate
x-cache: Hit from cloudfront
via: 1.1 62c19c8529da15502cb35329ecc9b474.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P4
x-amz-cf-id: GiatFBalYrINIO_c_PPWIaiBNCyaykmr2XLAzkdpd9F3NcRzgjE-OQ==
age: 3
GET

https://s.ad.smaato.net/c/?adExInit=aps&redir=https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dsmaato.com%26id%3D%24UID

Request

GET /c/?adExInit=aps&redir=https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dsmaato.com%26id%3D%24UID HTTP/2.0
host: s.ad.smaato.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: SCM=be50d39d3b
cookie: SCMsas=be50d39d3b

Response

HTTP/2.0 204

server: CloudFront
date: Tue, 25 Jun 2024 16:37:31 GMT
cache-control: no-cache, must-revalidate
x-cache: Miss from cloudfront
via: 1.1 62c19c8529da15502cb35329ecc9b474.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P4
x-amz-cf-id: GnhCX-hhvnVsNVQuFjtkrMihzgr-WB_hG0_DVBG03sffHs6lQWukfQ==
GET

https://s.ad.smaato.net/c/?adExInit=sas&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D133%26partneruserid%3D$UID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /c/?adExInit=sas&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D133%26partneruserid%3D$UID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: s.ad.smaato.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: SCM=be50d39d3b
cookie: SCMsas=be50d39d3b

Response

HTTP/2.0 302

content-length: 0
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=133&partneruserid=be50d39d3b
server: CloudFront
date: Tue, 25 Jun 2024 16:37:43 GMT
cache-control: no-cache, must-revalidate
set-cookie: SCM=be50d39d3b; Max-Age=1814400; Domain=.smaato.net; SameSite=None; Path=/; Secure
set-cookie: SCMsas=be50d39d3b; Max-Age=1814400; Domain=.smaato.net; Path=/; SameSite=None; Secure
x-cache: Miss from cloudfront
via: 1.1 62c19c8529da15502cb35329ecc9b474.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P4
x-amz-cf-id: FYJJS8rXMAK9SEopctlUKsGWZjKY1ndaqErqyX9TF0LMAqGPPmOWfQ==
GET

https://s.ad.smaato.net/c/?dspId=1001989&dspCookie=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /c/?dspId=1001989&dspCookie=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: s.ad.smaato.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: SCM=be50d39d3b
cookie: SCMsas=be50d39d3b

Response

HTTP/2.0 302

content-length: 0
location: https://sync.1rx.io/usersync/smaato/be50d39d3b?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
server: CloudFront
date: Tue, 25 Jun 2024 16:37:43 GMT
cache-control: no-cache, must-revalidate
set-cookie: SCM=be50d39d3b; Max-Age=1814400; Domain=.smaato.net; SameSite=None; Path=/; Secure
set-cookie: SCMu=be50d39d3b; Max-Age=1814400; Domain=.smaato.net; Path=/; SameSite=None; Secure
set-cookie: SCM1001989=be50d39d3b; Max-Age=1814400; Domain=.smaato.net; Path=/; SameSite=None; Secure
x-cache: Miss from cloudfront
via: 1.1 62c19c8529da15502cb35329ecc9b474.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P4
x-amz-cf-id: Lv4J-eQKiJhUZSCWmyhu5rgPf79Yn8ojn4myScJHlsuZqMrEDGc6sg==
GET

https://openrtb-us-east-1.axonix.com/syn?supply=5ce328d9-782d-464e-932e-67fa3dc4456b&uid=47e9e2b2192a4ec59ceb8e832648c812&redirect=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D49%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DEmodo%26api-tier%3D1%26uid%3DxxEMODO_IDxx&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /syn?supply=5ce328d9-782d-464e-932e-67fa3dc4456b&uid=47e9e2b2192a4ec59ceb8e832648c812&redirect=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D49%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DEmodo%26api-tier%3D1%26uid%3DxxEMODO_IDxx&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: openrtb-us-east-1.axonix.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:37:26 GMT
content-length: 0
access-control-allow-origin: *
access-control-allow-credentials: true
location: https://cks.connatix.com/cks?pid=49&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Emodo&api-tier=1&uid=4140dfb2-3c53-4749-96b1-a289358e9501
set-cookie: ax_cx=4140dfb2-3c53-4749-96b1-a289358e9501; Max-Age=2592000; Secure; SameSite=None
x-emodo-server: vektor-server-production-no-zone-6468fcd59b-wh62w
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
GET

https://sync.resetdigital.co/csync?pid=connatix&redir=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D35%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DResetDigital%26api-tier%3D1%26uid%3D%24USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /csync?pid=connatix&redir=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D35%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DResetDigital%26api-tier%3D1%26uid%3D%24USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/1.1
Host: sync.resetdigital.co
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://pixelpoint.tv/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

location: https://cks.connatix.com/cks?pid=35&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=ResetDigital&api-tier=1&uid=00000149746DCAEB
set-cookie: ckbk=00000149746DCAEB; Path=/; Max-Age=7776000; Domain=resetdigital.co; SameSite=None; Secure
cache-control: no-cache, no-store, must-revalidate
content-type: text/html
accept-ranges: bytes
content-length: 0
date: Tue, 25 Jun 2024 16:37:25 GMT
GET

https://ssc-cms.33across.com/ps/?m=xch&rt=html&id=0015a00002y7TWTAA2&ru=https%3A%2F%2Fcapi.connatix.com%2Fcore%2Fus%3FDemandPartner%3D37%26UserId%3D47e9e2b2192a4ec59ceb8e832648c812%26DemandPartnerName%3D_33Across%26tier%3D1%26DemandPartnerUserId%3D33XUSERID33X&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /ps/?m=xch&rt=html&id=0015a00002y7TWTAA2&ru=https%3A%2F%2Fcapi.connatix.com%2Fcore%2Fus%3FDemandPartner%3D37%26UserId%3D47e9e2b2192a4ec59ceb8e832648c812%26DemandPartnerName%3D_33Across%26tier%3D1%26DemandPartnerUserId%3D33XUSERID33X&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: ssc-cms.33across.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

x-33x-status: 2000208
server: 33XP016
date: Tue, 25 Jun 2024 16:37:26 GMT
GET

https://ssc-cms.33across.com/ps/?m=xch&rt=html&id=0015a00002y7TWTAA2&ru=https%3A%2F%2Fcapi.connatix.com%2Fcore%2Fus%3FDemandPartner%3D37%26UserId%3D47e9e2b2192a4ec59ceb8e832648c812%26DemandPartnerName%3D_33Across%26tier%3D1%26DemandPartnerUserId%3D33XUSERID33X&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /ps/?m=xch&rt=html&id=0015a00002y7TWTAA2&ru=https%3A%2F%2Fcapi.connatix.com%2Fcore%2Fus%3FDemandPartner%3D37%26UserId%3D47e9e2b2192a4ec59ceb8e832648c812%26DemandPartnerName%3D_33Across%26tier%3D1%26DemandPartnerUserId%3D33XUSERID33X&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: ssc-cms.33across.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

x-33x-status: 2000208
server: 33XP019
date: Tue, 25 Jun 2024 16:37:29 GMT
GET

https://sync.go.sonobi.com/us?loc=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D43%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DSonobi%26api-tier%3D1%26uid%3D%5BUID%5D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /us?loc=https%3A%2F%2Fcks.connatix.com%2Fcks%3Fpid%3D43%26ev%3D47e9e2b2192a4ec59ceb8e832648c812%26pname%3DSonobi%26api-tier%3D1%26uid%3D%5BUID%5D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: sync.go.sonobi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: text/plain; charset=utf8
content-length: 0
expires: Sat, 26 Jul 1997 05:00:00 GMT
cache-control: no-cache, no-store, private
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
tcn: Choice
vary: negotiate,Accept-Encoding
x-go-server: go-iad-2-6-201
x-xss-protection: 0
location: https://cks.connatix.com/cks?pid=43&ev=47e9e2b2192a4ec59ceb8e832648c812&pname=Sonobi&api-tier=1&uid=7755a991-b362-4a81-91bb-bc8b8527a27c
set-cookie: __uis=7755a991-b362-4a81-91bb-bc8b8527a27c; expires=Thu, 25 Jul 2024 16:37:26 GMT; domain=.go.sonobi.com; path=/; secure; SameSite=None
set-cookie: HAPLB8G=s86201|ZnryS; path=/; domain=.go.sonobi.com; SameSite=none; Secure
server: sonobi-go
DNS

config.privateserving.com

Request

config.privateserving.com

IN A

Response

config.privateserving.com

IN A

172.67.133.59

config.privateserving.com

IN A

104.21.5.89
DNS

cks.connatix.com

Request

cks.connatix.com

IN A

Response

cks.connatix.com

IN CNAME

cks.connatix.com.cdn.cloudflare.net

cks.connatix.com.cdn.cloudflare.net

IN A

104.18.41.104

cks.connatix.com.cdn.cloudflare.net

IN A

172.64.146.152
GET

https://config.privateserving.com/?channel=1118

Request

GET /?channel=1118 HTTP/2.0
host: config.privateserving.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/json
content-length: 152
access-control-allow-origin: https://cds.connatix.com
content-encoding: gzip
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VyeqwnyHEIIQOJ0DjN1ubvMWT0kv%2By%2FL9TNU3EE3siZuJcrz46GdpFX%2Bgh6IG%2FN73ZJoFf41tPROsTjb2GQyoslRV63eU8cM4vkpicsDnsnAwIm4BMY1Ol%2BV8QHZGP%2BzCXDxzc1cU%2BoQKEHx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 899661d7df9c06e5-LHR
alt-svc: h3=":443"; ma=86400
GET

https://sync.privateserving.com/providers

Request

GET /providers HTTP/2.0
host: sync.privateserving.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:27 GMT
content-type: application/json
content-length: 331
access-control-allow-origin: https://cds.connatix.com
access-control-expose-headers: Link
content-encoding: gzip
set-cookie: xuid=af2af4097dca9c9b1902df4255266a49; Domain=privateserving.com; SameSite=None
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E83Koc%2B8sf0xRK%2B1SnWSSpzAAUO0OASoVLF0EfIvvhSFFuCV19VmprkrDFXSyp8fH2%2BHEA7eKcbneMDEEmLKI%2Bmdw%2FtxostJoAJkXCbV%2FHqmd7HwNKrH7mr6bGjxcmD50TmvrSSS9eXmwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 899661dfce3a06e5-LHR
alt-svc: h3=":443"; ma=86400
DNS

eus.rubiconproject.com

Request

eus.rubiconproject.com

IN A

Response

eus.rubiconproject.com

IN CNAME

eus.rubiconproject.com.edgekey.net

eus.rubiconproject.com.edgekey.net

IN CNAME

e8960.b.akamaiedge.net

e8960.b.akamaiedge.net

IN A

23.60.223.190
DNS

eus.rubiconproject.com

Request

eus.rubiconproject.com

IN A

Response

eus.rubiconproject.com

IN CNAME

eus.rubiconproject.com.edgekey.net

eus.rubiconproject.com.edgekey.net

IN CNAME

e8960.b.akamaiedge.net

e8960.b.akamaiedge.net

IN A

23.60.223.190
DNS

gov.aniview.com

Request

gov.aniview.com

IN A

Response

gov.aniview.com

IN CNAME

serving-oci.aniview.com

serving-oci.aniview.com

IN A

193.122.146.140
DNS

gov.aniview.com

Request

gov.aniview.com

IN A

Response

gov.aniview.com

IN CNAME

serving-oci.aniview.com

serving-oci.aniview.com

IN A

193.122.146.140
DNS

track1.aniview.com

Request

track1.aniview.com

IN A

Response

track1.aniview.com

IN CNAME

track4.aniview.com

track4.aniview.com

IN CNAME

track-sc-was.aniview.com

track-sc-was.aniview.com

IN A

96.46.186.186
DNS

track1.aniview.com

Request

track1.aniview.com

IN A

Response

track1.aniview.com

IN CNAME

track4.aniview.com

track4.aniview.com

IN CNAME

track-sc-was.aniview.com

track-sc-was.aniview.com

IN A

96.46.186.186
GET

https://dis.criteo.com/dis/usersync.aspx?r=25&p=52&dis=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&url=https%3A%2F%2Fx.bidswitch.net%2Fsync%3Fdsp_id%3D462%26ssp%3Dconnatix%26user_id%3D%40%40CRITEO_USERID%40%40

Request

GET /dis/usersync.aspx?r=25&p=52&dis=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&url=https%3A%2F%2Fx.bidswitch.net%2Fsync%3Fdsp_id%3D462%26ssp%3Dconnatix%26user_id%3D%40%40CRITEO_USERID%40%40 HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:37:26 GMT
server: Kestrel
cache-control: no-cache
expires: Tue, 25 Jun 2024 00:00:00 GMT
location: https://x.bidswitch.net/sync?dsp_id=462&ssp=connatix&user_id=k-CnrJShnzN9zpEzKn2pDKknjmvMr567BuS89otg&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
pragma: no-cache
x-errorlevel: 0
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
cross-origin-resource-policy: cross-origin
server-processing-duration-in-ticks: 794641
strict-transport-security: max-age=31536000; preload;
DNS

cs.media.net

Request

cs.media.net

IN A

Response

cs.media.net

IN A

2.21.188.27
DNS

cs.media.net

Request

cs.media.net

IN A

Response

cs.media.net

IN A

2.21.188.27
GET

https://track1.aniview.com/track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=276&he=155&test=&d36=6.2.217&apppkg=&proto=https&clsid=9075cc6e-7801-4b45-a3b6-879a287d22d3&rando=68&scnt=1&pid=5f1b027a97ccc82f270594f7&cid=65e883651b30e72806040808&stagid=&stplid=&e=inventory&vi=0&plt=1&cb=1719333445172

Request

GET /track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=276&he=155&test=&d36=6.2.217&apppkg=&proto=https&clsid=9075cc6e-7801-4b45-a3b6-879a287d22d3&rando=68&scnt=1&pid=5f1b027a97ccc82f270594f7&cid=65e883651b30e72806040808&stagid=&stplid=&e=inventory&vi=0&plt=1&cb=1719333445172 HTTP/2.0
host: track1.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
GET

https://track1.aniview.com/track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=276&he=155&test=&d36=6.2.217&apppkg=&proto=https&clsid=9fbb510f-ed46-46ff-aacb-a60af66430ee&rando=43&scnt=1&pid=5f1b027a97ccc82f270594f7&cid=65f861a28f11c96aa307cde6&stagid=&stplid=&e=inventory&vi=0&plt=4&cb=1719333445273

Request

GET /track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=276&he=155&test=&d36=6.2.217&apppkg=&proto=https&clsid=9fbb510f-ed46-46ff-aacb-a60af66430ee&rando=43&scnt=1&pid=5f1b027a97ccc82f270594f7&cid=65f861a28f11c96aa307cde6&stagid=&stplid=&e=inventory&vi=0&plt=4&cb=1719333445273 HTTP/2.0
host: track1.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
GET

https://track1.aniview.com/track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=10821&t=1719333446&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=276&he=155&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=f5e19c453c5e03a2b9068a447a385b37&d63=f5e19c453c5e03a2b9068a447a385b37&aafaid=&proto=https&uid=1719333446685-010031243227-000907-013-000834&stagid=&stplid=&d35=&d36=6.2.217&cb=98522383995&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65e883651b30e72806040808&d37=realtime&AV_WIDTH=276&AV_HEIGHT=155&nid=5f1b027a97ccc82f270594f7&ncid=65e883651b30e72806040808&e=request&cb=1719333445764&plt=1&asid=65e884cb9b28169ac70986eb&ofpr=2.8&fpo=&ri=1

Request

GET /track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=10821&t=1719333446&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=276&he=155&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=f5e19c453c5e03a2b9068a447a385b37&d63=f5e19c453c5e03a2b9068a447a385b37&aafaid=&proto=https&uid=1719333446685-010031243227-000907-013-000834&stagid=&stplid=&d35=&d36=6.2.217&cb=98522383995&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65e883651b30e72806040808&d37=realtime&AV_WIDTH=276&AV_HEIGHT=155&nid=5f1b027a97ccc82f270594f7&ncid=65e883651b30e72806040808&e=request&cb=1719333445764&plt=1&asid=65e884cb9b28169ac70986eb&ofpr=2.8&fpo=&ri=1 HTTP/2.0
host: track1.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
GET

https://track1.aniview.com/track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=13927&t=1719333446&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=276&he=155&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=c53fe6e6b693d3fe47a3e112518ef326&d63=c53fe6e6b693d3fe47a3e112518ef326&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=89140822067&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65f861a28f11c96aa307cde6&d37=realtime&AV_WIDTH=276&AV_HEIGHT=155&&copid=5f1b027a97ccc82f270594f7&nid=59c9148628a0612da3689288&cocid=65f861a28f11c96aa307cde6&ncid=652d268fba1f909fed0c01e5&coasid=656068ef6075181ea50ea071&e=request&cb=1719333445849&plt=4&asid=655c8f3d6e79258b8e0679a6%2C620e61cc41eb3257f75af7f4%2C65ddaa92406b27ebbd0567d8&ofpr=%2C5%2C1.25&fpo=%2C%2C&ri=1%2C1%2C1

Request

GET /track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=13927&t=1719333446&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=276&he=155&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=c53fe6e6b693d3fe47a3e112518ef326&d63=c53fe6e6b693d3fe47a3e112518ef326&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=89140822067&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65f861a28f11c96aa307cde6&d37=realtime&AV_WIDTH=276&AV_HEIGHT=155&&copid=5f1b027a97ccc82f270594f7&nid=59c9148628a0612da3689288&cocid=65f861a28f11c96aa307cde6&ncid=652d268fba1f909fed0c01e5&coasid=656068ef6075181ea50ea071&e=request&cb=1719333445849&plt=4&asid=655c8f3d6e79258b8e0679a6%2C620e61cc41eb3257f75af7f4%2C65ddaa92406b27ebbd0567d8&ofpr=%2C5%2C1.25&fpo=%2C%2C&ri=1%2C1%2C1 HTTP/2.0
host: track1.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
POST

https://track1.aniview.com/track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=276&he=155&test=&d36=6.2.217&apppkg=&proto=https&clsid=9075cc6e-7801-4b45-a3b6-879a287d22d3&rando=68&scnt=1

Request

POST /track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=276&he=155&test=&d36=6.2.217&apppkg=&proto=https&clsid=9075cc6e-7801-4b45-a3b6-879a287d22d3&rando=68&scnt=1 HTTP/2.0
host: track1.aniview.com
content-length: 86
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:28 GMT
access-control-allow-origin: *
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
POST

https://track1.aniview.com/track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=13927&t=1719333446&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=276&he=155&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=c53fe6e6b693d3fe47a3e112518ef326&d63=c53fe6e6b693d3fe47a3e112518ef326&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=89140822067&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65f861a28f11c96aa307cde6&d37=realtime&AV_WIDTH=276&AV_HEIGHT=155

Request

POST /track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=13927&t=1719333446&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=276&he=155&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=c53fe6e6b693d3fe47a3e112518ef326&d63=c53fe6e6b693d3fe47a3e112518ef326&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=89140822067&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65f861a28f11c96aa307cde6&d37=realtime&AV_WIDTH=276&AV_HEIGHT=155 HTTP/2.0
host: track1.aniview.com
content-length: 752
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:28 GMT
access-control-allow-origin: *
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
GET

https://track1.aniview.com/track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=897&he=505&test=&d36=6.2.217&apppkg=&proto=https&clsid=b5ae8199-329d-4e15-8e6b-b1c7380b2098&rando=97&scnt=2&pid=5f1b027a97ccc82f270594f7&cid=65e883651b30e72806040808&stagid=&stplid=&e=inventory&vi=0&plt=1&cb=1719333449879

Request

GET /track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=897&he=505&test=&d36=6.2.217&apppkg=&proto=https&clsid=b5ae8199-329d-4e15-8e6b-b1c7380b2098&rando=97&scnt=2&pid=5f1b027a97ccc82f270594f7&cid=65e883651b30e72806040808&stagid=&stplid=&e=inventory&vi=0&plt=1&cb=1719333449879 HTTP/2.0
host: track1.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:30 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
GET

https://track1.aniview.com/track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=897&he=505&test=&d36=6.2.217&apppkg=&proto=https&clsid=2bf24b61-3d09-415d-be20-db7eda9aee80&rando=10&scnt=2&pid=5f1b027a97ccc82f270594f7&cid=65f861a28f11c96aa307cde6&stagid=&stplid=&e=inventory&vi=0&plt=4&cb=1719333449955

Request

GET /track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=897&he=505&test=&d36=6.2.217&apppkg=&proto=https&clsid=2bf24b61-3d09-415d-be20-db7eda9aee80&rando=10&scnt=2&pid=5f1b027a97ccc82f270594f7&cid=65f861a28f11c96aa307cde6&stagid=&stplid=&e=inventory&vi=0&plt=4&cb=1719333449955 HTTP/2.0
host: track1.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
GET

https://track1.aniview.com/track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=11676&t=1719333451&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=897&he=505&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=9bf86bd9ac030c35c474ebad829c5c85&d63=9bf86bd9ac030c35c474ebad829c5c85&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=55843930688&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65e883651b30e72806040808&d37=realtime&AV_WIDTH=897&AV_HEIGHT=505&nid=5f1b027a97ccc82f270594f7&ncid=65e883651b30e72806040808&e=request&cb=1719333450360&plt=1&asid=65e884cb9b28169ac70986eb&ofpr=2.8&fpo=&ri=1

Request

GET /track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=11676&t=1719333451&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=897&he=505&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=9bf86bd9ac030c35c474ebad829c5c85&d63=9bf86bd9ac030c35c474ebad829c5c85&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=55843930688&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65e883651b30e72806040808&d37=realtime&AV_WIDTH=897&AV_HEIGHT=505&nid=5f1b027a97ccc82f270594f7&ncid=65e883651b30e72806040808&e=request&cb=1719333450360&plt=1&asid=65e884cb9b28169ac70986eb&ofpr=2.8&fpo=&ri=1 HTTP/2.0
host: track1.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
GET

https://track1.aniview.com/track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=90387&t=1719333451&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=897&he=505&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=4e42c001e839037210c6b8f3994de137&d63=4e42c001e839037210c6b8f3994de137&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=99418550969&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65f861a28f11c96aa307cde6&d37=realtime&AV_WIDTH=897&AV_HEIGHT=505&&copid=5f1b027a97ccc82f270594f7&nid=59c9148628a0612da3689288&cocid=65f861a28f11c96aa307cde6&ncid=652d268fba1f909fed0c01e5&coasid=656068ef6075181ea50ea071&e=request&cb=1719333450450&plt=4&asid=655c8f3d6e79258b8e0679a6%2C65ddaa92406b27ebbd0567d8%2C620e61cc41eb3257f75af7f4&ofpr=%2C1.25%2C5&fpo=%2C%2C&ri=1%2C1%2C1

Request

GET /track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=90387&t=1719333451&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=897&he=505&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=4e42c001e839037210c6b8f3994de137&d63=4e42c001e839037210c6b8f3994de137&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=99418550969&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65f861a28f11c96aa307cde6&d37=realtime&AV_WIDTH=897&AV_HEIGHT=505&&copid=5f1b027a97ccc82f270594f7&nid=59c9148628a0612da3689288&cocid=65f861a28f11c96aa307cde6&ncid=652d268fba1f909fed0c01e5&coasid=656068ef6075181ea50ea071&e=request&cb=1719333450450&plt=4&asid=655c8f3d6e79258b8e0679a6%2C65ddaa92406b27ebbd0567d8%2C620e61cc41eb3257f75af7f4&ofpr=%2C1.25%2C5&fpo=%2C%2C&ri=1%2C1%2C1 HTTP/2.0
host: track1.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
POST

https://track1.aniview.com/track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=11676&t=1719333451&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=897&he=505&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=9bf86bd9ac030c35c474ebad829c5c85&d63=9bf86bd9ac030c35c474ebad829c5c85&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=55843930688&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65e883651b30e72806040808&d37=realtime&AV_WIDTH=897&AV_HEIGHT=505

Request

POST /track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=11676&t=1719333451&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=897&he=505&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=9bf86bd9ac030c35c474ebad829c5c85&d63=9bf86bd9ac030c35c474ebad829c5c85&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=55843930688&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65e883651b30e72806040808&d37=realtime&AV_WIDTH=897&AV_HEIGHT=505 HTTP/2.0
host: track1.aniview.com
content-length: 86
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
access-control-allow-origin: *
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
POST

https://track1.aniview.com/track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=90387&t=1719333451&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=897&he=505&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=4e42c001e839037210c6b8f3994de137&d63=4e42c001e839037210c6b8f3994de137&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=99418550969&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65f861a28f11c96aa307cde6&d37=realtime&AV_WIDTH=897&AV_HEIGHT=505

Request

POST /track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=90387&t=1719333451&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=897&he=505&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=4e42c001e839037210c6b8f3994de137&d63=4e42c001e839037210c6b8f3994de137&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=99418550969&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65f861a28f11c96aa307cde6&d37=realtime&AV_WIDTH=897&AV_HEIGHT=505 HTTP/2.0
host: track1.aniview.com
content-length: 752
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:32 GMT
access-control-allow-origin: *
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
GET

https://track1.aniview.com/track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=897&he=505&test=&d36=6.2.217&apppkg=&proto=https&clsid=b432092a-85c9-4b9a-9ead-ebdce33ee6a5&rando=45&scnt=3&pid=5f1b027a97ccc82f270594f7&cid=65e883651b30e72806040808&stagid=&stplid=&e=inventory&vi=0&plt=1&cb=1719333455183

Request

GET /track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=897&he=505&test=&d36=6.2.217&apppkg=&proto=https&clsid=b432092a-85c9-4b9a-9ead-ebdce33ee6a5&rando=45&scnt=3&pid=5f1b027a97ccc82f270594f7&cid=65e883651b30e72806040808&stagid=&stplid=&e=inventory&vi=0&plt=1&cb=1719333455183 HTTP/2.0
host: track1.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:36 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
GET

https://track1.aniview.com/track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=42922&t=1719333456&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=897&he=505&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=e063e743690f75a61838680d57c84e93&d63=e063e743690f75a61838680d57c84e93&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=38115019625&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65e883651b30e72806040808&d37=realtime&AV_WIDTH=897&AV_HEIGHT=505&nid=5f1b027a97ccc82f270594f7&ncid=65e883651b30e72806040808&e=request&cb=1719333455326&plt=1&asid=65e884cb9b28169ac70986eb&ofpr=2.8&fpo=&ri=1

Request

GET /track?d=Chrome&cou=GB&cos=Windows&r=pixelpoint.tv&rs=pixelpoint.tv&sid=42922&t=1719333456&cip=191.101.209.39&sn=&tgt=1&osv=10&bv=106.0&brn=Chrome&wi=897&he=505&app=&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&test=&d64=e063e743690f75a61838680d57c84e93&d63=e063e743690f75a61838680d57c84e93&aafaid=&proto=https&uid=1719333446682-010031169166-000843-012-009964&stagid=&stplid=&d35=&d36=6.2.217&cb=38115019625&d39=&d65=&d66=&d74=&d56=&d86=&d87=&d88=&d89=&d90=&apppkg=&d9=0000&d22=5f1b027a97ccc82f270594f7&d24=65e883651b30e72806040808&d37=realtime&AV_WIDTH=897&AV_HEIGHT=505&nid=5f1b027a97ccc82f270594f7&ncid=65e883651b30e72806040808&e=request&cb=1719333455326&plt=1&asid=65e884cb9b28169ac70986eb&ofpr=2.8&fpo=&ri=1 HTTP/2.0
host: track1.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:36 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
POST

https://track1.aniview.com/track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=897&he=505&test=&d36=6.2.217&apppkg=&proto=https&clsid=b432092a-85c9-4b9a-9ead-ebdce33ee6a5&rando=45&scnt=3

Request

POST /track?r=pixelpoint.tv&sn=&ic=0&tgt=1&app=&wi=897&he=505&test=&d36=6.2.217&apppkg=&proto=https&clsid=b432092a-85c9-4b9a-9ead-ebdce33ee6a5&rando=45&scnt=3 HTTP/2.0
host: track1.aniview.com
content-length: 86
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:36 GMT
access-control-allow-origin: *
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av21.0.0-ac59002d94e250b7f8a55be9eda71b1d9d2ddbdc; path=/
GET

https://gov.aniview.com/api/adserver/tag/?AV_URL=pixelpoint.tv%2F&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=null&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65e883651b30e72806040808&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65e883651b30e72806040808/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=445171&omv=1.0.1&clsid=9075cc6e-7801-4b45-a3b6-879a287d22d3&rando=68&scnt=1&AV_WIDTH=276&AV_HEIGHT=155&AV_DNT=0&cb=1719333445173&wfc=1

Request

GET /api/adserver/tag/?AV_URL=pixelpoint.tv%2F&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=null&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65e883651b30e72806040808&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65e883651b30e72806040808/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=445171&omv=1.0.1&clsid=9075cc6e-7801-4b45-a3b6-879a287d22d3&rando=68&scnt=1&AV_WIDTH=276&AV_HEIGHT=155&AV_DNT=0&cb=1719333445173&wfc=1 HTTP/2.0
host: gov.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/json
vary: Accept-Encoding
set-cookie: aniC=1719333446685-010031243227-000907-013-000834; Expires=Mon, 15-Jul-24 16:37:26 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-origin: https://cds.connatix.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, DELETE, PUT, OPTIONS, INDEX
access-control-allow-headers: Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Bamboo-Token,Event-Id,X-Requested-With
access-control-max-age: 1728000
x-bamboo-c-s: BYPASS
x-bamboo-c-skfe: 1
x-bamboo-c-skst: 1
expires: Fri, 14 Jun 2024 02:50:46 GMT
cache-control: no-cache
accept-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
critical-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
content-encoding: gzip
alt-svc: h3=":443";ma=60;
GET

https://gov.aniview.com/api/adserver/tag/?AV_URL=pixelpoint.tv%2F&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=null&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65f861a28f11c96aa307cde6&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65f861a28f11c96aa307cde6/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=445273&omv=1.0.1&clsid=9fbb510f-ed46-46ff-aacb-a60af66430ee&rando=43&scnt=1&AV_WIDTH=276&AV_HEIGHT=155&AV_DNT=0&cb=1719333445273&wfc=1

Request

GET /api/adserver/tag/?AV_URL=pixelpoint.tv%2F&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=null&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65f861a28f11c96aa307cde6&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65f861a28f11c96aa307cde6/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=445273&omv=1.0.1&clsid=9fbb510f-ed46-46ff-aacb-a60af66430ee&rando=43&scnt=1&AV_WIDTH=276&AV_HEIGHT=155&AV_DNT=0&cb=1719333445273&wfc=1 HTTP/2.0
host: gov.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
content-type: application/json
vary: Accept-Encoding
set-cookie: aniC=1719333446682-010031169166-000843-012-009964; Expires=Mon, 15-Jul-24 16:37:26 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-origin: https://cds.connatix.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, DELETE, PUT, OPTIONS, INDEX
access-control-allow-headers: Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Bamboo-Token,Event-Id,X-Requested-With
access-control-max-age: 1728000
x-bamboo-c-s: BYPASS
x-bamboo-c-skfe: 1
x-bamboo-c-skst: 1
expires: Fri, 14 Jun 2024 02:50:46 GMT
cache-control: no-cache
accept-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
critical-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
content-encoding: gzip
alt-svc: h3=":443";ma=60;
GET

https://gov.aniview.com/api/adserver/tag/?AV_URL=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65e883651b30e72806040808&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65e883651b30e72806040808/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=449878&omv=1.0.1&clsid=b5ae8199-329d-4e15-8e6b-b1c7380b2098&rando=97&scnt=2&AV_WIDTH=897&AV_HEIGHT=505&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_DNT=0&cb=1719333449881&AV_C_USER_ID=1719333446682-010031169166-000843-012-009964&wfc=1

Request

GET /api/adserver/tag/?AV_URL=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65e883651b30e72806040808&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65e883651b30e72806040808/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=449878&omv=1.0.1&clsid=b5ae8199-329d-4e15-8e6b-b1c7380b2098&rando=97&scnt=2&AV_WIDTH=897&AV_HEIGHT=505&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_DNT=0&cb=1719333449881&AV_C_USER_ID=1719333446682-010031169166-000843-012-009964&wfc=1 HTTP/2.0
host: gov.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
content-type: application/json
vary: Accept-Encoding
set-cookie: aniC=1719333446682-010031169166-000843-012-009964; Expires=Mon, 15-Jul-24 16:37:31 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-origin: https://cds.connatix.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, DELETE, PUT, OPTIONS, INDEX
access-control-allow-headers: Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Bamboo-Token,Event-Id,X-Requested-With
access-control-max-age: 1728000
x-bamboo-c-s: BYPASS
x-bamboo-c-skfe: 1
x-bamboo-c-skst: 1
expires: Fri, 14 Jun 2024 02:50:51 GMT
cache-control: no-cache
accept-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
critical-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
content-encoding: gzip
alt-svc: h3=":443";ma=60;
GET

https://gov.aniview.com/api/adserver/tag/?AV_URL=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65f861a28f11c96aa307cde6&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65f861a28f11c96aa307cde6/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=449954&omv=1.0.1&clsid=2bf24b61-3d09-415d-be20-db7eda9aee80&rando=10&scnt=2&AV_WIDTH=897&AV_HEIGHT=505&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_DNT=0&cb=1719333449955&AV_C_USER_ID=1719333446682-010031169166-000843-012-009964&wfc=1

Request

GET /api/adserver/tag/?AV_URL=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65f861a28f11c96aa307cde6&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65f861a28f11c96aa307cde6/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=449954&omv=1.0.1&clsid=2bf24b61-3d09-415d-be20-db7eda9aee80&rando=10&scnt=2&AV_WIDTH=897&AV_HEIGHT=505&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_DNT=0&cb=1719333449955&AV_C_USER_ID=1719333446682-010031169166-000843-012-009964&wfc=1 HTTP/2.0
host: gov.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
content-type: application/json
vary: Accept-Encoding
set-cookie: aniC=1719333446682-010031169166-000843-012-009964; Expires=Mon, 15-Jul-24 16:37:31 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-origin: https://cds.connatix.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, DELETE, PUT, OPTIONS, INDEX
access-control-allow-headers: Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Bamboo-Token,Event-Id,X-Requested-With
access-control-max-age: 1728000
x-bamboo-c-s: BYPASS
x-bamboo-c-skfe: 1
x-bamboo-c-skst: 1
expires: Fri, 14 Jun 2024 02:50:51 GMT
cache-control: no-cache
accept-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
critical-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
content-encoding: gzip
alt-svc: h3=":443";ma=60;
GET

https://gov.aniview.com/api/adserver/tag/?AV_URL=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65e883651b30e72806040808&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65e883651b30e72806040808/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=455183&omv=1.0.1&clsid=b432092a-85c9-4b9a-9ead-ebdce33ee6a5&rando=45&scnt=3&AV_WIDTH=897&AV_HEIGHT=505&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_DNT=0&cb=1719333455183&AV_C_USER_ID=1719333446682-010031169166-000843-012-009964&wfc=1

Request

GET /api/adserver/tag/?AV_URL=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65e883651b30e72806040808&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65e883651b30e72806040808/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=455183&omv=1.0.1&clsid=b432092a-85c9-4b9a-9ead-ebdce33ee6a5&rando=45&scnt=3&AV_WIDTH=897&AV_HEIGHT=505&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_DNT=0&cb=1719333455183&AV_C_USER_ID=1719333446682-010031169166-000843-012-009964&wfc=1 HTTP/2.0
host: gov.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:36 GMT
content-type: application/json
vary: Accept-Encoding
set-cookie: aniC=1719333446682-010031169166-000843-012-009964; Expires=Mon, 15-Jul-24 16:37:36 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-origin: https://cds.connatix.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, DELETE, PUT, OPTIONS, INDEX
access-control-allow-headers: Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Bamboo-Token,Event-Id,X-Requested-With
access-control-max-age: 1728000
x-bamboo-c-s: BYPASS
x-bamboo-c-skfe: 1
x-bamboo-c-skst: 1
expires: Fri, 14 Jun 2024 02:50:56 GMT
cache-control: no-cache
accept-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
critical-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
content-encoding: gzip
alt-svc: h3=":443";ma=60;
GET

https://cs.media.net/cksync?cs=37&type=cn&redirect=https%3A%2F%2Fcapi.connatix.com%2Fcore%2Fus%3FDemandPartner%3D31%26UserId%3D47e9e2b2192a4ec59ceb8e832648c812%26DemandPartnerName%3DMediaNet%26tier%3D1%26DemandPartnerUserId%3D%3Cvsid%3E&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /cksync?cs=37&type=cn&redirect=https%3A%2F%2Fcapi.connatix.com%2Fcore%2Fus%3FDemandPartner%3D31%26UserId%3D47e9e2b2192a4ec59ceb8e832648c812%26DemandPartnerName%3DMediaNet%26tier%3D1%26DemandPartnerUserId%3D%3Cvsid%3E&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/1.1
Host: cs.media.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: visitor-id=3623348742093549000V10; data-g=CAESECwH1UczWMWFpTPAOLSJyfY~~52; data-bs=4f62fbba-ecd4-4b71-afc7-4916045d677d~~52; data-c=868b39e2-997b-433c-bce9-379e12258c8f~~52; data-c-ts=1719333275; data-co=AQAGxOftSrzMowIMxUtUAQEBAQEBAQCRUT7HGQEBAJFRPscZ~~52; data-lop=20bd0165-7caa-4b7b-8b83-5936300ad204~~52

Response

HTTP/1.1 302 Moved Temporarily

Server: Apache
Content-Length: 154
Content-Type: text/html
Location: https://capi.connatix.com/core/us?DemandPartner=31&UserId=47e9e2b2192a4ec59ceb8e832648c812&DemandPartnerName=MediaNet&tier=1&DemandPartnerUserId=3623348742093549000V10
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA"
x-mnet-hl2: E
Expires: Tue, 25 Jun 2024 16:37:26 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 25 Jun 2024 16:37:26 GMT
Connection: keep-alive
GET

https://cs.media.net/cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c

Request

GET /cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c HTTP/1.1
Host: cs.media.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://contextual.media.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: visitor-id=3623348742093549000V10; data-g=CAESECwH1UczWMWFpTPAOLSJyfY~~52; data-bs=4f62fbba-ecd4-4b71-afc7-4916045d677d~~52; data-c=868b39e2-997b-433c-bce9-379e12258c8f~~52; data-c-ts=1719333275; data-co=AQAGxOftSrzMowIMxUtUAQEBAQEBAQCRUT7HGQEBAJFRPscZ~~52; data-lop=20bd0165-7caa-4b7b-8b83-5936300ad204~~52; data-ris={{APID}}~~52

Response

HTTP/1.1 200 OK

Server: Apache
Content-Length: 59
Content-Type: image/gif
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA"
x-mnet-hl2: E
Expires: Tue, 25 Jun 2024 16:37:34 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 25 Jun 2024 16:37:34 GMT
Connection: keep-alive
GET

https://cs.media.net/cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c

Request

GET /cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c HTTP/1.1
Host: cs.media.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://contextual.media.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: visitor-id=3623348742093549000V10; data-g=CAESECwH1UczWMWFpTPAOLSJyfY~~52; data-bs=4f62fbba-ecd4-4b71-afc7-4916045d677d~~52; data-c=868b39e2-997b-433c-bce9-379e12258c8f~~52; data-c-ts=1719333275; data-co=AQAGxOftSrzMowIMxUtUAQEBAQEBAQCRUT7HGQEBAJFRPscZ~~52; data-lop=20bd0165-7caa-4b7b-8b83-5936300ad204~~52; data-ris={{APID}}~~52; data-pba=6F33541D-0234-4D12-A971-323BE606F1A8~~52; data-r=LXUMMYH8-18-IISD~~52

Response

HTTP/1.1 200 OK

Server: Apache
Content-Length: 59
Content-Type: image/gif
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA"
x-mnet-hl2: E
Expires: Tue, 25 Jun 2024 16:37:42 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 25 Jun 2024 16:37:42 GMT
Connection: keep-alive
GET

https://id5-sync.com/bounce

Request

GET /bounce HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#2
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
access-control-allow-origin: https://pixelpoint.tv
vary: Origin
access-control-allow-credentials: true
content-type: text/plain;charset=utf-8
strict-transport-security: max-age=63072000; includeSubDomains; preload
POST

https://id5-sync.com/gm/v3

Request

POST /gm/v3 HTTP/2.0
host: id5-sync.com
content-length: 3316
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#2
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:26 GMT
p3p: CP="CAO PSA OUR"
set-cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#3; Path=/; Domain=id5-sync.com; Expires=Mon, 23 Sep 2024 16:37:26 GMT; Max-Age=7776000; SameSite=None; Secure
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://pixelpoint.tv
vary: Origin
access-control-allow-credentials: true
content-type: application/json
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/bounce

Request

GET /bounce HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#3

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:30 GMT
access-control-allow-origin: https://pixelpoint.tv
vary: Origin
access-control-allow-credentials: true
content-type: text/plain;charset=utf-8
strict-transport-security: max-age=63072000; includeSubDomains; preload
POST

https://id5-sync.com/gm/v3

Request

POST /gm/v3 HTTP/2.0
host: id5-sync.com
content-length: 1899
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#3

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
p3p: CP="CAO PSA OUR"
set-cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#4; Path=/; Domain=id5-sync.com; Expires=Mon, 23 Sep 2024 16:37:31 GMT; Max-Age=7776000; SameSite=None; Secure
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://pixelpoint.tv
vary: Origin
access-control-allow-credentials: true
content-type: application/json
strict-transport-security: max-age=63072000; includeSubDomains; preload
POST

https://id5-sync.com/api/config/prebid

Request

POST /api/config/prebid HTTP/2.0
host: id5-sync.com
content-length: 136
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#4

Response

HTTP/2.0 200

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
access-control-allow-origin: https://cds.connatix.com
vary: Origin
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
date: Tue, 25 Jun 2024 16:37:30 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
POST

https://id5-sync.com/api/config/prebid

Request

POST /api/config/prebid HTTP/2.0
host: id5-sync.com
content-length: 136
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#4

Response

HTTP/2.0 200

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
access-control-allow-origin: https://cds.connatix.com
vary: Origin
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
date: Tue, 25 Jun 2024 16:37:30 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
POST

https://id5-sync.com/g/v2/1482.json

Request

POST /g/v2/1482.json HTTP/2.0
host: id5-sync.com
content-length: 359
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#4

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
access-control-allow-origin: https://cds.connatix.com
vary: Origin
access-control-allow-credentials: true
content-type: application/json
strict-transport-security: max-age=63072000; includeSubDomains; preload
POST

https://id5-sync.com/g/v2/1482.json

Request

POST /g/v2/1482.json HTTP/2.0
host: id5-sync.com
content-length: 359
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#4

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
access-control-allow-origin: https://cds.connatix.com
vary: Origin
access-control-allow-credentials: true
content-type: application/json
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/bounce

Request

GET /bounce HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#4

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
access-control-allow-origin: https://pixelpoint.tv
vary: Origin
access-control-allow-credentials: true
content-type: text/plain;charset=utf-8
strict-transport-security: max-age=63072000; includeSubDomains; preload
POST

https://id5-sync.com/gm/v3

Request

POST /gm/v3 HTTP/2.0
host: id5-sync.com
content-length: 5326
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#4

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
p3p: CP="CAO PSA OUR"
set-cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#5; Path=/; Domain=id5-sync.com; Expires=Mon, 23 Sep 2024 16:37:31 GMT; Max-Age=7776000; SameSite=None; Secure
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://pixelpoint.tv
vary: Origin
access-control-allow-credentials: true
content-type: application/json
strict-transport-security: max-age=63072000; includeSubDomains; preload
DNS

lb.eu-1-id5-sync.com

Request

lb.eu-1-id5-sync.com

IN A

Response

lb.eu-1-id5-sync.com

IN A

162.19.138.116

lb.eu-1-id5-sync.com

IN A

162.19.138.120

lb.eu-1-id5-sync.com

IN A

162.19.138.82

lb.eu-1-id5-sync.com

IN A

162.19.138.118

lb.eu-1-id5-sync.com

IN A

162.19.138.117

lb.eu-1-id5-sync.com

IN A

162.19.138.83

lb.eu-1-id5-sync.com

IN A

141.95.98.65

lb.eu-1-id5-sync.com

IN A

141.95.98.64

lb.eu-1-id5-sync.com

IN A

141.95.33.120

lb.eu-1-id5-sync.com

IN A

162.19.138.119
GET

https://lb.eu-1-id5-sync.com/lb/v1

Request

GET /lb/v1 HTTP/2.0
host: lb.eu-1-id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
access-control-allow-origin: https://pixelpoint.tv
vary: Origin
content-type: application/json;charset=UTF-8
date: Tue, 25 Jun 2024 16:37:25 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://lb.eu-1-id5-sync.com/lb/v1

Request

GET /lb/v1 HTTP/2.0
host: lb.eu-1-id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
access-control-allow-origin: https://pixelpoint.tv
vary: Origin
content-type: application/json;charset=UTF-8
date: Tue, 25 Jun 2024 16:37:30 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://lb.eu-1-id5-sync.com/lb/v1

Request

GET /lb/v1 HTTP/2.0
host: lb.eu-1-id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
access-control-allow-origin: https://cds.connatix.com
vary: Origin
content-type: application/json;charset=UTF-8
date: Tue, 25 Jun 2024 16:37:30 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://lb.eu-1-id5-sync.com/lb/v1

Request

GET /lb/v1 HTTP/2.0
host: lb.eu-1-id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
access-control-allow-origin: https://cds.connatix.com
vary: Origin
content-type: application/json;charset=UTF-8
date: Tue, 25 Jun 2024 16:37:30 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://lb.eu-1-id5-sync.com/lb/v1

Request

GET /lb/v1 HTTP/2.0
host: lb.eu-1-id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
access-control-allow-origin: https://pixelpoint.tv
vary: Origin
content-type: application/json;charset=UTF-8
date: Tue, 25 Jun 2024 16:37:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
DNS

s2s.aniview.com

Request

s2s.aniview.com

IN A

Response

s2s.aniview.com

IN CNAME

s2s-sc-main-was.aniview.com

s2s-sc-main-was.aniview.com

IN A

172.240.45.70
DNS

sync.aniview.com

Request

sync.aniview.com

IN A

Response

sync.aniview.com

IN CNAME

sync-sc.aniview.com

sync-sc.aniview.com

IN A

96.46.186.182
DNS

sync.aniview.com

Request

sync.aniview.com

IN A

Response

sync.aniview.com

IN CNAME

sync-sc.aniview.com

sync-sc.aniview.com

IN A

96.46.186.182
POST

https://s2s.aniview.com/api/adserver/s2s?auc_id=c53fe6e6b693d3fe47a3e112518ef326&wpm=&ssrtb=&pbjs=&tms=&AV_C_USER_ID=1719333446682-010031169166-000843-012-009964&AV_URL=pixelpoint.tv%2F&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=null&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65f861a28f11c96aa307cde6&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65f861a28f11c96aa307cde6/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=445273&omv=1.0.1&clsid=9fbb510f-ed46-46ff-aacb-a60af66430ee&rando=43&scnt=1&AV_WIDTH=276&AV_HEIGHT=155&AV_DNT=0&cb=9333445846&wfc=1&tgt=1&&AV_VI=100&AV_VID=0&d4=1&d5=0&AV_PLCMT=4&AV_PLACEMENT=3&AV_PLAYBACKMETHOD=2&AV_IRISID=&AV_IRISIDCTX=&ms2s=1

Request

POST /api/adserver/s2s?auc_id=c53fe6e6b693d3fe47a3e112518ef326&wpm=&ssrtb=&pbjs=&tms=&AV_C_USER_ID=1719333446682-010031169166-000843-012-009964&AV_URL=pixelpoint.tv%2F&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=null&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65f861a28f11c96aa307cde6&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65f861a28f11c96aa307cde6/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=445273&omv=1.0.1&clsid=9fbb510f-ed46-46ff-aacb-a60af66430ee&rando=43&scnt=1&AV_WIDTH=276&AV_HEIGHT=155&AV_DNT=0&cb=9333445846&wfc=1&tgt=1&&AV_VI=100&AV_VID=0&d4=1&d5=0&AV_PLCMT=4&AV_PLACEMENT=3&AV_PLAYBACKMETHOD=2&AV_IRISID=&AV_IRISIDCTX=&ms2s=1 HTTP/2.0
host: s2s.aniview.com
content-length: 23
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:27 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: https://cds.connatix.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, DELETE, PUT, OPTIONS, INDEX
access-control-allow-headers: Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Bamboo-Token,Event-Id,X-Requested-With
access-control-max-age: 1728000
x-bamboo-c-s: BYPASS
x-bamboo-c-skfe: 1
x-bamboo-c-skst: 1
expires: Fri, 14 Jun 2024 02:50:47 GMT
cache-control: no-cache
accept-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
critical-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
content-encoding: gzip
alt-svc: h3=":443";ma=60;
POST

https://s2s.aniview.com/api/adserver/s2s?auc_id=4e42c001e839037210c6b8f3994de137&wpm=&ssrtb=&pbjs=&tms=&AV_URL=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65f861a28f11c96aa307cde6&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65f861a28f11c96aa307cde6/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=449954&omv=1.0.1&clsid=2bf24b61-3d09-415d-be20-db7eda9aee80&rando=10&scnt=2&AV_WIDTH=897&AV_HEIGHT=505&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_DNT=0&cb=9333450450&AV_C_USER_ID=1719333446682-010031169166-000843-012-009964&wfc=1&tgt=1&&AV_VI=100&AV_VID=0&d4=1&d5=0&AV_PLCMT=4&AV_PLACEMENT=3&AV_PLAYBACKMETHOD=2&AV_IRISID=&AV_IRISIDCTX=&ms2s=1

Request

POST /api/adserver/s2s?auc_id=4e42c001e839037210c6b8f3994de137&wpm=&ssrtb=&pbjs=&tms=&AV_URL=pixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&AV_SCHAIN=1.0%2C1!connatix.com%2C520667175065539%2C1%2C%2C%2C%2C&AV_CCPA=&AV_GDPR=1&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_SECURED=1&AV_LANGUAGE=en&AV_PUBLISHERID=5f1b027a97ccc82f270594f7&AV_CHANNELID=65f861a28f11c96aa307cde6&tgt=1&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=[AVC_ABT]&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=pixelpoint.tv&AV_GPID=/5f1b027a97ccc82f270594f7/65f861a28f11c96aa307cde6/pixelpoint.tv&d36=6.2.217&responsive=1&sver=4&avtoken=449954&omv=1.0.1&clsid=2bf24b61-3d09-415d-be20-db7eda9aee80&rando=10&scnt=2&AV_WIDTH=897&AV_HEIGHT=505&AV_CONSENT=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&AV_DNT=0&cb=9333450450&AV_C_USER_ID=1719333446682-010031169166-000843-012-009964&wfc=1&tgt=1&&AV_VI=100&AV_VID=0&d4=1&d5=0&AV_PLCMT=4&AV_PLACEMENT=3&AV_PLAYBACKMETHOD=2&AV_IRISID=&AV_IRISIDCTX=&ms2s=1 HTTP/2.0
host: s2s.aniview.com
content-length: 23
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_5=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: https://cds.connatix.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, DELETE, PUT, OPTIONS, INDEX
access-control-allow-headers: Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Bamboo-Token,Event-Id,X-Requested-With
access-control-max-age: 1728000
x-bamboo-c-s: BYPASS
x-bamboo-c-skfe: 1
x-bamboo-c-skst: 1
expires: Fri, 14 Jun 2024 02:50:51 GMT
cache-control: no-cache
accept-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
critical-ch: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
content-encoding: gzip
alt-svc: h3=":443";ma=60;
DNS

cs.pgammedia.com

Request

cs.pgammedia.com

IN A

Response

cs.pgammedia.com

IN A

80.77.87.200
DNS

1f2e7.v.fwmrm.net

Request

1f2e7.v.fwmrm.net

IN A

Response

1f2e7.v.fwmrm.net

IN CNAME

g11v.fwgtm.akadns.net

g11v.fwgtm.akadns.net

IN CNAME

eu-west-digital-v4-active.fwgtm.akadns.net

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.174

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.172

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.184

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.182

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.161

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.163

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.164

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.162

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.171

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.181

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.183

eu-west-digital-v4-active.fwgtm.akadns.net

IN A

3.69.181.173
GET

https://1f2e7.v.fwmrm.net/ad/u?_dv=2&dsp_user_mapping=true&127719=c8c7976584f14fb4448a4ab62824b11&rdU=https%3A%2F%2Fads.stickyadstv.com%2Fuser-registering%3FdataProviderId%3D1169%26userId%3d%23%7buser.id%7d%26gdpr%3d1%26gdpr_consent%3dnull&gdpr=1&gdpr_consent=null

Request

GET /ad/u?_dv=2&dsp_user_mapping=true&127719=c8c7976584f14fb4448a4ab62824b11&rdU=https%3A%2F%2Fads.stickyadstv.com%2Fuser-registering%3FdataProviderId%3D1169%26userId%3d%23%7buser.id%7d%26gdpr%3d1%26gdpr_consent%3dnull&gdpr=1&gdpr_consent=null HTTP/1.1
Host: 1f2e7.v.fwmrm.net
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://cds.connatix.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

Date: Tue, 25 Jun 2024 16:37:27 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=300
Cache-Control: no-store
Expires: 0
Location: https://ads.stickyadstv.com/user-registering?dataProviderId=1169&userId=umv1231_7385617513773480694&gdpr=1&gdpr_consent=null
Pragma: no-cache
Set-Cookie: _uid=umv1231_7385617513773480694; Path=/; Domain=fwmrm.net; Expires=Sun, 22 Dec 2024 16:37:27 GMT; Secure; SameSite=None
X-Fw-Request-Id: umv1231_1719333447870136796
P3P: policyref="https://www.freewheel.tv/w3c/p3p.xml",CP="ALL DSP COR NID"
GET

https://sync.aniview.com/cookiesyncendpoint?auid=1719333446682-010031169166-000843-012-009964&biddername=200&key=OPTOUT

Request

GET /cookiesyncendpoint?auid=1719333446682-010031169166-000843-012-009964&biddername=200&key=OPTOUT HTTP/2.0
host: sync.aniview.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:27 GMT
content-length: 0
GET

https://sync.aniview.com/cookiesyncendpoint?auid=1719333446682-010031169166-000843-012-009964&biddername=55&key=8159859772855155319

Request

GET /cookiesyncendpoint?auid=1719333446682-010031169166-000843-012-009964&biddername=55&key=8159859772855155319 HTTP/2.0
host: sync.aniview.com
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964

Response

HTTP/2.0 200

set-cookie: 1_C_55=8159859772855155319; Path=/; Domain=aniview.com; Expires=Fri, 05 Jul 2024 16:37:27 GMT; Secure; SameSite=None
set-cookie: 1_C_55=8159859772855155319; Path=/; Expires=Fri, 05 Jul 2024 16:37:27 GMT; Secure; SameSite=None
date: Tue, 25 Jun 2024 16:37:27 GMT
content-length: 0
GET

https://sync.aniview.com/cookiesyncendpoint?auid=1719333446682-010031169166-000843-012-009964&biddername=1&key=6F33541D-0234-4D12-A971-323BE606F1A8

Request

GET /cookiesyncendpoint?auid=1719333446682-010031169166-000843-012-009964&biddername=1&key=6F33541D-0234-4D12-A971-323BE606F1A8 HTTP/2.0
host: sync.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964

Response

HTTP/2.0 200

set-cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8; Path=/; Domain=aniview.com; Expires=Fri, 05 Jul 2024 16:37:27 GMT; Secure; SameSite=None
set-cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8; Path=/; Expires=Fri, 05 Jul 2024 16:37:27 GMT; Secure; SameSite=None
date: Tue, 25 Jun 2024 16:37:27 GMT
content-length: 0
GET

https://sync.aniview.com/cookiesyncendpoint?auid=1719333446682-010031169166-000843-012-009964&biddername=1&key=6F33541D-0234-4D12-A971-323BE606F1A8

Request

GET /cookiesyncendpoint?auid=1719333446682-010031169166-000843-012-009964&biddername=1&key=6F33541D-0234-4D12-A971-323BE606F1A8 HTTP/2.0
host: sync.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://ads.pubmatic.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964

Response

HTTP/2.0 200

set-cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8; Path=/; Domain=aniview.com; Expires=Fri, 05 Jul 2024 16:37:27 GMT; Secure; SameSite=None
set-cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8; Path=/; Expires=Fri, 05 Jul 2024 16:37:27 GMT; Secure; SameSite=None
date: Tue, 25 Jun 2024 16:37:27 GMT
content-length: 0
GET

https://sync.aniview.com/cookiesyncendpoint?biddername=5&pid=59c9148628a0612da3689288&key=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /cookiesyncendpoint?biddername=5&pid=59c9148628a0612da3689288&key=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: sync.aniview.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: aniC=1719333446682-010031169166-000843-012-009964
cookie: 1_C_55=8159859772855155319
cookie: 1_C_55=8159859772855155319
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: 1_C_1=6F33541D-0234-4D12-A971-323BE606F1A8

Response

HTTP/2.0 200

set-cookie: 1_C_5=LXUMMYH8-18-IISD; Path=/; Domain=aniview.com; Expires=Fri, 05 Jul 2024 16:37:28 GMT; Secure; SameSite=None
set-cookie: 1_C_5=LXUMMYH8-18-IISD; Path=/; Expires=Fri, 05 Jul 2024 16:37:28 GMT; Secure; SameSite=None
date: Tue, 25 Jun 2024 16:37:28 GMT
content-length: 0
GET

https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

Request

GET /khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://eus.rubiconproject.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gq4J0tTKkqDpS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
access-control-allow-credentials: true
access-control-allow-origin: https://eus.rubiconproject.com
content-type: application/json; charset=UTF-8
content-length: 7
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:27 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:27 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

Request

GET /khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://eus.rubiconproject.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gxVa45F5HOvFS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
access-control-allow-credentials: true
access-control-allow-origin: https://eus.rubiconproject.com
content-type: application/json; charset=UTF-8
content-length: 7
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:27 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6g6n1/bavL0DRS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:27 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/token?pid=2046&pt=n&a=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /token?pid=2046&pt=n&a=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://rubicon-match.dotomi.com/match/bounce/current?networkId=12783&version=1&nuid=83gfkEJKLcnAFZQpU1eOwoXsnMZhMiGdLdsvN9R-tmQ&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
content-length: 0
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:27 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

Request

GET /khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://eus.rubiconproject.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
access-control-allow-credentials: true
access-control-allow-origin: https://eus.rubiconproject.com
content-type: application/json; charset=UTF-8
content-length: 7
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:29 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gegWlDMh72/RS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:29 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/token?pid=10362&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /token?pid=10362&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://uipglob.semasio.net/magnite/1/info?sType=sync&sExtCookieId=LXUMMYH8-18-IISD&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
content-length: 0
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

Request

GET /khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://eus.rubiconproject.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6g6vwmvbgZO6ZS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4ztzpQ7vzkXQ/

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
access-control-allow-credentials: true
access-control-allow-origin: https://eus.rubiconproject.com
content-type: application/json; charset=UTF-8
content-length: 7
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:32 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6g7oQgV1oVZyhS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:32 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

Request

GET /khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://eus.rubiconproject.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gXqZ9nHDpwgJS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4ztzpQ7vzkXQ/

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
access-control-allow-credentials: true
access-control-allow-origin: https://eus.rubiconproject.com
content-type: application/json; charset=UTF-8
content-length: 7
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

Request

GET /khaos.json?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://eus.rubiconproject.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
access-control-allow-credentials: true
access-control-allow-origin: https://eus.rubiconproject.com
content-type: application/json; charset=UTF-8
content-length: 7
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:34 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:34 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

Request

GET /khaos.json?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://eus.rubiconproject.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6g+ZczzRsKGLVS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
access-control-allow-credentials: true
access-control-allow-origin: https://eus.rubiconproject.com
content-type: application/json; charset=UTF-8
content-length: 7
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:42 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gBtA1OgQBJHBS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:42 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://token.rubiconproject.com/token?pid=6404&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /token?pid=6404&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: token.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gBtA1OgQBJHBS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://dpm.demdex.net/ibs:dpid=481&dpuuid=LXUMMYH8-18-IISD?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:42 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
DNS

213.245.248.13.in-addr.arpa

Request

213.245.248.13.in-addr.arpa

IN PTR

Response

213.245.248.13.in-addr.arpa

IN PTR

a0f671730127a0812awsglobalacceleratorcom
DNS

121.28.244.18.in-addr.arpa

Request

121.28.244.18.in-addr.arpa

IN PTR

Response

121.28.244.18.in-addr.arpa

IN PTR

server-18-244-28-121cdg52r cloudfrontnet
DNS

83.216.240.34.in-addr.arpa

Request

83.216.240.34.in-addr.arpa

IN PTR

Response

83.216.240.34.in-addr.arpa

IN PTR

ec2-34-240-216-83 eu-west-1compute amazonawscom
DNS

100.209.135.5.in-addr.arpa

Request

100.209.135.5.in-addr.arpa

IN PTR

Response

100.209.135.5.in-addr.arpa

IN PTR

ip100ip-5-135-209eu
DNS

249.195.120.34.in-addr.arpa

Request

249.195.120.34.in-addr.arpa

IN PTR

Response

249.195.120.34.in-addr.arpa

IN PTR

24919512034bcgoogleusercontentcom
DNS

163.91.211.52.in-addr.arpa

Request

163.91.211.52.in-addr.arpa

IN PTR

Response

163.91.211.52.in-addr.arpa

IN PTR

ec2-52-211-91-163 eu-west-1compute amazonawscom
DNS

30.213.122.3.in-addr.arpa

Request

30.213.122.3.in-addr.arpa

IN PTR

Response

30.213.122.3.in-addr.arpa

IN PTR

ec2-3-122-213-30eu-central-1compute amazonawscom
DNS

30.213.122.3.in-addr.arpa

Request

30.213.122.3.in-addr.arpa

IN PTR

Response

30.213.122.3.in-addr.arpa

IN PTR

ec2-3-122-213-30eu-central-1compute amazonawscom
DNS

249.222.244.143.in-addr.arpa

Request

249.222.244.143.in-addr.arpa

IN PTR

Response
DNS

12.117.204.155.in-addr.arpa

Request

12.117.204.155.in-addr.arpa

IN PTR

Response
DNS

104.87.232.3.in-addr.arpa

Request

104.87.232.3.in-addr.arpa

IN PTR

Response

104.87.232.3.in-addr.arpa

IN PTR

ec2-3-232-87-104 compute-1 amazonawscom
DNS

107.73.209.54.in-addr.arpa

Request

107.73.209.54.in-addr.arpa

IN PTR

Response

107.73.209.54.in-addr.arpa

IN PTR

ec2-54-209-73-107 compute-1 amazonawscom
DNS

22.105.202.67.in-addr.arpa

Request

22.105.202.67.in-addr.arpa

IN PTR

Response

22.105.202.67.in-addr.arpa

IN PTR

ip22 67-202-105staticsteadfastdnsnet
DNS

66.1.166.69.in-addr.arpa

Request

66.1.166.69.in-addr.arpa

IN PTR

Response
DNS

59.133.67.172.in-addr.arpa

Request

59.133.67.172.in-addr.arpa

IN PTR

Response
DNS

186.186.46.96.in-addr.arpa

Request

186.186.46.96.in-addr.arpa

IN PTR

Response
DNS

140.146.122.193.in-addr.arpa

Request

140.146.122.193.in-addr.arpa

IN PTR

Response
DNS

116.138.19.162.in-addr.arpa

Request

116.138.19.162.in-addr.arpa

IN PTR

Response

116.138.19.162.in-addr.arpa

IN PTR

ns31533567 ip-162-19-138eu
DNS

sync.privateserving.com

Request

sync.privateserving.com

IN A

Response

sync.privateserving.com

IN A

172.67.133.59

sync.privateserving.com

IN A

104.21.5.89
DNS

sync.privateserving.com

Request

sync.privateserving.com

IN A

Response

sync.privateserving.com

IN A

172.67.133.59

sync.privateserving.com

IN A

104.21.5.89
DNS

aax.amazon-adsystem.com

Request

aax.amazon-adsystem.com

IN A

Response

aax.amazon-adsystem.com

IN CNAME

aax-dtb-cf.amazon-adsystem.com

aax-dtb-cf.amazon-adsystem.com

IN CNAME

aax-dtb-cf.amazon-adsystem.amazon.com

aax-dtb-cf.amazon-adsystem.amazon.com

IN CNAME

d1jvc9b8z3vcjs.cloudfront.net

d1jvc9b8z3vcjs.cloudfront.net

IN A

3.162.36.191
DNS

aax.amazon-adsystem.com

Request

aax.amazon-adsystem.com

IN A

Response

aax.amazon-adsystem.com

IN CNAME

aax-dtb-cf.amazon-adsystem.com

aax-dtb-cf.amazon-adsystem.com

IN CNAME

aax-dtb-cf.amazon-adsystem.amazon.com

aax-dtb-cf.amazon-adsystem.amazon.com

IN CNAME

d1jvc9b8z3vcjs.cloudfront.net

d1jvc9b8z3vcjs.cloudfront.net

IN A

3.162.36.191
DNS

secure.cdn.fastclick.net

Request

secure.cdn.fastclick.net

IN A

Response

secure.cdn.fastclick.net

IN CNAME

secure2.cdn.fastclick.net.edgekey.net

secure2.cdn.fastclick.net.edgekey.net

IN CNAME

e4536.g.akamaiedge.net

e4536.g.akamaiedge.net

IN A

23.215.22.18
DNS

secure.cdn.fastclick.net

Request

secure.cdn.fastclick.net

IN A
DNS

secure.cdn.fastclick.net

Request

secure.cdn.fastclick.net

IN A
DNS

tags.crwdcntrl.net

Request

tags.crwdcntrl.net

IN A

Response

tags.crwdcntrl.net

IN A

18.155.129.39

tags.crwdcntrl.net

IN A

18.155.129.34

tags.crwdcntrl.net

IN A

18.155.129.56

tags.crwdcntrl.net

IN A

18.155.129.21
GET

https://aax.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&pr=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&pid=jPGajiarH4UCw&cb=0&ws=276x155&v=24.617.2135&t=8000&slots=%5B%7B%22fc%22%3A%22USD%22%2C%22fp%22%3A500%2C%22id%22%3A%22Adapex_Aniview_Video%22%2C%22mt%22%3A%22v%22%7D%5D&schain=1.0%2C1%21connatix.com%2C520667175065539%2C1%2C%2C%2C%21aniview.com%2C5f1b027a97ccc82f270594f7%2C1%2C%2C%2C&sm=374cd89c-25d8-4ca8-9b26-fc0499c1565d&pubid=1ad7261b-91ea-4b6f-b9e9-b83522205b75&gdpre=1&gdprc=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdprl=%7B%22status%22%3A%22explicit-consent-passed%22%2C%22enabled%22%3Atrue%7D&_c=1

Request

GET /e/dtb/bid?src=600&u=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&pr=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&pid=jPGajiarH4UCw&cb=0&ws=276x155&v=24.617.2135&t=8000&slots=%5B%7B%22fc%22%3A%22USD%22%2C%22fp%22%3A500%2C%22id%22%3A%22Adapex_Aniview_Video%22%2C%22mt%22%3A%22v%22%7D%5D&schain=1.0%2C1%21connatix.com%2C520667175065539%2C1%2C%2C%2C%21aniview.com%2C5f1b027a97ccc82f270594f7%2C1%2C%2C%2C&sm=374cd89c-25d8-4ca8-9b26-fc0499c1565d&pubid=1ad7261b-91ea-4b6f-b9e9-b83522205b75&gdpre=1&gdprc=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdprl=%7B%22status%22%3A%22explicit-consent-passed%22%2C%22enabled%22%3Atrue%7D&_c=1 HTTP/2.0
host: aax.amazon-adsystem.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI
cookie: ad-privacy=0

Response

HTTP/2.0 200

content-type: text/javascript;charset=UTF-8
content-length: 23
access-control-allow-origin: https://cds.connatix.com
access-control-allow-credentials: true
timing-allow-origin: *
date: Tue, 25 Jun 2024 16:37:26 GMT
server: Server
x-cache: Miss from cloudfront
via: 1.1 670b7fc2dd3052d71cc169230b289e08.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P6
x-amz-cf-id: qsosRTMSiUL9xbsO3YTzxQ1Ih1XmRXHCkpVdUQVLibnr3IU2LjjObA==
GET

https://aax.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fpixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&pr=https%3A%2F%2Fpixelpoint.tv%2F&pid=TrHfjPE0UpMfV&cb=0&ws=0x0&v=24.617.2135&t=2000&slots=%5B%7B%22id%22%3A%22Hideout_Web%22%2C%22mt%22%3A%22v%22%7D%5D&sm=d8682166-abb2-4631-a198-ca930e4274c2&pubid=9927c109-8a15-4b15-a23d-3b374dae661b&gdpre=1&gdprc=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D&_c=1

Request

GET /e/dtb/bid?src=600&u=https%3A%2F%2Fpixelpoint.tv%2Fwatch.php%3Fvid%3D67890109%26pid%3D5&pr=https%3A%2F%2Fpixelpoint.tv%2F&pid=TrHfjPE0UpMfV&cb=0&ws=0x0&v=24.617.2135&t=2000&slots=%5B%7B%22id%22%3A%22Hideout_Web%22%2C%22mt%22%3A%22v%22%7D%5D&sm=d8682166-abb2-4631-a198-ca930e4274c2&pubid=9927c109-8a15-4b15-a23d-3b374dae661b&gdpre=1&gdprc=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D&_c=1 HTTP/2.0
host: aax.amazon-adsystem.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI
cookie: ad-privacy=0

Response

HTTP/2.0 200

content-type: text/javascript;charset=UTF-8
content-length: 699
access-control-allow-origin: https://pixelpoint.tv
access-control-allow-credentials: true
timing-allow-origin: *
date: Tue, 25 Jun 2024 16:37:29 GMT
server: Server
x-cache: Miss from cloudfront
via: 1.1 670b7fc2dd3052d71cc169230b289e08.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P6
x-amz-cf-id: QCLmykJWOH-vO-NYho3dkJPfYeqOOXcKMy0hKpJL6l1_y067n7CPjA==
GET

https://aax.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&pr=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&pid=F5wKT4v0IrTW8&cb=0&ws=897x505&v=24.617.2135&t=8000&slots=%5B%7B%22fc%22%3A%22USD%22%2C%22fp%22%3A500%2C%22id%22%3A%22Adapex_Aniview_Video%22%2C%22mt%22%3A%22v%22%7D%5D&pj=%7B%22device%22%3A%7B%22sua%22%3A%7B%22mobile%22%3A0%2C%22source%22%3A1%2C%22platform%22%3A%7B%22brand%22%3A%22Windows%22%7D%2C%22browsers%22%3A%5B%7B%22brand%22%3A%22Chromium%22%2C%22version%22%3A%5B%22106%22%5D%7D%2C%7B%22brand%22%3A%22Google+Chrome%22%2C%22version%22%3A%5B%22106%22%5D%7D%2C%7B%22brand%22%3A%22Not%3BA%3DBrand%22%2C%22version%22%3A%5B%2299%22%5D%7D%5D%7D%7D%7D&schain=1.0%2C1%21connatix.com%2C520667175065539%2C1%2C%2C%2C%21aniview.com%2C5f1b027a97ccc82f270594f7%2C1%2C%2C%2C&sm=374cd89c-25d8-4ca8-9b26-fc0499c1565d&pubid=1ad7261b-91ea-4b6f-b9e9-b83522205b75&gdpre=1&gdprc=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D&_c=1

Request

GET /e/dtb/bid?src=600&u=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&pr=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&pid=F5wKT4v0IrTW8&cb=0&ws=897x505&v=24.617.2135&t=8000&slots=%5B%7B%22fc%22%3A%22USD%22%2C%22fp%22%3A500%2C%22id%22%3A%22Adapex_Aniview_Video%22%2C%22mt%22%3A%22v%22%7D%5D&pj=%7B%22device%22%3A%7B%22sua%22%3A%7B%22mobile%22%3A0%2C%22source%22%3A1%2C%22platform%22%3A%7B%22brand%22%3A%22Windows%22%7D%2C%22browsers%22%3A%5B%7B%22brand%22%3A%22Chromium%22%2C%22version%22%3A%5B%22106%22%5D%7D%2C%7B%22brand%22%3A%22Google+Chrome%22%2C%22version%22%3A%5B%22106%22%5D%7D%2C%7B%22brand%22%3A%22Not%3BA%3DBrand%22%2C%22version%22%3A%5B%2299%22%5D%7D%5D%7D%7D%7D&schain=1.0%2C1%21connatix.com%2C520667175065539%2C1%2C%2C%2C%21aniview.com%2C5f1b027a97ccc82f270594f7%2C1%2C%2C%2C&sm=374cd89c-25d8-4ca8-9b26-fc0499c1565d&pubid=1ad7261b-91ea-4b6f-b9e9-b83522205b75&gdpre=1&gdprc=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D&_c=1 HTTP/2.0
host: aax.amazon-adsystem.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI
cookie: ad-privacy=0

Response

HTTP/2.0 200

content-type: text/javascript;charset=UTF-8
content-length: 23
access-control-allow-origin: https://cds.connatix.com
access-control-allow-credentials: true
timing-allow-origin: *
date: Tue, 25 Jun 2024 16:37:30 GMT
server: Server
x-cache: Miss from cloudfront
via: 1.1 670b7fc2dd3052d71cc169230b289e08.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P6
x-amz-cf-id: zjdYIJ18r_ePNUkpYTN2bTJCR9peunecZYBBh3nnaYPcHJ69pBHg0A==
DNS

cdn.hadronid.net

Request

cdn.hadronid.net

IN A

Response

cdn.hadronid.net

IN A

104.22.53.173

cdn.hadronid.net

IN A

104.22.52.173

cdn.hadronid.net

IN A

172.67.36.110
GET

https://cdn.hadronid.net/hadron.js?url=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&ref=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&_it=amazon&partner_id=405

Request

GET /hadron.js?url=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&ref=https%3A%2F%2Fcds.connatix.com%2Fp%2Fplugins%2Fcnx.bridge-1.0.5.html&_it=amazon&partner_id=405 HTTP/2.0
host: cdn.hadronid.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:27 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"1e77f38a1df1490d4175e3c4878bd150"
last-modified: Tue, 04 Jun 2024 15:30:02 GMT
x-amz-id-2: 1KYvP1UJui3F3sexSI8Edev0ssCxy0r1hoLYL3sInblmS0xC6TVIxfrJbVQshQPcVtGMRX8qMGE=
x-amz-request-id: 4GNTEWM5RE8S976C
cf-cache-status: HIT
age: 3659
expires: Sun, 30 Jun 2024 16:37:27 GMT
cache-control: public, max-age=432000
vary: Accept-Encoding
server: cloudflare
cf-ray: 899661e13ea29ff0-AMS
content-encoding: br
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=24856&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=24856&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://e.serverbid.com/usersync?cn=5529&ttt=1&dpui=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=333994&nid=4804&put=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /tap.php?v=333994&nid=4804&put=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=smartadserver&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=smartadserver&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://rtb-csync.smartadserver.com/redir/?partnerid=104&partneruserid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gngu2ijOQzGxS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=17039&nid=2650&days=30&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&put=e9b79c2f-0b03-40c2-b690-5a4d8081b9d0

Request

GET /tap.php?v=17039&nid=2650&days=30&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&put=e9b79c2f-0b03-40c2-b690-5a4d8081b9d0 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gRFMfdnDNwm1S8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=600424&nid=5498&put=aeb9f808-3241-472e-a398-ecfe253e494c

Request

GET /tap.php?v=600424&nid=5498&put=aeb9f808-3241-472e-a398-ecfe253e494c HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=4210&nid=1523&put=DKsbZE1b1Sm97P5&expires=30&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /tap.php?v=4210&nid=1523&put=DKsbZE1b1Sm97P5&expires=30&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gonNXMAmWay5S8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4ztzpQ7vzkXQ/

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=638536&nid=5508&put=1905042a536-3139312e3130312e3230392e3339

Request

GET /tap.php?v=638536&nid=5508&put=1905042a536-3139312e3130312e3230392e3339 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=15796&nid=2760&put=4f62fbba-ecd4-4b71-afc7-4916045d677d&expires=30&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

Request

GET /tap.php?v=15796&nid=2760&put=4f62fbba-ecd4-4b71-afc7-4916045d677d&expires=30&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy= HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gwX8PCdi6AqxS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=711370&nid=5504&put=46ca870c-0859-4d4a-920d-aa98402989d8&expires=365&next=https%3A%2F%2Fbeacon.lynx.cognitivlabs.com%2Fpixel%3Ftype%3Dsync%26source%3Drubicon%26inventory_source%3D0

Request

GET /tap.php?v=711370&nid=5504&put=46ca870c-0859-4d4a-920d-aa98402989d8&expires=365&next=https%3A%2F%2Fbeacon.lynx.cognitivlabs.com%2Fpixel%3Ftype%3Dsync%26source%3Drubicon%26inventory_source%3D0 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://beacon.lynx.cognitivlabs.com/pixel?type=sync&source=rubicon&inventory_source=0
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://pixel.rubiconproject.com/token?pid=49038&puid=46ca870c-0859-4d4a-920d-aa98402989d8

Request

GET /token?pid=49038&puid=46ca870c-0859-4d4a-920d-aa98402989d8 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 204 No Content

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
GET

https://pixel.rubiconproject.com/tap.php?v=71722&nid=3668&expires=30&put=ZnryV8Co5tEAAFp2CmEAAAAA

Request

GET /tap.php?v=71722&nid=3668&expires=30&put=ZnryV8Co5tEAAFp2CmEAAAAA HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6g/OxmBjIQ9WJS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4ztzpQ7vzkXQ/; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=loopme&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=loopme&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gegWlDMh72/RS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://csync.loopme.me/?partner_id=1441&vt=&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=4939&nid=1902&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&put=o7vLUPO8xQa4uMwIprnRAa28ywS4uMkJo-lU8wwO

Request

GET /tap.php?v=4939&nid=1902&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&put=o7vLUPO8xQa4uMwIprnRAa28ywS4uMkJo-lU8wwO HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=epsilon&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=epsilon&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://match.sync.ad.cpe.dotomi.com/w/user.sync?ptrid=14&userid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=144598&nid=3992&expires=30&put=o2xr0KqECEsyaRFTaZXc&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /tap.php?v=144598&nid=3992&expires=30&put=o2xr0KqECEsyaRFTaZXc&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=1181926&nid=5578&put=4b6bdba3-8177-47de-9c38-c61c3b4e9ca9

Request

GET /tap.php?v=1181926&nid=5578&put=4b6bdba3-8177-47de-9c38-c61c3b4e9ca9 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gonNXMAmWay5S8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4ztzpQ7vzkXQ/; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=12776&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=12776&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Location: https://usr.undertone.com/userPixel/sync?partner=rubicon&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6g7v3YiOZe9VFS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=14321&nid=2313&put=R35CA5_117ADBC41_35B7E6AD&expires=60

Request

GET /tap.php?v=14321&nid=2313&put=R35CA5_117ADBC41_35B7E6AD&expires=60 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=538100&nid=5446&put=ee4067c7-6a65-b9ff-686cc0f9

Request

GET /tap.php?v=538100&nid=5446&put=ee4067c7-6a65-b9ff-686cc0f9 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=32128&nid=2915&put=4052082643997295311

Request

GET /tap.php?v=32128&nid=2915&put=4052082643997295311 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d5c7d31e505103f093db6d1ed70deaa2
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=16466&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=16466&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gegWlDMh72/RS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://usync.vrtcal.com/o?xs=1624&did=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:30 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=123034&nid=3956&put=0aac2204007e7569b1dc9e0e&expires=1&gdpr=1&gdprConsent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /tap.php?v=123034&nid=3956&put=0aac2204007e7569b1dc9e0e&expires=1&gdpr=1&gdprConsent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=71194&nid=3636&put=f9f19db3-344c-49ee-9e9d-36f1ccffcbe6&expires=30

Request

GET /tap.php?v=71194&nid=3636&put=f9f19db3-344c-49ee-9e9d-36f1ccffcbe6&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gEbMfD+rS2H1S8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:31 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=223352&nid=4584&put=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Request

GET /tap.php?v=223352&nid=4584&put=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://onetag-sys.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=medianet&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

Request

GET /exchange/sync.php?p=medianet&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gDs+dpt6ZmTlS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOITgof4qDPM2oggvlOok4+unGYXSZqCcyV6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55eAwYYqOFfmnz0FX/rwYuU8A=

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://contextual.media.net/cksync.php?type=rbcn&ovsid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:34 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:34 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:34 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/exchange/sync.php?p=smaato&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /exchange/sync.php?p=smaato&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://s.ad.smaato.net/c/?dspId=1001989&dspCookie=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:42 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gTKGuh4dB0tpS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:42 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:42 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel.rubiconproject.com/tap.php?v=16829&nid=2820&put=ID5-665c5AT0yhmwvaN1kyvfwePV3qMzF15gjk4qlqQ_HQ

Request

GET /tap.php?v=16829&nid=2820&put=ID5-665c5AT0yhmwvaN1kyvfwePV3qMzF15gjk4qlqQ_HQ HTTP/1.1
Host: pixel.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gvznFvJ0iKzJS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4znANL97jrPlhASjgDjzrXU7k0Aodnd/i98y+2L6rUCXGT4SUIs3FC0Qr4ZVgKYVjQIuuttfg8N1lMrOiNuVECorEnO2XMTO/F15LIFSP/F0ZVhjqt/zJLQd9gTHjWT+pTTUcaNF6NfNeOrCALpQjRiiSQ0G7p6Qe1jsj33qPu8LCpLbD8OTwg27MuSa2zyRjY9R1O0rN7XRL4J2RKeZh/URDPEBgGOVcElVDnPs0x/S2UERgtxMhUkq5rl2eCAGFT4AhG3nh5NThjZZfesgiHIrPZ7yzX3mOP8kP+eSfGntNuLM/ymKHAhS7i8w8IJ7SXy5IFsnMvE71yTJSRCm+G1TdxnCc+WZAqqGHV4ih9P2sjTpTc+ELBFTURxjhNylVGH6mTZunJ1dWx9kQjrEIiFnCN0TIUm7F6d/nkPUjvQrKf+2fqPUMi4Zh+mjk+6je9+Jt7j6Plhwm1bQR4Mf/ufrHjwcO3nD5OB79Q4cmKfa63t6hW27H5DHuB5AjuM55ePWiSgx4BfX80FX/rwYuU8A=

Response

HTTP/1.1 200 OK

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Content-Type: image/gif
content-length: 42
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|UnIl5+V0P5SIXHEAbNgo0zRzDx2nAcY/cwG/rn6UlBdAl8VKDQkzODyekbxVeS6gQ/0MOr/FfnpS8G+dhi1GhaAZojJydpBodNagGyTJzJG1fct/KgnHRSopK9NaePar59TFlg3vE4VkaF0KCY+52A7GCXgMrYxsfNsQVC3GsWksJphKzfSi6WgBBjmQEXZwnsDIUXUBenfnYxWDufU32RgRq8eAbdXJIaEUhxOo+Gb/2GPm/N5qllet9uhNsAW4tcHAS8vDpbYR37DGkY5A5VcnaVtENHbaX7rCodnO+3W81N4r3Aipthtx6pEBvfHllg1xnZSMYH5LC9Gp48oxRfD8H2GOM3EMqtrOOdVb3fhFuUSk2Dm/LLM0PvRmmdJd1E59bbmjCSDumKnw3ITCizoOmbK+gycXUJKke2HFi2fB8g0NcIQ3kd3gqjSyAY9CZina5/60iulFio97sAQju8mSnCiD1/mlbLTif/FWcep7XCjhdJHiI6TobJjv5i+Sk/LLaDMdnaxsboG6IMfy8+KO4XA2CMvdMqVwYqVKl7i41w3zHYPCA6vZNlmxp1wMiKsk3yQC7FPV4GJmJKfdl7ATuBd+CMU3oOHX1QLBlJ38c5tZ9v7pPhFkna3JH+6C9xkW3b6RSmPCTFnb7eU9njIk8IKvyxh9X+1EQUhEDxcQ4x7j19daxVkM19joHMKRzDT2/MQO1ZZDLCRl/Lm5pQNjaJIzFgK4L5c1FiXKKlwFujZCC2U4GZTsgl12YoCjtiMwslPYUU+CiEVf9L8mcRHVRxy7BDOI0oSKYIj2+j8ggvlOok4+uuyM5XQRx1qR6gHyv+jrm/kXpwT5xFDQS/hvNPYlzh3LfXuPsPfSsnE/Zf8VOsShWTqOsnIZiZYBccDa8+l3HVl1IUnUmJC4ztzpQ7vzkXQ/; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:43 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
DNS

match.deepintent.com

Request

match.deepintent.com

IN A

Response

match.deepintent.com

IN CNAME

m.deepintent.com

m.deepintent.com

IN A

169.197.150.7

m.deepintent.com

IN A

8.18.47.7

m.deepintent.com

IN A

169.197.150.8

m.deepintent.com

IN A

38.91.45.7
DNS

match.deepintent.com

Request

match.deepintent.com

IN A
GET

https://tags.crwdcntrl.net/lt/c/16576/sync.min.js

Request

GET /lt/c/16576/sync.min.js HTTP/2.0
host: tags.crwdcntrl.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _cc_dc=1
cookie: _cc_cc="ACZ4nGNQSLNMNrVITk02TTZOTElKNTM0NEuzME22MDe1NEgzTTRkYGBgSKv6OI0BAQB0Twu3"
cookie: _cc_id=f9c58cec5c3adbe6116f85c87590f5a1
cookie: _cc_aud="ABR4nGNgYGBIq%2Fo4jQEOAB2WAmg%3D"

Response

HTTP/2.0 200

content-type: text/javascript
last-modified: Wed, 14 Feb 2024 17:39:34 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Mon, 24 Jun 2024 18:30:08 GMT
cache-control: public, max-age=86400
etag: W/"0f107a0e7753aa69cd07ded21852408c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fab151d68d1a2f6afb087e422136c6fe.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P4
x-amz-cf-id: lri6r3-ZRBCjnS5g6HieXD-PmTjyDPqp4jSoQA1pUIUPD5dsaMo6aQ==
age: 79640
DNS

sync-tm.everesttech.net

Request

sync-tm.everesttech.net

IN A

Response

sync-tm.everesttech.net

IN CNAME

sync.tubemogul.com

sync.tubemogul.com

IN CNAME

syncf.tubemogul.com

syncf.tubemogul.com

IN CNAME

h2.shared.global.fastly.net

h2.shared.global.fastly.net

IN A

151.101.2.49

h2.shared.global.fastly.net

IN A

151.101.194.49

h2.shared.global.fastly.net

IN A

151.101.130.49

h2.shared.global.fastly.net

IN A

151.101.66.49
DNS

cm.adgrx.com

Request

cm.adgrx.com

IN A

Response

cm.adgrx.com

IN CNAME

rtb.adgrx.com

rtb.adgrx.com

IN CNAME

rtb.adgrx.com.tech.akadns.net

rtb.adgrx.com.tech.akadns.net

IN A

52.215.155.11
DNS

cm.adgrx.com

Request

cm.adgrx.com

IN A

Response

cm.adgrx.com

IN CNAME

rtb.adgrx.com

rtb.adgrx.com

IN CNAME

rtb.adgrx.com.tech.akadns.net

rtb.adgrx.com.tech.akadns.net

IN A

52.215.155.11
DNS

api.rlcdn.com

Request

api.rlcdn.com

IN A

Response

api.rlcdn.com

IN A

34.120.133.55
DNS

api.rlcdn.com

Request

api.rlcdn.com

IN A

Response

api.rlcdn.com

IN A

34.120.133.55
DNS

rubicon-match.dotomi.com

Request

rubicon-match.dotomi.com

IN A

Response

rubicon-match.dotomi.com

IN CNAME

bfp.global.dual.dotomi.weighted.com.akadns.net

bfp.global.dual.dotomi.weighted.com.akadns.net

IN A

63.215.202.172
DNS

id.hadron.ad.gt

Request

id.hadron.ad.gt

IN A

Response

id.hadron.ad.gt

IN CNAME

id.hadron.ad.gt.cdn.cloudflare.net

id.hadron.ad.gt.cdn.cloudflare.net

IN A

104.22.5.69

id.hadron.ad.gt.cdn.cloudflare.net

IN A

172.67.23.234

id.hadron.ad.gt.cdn.cloudflare.net

IN A

104.22.4.69
DNS

id.hadron.ad.gt

Request

id.hadron.ad.gt

IN A

Response

id.hadron.ad.gt

IN CNAME

id.hadron.ad.gt.cdn.cloudflare.net

id.hadron.ad.gt.cdn.cloudflare.net

IN A

172.67.23.234

id.hadron.ad.gt.cdn.cloudflare.net

IN A

104.22.4.69

id.hadron.ad.gt.cdn.cloudflare.net

IN A

104.22.5.69
DNS

prebid.a-mo.net

Request

prebid.a-mo.net

IN A

Response

prebid.a-mo.net

IN CNAME

am6-prebid.a-mx.net

am6-prebid.a-mx.net

IN A

147.75.84.158

am6-prebid.a-mx.net

IN A

145.40.97.66

am6-prebid.a-mx.net

IN A

145.40.97.67
GET

https://match.deepintent.com/usersync/143?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /usersync/143?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: match.deepintent.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
date: Tue, 25 Jun 2024 16:37:27 GMT
server: c
GET

https://prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=[GDPR_CONSENT]&us_privacy=[US_PRIVACY]&cb=https://sync.privateserving.com?provider%3Dadaptmx%26uid%3D

Request

GET /cchain/0?gdpr=0&gdpr_consent=[GDPR_CONSENT]&us_privacy=[US_PRIVACY]&cb=https://sync.privateserving.com?provider%3Dadaptmx%26uid%3D HTTP/2.0
host: prebid.a-mo.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _sv3_7=1
cookie: amuid2=50886587-c2de-464e-b418-0cae300d20be
cookie: sd_amuid2=50886587-c2de-464e-b418-0cae300d20be
cookie: _Amc_b=497
cookie: _Amc_s=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
cookie: _Amc_t=_T

Response

HTTP/2.0 302

cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Jun 2024 16:37:27 GMT
location: https://ib.adnxs.com/getuid?https%3A%2F%2Fprebid.a-mo.net%2Fcchain%2F0%2F29795%3Fgdpr%3D0%26gpp_sid%3D%26us_privacy%3D%26A%3D50886587-c2de-464e-b418-0cae300d20be%26bidder%3Dappnexus%26cbx%3DaHR0cHM6Ly9zeW5jLnByaXZhdGVzZXJ2aW5nLmNvbT9wcm92aWRlcj1hZGFwdG14JnVpZD0%253D%26uid%3D%24UID
server: envoy
vary: accept-encoding
set-cookie: _sv3_0=1; path=/; domain=a-mo.net; expires=Wed, 26 Jun 2024 16:37:28 GMT; max-age=86400; secure; HttpOnly; SameSite=None
x-envoy-upstream-service-time: 2
GET

https://prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=[GDPR_CONSENT]&us_privacy=[US_PRIVACY]&cb=https://sync.privateserving.com?provider%3Dadaptmx%26uid%3D

Request

GET /cchain/0?gdpr=0&gdpr_consent=[GDPR_CONSENT]&us_privacy=[US_PRIVACY]&cb=https://sync.privateserving.com?provider%3Dadaptmx%26uid%3D HTTP/2.0
host: prebid.a-mo.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _sv3_7=1
cookie: amuid2=50886587-c2de-464e-b418-0cae300d20be
cookie: sd_amuid2=50886587-c2de-464e-b418-0cae300d20be
cookie: _Amc_b=497
cookie: _Amc_s=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
cookie: _Amc_t=_T
cookie: _sv3_0=1

Response

HTTP/2.0 302

cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Tue, 25 Jun 2024 16:37:31 GMT
location: https://ap.lijit.com/pixel?&gdpr=1&gdpr_consent=[GDPR_CONSENT]&us_privacy=1---&redir=https%3A%2F%2Fprebid.a-mo.net%2Fcchain%2F1%2F24678%3Fgdpr%3D0%26gpp_sid%3D%26us_privacy%3D%26A%3D50886587-c2de-464e-b418-0cae300d20be%26bidder%3Dsovrn%26cbx%3DaHR0cHM6Ly9zeW5jLnByaXZhdGVzZXJ2aW5nLmNvbT9wcm92aWRlcj1hZGFwdG14JnVpZD0%253D%26uid%3D%24UID
server: envoy
vary: accept-encoding
set-cookie: _sv3_3=1; path=/; domain=a-mo.net; expires=Wed, 26 Jun 2024 16:37:31 GMT; max-age=86400; secure; HttpOnly; SameSite=None
x-envoy-upstream-service-time: 1
GET

https://id.hadron.ad.gt/api/v1/pbhid?partner_id=239&_it=prebid&t=1&src=id&domain=cds.connatix.com&gdprString=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /api/v1/pbhid?partner_id=239&_it=prebid&t=1&src=id&domain=cds.connatix.com&gdprString=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: id.hadron.ad.gt
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:28 GMT
content-type: application/json
access-control-allow-origin: *
allow: POST, OPTIONS, GET
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
vary: Accept-Encoding
server: cloudflare
cf-ray: 899661e21fb16716-AMS
content-encoding: br
GET

https://id.hadron.ad.gt/api/v1/pbhid?partner_id=239&_it=prebid&t=1&src=id&domain=cds.connatix.com&gdprString=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=0

Request

GET /api/v1/pbhid?partner_id=239&_it=prebid&t=1&src=id&domain=cds.connatix.com&gdprString=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=0 HTTP/2.0
host: id.hadron.ad.gt
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:31 GMT
content-type: application/json
access-control-allow-origin: *
allow: POST, OPTIONS, GET
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
vary: Accept-Encoding
server: cloudflare
cf-ray: 899661f81de06716-AMS
content-encoding: br
DNS

70.45.240.172.in-addr.arpa

Request

70.45.240.172.in-addr.arpa

IN PTR

Response
DNS

174.181.69.3.in-addr.arpa

Request

174.181.69.3.in-addr.arpa

IN PTR

Response

174.181.69.3.in-addr.arpa

IN PTR

ec2-3-69-181-174eu-central-1compute amazonawscom
DNS

shb.richaudience.com

Request

shb.richaudience.com

IN A

Response

shb.richaudience.com

IN A

178.63.241.79
DNS

182.186.46.96.in-addr.arpa

Request

182.186.46.96.in-addr.arpa

IN PTR

Response
DNS

182.186.46.96.in-addr.arpa

Request

182.186.46.96.in-addr.arpa

IN PTR

Response
DNS

191.36.162.3.in-addr.arpa

Request

191.36.162.3.in-addr.arpa

IN PTR

Response

191.36.162.3.in-addr.arpa

IN PTR

server-3-162-36-191cdg52r cloudfrontnet
DNS

173.53.22.104.in-addr.arpa

Request

173.53.22.104.in-addr.arpa

IN PTR

Response
DNS

39.129.155.18.in-addr.arpa

Request

39.129.155.18.in-addr.arpa

IN PTR

Response

39.129.155.18.in-addr.arpa

IN PTR

server-18-155-129-39cdg52r cloudfrontnet
DNS

grid.bidswitch.net

Request

grid.bidswitch.net

IN A

Response

grid.bidswitch.net

IN CNAME

bidder.criteo.com

bidder.criteo.com

IN CNAME

bidder.nl3.vip.prod.criteo.com

bidder.nl3.vip.prod.criteo.com

IN A

178.250.1.8
DNS

ck.connatix.com

Request

ck.connatix.com

IN A

Response

ck.connatix.com

IN CNAME

ck.connatix.com.cdn.cloudflare.net

ck.connatix.com.cdn.cloudflare.net

IN A

104.18.41.104

ck.connatix.com.cdn.cloudflare.net

IN A

172.64.146.152
DNS

ck.connatix.com

Request

ck.connatix.com

IN A
DNS

bcp.crwdcntrl.net

Request

bcp.crwdcntrl.net

IN A

Response

bcp.crwdcntrl.net

IN A

52.19.165.229

bcp.crwdcntrl.net

IN A

52.50.8.163

bcp.crwdcntrl.net

IN A

52.49.45.15

bcp.crwdcntrl.net

IN A

54.229.28.67

bcp.crwdcntrl.net

IN A

34.254.52.227

bcp.crwdcntrl.net

IN A

54.72.120.129

bcp.crwdcntrl.net

IN A

52.215.98.156

bcp.crwdcntrl.net

IN A

34.247.240.165
DNS

bcp.crwdcntrl.net

Request

bcp.crwdcntrl.net

IN A

Response

bcp.crwdcntrl.net

IN A

52.215.98.156

bcp.crwdcntrl.net

IN A

52.50.8.163

bcp.crwdcntrl.net

IN A

52.49.45.15

bcp.crwdcntrl.net

IN A

34.247.240.165

bcp.crwdcntrl.net

IN A

34.254.52.227

bcp.crwdcntrl.net

IN A

52.19.165.229

bcp.crwdcntrl.net

IN A

54.229.28.67

bcp.crwdcntrl.net

IN A

54.72.120.129
POST

https://grid.bidswitch.net/hbjson

Request

POST /hbjson HTTP/2.0
host: grid.bidswitch.net
content-length: 1530
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: c=1719333271
cookie: tuuid=4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: tuuid_lu=1719333271
cookie: consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
cookie: csd=smartadserver_193

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:37:28 GMT
content-type: application/json
content-length: 48
access-control-allow-origin: https://cds.connatix.com
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
POST

https://grid.bidswitch.net/hbjson

Request

POST /hbjson HTTP/2.0
host: grid.bidswitch.net
content-length: 1611
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://cds.connatix.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: c=1719333271
cookie: tuuid=4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: tuuid_lu=1719333271
cookie: consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
cookie: csd=smartadserver_193

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:37:31 GMT
content-type: application/json
content-length: 48
access-control-allow-credentials: true
access-control-allow-origin: https://cds.connatix.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
DNS

connect.facebook.net

Request

connect.facebook.net

IN A

Response

connect.facebook.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN A

163.70.147.23
DNS

verify.hideout.co

Request

verify.hideout.co

IN A

Response

verify.hideout.co

IN A

44.203.25.218
DNS

ats.rlcdn.com

Request

ats.rlcdn.com

IN A

Response

ats.rlcdn.com

IN A

3.165.113.91

ats.rlcdn.com

IN A

3.165.113.72

ats.rlcdn.com

IN A

3.165.113.124

ats.rlcdn.com

IN A

3.165.113.92
GET

https://ats.rlcdn.com/ats.js

Request

GET /ats.js HTTP/2.0
host: ats.rlcdn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript
last-modified: Wed, 13 Mar 2024 08:09:48 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: F5G4x7igSyEInzmeTLVI9fM7V7EmySpG
server: AmazonS3
content-encoding: gzip
date: Tue, 25 Jun 2024 05:49:03 GMT
etag: W/"b248cc9d0fdeb36bdeb7efabad1132ee"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a355558d5d9571f7ebd7cbb585a0c0b8.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P3
x-amz-cf-id: x5YT735IiZQM5_fm1l3cmg3MnpNt8FESqSvQbiop1WkGr9pAzB5X8g==
age: 38910
DNS

49.2.101.151.in-addr.arpa

Request

49.2.101.151.in-addr.arpa

IN PTR

Response
DNS

172.202.215.63.in-addr.arpa

Request

172.202.215.63.in-addr.arpa

IN PTR

Response

172.202.215.63.in-addr.arpa

IN PTR

ams05-nessy-float2dotomicom
DNS

158.84.75.147.in-addr.arpa

Request

158.84.75.147.in-addr.arpa

IN PTR

Response
DNS

69.5.22.104.in-addr.arpa

Request

69.5.22.104.in-addr.arpa

IN PTR

Response
DNS

7.150.197.169.in-addr.arpa

Request

7.150.197.169.in-addr.arpa

IN PTR

Response

7.150.197.169.in-addr.arpa

IN PTR

g deepintentcom
DNS

79.241.63.178.in-addr.arpa

Request

79.241.63.178.in-addr.arpa

IN PTR

Response

79.241.63.178.in-addr.arpa

IN PTR

static7924163178clientsyour-serverde
DNS

229.165.19.52.in-addr.arpa

Request

229.165.19.52.in-addr.arpa

IN PTR

Response

229.165.19.52.in-addr.arpa

IN PTR

ec2-52-19-165-229 eu-west-1compute amazonawscom
DNS

23.147.70.163.in-addr.arpa

Request

23.147.70.163.in-addr.arpa

IN PTR

Response

23.147.70.163.in-addr.arpa

IN PTR

xx-fbcdn-shv-01-lhr6fbcdnnet
DNS

218.25.203.44.in-addr.arpa

Request

218.25.203.44.in-addr.arpa

IN PTR

Response

218.25.203.44.in-addr.arpa

IN PTR

ec2-44-203-25-218 compute-1 amazonawscom
GET

https://secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js

Request

GET /js/pubcid/latest/pubcid.min.js HTTP/2.0
host: secure.cdn.fastclick.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: Apache
last-modified: Mon, 23 Jan 2023 19:40:17 GMT
etag: "d734-5f2f3919e751f-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 17407
content-type: application/javascript
cache-control: max-age=900
expires: Tue, 25 Jun 2024 16:52:31 GMT
date: Tue, 25 Jun 2024 16:37:31 GMT
vary: Accept-Encoding
DNS

geo.privacymanager.io

Request

geo.privacymanager.io

IN A

Response

geo.privacymanager.io

IN A

18.245.199.9

geo.privacymanager.io

IN A

18.245.199.98

geo.privacymanager.io

IN A

18.245.199.18

geo.privacymanager.io

IN A

18.245.199.75
GET

https://geo.privacymanager.io/

Request

GET / HTTP/2.0
host: geo.privacymanager.io
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
content-length: 31
date: Mon, 24 Jun 2024 17:27:40 GMT
x-amzn-requestid: 925d2dbf-6412-4d89-9dd5-2edbd9f356b4
access-control-allow-origin: *
access-control-allow-headers: Content-Type,Authorization,X-Amz-Date,X-Api-Key,X-Amz-Security-Token
x-amz-apigw-id: Z4fl8G1bjoEEMSQ=
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
x-amzn-trace-id: Root=1-6679ac8c-4575bbdd7469d4363a3b674d;Parent=7bd908cc7c66e4b4;Sampled=0;lineage=06620786:0
via: 1.1 456733511c088f8435091e663b2c5430.cloudfront.net (CloudFront), 1.1 80494189cc86145d3fc2531a60999f7a.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA56-P3
x-cache: Hit from cloudfront
x-amz-cf-pop: CDG55-P2
x-amz-cf-id: Cz8orzdZu8zRhRCELPIKBsftkLf034S3h6lYxZieCS_T6YI98wiyNA==
age: 83389
DNS

www.facebook.com

Request

www.facebook.com

IN A

Response

www.facebook.com

IN CNAME

star-mini.c10r.facebook.com

star-mini.c10r.facebook.com

IN A

163.70.147.35
DNS

18.22.215.23.in-addr.arpa

Request

18.22.215.23.in-addr.arpa

IN PTR

Response

18.22.215.23.in-addr.arpa

IN PTR

a23-215-22-18deploystaticakamaitechnologiescom
DNS

91.113.165.3.in-addr.arpa

Request

91.113.165.3.in-addr.arpa

IN PTR

Response

91.113.165.3.in-addr.arpa

IN PTR

server-3-165-113-91cdg50r cloudfrontnet
DNS

9.199.245.18.in-addr.arpa

Request

9.199.245.18.in-addr.arpa

IN PTR

Response

9.199.245.18.in-addr.arpa

IN PTR

server-18-245-199-9cdg55r cloudfrontnet
DNS

35.147.70.163.in-addr.arpa

Request

35.147.70.163.in-addr.arpa

IN PTR

Response

35.147.70.163.in-addr.arpa

IN PTR

edge-star-mini-shv-01-lhr6facebookcom
DNS

ums.acuityplatform.com

Request

ums.acuityplatform.com

IN A

Response

ums.acuityplatform.com

IN A

154.59.122.79
DNS

ums.acuityplatform.com

Request

ums.acuityplatform.com

IN A

Response

ums.acuityplatform.com

IN A

154.59.122.79
DNS

rbp.mxptint.net

Request

rbp.mxptint.net

IN A

Response

rbp.mxptint.net

IN A

38.68.201.140
DNS

cms.quantserve.com

Request

cms.quantserve.com

IN A

Response

cms.quantserve.com

IN CNAME

2kpixel.quantserve.com

2kpixel.quantserve.com

IN CNAME

global.px.quantserve.com

global.px.quantserve.com

IN A

91.228.74.244

global.px.quantserve.com

IN A

91.228.74.159

global.px.quantserve.com

IN A

91.228.74.166

global.px.quantserve.com

IN A

91.228.74.200
GET

https://match.adsby.bidtheatre.com/rubiconmatch?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /rubiconmatch?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: match.adsby.bidtheatre.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: __kuid=e9b79c2f-0b03-40c2-b690-5a4d8081b9d0.488547272

Response

HTTP/1.1 302 302

Date: Tue, 25 Jun 2024 16:37:30 GMT
Server: Apache
P3P: policyref="/w3c/p3p.xml", CP="DSP NON LAW OUR CUR DEVo PSAo PSDo IND STA NAV COM INT"
Set-Cookie: __kuid=e9b79c2f-0b03-40c2-b690-5a4d8081b9d0.488547450; Max-Age=604800; Domain=.adsby.bidtheatre.com; SameSite=None; Secure
Location: https://pixel.rubiconproject.com/tap.php?v=17039&nid=2650&days=30&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&put=e9b79c2f-0b03-40c2-b690-5a4d8081b9d0
Content-Length: 0
Keep-Alive: timeout=5, max=3000
Connection: Keep-Alive
GET

https://rbp.mxptint.net/sn.ashx?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /sn.ashx?gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: rbp.mxptint.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pixel.rubiconproject.com/tap.php?v=14321&nid=2313&put=R35CA5_117ADBC41_35B7E6AD&expires=60
P3P: CP="NON CUR ADM DEVo PSAo PSDo OUR IND UNI COM NAV DEM STA PRE"
P3P: CP="NON CUR ADM DEVo PSAo PSDo OUR IND UNI COM NAV DEM STA PRE"
Set-Cookie: mxpim=R35CA5_117ADBC41_35B7E6AD.1.0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000667AF24A; domain=mxptint.net; expires=Thu, 25-Jun-2026 16:37:30 GMT; path=/; secure; SameSite=None
Date: Tue, 25 Jun 2024 16:37:30 GMT
Content-Length: 227
Strict-Transport-Security: max-age=-402338250; includeSubDomains
DNS

Response

HTTP/1.1 408 Request Time-out

content-length: 110
cache-control: no-cache
content-type: text/html
connection: close
GET

https://ums.acuityplatform.com/tum?umid=2&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /tum?umid=2&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: ums.acuityplatform.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content
GET

https://sync.adotmob.com/cookie/rubicon?r=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D123034%26nid%3D3956%26put%3D%7Buser_token%7D&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /cookie/rubicon?r=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D123034%26nid%3D3956%26put%3D%7Buser_token%7D&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: sync.adotmob.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: partners=SMA%3A1719333325305; uid=0aac2204007e7569b1dc9e0e; uuid=0aac2204007e7569b1dc9e0e

Response

HTTP/1.1 302 Found

x-powered-by: Express
vary: Origin
access-control-allow-credentials: true
location: https://pixel.rubiconproject.com/tap.php?v=123034&nid=3956&put=0aac2204007e7569b1dc9e0e&expires=1&gdpr=1&gdprConsent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
set-cookie: partners=SMA%3A1719333325305%3BRUB%3A1719333450622; Domain=.adotmob.com; Path=/; Expires=Sun, 22 Dec 2024 16:37:30 GMT; Secure; SameSite=None
date: Tue, 25 Jun 2024 16:37:30 GMT
keep-alive: timeout=5
content-length: 0
DNS

aax-eu.amazon-adsystem.com

Request

aax-eu.amazon-adsystem.com

IN A

Response

aax-eu.amazon-adsystem.com

IN A

67.220.226.234
GET

https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&dl=n-smaato_n-LoopMe_n-onetag_rbd_ppt_n-baidu_n-Beeswax_smrt_cnv_n-Rise_n-Outbrain

Request

GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&dl=n-smaato_n-LoopMe_n-onetag_rbd_ppt_n-baidu_n-Beeswax_smrt_cnv_n-Rise_n-Outbrain HTTP/1.1
Host: aax-eu.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://pixelpoint.tv/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:30 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 869
Connection: keep-alive
x-amz-rid: X00VR458YMR7JFWRNEQG
Set-Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; Domain=.amazon-adsystem.com; Expires=Wed, 01-Jan-2025 16:37:30 GMT; Path=/; Secure; HttpOnly; SameSite=None
Set-Cookie: ad-privacy=0; Domain=.amazon-adsystem.com; Expires=Sun, 01-Jul-2029 16:37:30 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://aax-eu.amazon-adsystem.com/s/v3/pr?exlist=n-smaato_n-LoopMe_n-onetag_rbd_ppt_n-baidu_n-Beeswax_smrt_cnv_n-Rise_n-Outbrain&fv=1.0&a=cm&cm3ppd=1&dmt=3&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /s/v3/pr?exlist=n-smaato_n-LoopMe_n-onetag_rbd_ppt_n-baidu_n-Beeswax_smrt_cnv_n-Rise_n-Outbrain&fv=1.0&a=cm&cm3ppd=1&dmt=3&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: aax-eu.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Referer: https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&dl=n-smaato_n-LoopMe_n-onetag_rbd_ppt_n-baidu_n-Beeswax_smrt_cnv_n-Rise_n-Outbrain
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:30 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 7158
Connection: keep-alive
x-amz-rid: PJKYKQWH74921TMES2GZ
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://aax-eu.amazon-adsystem.com/s/ecm3?ex=smart.com&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /s/ecm3?ex=smart.com&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/1.1
Host: aax-eu.amazon-adsystem.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:31 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: BHHHEF0ZC50RB0NSC5MN
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://aax-eu.amazon-adsystem.com/s/ecm3?ex=outbrain.com&id=o2xr0KqECEsyaRFTaZXc&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /s/ecm3?ex=outbrain.com&id=o2xr0KqECEsyaRFTaZXc&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/1.1
Host: aax-eu.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:32 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: 0RFJJC3V6VYVT8YSMEPY
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://aax-eu.amazon-adsystem.com/s/ecm3?ex=baidu.com&id=acff52a1d841de8d2uk4dm00lxummygg

Request

GET /s/ecm3?ex=baidu.com&id=acff52a1d841de8d2uk4dm00lxummygg HTTP/1.1
Host: aax-eu.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:32 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: QP4XQC8EB0FG9T2ZA4QS
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://aax-eu.amazon-adsystem.com/s/ecm3?ex=rise.com&id=XEzWQSG-k

Request

GET /s/ecm3?ex=rise.com&id=XEzWQSG-k HTTP/1.1
Host: aax-eu.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://cs-tam.yellowblue.io/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:33 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: H3HXDTNMY6Z5QQ140DRP
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://aax-eu.amazon-adsystem.com/s/ecm3?id=LXUMMYH8-18-IISD&ex=d-rubiconproject.com&status=ok&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /s/ecm3?id=LXUMMYH8-18-IISD&ex=d-rubiconproject.com&status=ok&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/1.1
Host: aax-eu.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:33 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: HGR7QQJRY71SMCTCQQSH
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
DNS

140.201.68.38.in-addr.arpa

Request

140.201.68.38.in-addr.arpa

IN PTR

Response
DNS

244.74.228.91.in-addr.arpa

Request

244.74.228.91.in-addr.arpa

IN PTR

Response
DNS

79.122.59.154.in-addr.arpa

Request

79.122.59.154.in-addr.arpa

IN PTR

Response
DNS

79.122.59.154.in-addr.arpa

Request

79.122.59.154.in-addr.arpa

IN PTR

Response
DNS

234.226.220.67.in-addr.arpa

Request

234.226.220.67.in-addr.arpa

IN PTR

Response
DNS

e.serverbid.com

Request

e.serverbid.com

IN A

Response

e.serverbid.com

IN CNAME

x.serverbid.com

x.serverbid.com

IN CNAME

exchange.consumabletv.com

exchange.consumabletv.com

IN CNAME

cx.serverbid.com

cx.serverbid.com

IN A

159.89.246.130
DNS

rtb-csync.smartadserver.com

Request

rtb-csync.smartadserver.com

IN A

Response

rtb-csync.smartadserver.com

IN CNAME

rtb-csync-geo.usersync-prod-sas.akadns.net

rtb-csync-geo.usersync-prod-sas.akadns.net

IN CNAME

rtb-csync-euw2.smartadserver.com

rtb-csync-euw2.smartadserver.com

IN A

164.132.25.184

rtb-csync-euw2.smartadserver.com

IN A

149.202.238.105

rtb-csync-euw2.smartadserver.com

IN A

178.32.197.57

rtb-csync-euw2.smartadserver.com

IN A

5.196.111.72

rtb-csync-euw2.smartadserver.com

IN A

51.178.195.216

rtb-csync-euw2.smartadserver.com

IN A

178.32.197.56

rtb-csync-euw2.smartadserver.com

IN A

51.178.195.217

rtb-csync-euw2.smartadserver.com

IN A

217.182.178.234

rtb-csync-euw2.smartadserver.com

IN A

5.196.111.73

rtb-csync-euw2.smartadserver.com

IN A

149.202.238.104

rtb-csync-euw2.smartadserver.com

IN A

5.135.209.104

rtb-csync-euw2.smartadserver.com

IN A

5.135.209.105

rtb-csync-euw2.smartadserver.com

IN A

91.134.110.137

rtb-csync-euw2.smartadserver.com

IN A

91.134.110.136

rtb-csync-euw2.smartadserver.com

IN A

217.182.178.233

rtb-csync-euw2.smartadserver.com

IN A

164.132.25.185
DNS

rtb-csync.smartadserver.com

Request

rtb-csync.smartadserver.com

IN A

Response

rtb-csync.smartadserver.com

IN CNAME

rtb-csync-geo.usersync-prod-sas.akadns.net

rtb-csync-geo.usersync-prod-sas.akadns.net

IN CNAME

rtb-csync-euw2.smartadserver.com

rtb-csync-euw2.smartadserver.com

IN A

51.178.195.216

rtb-csync-euw2.smartadserver.com

IN A

217.182.178.234

rtb-csync-euw2.smartadserver.com

IN A

5.196.111.72

rtb-csync-euw2.smartadserver.com

IN A

91.134.110.137

rtb-csync-euw2.smartadserver.com

IN A

217.182.178.233

rtb-csync-euw2.smartadserver.com

IN A

51.178.195.217

rtb-csync-euw2.smartadserver.com

IN A

178.32.197.56

rtb-csync-euw2.smartadserver.com

IN A

149.202.238.104

rtb-csync-euw2.smartadserver.com

IN A

164.132.25.185

rtb-csync-euw2.smartadserver.com

IN A

5.196.111.73

rtb-csync-euw2.smartadserver.com

IN A

5.135.209.105

rtb-csync-euw2.smartadserver.com

IN A

178.32.197.57

rtb-csync-euw2.smartadserver.com

IN A

5.135.209.104

rtb-csync-euw2.smartadserver.com

IN A

91.134.110.136

rtb-csync-euw2.smartadserver.com

IN A

149.202.238.105

rtb-csync-euw2.smartadserver.com

IN A

164.132.25.184
DNS

usr.undertone.com

Request

usr.undertone.com

IN A

Response

usr.undertone.com

IN CNAME

d1wsawskf2klzj.cloudfront.net

d1wsawskf2klzj.cloudfront.net

IN A

13.32.145.67

d1wsawskf2klzj.cloudfront.net

IN A

13.32.145.108

d1wsawskf2klzj.cloudfront.net

IN A

13.32.145.19

d1wsawskf2klzj.cloudfront.net

IN A

13.32.145.38
DNS

match.sync.ad.cpe.dotomi.com

Request

match.sync.ad.cpe.dotomi.com

IN A

Response

match.sync.ad.cpe.dotomi.com

IN CNAME

convex-rr.global.dual.dotomi.weighted.com.akadns.net

convex-rr.global.dual.dotomi.weighted.com.akadns.net

IN A

89.207.16.210

convex-rr.global.dual.dotomi.weighted.com.akadns.net

IN A

63.215.202.178

convex-rr.global.dual.dotomi.weighted.com.akadns.net

IN A

63.215.202.146

convex-rr.global.dual.dotomi.weighted.com.akadns.net

IN A

64.158.223.146

convex-rr.global.dual.dotomi.weighted.com.akadns.net

IN A

89.207.16.146
DNS

usync.vrtcal.com

Request

usync.vrtcal.com

IN A

Response

usync.vrtcal.com

IN CNAME

load-balancer-usync-1612103133.us-west-1.elb.amazonaws.com

load-balancer-usync-1612103133.us-west-1.elb.amazonaws.com

IN A

52.8.136.68

load-balancer-usync-1612103133.us-west-1.elb.amazonaws.com

IN A

54.183.37.64

load-balancer-usync-1612103133.us-west-1.elb.amazonaws.com

IN A

13.56.190.223

load-balancer-usync-1612103133.us-west-1.elb.amazonaws.com

IN A

13.56.215.73

load-balancer-usync-1612103133.us-west-1.elb.amazonaws.com

IN A

52.52.234.13

load-balancer-usync-1612103133.us-west-1.elb.amazonaws.com

IN A

54.153.14.40
GET

https://usr.undertone.com/userPixel/sync?partner=rubicon&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /userPixel/sync?partner=rubicon&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: usr.undertone.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
date: Tue, 25 Jun 2024 16:37:31 GMT
set-cookie: UID_EXT_47=LXUMMYH8-18-IISD; Path=/; Domain=undertone.com; Expires=Wed, 25-Jun-2025 22:26:43 GMT; SameSite=None; Secure;
x-cache: Miss from cloudfront
via: 1.1 8e496b1470aa6e6c871f14bf56d78d58.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-C2
x-amz-cf-id: --Q-7-hwJNl_P_SXU3VUEU3hA_Y-mXQaHjKJDh_IHa6dugfeONKHyQ==
GET

https://usr.undertone.com/userPixel/syncr?partnerid=51&r=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D1317278%26nid%3D5610%26put%3D%24UIDENC&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /userPixel/syncr?partnerid=51&r=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D1317278%26nid%3D5610%26put%3D%24UIDENC&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/2.0
host: usr.undertone.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: UID_EXT_47=LXUMMYH8-18-IISD

Response

HTTP/2.0 200

content-length: 0
date: Tue, 25 Jun 2024 16:37:43 GMT
x-cache: Miss from cloudfront
via: 1.1 8e496b1470aa6e6c871f14bf56d78d58.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-C2
x-amz-cf-id: iu3UK4eaVQwLABeGY0-4Mcv8n3xyvYunEjg7xUJD4qqE3OB8xMdAfA==
DNS

cm.smadex.com

Request

cm.smadex.com

IN A

Response

cm.smadex.com

IN A

52.84.174.54

cm.smadex.com

IN A

52.84.174.7

cm.smadex.com

IN A

52.84.174.129

cm.smadex.com

IN A

52.84.174.95
GET

https://match.sync.ad.cpe.dotomi.com/w/user.sync?ptrid=14&userid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /w/user.sync?ptrid=14&userid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: match.sync.ad.cpe.dotomi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: DotomiTest=115cdf495fae1697

Response

HTTP/2.0 200

server: nginx
date: Tue, 25 Jun 2024 16:37:31 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache
pragma: no-cache
expires: 0
accept-ch: Sec-CH-UA-Platform-Version,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Bitness
set-cookie: DotomiUser=709507631280713801$3$890528935$$1$$1719333451186$1719333451186; Expires=Wed, 23 Jul 2025 16:37:31 GMT; Path=/; Domain=.dotomi.com; SameSite=None; Secure
set-cookie: receive-cookie-deprecation=1; Expires=Wed, 23 Jul 2025 16:37:31 GMT; Path=/; Domain=.dotomi.com; Secure; HTTPOnly; SameSite=None; Partitioned
GET

https://cm.smadex.com/sync?sm_p=rbc&sm_r=rbc&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /sync?sm_p=rbc&sm_r=rbc&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: cm.smadex.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

location: https://pixel.rubiconproject.com/tap.php?v=71194&nid=3636&put=f9f19db3-344c-49ee-9e9d-36f1ccffcbe6&expires=30
set-cookie: smxtrack=f9f19db3-344c-49ee-9e9d-36f1ccffcbe6; Expires=Fri, 20 Jun 2025 16:37:31 GMT; Path=/; Domain=.smadex.com; SameSite=None; Secure;
set-cookie: smxtrack=f9f19db3-344c-49ee-9e9d-36f1ccffcbe6; Expires=Fri, 20 Jun 2025 16:37:31 GMT; Path=/; Domain=.smadex.com; SameSite=None; Secure;
set-cookie: smxrbc=1; Expires=Thu, 25 Jul 2024 16:37:31 GMT; Path=/; Domain=.smadex.com; SameSite=None; Secure;
date: Tue, 25 Jun 2024 16:37:31 GMT
x-envoy-upstream-service-time: 1
server: istio-envoy
x-cache: Miss from cloudfront
via: 1.1 575cacb0734545eaea94b948deff0e06.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG50-P1
x-amz-cf-id: y5N6ckxxts2BKcnlmsg13_KQAeNbCjgvx2t8fUnjhTkl_BNFsk54Lw==
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=104&partneruserid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /redir/?partnerid=104&partneruserid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:31 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:31 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=2&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368

Request

GET /redir/?issi=2&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; vs=342899=6038917

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:38 GMT
transfer-encoding: chunked
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=135&partneruserid=TAM_OK&redirurl=https%3A%2F%2Fs.amazon-adsystem.com%2Fdcm%3Fpid%3D72348060-38ad-4586-8e4f-f1e2a8e789b3%26id%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=135&partneruserid=TAM_OK&redirurl=https%3A%2F%2Fs.amazon-adsystem.com%2Fdcm%3Fpid%3D72348060-38ad-4586-8e4f-f1e2a8e789b3%26id%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; vs=342899=6038917

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:37:42 GMT
cache-control: no-cache,no-store
location: https://s.amazon-adsystem.com/dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:43 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=32&partneruserid=3314471828681895967&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=32&partneruserid=3314471828681895967&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:42 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|32:3314471828681895967|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:43 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=80&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&partneruserid=xwYLfpcBBSjcBQwmwgQRL8kBCyrcBQknx1QhuGa2

Request

GET /redir/?partnerid=80&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&partneruserid=xwYLfpcBBSjcBQwmwgQRL8kBCyrcBQknx1QhuGa2 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:43 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|80:xwYLfpcBBSjcBQwmwgQRL8kBCyrcBQknx1QhuGa2|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:43 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=94&partneruserid=ZnrxlgAEOxAPqQAz&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /redir/?issi=1&partnerid=94&partneruserid=ZnrxlgAEOxAPqQAz&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:42 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|94:ZnrxlgAEOxAPqQAz|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:43 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://uipglob.semasio.net/magnite/1/info?sType=sync&sExtCookieId=LXUMMYH8-18-IISD&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /magnite/1/info?sType=sync&sExtCookieId=LXUMMYH8-18-IISD&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/1.1
Host: uipglob.semasio.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: SEUNCY=B33A6DD4B9D190C

Response

HTTP/1.1 200 OK

content-type: image/gif
uip-response-status: Ok
frontend-id: 0
set-cookie: SEUNCY=B33A6DD4B9D190C; Expires=Wed, 25 Jun 2025 16:37:30 GMT; Path=/; Domain=.semasio.net; SameSite=None; HttpOnly; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sat, 01 Jan 2011 12:00:00 GMT
p3p: policyref="http://uip.semasio.net/w3c/p3p.xml", CP="NOI PSAa PSDa OUR IND UNI CNT"
pragma: no-cache
date: Tue, 25 Jun 2024 16:37:30 GMT
content-length: 42
routing-server-id: -1
access-control-allow-origin: *
DNS

trace-eu.mediago.io

Request

trace-eu.mediago.io

IN A

Response

trace-eu.mediago.io

IN A

35.214.168.80
GET

https://trace-eu.mediago.io/ju/cs/amazon?callback=https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbaidu.com%26id%3D%24UID&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /ju/cs/amazon?callback=https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbaidu.com%26id%3D%24UID&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: trace-eu.mediago.io
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __mguid_=acff52a1d841de8d2uk4dm00lxummygg
DNS

amazon-tam-match.dotomi.com

Request

amazon-tam-match.dotomi.com

IN A

Response

amazon-tam-match.dotomi.com

IN CNAME

bfp.global.dual.dotomi.weighted.com.akadns.net

bfp.global.dual.dotomi.weighted.com.akadns.net

IN A

63.215.202.172
DNS

ap.lijit.com

Request

ap.lijit.com

IN A

Response

ap.lijit.com

IN CNAME

vap.lijit.com

vap.lijit.com

IN CNAME

emeas.vap.lijit.com

emeas.vap.lijit.com

IN CNAME

eu.vap.lijit.com

eu.vap.lijit.com

IN CNAME

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.73.134.109

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.154.252.226

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.229.26.183

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

63.33.6.201

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.246.192.145

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.72.0.237

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

34.248.176.147

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

52.209.206.136
DNS

ap.lijit.com

Request

ap.lijit.com

IN A

Response

ap.lijit.com

IN CNAME

vap.lijit.com

vap.lijit.com

IN CNAME

emeas.vap.lijit.com

emeas.vap.lijit.com

IN CNAME

eu.vap.lijit.com

eu.vap.lijit.com

IN CNAME

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.229.26.183

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

34.248.176.147

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.73.134.109

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

52.209.206.136

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

63.33.6.201

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.72.0.237

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.154.252.226

blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com

IN A

54.246.192.145
DNS

s.amazon-adsystem.com

Request

s.amazon-adsystem.com

IN A

Response

s.amazon-adsystem.com

IN A

52.46.143.56
DNS

s.amazon-adsystem.com

Request

s.amazon-adsystem.com

IN A

Response

s.amazon-adsystem.com

IN A

52.46.143.56
GET

https://ap.lijit.com/pixel?&gdpr=1&gdpr_consent=[GDPR_CONSENT]&us_privacy=1---&redir=https%3A%2F%2Fprebid.a-mo.net%2Fcchain%2F1%2F24678%3Fgdpr%3D0%26gpp_sid%3D%26us_privacy%3D%26A%3D50886587-c2de-464e-b418-0cae300d20be%26bidder%3Dsovrn%26cbx%3DaHR0cHM6Ly9zeW5jLnByaXZhdGVzZXJ2aW5nLmNvbT9wcm92aWRlcj1hZGFwdG14JnVpZD0%253D%26uid%3D%24UID

Request

GET /pixel?&gdpr=1&gdpr_consent=[GDPR_CONSENT]&us_privacy=1---&redir=https%3A%2F%2Fprebid.a-mo.net%2Fcchain%2F1%2F24678%3Fgdpr%3D0%26gpp_sid%3D%26us_privacy%3D%26A%3D50886587-c2de-464e-b418-0cae300d20be%26bidder%3Dsovrn%26cbx%3DaHR0cHM6Ly9zeW5jLnByaXZhdGVzZXJ2aW5nLmNvbT9wcm92aWRlcj1hZGFwdG14JnVpZD0%253D%26uid%3D%24UID HTTP/2.0
host: ap.lijit.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cds.connatix.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ljt_reader=I4uDAQZHJDC8w6ABR_qOoSte
cookie: _ljtrtb_80=LXUMMYH8-18-IISD

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:37:31 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type
GET

https://ap.lijit.com/pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&redir=https%3A%2F%2Fcs-tam.yellowblue.io%2Fcs%3Faid%3D11607%26uid%3D%24UID

Request

GET /pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&redir=https%3A%2F%2Fcs-tam.yellowblue.io%2Fcs%3Faid%3D11607%26uid%3D%24UID HTTP/2.0
host: ap.lijit.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://cs-tam.yellowblue.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ljt_reader=I4uDAQZHJDC8w6ABR_qOoSte
cookie: _ljtrtb_80=LXUMMYH8-18-IISD

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:37:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type
GET

https://ap.lijit.com/pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fsync.ex.co%2Fv1%2Fsetuid%2Fsovrn%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%24UID

Request

GET /pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fsync.ex.co%2Fv1%2Fsetuid%2Fsovrn%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%24UID HTTP/2.0
host: ap.lijit.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cdn.ex.co/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ljt_reader=I4uDAQZHJDC8w6ABR_qOoSte
cookie: _ljtrtb_80=LXUMMYH8-18-IISD

Response

HTTP/2.0 307

date: Tue, 25 Jun 2024 16:37:39 GMT
content-length: 0
location: https://sync.ex.co/v1/setuid/sovrn/?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&uid=I4uDAQZHJDC8w6ABR_qOoSte
vary: Accept-Encoding
set-cookie: ljt_reader=I4uDAQZHJDC8w6ABR_qOoSte;Version=1;Domain=.lijit.com;Path=/;Max-Age=31536000;Secure; SameSite=None;
access-control-allow-origin: *
access-control-allow-methods: GET, POST, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type
GET

https://s.amazon-adsystem.com/ecm3?ex=cnv.com&id=AQAI2axvdutxSAI0FWWmAQEBAQEBAQCRUUN0swEBAJFRQ3Sz&expiration=1719419851&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /ecm3?ex=cnv.com&id=AQAI2axvdutxSAI0FWWmAQEBAQEBAQCRUUN0swEBAJFRQ3Sz&expiration=1719419851&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:32 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: C8W2MXPYT4QWQCBGD0FP
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://s.amazon-adsystem.com/ecm3?id=AAD5Jk7M9eMAABdSEix9nA&ex=beeswax.com

Request

GET /ecm3?id=AAD5Jk7M9eMAABdSEix9nA&ex=beeswax.com HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:32 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: 8JG5B3QNQJCK03DF3HA1
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://s.amazon-adsystem.com/ecm3?id=YZ9IXur4Q8di&ex=Pulsepoint

Request

GET /ecm3?id=YZ9IXur4Q8di&ex=Pulsepoint HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://bh.contextweb.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:32 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: HCZ9SZ7GCZNV1BTVCF97
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://s.amazon-adsystem.com/ecm3?ex=onetag.com&id=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4

Request

GET /ecm3?ex=onetag.com&id=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4 HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://onetag-sys.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:33 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: 1HQB56A9PG4PRK1RK6TR
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
GET

https://s.amazon-adsystem.com/dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: s.amazon-adsystem.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; ad-privacy=0

Response

HTTP/1.1 200 OK

Server: Server
Date: Tue, 25 Jun 2024 16:37:43 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: 8T59HB53R5EHBPY5G23R
Set-Cookie: ad-id=A_y3nkAYikVVt6OAPtnpRzI; Domain=.amazon-adsystem.com; Expires=Wed, 01-Jan-2025 16:37:43 GMT; Path=/; Secure; HttpOnly; SameSite=None
Set-Cookie: ad-privacy=0; Domain=.amazon-adsystem.com; Expires=Sun, 01-Jul-2029 16:37:43 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
DNS

67.145.32.13.in-addr.arpa

Request

67.145.32.13.in-addr.arpa

IN PTR

Response

67.145.32.13.in-addr.arpa

IN PTR

server-13-32-145-67cdg50r cloudfrontnet
DNS

210.16.207.89.in-addr.arpa

Request

210.16.207.89.in-addr.arpa

IN PTR

Response

210.16.207.89.in-addr.arpa

IN PTR

ams04-convex-float1dotomicom
DNS

184.25.132.164.in-addr.arpa

Request

184.25.132.164.in-addr.arpa

IN PTR

Response

184.25.132.164.in-addr.arpa

IN PTR

ip184 ip-164-132-25eu
DNS

54.174.84.52.in-addr.arpa

Request

54.174.84.52.in-addr.arpa

IN PTR

Response

54.174.84.52.in-addr.arpa

IN PTR

server-52-84-174-54cdg50r cloudfrontnet
DNS

68.136.8.52.in-addr.arpa

Request

68.136.8.52.in-addr.arpa

IN PTR

Response

68.136.8.52.in-addr.arpa

IN PTR

ec2-52-8-136-68 us-west-1compute amazonawscom
DNS

80.168.214.35.in-addr.arpa

Request

80.168.214.35.in-addr.arpa

IN PTR

Response

80.168.214.35.in-addr.arpa

IN PTR

8016821435bcgoogleusercontentcom
DNS

109.134.73.54.in-addr.arpa

Request

109.134.73.54.in-addr.arpa

IN PTR

Response

109.134.73.54.in-addr.arpa

IN PTR

ec2-54-73-134-109 eu-west-1compute amazonawscom
DNS

56.143.46.52.in-addr.arpa

Request

56.143.46.52.in-addr.arpa

IN PTR

Response
DNS

cs-tam.yellowblue.io

Request

cs-tam.yellowblue.io

IN A

Response

cs-tam.yellowblue.io

IN A

52.208.159.70

cs-tam.yellowblue.io

IN A

52.209.21.214

cs-tam.yellowblue.io

IN A

3.248.68.207
DNS

csi.gstatic.com

Request

csi.gstatic.com

IN A

Response

csi.gstatic.com

IN A

216.239.32.3
POST

https://csi.gstatic.com/csi?v=2&s=ima&dmc=8&puid=1~lxumqt5b&c=2111145293196&slotId=1055572646598&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0

Request

POST /csi?v=2&s=ima&dmc=8&puid=1~lxumqt5b&c=2111145293196&slotId=1055572646598&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0 HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://imasdk.googleapis.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://imasdk.googleapis.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

sync.richaudience.com

Request

sync.richaudience.com

IN A

Response

sync.richaudience.com

IN A

162.55.236.225
DNS

ad.360yield.com

Request

ad.360yield.com

IN A

Response

ad.360yield.com

IN CNAME

ice.360yield.com

ice.360yield.com

IN CNAME

euw-ice.360yield.com

euw-ice.360yield.com

IN A

52.210.37.226

euw-ice.360yield.com

IN A

108.128.174.15

euw-ice.360yield.com

IN A

34.246.179.114

euw-ice.360yield.com

IN A

63.33.31.207

euw-ice.360yield.com

IN A

34.253.46.26

euw-ice.360yield.com

IN A

99.80.199.11

euw-ice.360yield.com

IN A

54.72.43.143

euw-ice.360yield.com

IN A

54.194.204.172
DNS

pulsepoint-match.dotomi.com

Request

pulsepoint-match.dotomi.com

IN A

Response

pulsepoint-match.dotomi.com

IN CNAME

bfp.global.dual.dotomi.weighted.com.akadns.net

bfp.global.dual.dotomi.weighted.com.akadns.net

IN A

63.215.202.140
GET

https://pulsepoint-match.dotomi.com/match/bounce/current?networkId=14200&version=1&nuid=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /match/bounce/current?networkId=14200&version=1&nuid=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: pulsepoint-match.dotomi.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bh.contextweb.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: DotomiTest=115cdf495fae1697
cookie: DotomiUser=709507631280713801$3$890528935$$1$$1719333451186$1719333451186
cookie: receive-cookie-deprecation=1

Response

HTTP/2.0 302

server: nginx
date: Tue, 25 Jun 2024 16:37:32 GMT
content-length: 0
cache-control: no-cache, private, max-age=0, no-store
expires: 0
pragma: no-cache
location: https://bh.contextweb.com/bh/rtset?do=add&pid=530912&ev=AQAI2axvdutxSAI0FWWmAQEBAQEBAQCRUUN0swEBAJFRQ3Sz&expiration=1719419852&nuid=&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1
GET

https://pixel-eu.rubiconproject.com/exchange/sync.php?p=a9eu&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

Request

GET /exchange/sync.php?p=a9eu&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: pixel-eu.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://aax-eu.amazon-adsystem.com/s/ecm3?id=LXUMMYH8-18-IISD&ex=d-rubiconproject.com&status=ok&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:32 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:32 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:32 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel-eu.rubiconproject.com/exchange/sync.php?p=onetag&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /exchange/sync.php?p=onetag&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/1.1
Host: pixel-eu.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://onetag-sys.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://onetag-sys.com/match/?int_id=2&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
GET

https://pixel-eu.rubiconproject.com/exchange/sync.php?p=rise_engage&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

Request

GET /exchange/sync.php?p=rise_engage&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD HTTP/1.1
Host: pixel-eu.rubiconproject.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 302 Found

P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 2c23b4364c7419b07473d4a3171f0ba5
Location: https://cs.yellowblue.io/cs?aid=11590&id=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA
Content-Type: text/html
content-length: 0
set-cookie: khaos=LXUMMYH8-18-IISD; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: audit=1|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; Max-Age=31536000; Expires=Wed, 25 Jun 2025 16:37:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; SameSite=None
set-cookie: receive-cookie-deprecation=1; Max-Age=7776000; Expires=Mon, 23 Sep 2024 16:37:33 GMT; Path=/; Domain=.rubiconproject.com; Secure; HTTPOnly; SameSite=None; Partitioned;
DNS

3.32.239.216.in-addr.arpa

Request

3.32.239.216.in-addr.arpa

IN PTR

Response
DNS

226.37.210.52.in-addr.arpa

Request

226.37.210.52.in-addr.arpa

IN PTR

Response

226.37.210.52.in-addr.arpa

IN PTR

ec2-52-210-37-226 eu-west-1compute amazonawscom
DNS

140.202.215.63.in-addr.arpa

Request

140.202.215.63.in-addr.arpa

IN PTR

Response

140.202.215.63.in-addr.arpa

IN PTR

ams01-nessy-float2dotomicom
DNS

cm.adform.net

Request

cm.adform.net

IN A

Response

cm.adform.net

IN CNAME

track-eu.adformnet.akadns.net

track-eu.adformnet.akadns.net

IN A

37.157.5.84

track-eu.adformnet.akadns.net

IN A

37.157.4.28

track-eu.adformnet.akadns.net

IN A

37.157.5.132

track-eu.adformnet.akadns.net

IN A

37.157.4.29

track-eu.adformnet.akadns.net

IN A

37.157.5.133
GET

https://image8.pubmatic.com/AdServer/ImgSync?p=160295&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&pu=https%3A%2F%2Fcs-tam.yellowblue.io%2Fcs%3Faid%3D11576%26id%3D%23PMUID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /AdServer/ImgSync?p=160295&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&pu=https%3A%2F%2Fcs-tam.yellowblue.io%2Fcs%3Faid%3D11576%26id%3D%23PMUID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: image8.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cs-tam.yellowblue.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY
cookie: PugT=1719333274
cookie: SPugT=1719333275
cookie: chkChromeAb67Sec=5

Response

HTTP/2.0 302

cache-control: private,max-age=86400
content-type: text/html; charset=utf-8
location: https://cs-tam.yellowblue.io/cs?aid=11576&id=6F33541D-0234-4D12-A971-323BE606F1A8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
set-cookie: ipc=160295^https%3A%2F%2Fcs-tam.yellowblue.io%2Fcs%3Faid%3D11576%26id%3D%23PMUID^0^0; domain=pubmatic.com; path=/; max-age=3; SameSite=None; secure;
set-cookie: pi=160295:3; domain=pubmatic.com; path=/; max-age=86400; SameSite=None; secure;
set-cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8; domain=pubmatic.com; path=/; max-age=31536000; SameSite=None; secure;
set-cookie: chkChromeAb67Sec=6; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
date: Tue, 25 Jun 2024 16:37:33 GMT
content-length: 108
GET

https://image8.pubmatic.com/AdServer/ImgSync?p=159706&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&us_privacy=&pu=https%3A%2F%2Fonetag-sys.com%2Fmatch%2F%3Fint_id%3D114%26gdpr%3D${GDPR}%26gdpr_consent%3D${GDPR_STRING}%26uid%3D%23PMUID

Request

GET /AdServer/ImgSync?p=159706&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&us_privacy=&pu=https%3A%2F%2Fonetag-sys.com%2Fmatch%2F%3Fint_id%3D114%26gdpr%3D${GDPR}%26gdpr_consent%3D${GDPR_STRING}%26uid%3D%23PMUID HTTP/2.0
host: image8.pubmatic.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8
cookie: KRTBCOOKIE_57=22776-8159859772855155319&KRTB&23339-8159859772855155319
cookie: KRTBCOOKIE_1101=23040-7384480169877371019&KRTB&23369-7384480169877371019
cookie: KRTBCOOKIE_153=19420-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&22979-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn&KRTB&23462-sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn
cookie: KRTBCOOKIE_1323=23480-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23485-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23524-OPU7d3f53a5e1994323b156921d1da1551d&KRTB&23575-OPU7d3f53a5e1994323b156921d1da1551d
cookie: KRTBCOOKIE_860=16335-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23334-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23417-oDHTg3vfVxNfj2Iimit6yL9l0Sc&KRTB&23426-oDHTg3vfVxNfj2Iimit6yL9l0Sc
cookie: KRTBCOOKIE_466=16530-4f62fbba-ecd4-4b71-afc7-4916045d677d
cookie: KRTBCOOKIE_18=22947-5108559734156128624
cookie: KRTBCOOKIE_336=5844-934304454267114567
cookie: KRTBCOOKIE_1277=23327-37883803138716&KRTB&23357-37883803138716
cookie: KRTBCOOKIE_699=22727-AAD5Jk7M9eMAABdSEix9nA
cookie: KRTBCOOKIE_1003=22761-cd0498ca-3310-11ef-9349-8843a12a8555&KRTB&23275-cd0498ca-3310-11ef-9349-8843a12a8555
cookie: KRTBCOOKIE_377=6810-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22918-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&22926-84daa6ca-0538-48d1-9010-ae8e49c9a74c&KRTB&23031-84daa6ca-0538-48d1-9010-ae8e49c9a74c
cookie: KRTBCOOKIE_80=22987-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23025-CAESENrEVyLDmsXON17PsTfFw-I&KRTB&23386-CAESENrEVyLDmsXON17PsTfFw-I
cookie: KRTBCOOKIE_22=14911-3314471828681895967&KRTB&23150-3314471828681895967&KRTB&23527-3314471828681895967
cookie: KRTBCOOKIE_632=23041-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23047-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23234-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&KRTB&23361-qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4
cookie: KRTBCOOKIE_391=22924-6640692441033083723&KRTB&23263-6640692441033083723&KRTB&23481-6640692441033083723
cookie: KRTBCOOKIE_32=11175-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&22715-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&KRTB&23519-AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn
cookie: KRTBCOOKIE_188=3189-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&KRTB&23418-686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553
cookie: DPSync3=1720483200%3A245_241_227_226_219_197_201
cookie: SyncRTB3=1721865600%3A203%7C1720569600%3A35%7C1719878400%3A2_223_15%7C1724457600%3A69%7C1720137600%3A63%7C1720483200%3A56_266_166_264_251_22_233_214_220_88_176_238_165_161_81_249_3_254_234_46_8_13_71_21_243_55_54_99
cookie: KRTBCOOKIE_594=17105-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&KRTB&17107-RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003
cookie: KRTBCOOKIE_409=22966-Gp1rLOrtXaWRTWVXhaSnWSaY
cookie: PugT=1719333274
cookie: SPugT=1719333275
cookie: ipc=160295^https%3A%2F%2Fcs-tam.yellowblue.io%2Fcs%3Faid%3D11576%26id%3D%23PMUID^0^0
cookie: pi=160295:3
cookie: chkChromeAb67Sec=6

Response

HTTP/2.0 302

content-type: text/html; charset=utf-8
location: https://onetag-sys.com/match/?int_id=114&gdpr=${GDPR}&gdpr_consent=${GDPR_STRING}&uid=6F33541D-0234-4D12-A971-323BE606F1A8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
set-cookie: pi=159706:3; domain=pubmatic.com; path=/; max-age=86400; SameSite=None; secure;
set-cookie: KADUSERCOOKIE=6F33541D-0234-4D12-A971-323BE606F1A8; domain=pubmatic.com; path=/; max-age=31536000; SameSite=None; secure;
set-cookie: chkChromeAb67Sec=7; domain=pubmatic.com; path=/; max-age=7776000; SameSite=None; secure;
date: Tue, 25 Jun 2024 16:37:32 GMT
content-length: 157
DNS

contextual.media.net

Request

contextual.media.net

IN A

Response

contextual.media.net

IN A

23.41.25.82
DNS

contextual.media.net

Request

contextual.media.net

IN A

Response

contextual.media.net

IN A

23.41.25.82
DNS

cs.yellowblue.io

Request

cs.yellowblue.io

IN A

Response

cs.yellowblue.io

IN A

52.209.21.214

cs.yellowblue.io

IN A

3.248.68.207

cs.yellowblue.io

IN A

52.208.159.70
DNS

rtb.mfadsrvr.com

Request

rtb.mfadsrvr.com

IN A

Response

rtb.mfadsrvr.com

IN CNAME

pool.dorpat.iponweb.net

pool.dorpat.iponweb.net

IN CNAME

dorpat.geo.iponweb.net

dorpat.geo.iponweb.net

IN A

35.214.199.88
DNS

rtb.mfadsrvr.com

Request

rtb.mfadsrvr.com

IN A

Response

rtb.mfadsrvr.com

IN CNAME

pool.dorpat.iponweb.net

pool.dorpat.iponweb.net

IN CNAME

dorpat.geo.iponweb.net

dorpat.geo.iponweb.net

IN A

35.214.199.88
DNS

sync.mathtag.com

Request

sync.mathtag.com

IN A

Response

sync.mathtag.com

IN CNAME

pixel-origin.mathtag.com

pixel-origin.mathtag.com

IN A

216.200.232.249

pixel-origin.mathtag.com

IN A

74.121.140.211

pixel-origin.mathtag.com

IN A

216.200.232.253
DNS

ssbsync-global.smartadserver.com

Request

ssbsync-global.smartadserver.com

IN A

Response

ssbsync-global.smartadserver.com

IN CNAME

usersync-geo-global.usersync-prod-sas.akadns.net

usersync-geo-global.usersync-prod-sas.akadns.net

IN CNAME

ssbsync-euw2.smartadserver.com

ssbsync-euw2.smartadserver.com

IN A

5.135.209.101

ssbsync-euw2.smartadserver.com

IN A

178.32.197.52

ssbsync-euw2.smartadserver.com

IN A

149.202.238.101

ssbsync-euw2.smartadserver.com

IN A

51.178.195.212

ssbsync-euw2.smartadserver.com

IN A

5.196.111.68

ssbsync-euw2.smartadserver.com

IN A

178.32.197.53

ssbsync-euw2.smartadserver.com

IN A

178.32.210.230

ssbsync-euw2.smartadserver.com

IN A

217.182.178.229

ssbsync-euw2.smartadserver.com

IN A

164.132.25.180

ssbsync-euw2.smartadserver.com

IN A

178.32.210.231

ssbsync-euw2.smartadserver.com

IN A

91.134.110.133

ssbsync-euw2.smartadserver.com

IN A

217.182.178.228

ssbsync-euw2.smartadserver.com

IN A

5.196.111.69

ssbsync-euw2.smartadserver.com

IN A

149.202.238.100

ssbsync-euw2.smartadserver.com

IN A

5.135.209.100

ssbsync-euw2.smartadserver.com

IN A

51.178.195.213

ssbsync-euw2.smartadserver.com

IN A

91.134.110.132

ssbsync-euw2.smartadserver.com

IN A

164.132.25.181
DNS

spl.zeotap.com

Request

spl.zeotap.com

IN A

Response

spl.zeotap.com

IN A

104.22.50.98

spl.zeotap.com

IN A

104.22.51.98

spl.zeotap.com

IN A

172.67.40.173
GET

https://rtb.mfadsrvr.com/sync?ssp=onetag&ssp_user_id=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /sync?ssp=onetag&ssp_user_id=dKpz8hNtT7s1iESvZARR04fLPAdbe_geU8jTdx39wB4&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: rtb.mfadsrvr.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://spl.zeotap.com/?zdid=678&env=mWeb&eventType=pageview&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA

Request

GET /?zdid=678&env=mWeb&eventType=pageview&gdpr=1&gdpr_consent=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA HTTP/2.0
host: spl.zeotap.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://onetag-sys.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: zc=06f6dea0-fa5b-4b8a-6cad-6036b48366e4

Response

HTTP/2.0 403

date: Tue, 25 Jun 2024 16:37:33 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Tue, 25 Jun 2024 16:37:48 GMT
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 899662042f7d0eab-AMS
content-encoding: br
DNS

pr-bh.ybp.yahoo.com

Request

pr-bh.ybp.yahoo.com

IN A

Response

pr-bh.ybp.yahoo.com

IN CNAME

ds-pr-bh.ybp.gysm.yahoodns.net

ds-pr-bh.ybp.gysm.yahoodns.net

IN A

54.247.33.148

ds-pr-bh.ybp.gysm.yahoodns.net

IN A

63.33.151.117

ds-pr-bh.ybp.gysm.yahoodns.net

IN A

99.81.105.107

ds-pr-bh.ybp.gysm.yahoodns.net

IN A

54.74.86.51
OPTIONS

https://gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fpixelpoint.tv%2F&domain=pixelpoint.tv&cw=1&lsw=1&us_privacy=1---&gdprString=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fpixelpoint.tv%2F&domain=pixelpoint.tv&cw=1&lsw=1&us_privacy=1---&gdprString=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: gum.criteo.com
accept: */*
access-control-request-method: GET
access-control-request-headers: content-type
origin: https://pixelpoint.tv
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Tue, 25 Jun 2024 16:37:33 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://pixelpoint.tv
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
server-processing-duration-in-ticks: 287579
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
DNS

acdn.adnxs.com

Request

acdn.adnxs.com

IN A

Response

acdn.adnxs.com

IN CNAME

secure-adnxs.edgekey.net

secure-adnxs.edgekey.net

IN CNAME

e6115.g.akamaiedge.net

e6115.g.akamaiedge.net

IN A

2.21.188.221
DNS

82.25.41.23.in-addr.arpa

Request

82.25.41.23.in-addr.arpa

IN PTR

Response

82.25.41.23.in-addr.arpa

IN PTR

a23-41-25-82deploystaticakamaitechnologiescom
DNS

84.5.157.37.in-addr.arpa

Request

84.5.157.37.in-addr.arpa

IN PTR

Response
DNS

88.199.214.35.in-addr.arpa

Request

88.199.214.35.in-addr.arpa

IN PTR

Response

88.199.214.35.in-addr.arpa

IN PTR

8819921435bcgoogleusercontentcom
DNS

249.232.200.216.in-addr.arpa

Request

249.232.200.216.in-addr.arpa

IN PTR

Response
DNS

148.33.247.54.in-addr.arpa

Request

148.33.247.54.in-addr.arpa

IN PTR

Response

148.33.247.54.in-addr.arpa

IN PTR

ec2-54-247-33-148 eu-west-1compute amazonawscom
GET

https://gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fpixelpoint.tv%2F&domain=pixelpoint.tv&cw=1&lsw=1&us_privacy=1---&gdprString=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1

Request

GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fpixelpoint.tv%2F&domain=pixelpoint.tv&cw=1&lsw=1&us_privacy=1---&gdprString=CQAxFUAQAxFUAAKA1AENA6EsAP_gAEPgACiQKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.f_AAAAgAAAAA&gdpr=1 HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: application/json
accept: */*
origin: https://pixelpoint.tv
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://pixelpoint.tv/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Tue, 25 Jun 2024 16:37:34 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://pixelpoint.tv
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
server-processing-duration-in-ticks: 966014
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
GET

https://gum.criteo.com/sid/json?origin=publishertag&domain=mm-watch.com&sn=ChromeSyncframe&so=3&topUrl=mm-watch.com&bundle=JX77p18xcEdCOXZZa1Q1WUZDS201cDBjJTJCUjdqTWNzdUlveHVhVnRiRzRCTXM1Q3NwSEw5ZGpDJTJCVHU0dUpkVTJFd0Z4ZmJWdWtGaUc5a1gxcTAlMkZ2NVIlMkI5ZEJEQkpURkF2SjhRSTNLNXQwTDh2dzJ4dlluaTVUaWxNOFVOQ1h3TzhEZ1Q0T1ZoUldLQmdBUWhSYmxoUXdXMXd2QSUzRCUzRA&cw=1&lsw=1&topicsavail=0&fledgeavail=0

Request

GET /sid/json?origin=publishertag&domain=mm-watch.com&sn=ChromeSyncframe&so=3&topUrl=mm-watch.com&bundle=JX77p18xcEdCOXZZa1Q1WUZDS201cDBjJTJCUjdqTWNzdUlveHVhVnRiRzRCTXM1Q3NwSEw5ZGpDJTJCVHU0dUpkVTJFd0Z4ZmJWdWtGaUc5a1gxcTAlMkZ2NVIlMkI5ZEJEQkpURkF2SjhRSTNLNXQwTDh2dzJ4dlluaTVUaWxNOFVOQ1h3TzhEZ1Q0T1ZoUldLQmdBUWhSYmxoUXdXMXd2QSUzRCUzRA&cw=1&lsw=1&topicsavail=0&fledgeavail=0 HTTP/2.0
host: gum.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/syncframe?origin=publishertag&topUrl=mm-watch.com&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 200

content-type: application/json; charset=utf-8
date: Tue, 25 Jun 2024 16:37:42 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
server-processing-duration-in-ticks: 2078011
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
DNS

c21lg-d.media.net

Request

c21lg-d.media.net

IN A

Response

c21lg-d.media.net

IN CNAME

star.media.net.edgekey.net

star.media.net.edgekey.net

IN CNAME

e607.d.akamaiedge.net

e607.d.akamaiedge.net

IN A

2.21.188.27
GET

https://c21lg-d.media.net/log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct

Request

GET /log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct HTTP/1.1
Host: c21lg-d.media.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://contextual.media.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: visitor-id=3623348742093549000V10; data-g=CAESECwH1UczWMWFpTPAOLSJyfY~~52; data-bs=4f62fbba-ecd4-4b71-afc7-4916045d677d~~52; data-c=868b39e2-997b-433c-bce9-379e12258c8f~~52; data-c-ts=1719333275; data-co=AQAGxOftSrzMowIMxUtUAQEBAQEBAQCRUT7HGQEBAJFRPscZ~~52; data-lop=20bd0165-7caa-4b7b-8b83-5936300ad204~~52; data-ris={{APID}}~~52

Response

HTTP/1.1 200 OK

Content-Type: image/gif
Access-Control-Allow-Origin: *
Content-Length: 35
Expires: Tue, 25 Jun 2024 16:37:34 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 25 Jun 2024 16:37:34 GMT
Connection: keep-alive
GET

https://c21lg-d.media.net/log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct

Request

GET /log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct HTTP/1.1
Host: c21lg-d.media.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://contextual.media.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: visitor-id=3623348742093549000V10; data-g=CAESECwH1UczWMWFpTPAOLSJyfY~~52; data-bs=4f62fbba-ecd4-4b71-afc7-4916045d677d~~52; data-c=868b39e2-997b-433c-bce9-379e12258c8f~~52; data-c-ts=1719333275; data-co=AQAGxOftSrzMowIMxUtUAQEBAQEBAQCRUT7HGQEBAJFRPscZ~~52; data-lop=20bd0165-7caa-4b7b-8b83-5936300ad204~~52; data-ris={{APID}}~~52; data-pba=6F33541D-0234-4D12-A971-323BE606F1A8~~52; data-r=LXUMMYH8-18-IISD~~52

Response

HTTP/1.1 200 OK

Content-Type: image/gif
Access-Control-Allow-Origin: *
Content-Length: 35
Expires: Tue, 25 Jun 2024 16:37:43 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 25 Jun 2024 16:37:43 GMT
Connection: keep-alive
DNS

221.188.21.2.in-addr.arpa

Request

221.188.21.2.in-addr.arpa

IN PTR

Response

221.188.21.2.in-addr.arpa

IN PTR

a2-21-188-221deploystaticakamaitechnologiescom
DNS

player.ex.co

Request

player.ex.co

IN A

Response

player.ex.co

IN CNAME

j.sni.global.fastly.net

j.sni.global.fastly.net

IN A

151.101.194.132

j.sni.global.fastly.net

IN A

151.101.130.132

j.sni.global.fastly.net

IN A

151.101.2.132

j.sni.global.fastly.net

IN A

151.101.66.132
GET

https://player.ex.co/player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84

Request

GET /player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84 HTTP/2.0
host: player.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}
if-none-match: W/"8dbbd-yRGyLHDlggx02NseEKR3bK9sHxU"

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:37:36 GMT
via: 1.1 varnish
cache-control: no-cache
etag: W/"8dbbd-yRGyLHDlggx02NseEKR3bK9sHxU"
x-served-by: cache-lcy-eglc8600086-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333457.859562,VS0,VE1
vary: Accept-Encoding, x-pb-country, x-pb-connection, x-pb-embedid, x-pb-itemid, x-pb-videoid, x-pb-player, x-pb-bot-name, x-pb-is-bot, x-pb-country, x-pb-connection, x-pb-embedid, x-pb-itemid, x-pb-videoid, x-pb-player, x-pb-bot-name, x-pb-is-bot
DNS

132.194.101.151.in-addr.arpa

Request

132.194.101.151.in-addr.arpa

IN PTR

Response
GET

https://player.ex.co/config?sfid=001Qw000008BdCjIAK&nid=1919177790

Request

GET /config?sfid=001Qw000008BdCjIAK&nid=1919177790 HTTP/2.0
host: player.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: W/"9f8-KPVo5kjQUntaZZai9oOTHKUeP3k"

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:37:37 GMT
via: 1.1 varnish
cache-control: no-cache
etag: W/"9f8-KPVo5kjQUntaZZai9oOTHKUeP3k"
x-served-by: cache-lcy-eglc8600025-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333457.011169,VS0,VE1
vary: x-pb-domain
DNS

up.clickiocdn.com

Request

up.clickiocdn.com

IN A

Response

up.clickiocdn.com

IN CNAME

clickiocdn.com

clickiocdn.com

IN A

95.211.66.34

clickiocdn.com

IN A

95.211.66.35
DNS

collector-1.ex.co

Request

collector-1.ex.co

IN A

Response

collector-1.ex.co

IN A

52.202.170.3

collector-1.ex.co

IN A

54.196.134.74

collector-1.ex.co

IN A

52.203.56.39
DNS

34.66.211.95.in-addr.arpa

Request

34.66.211.95.in-addr.arpa

IN PTR

Response

34.66.211.95.in-addr.arpa

IN PTR

hosted-byleasewebcom
DNS

3.170.202.52.in-addr.arpa

Request

3.170.202.52.in-addr.arpa

IN PTR

Response

3.170.202.52.in-addr.arpa

IN PTR

ec2-52-202-170-3 compute-1 amazonawscom
DNS

cdn.ex.co

Request

cdn.ex.co

IN A

Response

cdn.ex.co

IN CNAME

exco.map.fastly.net

exco.map.fastly.net

IN A

199.232.197.91

exco.map.fastly.net

IN A

199.232.193.91
GET

https://cdn.ex.co/transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/thumbnail-360.webp

Request

GET /transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:37:39 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600099-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333459.661978,VS0,VE341
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/thumbnail-360.webp

Request

GET /transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:37:39 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600099-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333459.123001,VS0,VE360
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://large-cdn.ex.co/transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/360p.mp4

Request

GET /transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/360p.mp4 HTTP/2.0
host: large-cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://mm-watch.com/
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}
range: bytes=0-

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:37:39 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600099-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333460.532461,VS0,VE107
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/thumbnail-360.webp

Request

GET /transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"sovrn":{"UID":"I4uDAQZHJDC8w6ABR_qOoSte","Expire":"2024-07-02T16:37:39.181369403Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
accept-ranges: bytes
date: Tue, 25 Jun 2024 16:37:39 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600099-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1719333460.527469,VS0,VE327
cache-control: max-age=31557600
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://large-cdn.ex.co/transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/360p.mp4

Request

GET /transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/360p.mp4 HTTP/2.0
host: large-cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://mm-watch.com/
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"sovrn":{"UID":"I4uDAQZHJDC8w6ABR_qOoSte","Expire":"2024-07-02T16:37:39.181369403Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}
range: bytes=0-
GET

https://large-cdn.ex.co/transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/360p.mp4

Request

GET /transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/360p.mp4 HTTP/2.0
host: large-cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://mm-watch.com/
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"sovrn":{"UID":"I4uDAQZHJDC8w6ABR_qOoSte","Expire":"2024-07-02T16:37:39.181369403Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}
range: bytes=0-
GET

https://cdn.ex.co/transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/thumbnail-360.webp

Request

GET /transformations/production/96108b63-628d-49b7-9247-b6c27b490a10/thumbnail-360.webp HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: exco-uid=2e3332332e343035
cookie: exco-uids={"appnexus":{"UID":"8159859772855155319","Expire":"2024-07-02T16:34:35.465563037Z"},"freewheel":{"UID":"c8c7976584f14fb4448a4ab62824b11","Expire":"2024-07-02T16:34:35.199684592Z"},"ix":{"UID":"ZnrxlrmqPq8AAFKyAdC9GwAA\u00264403","Expire":"2024-07-02T16:34:33.178444681Z"},"openx":{"UID":"9a2ac9be-ad0d-0f98-3551-c45eb1341b64","Expire":"2024-07-02T16:34:34.15069765Z"},"pubmatic":{"UID":"6F33541D-0234-4D12-A971-323BE606F1A8","Expire":"2024-07-02T16:35:04.745238834Z"},"rubicon":{"UID":"LXUMMYH8-18-IISD","Expire":"2024-07-02T16:34:34.896137996Z"},"smartadserver":{"UID":"4052082643997295311","Expire":"2024-07-02T16:34:31.583609717Z"},"sovrn":{"UID":"I4uDAQZHJDC8w6ABR_qOoSte","Expire":"2024-07-02T16:37:39.181369403Z"},"unruly":{"UID":"RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003","Expire":"2024-07-02T16:35:21.254260188Z"}}
DNS

p.channelexco.com

Request

p.channelexco.com

IN A

Response

p.channelexco.com

IN CNAME

p-lb.cdtx.co

p-lb.cdtx.co

IN A

207.244.91.229
DNS

sync.ex.co

Request

sync.ex.co

IN A

Response

sync.ex.co

IN A

3.232.71.25

sync.ex.co

IN A

44.206.126.35

sync.ex.co

IN A

44.207.87.22
DNS

229.91.244.207.in-addr.arpa

Request

229.91.244.207.in-addr.arpa

IN PTR

Response
DNS

s-12.channelexco.com

Request

s-12.channelexco.com

IN A

Response

s-12.channelexco.com

IN A

207.244.91.229
DNS

www9.smartadserver.com

Request

www9.smartadserver.com

IN A

Response

www9.smartadserver.com

IN CNAME

geo-global-secure.delivery-prod-sas.akadns.net

geo-global-secure.delivery-prod-sas.akadns.net

IN CNAME

euw2.smartadserver.com

euw2.smartadserver.com

IN A

217.182.178.225

euw2.smartadserver.com

IN A

149.202.238.97

euw2.smartadserver.com

IN A

149.202.238.96

euw2.smartadserver.com

IN A

51.178.195.209

euw2.smartadserver.com

IN A

217.182.178.224

euw2.smartadserver.com

IN A

91.134.110.128

euw2.smartadserver.com

IN A

5.135.209.96

euw2.smartadserver.com

IN A

5.196.111.65

euw2.smartadserver.com

IN A

164.132.25.177

euw2.smartadserver.com

IN A

178.32.210.226

euw2.smartadserver.com

IN A

164.132.25.176

euw2.smartadserver.com

IN A

5.135.209.97

euw2.smartadserver.com

IN A

178.32.210.227

euw2.smartadserver.com

IN A

5.196.111.64

euw2.smartadserver.com

IN A

178.32.197.48

euw2.smartadserver.com

IN A

91.134.110.129

euw2.smartadserver.com

IN A

51.178.195.208

euw2.smartadserver.com

IN A

178.32.197.49
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333458084&pgdomain=https://mm-watch.com/travel/37242384-e39d-46c3-9123-2c900c7daa02&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333458084&pgdomain=https://mm-watch.com/travel/37242384-e39d-46c3-9123-2c900c7daa02&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: text/xml; charset=UTF-8
date: Tue, 25 Jun 2024 16:37:38 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=218209=6038917; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:37:39 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333466877&pgdomain=https://mm-watch.com/travel/37242384-e39d-46c3-9123-2c900c7daa02&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

Request

GET /ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333466877&pgdomain=https://mm-watch.com/travel/37242384-e39d-46c3-9123-2c900c7daa02&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0 HTTP/1.1
Host: www9.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|94:ZnrxlgAEOxAPqQAz|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|113:RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003|116:o2xr0KqECEsyaRFTaZXc|124:20bd0165-7caa-4b7b-8b83-5936300ad204|127:AAD5Jk7M9eMAABdSEix9nA|130:5ae93f9c-c467-42d3-be1d-287db292f1e4|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: text/xml; charset=UTF-8
date: Tue, 25 Jun 2024 16:37:47 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038917&218209=6038917; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:37:47 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
DNS

large-cdn.ex.co

Request

large-cdn.ex.co

IN A

Response

large-cdn.ex.co

IN CNAME

exco.map.fastly.net

exco.map.fastly.net

IN A

199.232.197.91

exco.map.fastly.net

IN A

199.232.193.91
DNS

prg.smartadserver.com

Request

prg.smartadserver.com

IN A

Response

prg.smartadserver.com

IN CNAME

prga.smartadserver.com

prga.smartadserver.com

IN CNAME

hb-geo.delivery-prod-sas.akadns.net

hb-geo.delivery-prod-sas.akadns.net

IN CNAME

euw2.smartadserver.com

euw2.smartadserver.com

IN A

149.202.238.97

euw2.smartadserver.com

IN A

51.178.195.209

euw2.smartadserver.com

IN A

217.182.178.225

euw2.smartadserver.com

IN A

91.134.110.128

euw2.smartadserver.com

IN A

5.135.209.97

euw2.smartadserver.com

IN A

5.196.111.65

euw2.smartadserver.com

IN A

149.202.238.96

euw2.smartadserver.com

IN A

178.32.210.227

euw2.smartadserver.com

IN A

178.32.197.48

euw2.smartadserver.com

IN A

91.134.110.129

euw2.smartadserver.com

IN A

178.32.197.49

euw2.smartadserver.com

IN A

217.182.178.224

euw2.smartadserver.com

IN A

164.132.25.177

euw2.smartadserver.com

IN A

5.196.111.64

euw2.smartadserver.com

IN A

51.178.195.208

euw2.smartadserver.com

IN A

164.132.25.176

euw2.smartadserver.com

IN A

178.32.210.226

euw2.smartadserver.com

IN A

5.135.209.96
POST

https://prebid-server.rubiconproject.com/openrtb2/auction

Request

POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
Connection: keep-alive
Content-Length: 2597
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
x-prebid: pbs-java/3.3.0
Content-Type: application/json
content-encoding: gzip
content-length: 174
POST

https://prebid-server.rubiconproject.com/openrtb2/auction

Request

POST /openrtb2/auction HTTP/1.1
Host: prebid-server.rubiconproject.com
Connection: keep-alive
Content-Length: 2646
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: khaos=LXUMMYH8-18-IISD; receive-cookie-deprecation=1; audit=1|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

Response

HTTP/1.1 200 OK

Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
x-prebid: pbs-java/3.3.0
Content-Type: application/json
content-encoding: gzip
content-length: 172
DNS

btlr.sharethrough.com

Request

btlr.sharethrough.com

IN A

Response

btlr.sharethrough.com

IN CNAME

btlr-eu-central-1.sharethrough.com

btlr-eu-central-1.sharethrough.com

IN A

3.68.142.144

btlr-eu-central-1.sharethrough.com

IN A

52.58.29.89

btlr-eu-central-1.sharethrough.com

IN A

52.28.206.233

btlr-eu-central-1.sharethrough.com

IN A

3.72.200.123

btlr-eu-central-1.sharethrough.com

IN A

35.157.245.177

btlr-eu-central-1.sharethrough.com

IN A

3.125.188.154

btlr-eu-central-1.sharethrough.com

IN A

18.184.231.156

btlr-eu-central-1.sharethrough.com

IN A

18.185.42.31
DNS

rtb.ex.co

Request

rtb.ex.co

IN A

Response

rtb.ex.co

IN A

3.232.71.25

rtb.ex.co

IN A

44.206.126.35

rtb.ex.co

IN A

44.207.87.22
DNS

ad.360yield-basic.com

Request

ad.360yield-basic.com

IN A

Response

ad.360yield-basic.com

IN CNAME

ice.360yield-basic.com

ice.360yield-basic.com

IN CNAME

ice.360yield.com

ice.360yield.com

IN CNAME

euw-ice.360yield.com

euw-ice.360yield.com

IN A

54.154.21.218

euw-ice.360yield.com

IN A

54.194.192.16

euw-ice.360yield.com

IN A

34.255.155.127

euw-ice.360yield.com

IN A

52.16.165.89

euw-ice.360yield.com

IN A

54.155.206.189

euw-ice.360yield.com

IN A

52.212.11.67

euw-ice.360yield.com

IN A

63.33.31.207

euw-ice.360yield.com

IN A

52.209.247.91
POST

https://bidder.criteo.com/cdb?profileId=207&av=36&wv=8.27.0&cb=45074366282&lsavail=0

Request

POST /cdb?profileId=207&av=36&wv=8.27.0&cb=45074366282&lsavail=0 HTTP/2.0
host: bidder.criteo.com
content-length: 2613
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:37:39 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://bidder.criteo.com/cdb?ptv=139&profileId=185&av=36&wv=8.27.0&bundle=JX77p18xcEdCOXZZa1Q1WUZDS201cDBjJTJCUjdqTWNzdUlveHVhVnRiRzRCTXM1Q3NwSEw5ZGpDJTJCVHU0dUpkVTJFd0Z4ZmJWdWtGaUc5a1gxcTAlMkZ2NVIlMkI5ZEJEQkpURkF2SjhRSTNLNXQwTDh2dzJ4dlluaTVUaWxNOFVOQ1h3TzhEZ1Q0T1ZoUldLQmdBUWhSYmxoUXdXMXd2QSUzRCUzRA&cb=64661295422

Request

POST /cdb?ptv=139&profileId=185&av=36&wv=8.27.0&bundle=JX77p18xcEdCOXZZa1Q1WUZDS201cDBjJTJCUjdqTWNzdUlveHVhVnRiRzRCTXM1Q3NwSEw5ZGpDJTJCVHU0dUpkVTJFd0Z4ZmJWdWtGaUc5a1gxcTAlMkZ2NVIlMkI5ZEJEQkpURkF2SjhRSTNLNXQwTDh2dzJ4dlluaTVUaWxNOFVOQ1h3TzhEZ1Q0T1ZoUldLQmdBUWhSYmxoUXdXMXd2QSUzRCUzRA&cb=64661295422 HTTP/2.0
host: bidder.criteo.com
content-length: 2973
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:37:46 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://bidder.criteo.com/csm/events

Request

POST /csm/events HTTP/2.0
host: bidder.criteo.com
content-length: 268
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:37:47 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
vary: Origin
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
POST

https://prg.smartadserver.com/prebid/v1

Request

POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
Connection: keep-alive
Content-Length: 1123
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; pid=4052082643997295311; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: application/json; charset=UTF-8
date: Tue, 25 Jun 2024 16:37:38 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038917; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:37:39 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://prg.smartadserver.com/prebid/v1

Request

POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
Connection: keep-alive
Content-Length: 1124
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
Accept: */*
Origin: https://mm-watch.com
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|94:ZnrxlgAEOxAPqQAz|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|113:RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003|116:o2xr0KqECEsyaRFTaZXc|124:20bd0165-7caa-4b7b-8b83-5936300ad204|127:AAD5Jk7M9eMAABdSEix9nA|130:5ae93f9c-c467-42d3-be1d-287db292f1e4|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: application/json; charset=UTF-8
date: Tue, 25 Jun 2024 16:37:47 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mm-watch.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: vs=342899=6038917; domain=.smartadserver.com; path=/; secure; samesite=none
set-cookie: pid=4052082643997295311; expires=Wed, 25 Jun 2025 16:37:47 GMT; domain=.smartadserver.com; path=/; secure; samesite=none
transfer-encoding: chunked
vary: Accept-Encoding
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
POST

https://ad.360yield-basic.com/pb

Request

POST /pb HTTP/2.0
host: ad.360yield-basic.com
content-length: 2136
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:37:39 GMT
access-control-allow-origin: https://mm-watch.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
POST

https://ad.360yield-basic.com/pb

Request

POST /pb HTTP/2.0
host: ad.360yield-basic.com
content-length: 2185
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:37:47 GMT
access-control-allow-origin: https://mm-watch.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
DNS

vop.sundaysky.com

Request

vop.sundaysky.com

IN A

Response

vop.sundaysky.com

IN CNAME

ssky-vop-tracking-1576957348.us-east-1.elb.amazonaws.com

ssky-vop-tracking-1576957348.us-east-1.elb.amazonaws.com

IN A

34.203.44.126

ssky-vop-tracking-1576957348.us-east-1.elb.amazonaws.com

IN A

54.156.208.114

ssky-vop-tracking-1576957348.us-east-1.elb.amazonaws.com

IN A

54.237.180.194

ssky-vop-tracking-1576957348.us-east-1.elb.amazonaws.com

IN A

34.234.198.234
GET

https://pxl.iqm.com/i/ck/equativ?cid=SMART_USER_ID&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D2%26partnerid%3D154%26partneruserid%3D%7BIQM_COOKIE%7D&gdpr=0&gdpr_consent=

Request

GET /i/ck/equativ?cid=SMART_USER_ID&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D2%26partnerid%3D154%26partneruserid%3D%7BIQM_COOKIE%7D&gdpr=0&gdpr_consent= HTTP/1.1
Host: pxl.iqm.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://mm-watch.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: iqm.retarget.uid=e2bae657-511e-4b25-b352-44a63fb9b368; equativ=MTcyMDU0Mjk3NTExNg==

Response

HTTP/1.1 302 Found

Server: openresty
Date: Tue, 25 Jun 2024 16:37:39 GMT
Content-Type: image/avif;charset=UTF-8
Content-Length: 114
Connection: keep-alive
Set-Cookie: equativ=MTcyMDU0MzA1OTc1Nw==; Domain=.pxl.iqm.com; Path=/; max-age=2592000; SameSite=None; Secure;
Set-Cookie: iqm.retarget.uid=e2bae657-511e-4b25-b352-44a63fb9b368; Domain=.pxl.iqm.com; Path=/; max-age=2592000; SameSite=None; Secure;
Location: https://rtb-csync.smartadserver.com/redir/?issi=2&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
GET

https://pxl.iqm.com/i/ck/equativ?cid=SMART_USER_ID&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D154%26partneruserid%3D%7BIQM_COOKIE%7D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /i/ck/equativ?cid=SMART_USER_ID&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D154%26partneruserid%3D%7BIQM_COOKIE%7D&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: pxl.iqm.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: iqm.retarget.uid=e2bae657-511e-4b25-b352-44a63fb9b368; equativ=MTcyMDU0MzA1OTc1Nw==

Response

HTTP/1.1 302 Found

Server: openresty
Date: Tue, 25 Jun 2024 16:37:43 GMT
Content-Type: image/avif;charset=UTF-8
Content-Length: 114
Connection: keep-alive
Set-Cookie: equativ=MTcyMDU0MzA2MzAzNg==; Domain=.pxl.iqm.com; Path=/; max-age=2592000; SameSite=None; Secure;
Set-Cookie: iqm.retarget.uid=e2bae657-511e-4b25-b352-44a63fb9b368; Domain=.pxl.iqm.com; Path=/; max-age=2592000; SameSite=None; Secure;
Location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
DNS

e.channelexco.com

Request

e.channelexco.com

IN A

Response

e.channelexco.com

IN CNAME

e-lb.cdtx.co

e-lb.cdtx.co

IN A

23.82.15.161
DNS

collector.ex.co

Request

collector.ex.co

IN A

Response

collector.ex.co

IN A

52.205.135.229

collector.ex.co

IN A

44.219.102.171

collector.ex.co

IN A

54.163.249.122
DNS

225.178.182.217.in-addr.arpa

Request

225.178.182.217.in-addr.arpa

IN PTR

Response

225.178.182.217.in-addr.arpa

IN PTR

ip225ip-217-182-178eu
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/master.m3u8

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/master.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "8e3ef57725617315151c350bafa56750"
if-modified-since: Thu, 06 Jun 2024 12:26:15 GMT

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:37:39 GMT
via: 1.1 varnish
etag: "8e3ef57725617315151c350bafa56750"
x-served-by: cache-lcy-eglc8600059-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333460.981629,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/encoded-1.m3u8

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/encoded-1.m3u8 HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "e3108e8bdc9284b13e7f1b455771b919"
if-modified-since: Thu, 06 Jun 2024 12:26:15 GMT

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:37:40 GMT
via: 1.1 varnish
etag: "e3108e8bdc9284b13e7f1b455771b919"
x-served-by: cache-lcy-eglc8600059-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333460.028997,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_000.ts

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_000.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "73d1c1b435741f3a1cc2f2475aceff2d"
if-modified-since: Thu, 06 Jun 2024 12:26:16 GMT

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:37:40 GMT
via: 1.1 varnish
etag: "73d1c1b435741f3a1cc2f2475aceff2d"
x-served-by: cache-lcy-eglc8600059-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333460.073190,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_001.ts

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_001.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "a5ee6e188d7431f44af9b6e82ad78bac"
if-modified-since: Thu, 06 Jun 2024 12:26:16 GMT

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:37:40 GMT
via: 1.1 varnish
etag: "a5ee6e188d7431f44af9b6e82ad78bac"
x-served-by: cache-lcy-eglc8600059-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333460.146805,VS0,VE1
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_002.ts

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_002.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "26e9230ff616b2658f1f4bd513137775"
if-modified-since: Thu, 06 Jun 2024 12:26:16 GMT

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:37:40 GMT
via: 1.1 varnish
etag: "26e9230ff616b2658f1f4bd513137775"
x-served-by: cache-lcy-eglc8600059-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333460.197154,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_003.ts

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_003.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "34516cfa4bec3836c23a21fc6271cea2"
if-modified-since: Thu, 06 Jun 2024 12:26:16 GMT

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:37:40 GMT
via: 1.1 varnish
etag: "34516cfa4bec3836c23a21fc6271cea2"
x-served-by: cache-lcy-eglc8600059-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333460.252373,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_004.ts

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_004.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "2207f72ac91e05285862ab7c62e75d15"
if-modified-since: Thu, 06 Jun 2024 12:26:16 GMT

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:37:46 GMT
via: 1.1 varnish
etag: "2207f72ac91e05285862ab7c62e75d15"
x-served-by: cache-lcy-eglc8600059-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333466.429412,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
GET

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_005.ts

Request

GET /transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_005.ts HTTP/2.0
host: cdn.ex.co
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://mm-watch.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "994ce7cd98ff980489c443b1491baa39"
if-modified-since: Thu, 06 Jun 2024 12:26:16 GMT

Response

HTTP/2.0 304

date: Tue, 25 Jun 2024 16:37:56 GMT
via: 1.1 varnish
etag: "994ce7cd98ff980489c443b1491baa39"
x-served-by: cache-lcy-eglc8600059-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1719333477.828119,VS0,VE1
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
x-exco-cdn: fastly
strict-transport-security: max-age=31557600
DNS

144.142.68.3.in-addr.arpa

Request

144.142.68.3.in-addr.arpa

IN PTR

Response

144.142.68.3.in-addr.arpa

IN PTR

ec2-3-68-142-144eu-central-1compute amazonawscom
DNS

218.21.154.54.in-addr.arpa

Request

218.21.154.54.in-addr.arpa

IN PTR

Response

218.21.154.54.in-addr.arpa

IN PTR

ec2-54-154-21-218 eu-west-1compute amazonawscom
DNS

161.15.82.23.in-addr.arpa

Request

161.15.82.23.in-addr.arpa

IN PTR

Response
GET

https://dis.criteo.com/dis/usersync.aspx?r=41&p=244&cp=sharethrough&cu=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&url=https%3A%2F%2Fmatch.sharethrough.com%2Fsync%2Fv1%3Fsource_id%3D7658cb1d77a660882b48db06%26source_user_id%3D%40%40CRITEO_USERID%40%40

Request

GET /dis/usersync.aspx?r=41&p=244&cp=sharethrough&cu=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&url=https%3A%2F%2Fmatch.sharethrough.com%2Fsync%2Fv1%3Fsource_id%3D7658cb1d77a660882b48db06%26source_user_id%3D%40%40CRITEO_USERID%40%40 HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://mm-watch.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:37:41 GMT
server: Kestrel
cache-control: no-cache
expires: Tue, 25 Jun 2024 00:00:00 GMT
location: https://match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-V4WfyxnzN9zpEzKn2pDKknjmvMr1ZvoyY_IDjg&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=
pragma: no-cache
x-errorlevel: 0
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
cross-origin-resource-policy: cross-origin
server-processing-duration-in-ticks: 938523
strict-transport-security: max-age=31536000; preload;
GET

https://dis.criteo.com/dis/usersync.aspx?r=30&p=273&cp=smartortb&cu=1&url=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D79%26partneruserid%3D%40%40CRITEO_USERID%40%40&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /dis/usersync.aspx?r=30&p=273&cp=smartortb&cu=1&url=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D79%26partneruserid%3D%40%40CRITEO_USERID%40%40&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: dis.criteo.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=868b39e2-997b-433c-bce9-379e12258c8f

Response

HTTP/2.0 302

content-length: 0
date: Tue, 25 Jun 2024 16:37:43 GMT
server: Kestrel
cache-control: no-cache
expires: Tue, 25 Jun 2024 00:00:00 GMT
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=79&partneruserid=868b39e2-997b-433c-bce9-379e12258c8f&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
x-errorlevel: 0
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
cross-origin-resource-policy: cross-origin
server-processing-duration-in-ticks: 711821
strict-transport-security: max-age=31536000; preload;
DNS

rtb.adentifi.com

Request

rtb.adentifi.com

IN A

Response

rtb.adentifi.com

IN A

54.85.51.123

rtb.adentifi.com

IN A

3.222.211.106

rtb.adentifi.com

IN A

3.212.116.193

rtb.adentifi.com

IN A

35.169.18.236

rtb.adentifi.com

IN A

54.198.98.144

rtb.adentifi.com

IN A

54.89.40.69
DNS

yieldmo-match.dotomi.com

Request

yieldmo-match.dotomi.com

IN A

Response

yieldmo-match.dotomi.com

IN CNAME

bfp.global.dual.dotomi.weighted.com.akadns.net

bfp.global.dual.dotomi.weighted.com.akadns.net

IN A

89.207.16.204
DNS

aa.agkn.com

Request

aa.agkn.com

IN A

Response

aa.agkn.com

IN CNAME

ActivationEdge-activation-212358690.eu-west-1.elb.amazonaws.com

ActivationEdge-activation-212358690.eu-west-1.elb.amazonaws.com

IN A

52.49.228.29

ActivationEdge-activation-212358690.eu-west-1.elb.amazonaws.com

IN A

63.35.204.117

ActivationEdge-activation-212358690.eu-west-1.elb.amazonaws.com

IN A

52.212.153.11

ActivationEdge-activation-212358690.eu-west-1.elb.amazonaws.com

IN A

52.215.143.111
DNS

cti.w55c.net

Request

cti.w55c.net

IN A

Response

cti.w55c.net

IN CNAME

d2vm2ftdj5dnrv.cloudfront.net

d2vm2ftdj5dnrv.cloudfront.net

IN A

18.244.28.99

d2vm2ftdj5dnrv.cloudfront.net

IN A

18.244.28.59

d2vm2ftdj5dnrv.cloudfront.net

IN A

18.244.28.57

d2vm2ftdj5dnrv.cloudfront.net

IN A

18.244.28.28
DNS

sync-openx.ads.yieldmo.com

Request

sync-openx.ads.yieldmo.com

IN A

Response

sync-openx.ads.yieldmo.com

IN CNAME

sync.ads.yieldmo.com

sync.ads.yieldmo.com

IN CNAME

eu-west-1-sync.ads.yieldmo.com

eu-west-1-sync.ads.yieldmo.com

IN CNAME

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

54.229.31.146

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

52.31.121.40

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

34.250.157.234

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

54.171.30.155

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

54.155.124.189

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

52.209.221.228

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

54.216.188.132

sync-yieldmo-com-tf-1869548451.eu-west-1.elb.amazonaws.com

IN A

52.30.110.0
GET

https://cti.w55c.net/ct/cms-2c-rubicon.html?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /ct/cms-2c-rubicon.html?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/2.0
host: cti.w55c.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: wfivefivec=DKsbZE1b1Sm97P5
cookie: matchcasale=5

Response

HTTP/2.0 200

content-type: text/html
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Sep 2021 21:17:39 GMT
x-amz-version-id: eM8rKv5bLrMqGrCvH619GCOhuiLqCbex
server: AmazonS3
content-encoding: br
date: Sat, 22 Jun 2024 06:14:44 GMT
etag: W/"7549d51888f0142460ac70be66758bc9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 10de7dc52d3d7cd9c88ea5102d141a22.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P5
x-amz-cf-id: Z_6pOzixKNGMGDDk7qrKTYCpmVl9dkL7tN5u12TwvIxSBwgzwBjb5w==
age: 296580
strict-transport-security: max-age=2592000; includeSubDomains
cache-control: must-revalidate
GET

https://cti.w55c.net/ct/cms-2-rubicon.min.js

Request

GET /ct/cms-2-rubicon.min.js HTTP/2.0
host: cti.w55c.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://cti.w55c.net/ct/cms-2c-rubicon.html?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: wfivefivec=DKsbZE1b1Sm97P5
cookie: matchcasale=5

Response

HTTP/2.0 200

content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Sep 2021 21:17:39 GMT
x-amz-version-id: 4wUy6FG8mI1tQq9b3POfj8uoA5V85xC6
server: AmazonS3
content-encoding: br
date: Wed, 19 Jun 2024 00:02:35 GMT
etag: W/"d7ff0f4ef590b94bd79fc9b61a13ef4e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 10de7dc52d3d7cd9c88ea5102d141a22.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG52-P5
x-amz-cf-id: DMzQCtAgFm8ZwWbQ_sTNZTrmBv_AzfXOtWfWI19qZlZt2ba1-ZoARA==
age: 578109
strict-transport-security: max-age=2592000; includeSubDomains
cache-control: must-revalidate
GET

https://ad.turn.com/r/cs?pid=9&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /r/cs?pid=9&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: ad.turn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://playbuzzltd-d.openx.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=3314471828681895967

Response

HTTP/2.0 302

p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=3314471828681895967; Domain=.turn.com; Expires=Sun, 22-Dec-2024 16:37:43 GMT; Path=/; Secure; SameSite=None
location: https://us-u.openx.net/w/1.0/sd?id=537073061&val=3314471828681895967&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=
content-length: 0
date: Tue, 25 Jun 2024 16:37:42 GMT
GET

https://ad.turn.com/r/cs?pid=33&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D32%26partneruserid%3D%23USER_ID%23%26gdpr%3D%23GDPR_APPLICABLE%23%26gdpr_consent%3D%23GDPR_CONSENT%23&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /r/cs?pid=33&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D32%26partneruserid%3D%23USER_ID%23%26gdpr%3D%23GDPR_APPLICABLE%23%26gdpr_consent%3D%23GDPR_CONSENT%23&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: ad.turn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: uid=3314471828681895967

Response

HTTP/2.0 302

p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=3314471828681895967; Domain=.turn.com; Expires=Sun, 22-Dec-2024 16:37:43 GMT; Path=/; Secure; SameSite=None
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=32&partneruserid=3314471828681895967&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
content-length: 0
date: Tue, 25 Jun 2024 16:37:42 GMT
DNS

dsp-ap.eskimi.com

Request

dsp-ap.eskimi.com

IN A

Response

dsp-ap.eskimi.com

IN A

188.42.63.48
DNS

sync.ipredictive.com

Request

sync.ipredictive.com

IN A

Response

sync.ipredictive.com

IN A

54.157.154.118

sync.ipredictive.com

IN A

52.7.6.175

sync.ipredictive.com

IN A

52.87.19.33

sync.ipredictive.com

IN A

54.160.38.67

sync.ipredictive.com

IN A

52.87.13.120

sync.ipredictive.com

IN A

52.72.140.222

sync.ipredictive.com

IN A

52.44.76.179

sync.ipredictive.com

IN A

54.158.1.77
DNS

s.company-target.com

Request

s.company-target.com

IN A

Response

s.company-target.com

IN CNAME

s.dsp-prod.demandbase.com

s.dsp-prod.demandbase.com

IN A

34.96.71.22
GET

https://dsp-ap.eskimi.com/pixelGet?ex=14&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&dest=https%3A%2F%2Feu-u.openx.net%2Fw%2F1.0%2Fsd%3Fid%3D539901412%26val%3D%7Bdmp_id%7D%26gdpr%3D%7Bgdpr%7D%26gdpr_consent%3D%7Bgdpr_consent%7D

Request

GET /pixelGet?ex=14&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&dest=https%3A%2F%2Feu-u.openx.net%2Fw%2F1.0%2Fsd%3Fid%3D539901412%26val%3D%7Bdmp_id%7D%26gdpr%3D%7Bgdpr%7D%26gdpr_consent%3D%7Bgdpr_consent%7D HTTP/1.1
Host: dsp-ap.eskimi.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://playbuzzltd-d.openx.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

Server: nginx
Date: Tue, 25 Jun 2024 16:37:43 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 676
Connection: keep-alive
Set-Cookie: _sclb_srv_id_2925_5ef391ff3f2de6f735a0caeb863c883e=47474381ff08743e7a3ee9c68b21f26d; expires=Tue, 25-Jun-24 17:37:43 GMT; max-age=3600; domain=.dsp-ap.eskimi.com; path=/
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Set-Cookie: __eConsent=1; Expires=Thu, 25 Jul 2024 16:37:43 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
Set-Cookie: __eDId=c8ece202-ec1c-45d3-a681-3d1a675c3b01; Expires=Thu, 25 Jul 2024 16:37:43 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
Cache-Control: no-cache
Location: https://eu-u.openx.net/w/1.0/sd?id=539901412&val=c8ece202-ec1c-45d3-a681-3d1a675c3b01&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
GET

https://id5-sync.com/i/102/9.gif?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /i/102/9.gif?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#5

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#6; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:37:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:37:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://cookie-matching.mediarithmics.com/v1/get_user_agent_id?dom_token=id517&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY
date: Tue, 25 Jun 2024 16:37:43 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/i/175/9.gif?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /i/175/9.gif?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#5

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#6; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:37:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096|175#1719333463117#-788062172; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:37:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://pixel.rubiconproject.com/tap.php?v=16829&nid=2820&put=ID5-665c5AT0yhmwvaN1kyvfwePV3qMzF15gjk4qlqQ_HQ
date: Tue, 25 Jun 2024 16:37:42 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/qp/18.gif?puid=vec%3A93190252981&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY

Request

GET /qp/18.gif?puid=vec%3A93190252981&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#6
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096|175#1719333463117#-788062172

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|18#1719333463637#433583243|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096|175#1719333463117#-788062172; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:37:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://pm.w55c.net/ping_match.gif?st=ID5&rurl=https%3A%2F%2Fid5-sync.com%2Fc%2F102%2F163%2F7%2F3.gif%3Fpuid%3D_wfivefivec_%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
date: Tue, 25 Jun 2024 16:37:43 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/c/102/163/7/3.gif?puid=DKsbZE1b1Sm97P5&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /c/102/163/7/3.gif?puid=DKsbZE1b1Sm97P5&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#6
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|18#1719333463637#433583243|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096|175#1719333463117#-788062172

Response

HTTP/2.0 302

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|18#1719333463637#433583243|163#1719333463747#711761244|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096|175#1719333463117#-788062172; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:37:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=gif; Max-Age=300; Expires=Tue, 25-Jun-2024 16:42:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=102; Max-Age=300; Expires=Tue, 25-Jun-2024 16:42:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=6; Max-Age=300; Expires=Tue, 25-Jun-2024 16:42:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=4; Max-Age=300; Expires=Tue, 25-Jun-2024 16:42:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=1|CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA; Max-Age=300; Expires=Tue, 25-Jun-2024 16:42:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
location: https://match.prod.bidr.io/cookie-sync/id5?us_privacy=
date: Tue, 25 Jun 2024 16:37:43 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://id5-sync.com/k/155.gif?puid=AAD5Jk7M9eMAABdSEix9nA&id5AccountNum=155&numCascadesAllowed=9

Request

GET /k/155.gif?puid=AAD5Jk7M9eMAABdSEix9nA&id5AccountNum=155&numCascadesAllowed=9 HTTP/2.0
host: id5-sync.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: id5=23e39336-1a46-75f1-ab75-53c13897b71c#1719333325342#6
cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|18#1719333463637#433583243|163#1719333463747#711761244|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096|175#1719333463117#-788062172
cookie: cf=gif
cookie: cip=102
cookie: cnac=6
cookie: car=4
cookie: gdpr=1|CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Response

HTTP/2.0 200

vary: Origin
vary: Access-Control-Request-Method
vary: Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: 3pi=112#1719333325872#1913984363#B33A6DD4B9D190C|2#1719333326070#-1519090417#8159859772855155319|18#1719333463637#433583243|163#1719333463747#711761244|102#1719333325507#-1647219912|264#1719333325619#533449006#84daa6ca-0538-48d1-9010-ae8e49c9a74c|104#1719333326475#-1783286187#4f62fbba-ecd4-4b71-afc7-4916045d677d|10#1719333326588#1225750591#6640692441033083723|123#1719333326365#1833520096|155#1719333463959#1975832368#AAD5Jk7M9eMAABdSEix9nA|175#1719333463117#-788062172; Max-Age=7776000; Expires=Mon, 23-Sep-2024 16:37:43 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cf=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cip=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: cnac=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: car=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gdpr=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: gpp=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
set-cookie: callback=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
date: Tue, 25 Jun 2024 16:37:43 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=150&partneruserid=0&redirurl=https%3A%2F%2Fwt.rqtrk.eu%3Fpid%3D58a76248-f101-4e52-b8f7-c4de9362ea12%26src%3Dwww%26type%3D100%26sid%3D0%26uid%3DSMART_USER_ID%26gdpr_pd%3D0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=150&partneruserid=0&redirurl=https%3A%2F%2Fwt.rqtrk.eu%3Fpid%3D58a76248-f101-4e52-b8f7-c4de9362ea12%26src%3Dwww%26type%3D100%26sid%3D0%26uid%3DSMART_USER_ID%26gdpr_pd%3D0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; vs=342899=6038917

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:37:42 GMT
cache-control: no-cache,no-store
location: https://wt.rqtrk.eu?pid=58a76248-f101-4e52-b8f7-c4de9362ea12&src=www&type=100&sid=0&uid=4052082643997295311&gdpr_pd=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:43 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=79&partneruserid=868b39e2-997b-433c-bce9-379e12258c8f&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=79&partneruserid=868b39e2-997b-433c-bce9-379e12258c8f&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:42 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|79:868b39e2-997b-433c-bce9-379e12258c8f|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:43 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
DNS

i.w55c.net

Request

i.w55c.net

IN A

Response

i.w55c.net

IN CNAME

cdn.w55c.net

cdn.w55c.net

IN A

34.250.160.0

cdn.w55c.net

IN A

54.77.130.68

cdn.w55c.net

IN A

34.251.19.157
DNS

sid.storygize.net

Request

sid.storygize.net

IN A

Response

sid.storygize.net

IN A

143.244.208.184
DNS

dmp.brand-display.com

Request

dmp.brand-display.com

IN A

Response

dmp.brand-display.com

IN A

34.160.19.107
DNS

rubiconcm.digitaleast.mobi

Request

rubiconcm.digitaleast.mobi

IN A

Response

rubiconcm.digitaleast.mobi

IN A

34.95.81.168
DNS

beacon.lynx.cognitivlabs.com

Request

beacon.lynx.cognitivlabs.com

IN A

Response

beacon.lynx.cognitivlabs.com

IN CNAME

lynx-prod-beacon-alb-498367235.us-east-1.elb.amazonaws.com

lynx-prod-beacon-alb-498367235.us-east-1.elb.amazonaws.com

IN A

54.81.34.33

lynx-prod-beacon-alb-498367235.us-east-1.elb.amazonaws.com

IN A

44.197.8.75

lynx-prod-beacon-alb-498367235.us-east-1.elb.amazonaws.com

IN A

54.156.118.232

lynx-prod-beacon-alb-498367235.us-east-1.elb.amazonaws.com

IN A

3.217.163.63
DNS

tg.socdm.com

Request

tg.socdm.com

IN A

Response

tg.socdm.com

IN CNAME

tg.dr.socdm.com

tg.dr.socdm.com

IN A

211.120.53.206

tg.dr.socdm.com

IN A

124.146.153.167

tg.dr.socdm.com

IN A

124.146.153.166

tg.dr.socdm.com

IN A

124.146.153.169

tg.dr.socdm.com

IN A

211.120.53.200

tg.dr.socdm.com

IN A

124.146.153.163

tg.dr.socdm.com

IN A

124.146.153.161

tg.dr.socdm.com

IN A

211.120.53.203

tg.dr.socdm.com

IN A

124.146.153.160

tg.dr.socdm.com

IN A

124.146.153.162

tg.dr.socdm.com

IN A

211.120.53.201

tg.dr.socdm.com

IN A

211.120.53.202

tg.dr.socdm.com

IN A

211.120.53.204

tg.dr.socdm.com

IN A

211.120.53.205

tg.dr.socdm.com

IN A

124.146.153.164

tg.dr.socdm.com

IN A

124.146.153.168

tg.dr.socdm.com

IN A

124.146.153.165

tg.dr.socdm.com

IN A

124.146.153.170
DNS

sync.intentiq.com

Request

sync.intentiq.com

IN A

Response

sync.intentiq.com

IN A

13.249.9.120

sync.intentiq.com

IN A

13.249.9.121

sync.intentiq.com

IN A

13.249.9.126

sync.intentiq.com

IN A

13.249.9.80
DNS

a.audrte.com

Request

a.audrte.com

IN A

Response

a.audrte.com

IN A

52.48.136.182

a.audrte.com

IN A

54.171.24.213

a.audrte.com

IN A

34.249.118.94
DNS

dpm.demdex.net

Request

dpm.demdex.net

IN A

Response

dpm.demdex.net

IN CNAME

gslb-2.demdex.net

gslb-2.demdex.net

IN CNAME

edge-irl1.demdex.net

edge-irl1.demdex.net

IN CNAME

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

63.35.32.214

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

79.125.35.115

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.171.118.212

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

34.250.64.99

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

34.243.72.129

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

18.202.76.11

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.16.8.109

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.72.172.22
DNS

api.unminable.com

Request

api.unminable.com

IN A

Response

api.unminable.com

IN A

139.59.196.11
DNS

api.unminable.com

Request

api.unminable.com

IN A

Response

api.unminable.com

IN A

139.59.196.11
DNS

cs.adnear.net

Request

cs.adnear.net

IN A

Response

cs.adnear.net

IN CNAME

wdc-rtb-662387383.us-east-1.elb.amazonaws.com

wdc-rtb-662387383.us-east-1.elb.amazonaws.com

IN A

44.221.109.212

wdc-rtb-662387383.us-east-1.elb.amazonaws.com

IN A

44.194.37.189

wdc-rtb-662387383.us-east-1.elb.amazonaws.com

IN A

34.197.72.162

wdc-rtb-662387383.us-east-1.elb.amazonaws.com

IN A

3.230.213.141

wdc-rtb-662387383.us-east-1.elb.amazonaws.com

IN A

52.206.143.52

wdc-rtb-662387383.us-east-1.elb.amazonaws.com

IN A

3.210.7.254
GET

https://sid.storygize.net/ccm/729e4e94-63c3-438d-8ce4-184eb34e703f?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /ccm/729e4e94-63c3-438d-8ce4-184eb34e703f?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: sid.storygize.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:43 GMT
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=49&partneruserid=7384480169877371019&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?partnerid=49&partneruserid=7384480169877371019&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:42 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|49:7384480169877371019|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:43 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rubiconcm.digitaleast.mobi/usersync/rubicon.gif?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /usersync/rubicon.gif?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/2.0
host: rubiconcm.digitaleast.mobi
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

ads.avads.net

Request

ads.avads.net

IN A

Response

ads.avads.net

IN A

34.128.133.112
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=133&partneruserid=be50d39d3b

Request

GET /redir/?issi=1&partnerid=133&partneruserid=be50d39d3b HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:42 GMT
transfer-encoding: chunked
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368

Request

GET /redir/?issi=1&partnerid=154&partneruserid=e2bae657-511e-4b25-b352-44a63fb9b368 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:42 GMT
transfer-encoding: chunked
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=113&partneruserid=RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?partnerid=113&partneruserid=RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|94:ZnrxlgAEOxAPqQAz|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:42 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|94:ZnrxlgAEOxAPqQAz|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|113:RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:43 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=124&partneruserid=20bd0165-7caa-4b7b-8b83-5936300ad204&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /redir/?issi=1&partnerid=124&partneruserid=20bd0165-7caa-4b7b-8b83-5936300ad204&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|94:ZnrxlgAEOxAPqQAz|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|113:RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:46 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|94:ZnrxlgAEOxAPqQAz|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|113:RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003|116:o2xr0KqECEsyaRFTaZXc|124:20bd0165-7caa-4b7b-8b83-5936300ad204|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:47 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=130&partneruserid=5ae93f9c-c467-42d3-be1d-287db292f1e4&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?issi=1&partnerid=130&partneruserid=5ae93f9c-c467-42d3-be1d-287db292f1e4&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|94:ZnrxlgAEOxAPqQAz|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|113:RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003|116:o2xr0KqECEsyaRFTaZXc|124:20bd0165-7caa-4b7b-8b83-5936300ad204|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:47 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|94:ZnrxlgAEOxAPqQAz|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|113:RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003|116:o2xr0KqECEsyaRFTaZXc|124:20bd0165-7caa-4b7b-8b83-5936300ad204|127:AAD5Jk7M9eMAABdSEix9nA|130:5ae93f9c-c467-42d3-be1d-287db292f1e4|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:47 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://rtb-csync.smartadserver.com/redir/?partnerid=147&partneruserid=ad2eca5c-43a1-4141-acd4-a81773d9aee2&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /redir/?partnerid=147&partneruserid=ad2eca5c-43a1-4141-acd4-a81773d9aee2&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/1.1
Host: rtb-csync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://csync.smartadserver.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 200 OK

content-type: image/gif
date: Tue, 25 Jun 2024 16:37:42 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|135:TAM_OK|139:0|147:ad2eca5c-43a1-4141-acd4-a81773d9aee2|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1; expires=Wed, 25 Jun 2025 16:37:43 GMT; domain=smartadserver.com; path=/; SameSite=None; secure
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
GET

https://dpm.demdex.net/ibs:dpid=481&dpuuid=LXUMMYH8-18-IISD?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /ibs:dpid=481&dpuuid=LXUMMYH8-18-IISD?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: dpm.demdex.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Tue, 25 Jun 2024 16:37:43 GMT
content-length: 0
location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=481&dpuuid=LXUMMYH8-18-IISD
x-tid: UqvCBqcyRpY=
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 UTC
p3p: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
dcs: dcs-prod-irl1-1-v061-0d40ae434.edge-irl1.demdex.com 0 ms
set-cookie: demdex=15776401806359458680305798776956821640; Max-Age=15552000; Expires=Sun, 22 Dec 2024 16:37:43 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
GET

https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=481&dpuuid=LXUMMYH8-18-IISD

Request

GET /demconf.jpg?et:ibs%7cdata:dpid=481&dpuuid=LXUMMYH8-18-IISD HTTP/2.0
host: dpm.demdex.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: demdex=15776401806359458680305798776956821640

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:43 GMT
content-type: image/gif
content-length: 59
x-tid: rGJ7NqKpQEE=
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 UTC
p3p: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
x-content-type-options: nosniff
dcs: dcscanary-prod-irl1-1-v076-08eaf837e.edge-irl1.demdex.com 3 ms
set-cookie: dpm=15776401806359458680305798776956821640; Max-Age=15552000; Expires=Sun, 22 Dec 2024 16:37:43 GMT; Path=/; Domain=.dpm.demdex.net; Secure; SameSite=None
set-cookie: demdex=15776401806359458680305798776956821640; Max-Age=15552000; Expires=Sun, 22 Dec 2024 16:37:43 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
content-encoding: gzip
GET

https://sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&mi=10&dpi=54&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /profiles_engine/ProfilesEngineServlet?at=20&mi=10&dpi=54&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/2.0
host: sync.intentiq.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 403

server: CloudFront
date: Tue, 25 Jun 2024 16:37:43 GMT
content-type: text/html
content-length: 986
x-cache: Error from cloudfront
via: 1.1 45dddc65ba3da4a1716d9c10f4aaaa08.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG53-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: n7k3lIJ1j-kxFYS_z9wHfzAyUI3RGOEZJ-0OjMcJaI9v0w4idr_ilw==
GET

https://ads.avads.net/sync/bsw?bidswitch_ssp_id=rubicon&bidswitch_param=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /sync/bsw?bidswitch_ssp_id=rubicon&bidswitch_param=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: ads.avads.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://eus.rubiconproject.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://wt.rqtrk.eu/?pid=58a76248-f101-4e52-b8f7-c4de9362ea12&src=www&type=100&sid=0&uid=4052082643997295311&gdpr_pd=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /?pid=58a76248-f101-4e52-b8f7-c4de9362ea12&src=www&type=100&sid=0&uid=4052082643997295311&gdpr_pd=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: wt.rqtrk.eu
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: browser_id=b7892654-d793-4c1f-abca-dc0093db2878
cookie: rc=1:

Response

HTTP/2.0 200

server: istio-envoy
date: Tue, 25 Jun 2024 16:37:43 GMT
content-type: image/gif
content-length: 43
p3p: CP="NOI DSP COR DEVa PSAa PSDa OUR BUS UNI COM NAV STA"
cache-control: no-cache,private
pragma: no-cache
expires: Tue, 25 Jun 2024 16:37:42 GMT
x-envoy-upstream-service-time: 1
GET

https://cookie-matching.mediarithmics.com/v1/get_user_agent_id?dom_token=id517&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY

Request

GET /v1/get_user_agent_id?dom_token=id517&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY HTTP/2.0
host: cookie-matching.mediarithmics.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 303

location: /v1/get_or_create?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&domid=1033
content-length: 0
date: Tue, 25 Jun 2024 16:37:43 GMT
strict-transport-security: max-age=63072000;includeSubDomains;preload
GET

https://cookie-matching.mediarithmics.com/v1/get_or_create?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&domid=1033

Request

GET /v1/get_or_create?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&domid=1033 HTTP/2.0
host: cookie-matching.mediarithmics.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 303

location: https://cm.g.doubleclick.net/pixel?google_nid=medr&google_cm&key=GOO&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&action=GET_ID&opid=goo&etid=&domid=1033&ops=apx
content-length: 0
date: Tue, 25 Jun 2024 16:37:43 GMT
strict-transport-security: max-age=63072000;includeSubDomains;preload
GET

https://cookie-matching.mediarithmics.com/input?key=GOO&key=GOO&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&action=GET_ID&opid=goo&etid=&domid=1033&ops=apx&google_gid=CAESEGtt1wxakE-WnBpE36XEr3E&google_cver=1

Request

GET /input?key=GOO&key=GOO&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&action=GET_ID&opid=goo&etid=&domid=1033&ops=apx&google_gid=CAESEGtt1wxakE-WnBpE36XEr3E&google_cver=1 HTTP/2.0
host: cookie-matching.mediarithmics.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 303

location: https://ib.adnxs.com/getuid?https://cookie-matching.mediarithmics.com/input?key=APX&apx_uid=$UID&opid=apx&ops=&utidl=tech:goo:CAESEGtt1wxakE-WnBpE36XEr3E&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&action=GET_ID&etid=&domid=1033
content-length: 0
date: Tue, 25 Jun 2024 16:37:43 GMT
strict-transport-security: max-age=63072000;includeSubDomains;preload
GET

https://cookie-matching.mediarithmics.com/input?key=APX&apx_uid=8159859772855155319&opid=apx&ops=&utidl=tech:goo:CAESEGtt1wxakE-WnBpE36XEr3E&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&action=GET_ID&etid=&domid=1033

Request

GET /input?key=APX&apx_uid=8159859772855155319&opid=apx&ops=&utidl=tech:goo:CAESEGtt1wxakE-WnBpE36XEr3E&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&action=GET_ID&etid=&domid=1033 HTTP/2.0
host: cookie-matching.mediarithmics.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 303

location: https://id5-sync.com/qp/18.gif?puid=vec%3A93190252981&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&sd=Y2FzY2FkZXNSZW1haW5pbmc9OCZjYXNjYWRlc0RvbmU9MiZpbml0aWF0aW5nUGFydG5lcj0xMDImZm9ybWF0PWdpZiY
set-cookie: mics_vid=93190252981; Max-Age=31476137; Expires=Wed, 25 Jun 2025 00:00:00 GMT; SameSite=None; Path=/; Domain=.mediarithmics.com; Secure; HTTPOnly
set-cookie: mics_uaid=web:1:ab83a310-411d-4206-8ee2-78fc2646c3c1; Max-Age=31476137; Expires=Wed, 25 Jun 2025 00:00:00 GMT; SameSite=None; Path=/; Domain=.mediarithmics.com; Secure; HTTPOnly
set-cookie: mics_lts=1719333463577; Max-Age=31476137; Expires=Wed, 25 Jun 2025 00:00:00 GMT; SameSite=None; Path=/; Domain=.mediarithmics.com; Secure; HTTPOnly
content-length: 0
date: Tue, 25 Jun 2024 16:37:43 GMT
strict-transport-security: max-age=63072000;includeSubDomains;preload
DNS

sync.smartadserver.com

Request

sync.smartadserver.com

IN A

Response

sync.smartadserver.com

IN CNAME

rtb-csync.smartadserver.com

rtb-csync.smartadserver.com

IN CNAME

rtb-csync-geo.usersync-prod-sas.akadns.net

rtb-csync-geo.usersync-prod-sas.akadns.net

IN CNAME

rtb-csync-euw2.smartadserver.com

rtb-csync-euw2.smartadserver.com

IN A

5.135.209.105

rtb-csync-euw2.smartadserver.com

IN A

51.178.195.216

rtb-csync-euw2.smartadserver.com

IN A

91.134.110.136

rtb-csync-euw2.smartadserver.com

IN A

178.32.197.56

rtb-csync-euw2.smartadserver.com

IN A

91.134.110.137

rtb-csync-euw2.smartadserver.com

IN A

149.202.238.105

rtb-csync-euw2.smartadserver.com

IN A

164.132.25.185

rtb-csync-euw2.smartadserver.com

IN A

164.132.25.184

rtb-csync-euw2.smartadserver.com

IN A

178.32.197.57

rtb-csync-euw2.smartadserver.com

IN A

5.196.111.72

rtb-csync-euw2.smartadserver.com

IN A

217.182.178.234

rtb-csync-euw2.smartadserver.com

IN A

149.202.238.104

rtb-csync-euw2.smartadserver.com

IN A

51.178.195.217

rtb-csync-euw2.smartadserver.com

IN A

217.182.178.233

rtb-csync-euw2.smartadserver.com

IN A

5.196.111.73

rtb-csync-euw2.smartadserver.com

IN A

5.135.209.104
GET

https://sync.smartadserver.com/getuid?gdpr=0&url=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D32128%26nid%3D2915%26put%3D[sas_uid]&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

Request

GET /getuid?gdpr=0&url=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D32128%26nid%3D2915%26put%3D[sas_uid]&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1 HTTP/1.1
Host: sync.smartadserver.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://eus.rubiconproject.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: TestIfCookieP=ok; pbw=%24b%3d16999%3b%24o%3d11100; sasd=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5; sasd2=q=%24qc%3D1314589487%3B%24ql%3DHigh%3B%24qt%3D78_2531_71284t%3B%24dma%3D0%3B%24qo%3D5&c=1&l&lo&lt=638549300706764549&o=1; pid=4052082643997295311; vs=342899=6038917; csync=22:6640692441033083723|25:f689667a-f1c9-4200-9125-af04e7ae017d|31:4f62fbba-ecd4-4b71-afc7-4916045d677d|33:ZnrxlrmqPq8AAFKyAdC9GwAA&4403|66:0aac2204007e7569b1dc9e0e|75:84daa6ca-0538-48d1-9010-ae8e49c9a74c|76:CAESECTx64G1gYoM7aBY6pXkGzM|86:8159859772855155319|91:6F33541D-0234-4D12-A971-323BE606F1A8|92:YZ9IXur4Q8di|94:ZnrxlgAEOxAPqQAz|100:cf058137-53f5-0950-0107-bc887f168335|104:LXUMMYH8-18-IISD|116:o2xr0KqECEsyaRFTaZXc|127:AAD5Jk7M9eMAABdSEix9nA|134:OB_OK|139:0|150:0|152:4b6bdba3-8177-47de-9c38-c61c3b4e9ca9|160:1

Response

HTTP/1.1 302 Found

content-length: 0
date: Tue, 25 Jun 2024 16:37:42 GMT
location: https://pixel.rubiconproject.com/tap.php?v=32128&nid=2915&put=4052082643997295311
DNS

tags.bluekai.com

Request

tags.bluekai.com

IN A

Response

tags.bluekai.com

IN CNAME

tags.bluekai.com.edgekey.net

tags.bluekai.com.edgekey.net

IN CNAME

e9126.x.akamaiedge.net

e9126.x.akamaiedge.net

IN A

104.90.24.243
DNS

pm.w55c.net

Request

pm.w55c.net

IN A

Response

pm.w55c.net

IN CNAME

cdn.w55c.net

cdn.w55c.net

IN A

54.77.130.68

cdn.w55c.net

IN A

34.251.19.157

cdn.w55c.net

IN A

34.250.160.0
GET

https://tags.bluekai.com/site/2964?id=DKsbZE1b1Sm97P5

Request

GET /site/2964?id=DKsbZE1b1Sm97P5 HTTP/2.0
host: tags.bluekai.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://cti.w55c.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/gif
content-length: 62
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
x-request-id: aa4539002b05d6d5d052a1614a0cc969
date: Tue, 25 Jun 2024 16:37:43 GMT
set-cookie: bku=k9L99a40KZqdTSzW; Path=/; Domain=.bluekai.com; Expires=Wed, 25 Dec 2024 16:37:43 GMT; Secure; SameSite=None
set-cookie: bkpa=KJy9cxeid02pSUHknp/8BMxdSVx2HW+pRkoa1V/hDt68BN9N9yYanyir; Path=/; Domain=.bluekai.com; Expires=Wed, 25 Dec 2024 16:37:43 GMT; Secure; SameSite=None
DNS

tags.w55c.net

Request

tags.w55c.net

IN A

Response

tags.w55c.net

IN CNAME

geotags.w55c.net

geotags.w55c.net

IN CNAME

cdn.w55c.net

cdn.w55c.net

IN A

54.77.130.68

cdn.w55c.net

IN A

34.250.160.0

cdn.w55c.net

IN A

34.251.19.157
DNS

29.228.49.52.in-addr.arpa

Request

29.228.49.52.in-addr.arpa

IN PTR

Response

29.228.49.52.in-addr.arpa

IN PTR

ec2-52-49-228-29 eu-west-1compute amazonawscom
DNS

99.28.244.18.in-addr.arpa

Request

99.28.244.18.in-addr.arpa

IN PTR

Response

99.28.244.18.in-addr.arpa

IN PTR

server-18-244-28-99cdg52r cloudfrontnet
DNS

48.63.42.188.in-addr.arpa

Request

48.63.42.188.in-addr.arpa

IN PTR

Response
DNS

123.51.85.54.in-addr.arpa

Request

123.51.85.54.in-addr.arpa

IN PTR

Response

123.51.85.54.in-addr.arpa

IN PTR

ec2-54-85-51-123 compute-1 amazonawscom
DNS

118.154.157.54.in-addr.arpa

Request

118.154.157.54.in-addr.arpa

IN PTR

Response

118.154.157.54.in-addr.arpa

IN PTR

ec2-54-157-154-118 compute-1 amazonawscom
DNS

120.9.249.13.in-addr.arpa

Request

120.9.249.13.in-addr.arpa

IN PTR

Response

120.9.249.13.in-addr.arpa

IN PTR

server-13-249-9-120cdg53r cloudfrontnet
DNS

214.32.35.63.in-addr.arpa

Request

214.32.35.63.in-addr.arpa

IN PTR

Response

214.32.35.63.in-addr.arpa

IN PTR

ec2-63-35-32-214 eu-west-1compute amazonawscom
DNS

112.133.128.34.in-addr.arpa

Request

112.133.128.34.in-addr.arpa

IN PTR

Response

112.133.128.34.in-addr.arpa

IN PTR

11213312834bcgoogleusercontentcom
DNS

33.34.81.54.in-addr.arpa

Request

33.34.81.54.in-addr.arpa

IN PTR

Response

33.34.81.54.in-addr.arpa

IN PTR

ec2-54-81-34-33 compute-1 amazonawscom
DNS

212.109.221.44.in-addr.arpa

Request

212.109.221.44.in-addr.arpa

IN PTR

Response

212.109.221.44.in-addr.arpa

IN PTR

ec2-44-221-109-212 compute-1 amazonawscom
DNS

184.208.244.143.in-addr.arpa

Request

184.208.244.143.in-addr.arpa

IN PTR

Response
DNS

105.209.135.5.in-addr.arpa

Request

105.209.135.5.in-addr.arpa

IN PTR

Response

105.209.135.5.in-addr.arpa

IN PTR

ip105ip-5-135-209eu
DNS

206.53.120.211.in-addr.arpa

Request

206.53.120.211.in-addr.arpa

IN PTR

Response
DNS

243.24.90.104.in-addr.arpa

Request

243.24.90.104.in-addr.arpa

IN PTR

Response

243.24.90.104.in-addr.arpa

IN PTR

a104-90-24-243deploystaticakamaitechnologiescom
DNS

68.130.77.54.in-addr.arpa

Request

68.130.77.54.in-addr.arpa

IN PTR

Response

68.130.77.54.in-addr.arpa

IN PTR

ec2-54-77-130-68 eu-west-1compute amazonawscom
DNS

a.channelexco.com

Request

a.channelexco.com

IN A

Response

a.channelexco.com

IN CNAME

a-lb.cdtx.co

a-lb.cdtx.co

IN A

209.58.138.146
GET

https://csync.loopme.me/?redirect=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D124%26partneruserid%3D%7Bdevice_id%7D&pubid=5679&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

Request

GET /?redirect=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D124%26partneruserid%3D%7Bdevice_id%7D&pubid=5679&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA HTTP/2.0
host: csync.loopme.me
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://csync.smartadserver.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: viewer_token=20bd0165-7caa-4b7b-8b83-5936300ad204

Response

HTTP/2.0 307

set-cookie: viewer_token=20bd0165-7caa-4b7b-8b83-5936300ad204; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Wed, 25-Sep-2024 16:37:47 GMT; SameSite=None
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=124&partneruserid=20bd0165-7caa-4b7b-8b83-5936300ad204&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1
content-length: 0
date: Tue, 25 Jun 2024 16:37:47 GMT
server: _
DNS

google.com

Request

google.com

IN A

Response

google.com

IN A

142.250.179.238
POST

https://google.com/domainreliability/upload

Request

POST /domainreliability/upload HTTP/2.0
host: google.com
content-length: 269
content-type: application/json; charset=utf-8
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

238.179.250.142.in-addr.arpa

Request

238.179.250.142.in-addr.arpa

IN PTR

Response

238.179.250.142.in-addr.arpa

IN PTR

lhr25s31-in-f141e100net
DNS

www.google.com

Request

www.google.com

IN A

Response

www.google.com

IN A

142.250.187.196
POST

https://csm.nl3.eu.criteo.net/iev?entry=c~Gum.ChromeSyncframe.CookieRead.uid~1&entry=c~Gum.ChromeSyncframe.FragmentData.publishertag.Bundle.Origin.3~1&entry=c~Gum.ChromeSyncframe.SidReadSuccess~1&entry=h~Gum.ChromeSyncframe.SidReadSuccessDuration~59

Request

POST /iev?entry=c~Gum.ChromeSyncframe.CookieRead.uid~1&entry=c~Gum.ChromeSyncframe.FragmentData.publishertag.Bundle.Origin.3~1&entry=c~Gum.ChromeSyncframe.SidReadSuccess~1&entry=h~Gum.ChromeSyncframe.SidReadSuccessDuration~59 HTTP/2.0
host: csm.nl3.eu.criteo.net
content-length: 0
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://gum.criteo.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://gum.criteo.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:37:59 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
DNS

id.google.com

Request

id.google.com

IN A

Response

id.google.com

IN A

142.250.200.35
GET

https://id.google.com/verify/ABDN9YdEIiP3jQQigIAtuRgNPBBIYZcz6JltIEpMjlpj3aWNPo4xn18D7FttHi_K9t_DJ1Omnht5f_SwnMGOXdDwkq2CkZRq9xTOCA1X5eiGlZAkdQ

Request

GET /verify/ABDN9YdEIiP3jQQigIAtuRgNPBBIYZcz6JltIEpMjlpj3aWNPo4xn18D7FttHi_K9t_DJ1Omnht5f_SwnMGOXdDwkq2CkZRq9xTOCA1X5eiGlZAkdQ HTTP/2.0
host: id.google.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
x-client-data: CJmLywE=
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.google.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: AEC=AQTF6HysrSYTbI3Icaj3vIZl49e-qxXb6PQIBDhPhzQdQg7Cznmpd-V8IPs
cookie: SOCS=CAISHAgCEhJnd3NfMjAyNDA2MjAtMF9SQzEaAmVuIAEaBgiAkeizBg
cookie: NID=515=f6fiWomb1j2KRkcuQ7K3JY-Jf6s9pNAuzhmGAikhtNbY7fnXhlhq4v7HtxzysG_gr4XEDUqdjiZSTUHsgLNXmcGvrV4rdcEYw4i5KU3DGte7hx2uVC6-CqKmsvtduzWA-wJHRmDXUkwSjmeajAj0mqsaEl4mRHQc6gEPKcShTFxAV0tw1L6O245IBOnIOKC9stm8
DNS

i.ytimg.com

Request

i.ytimg.com

IN A

Response

i.ytimg.com

IN A

142.250.200.22

i.ytimg.com

IN A

172.217.169.86

i.ytimg.com

IN A

172.217.16.246

i.ytimg.com

IN A

142.250.178.22

i.ytimg.com

IN A

216.58.212.214

i.ytimg.com

IN A

142.250.187.246

i.ytimg.com

IN A

142.250.200.54

i.ytimg.com

IN A

216.58.213.22

i.ytimg.com

IN A

142.250.180.22

i.ytimg.com

IN A

216.58.201.118

i.ytimg.com

IN A

142.250.187.214

i.ytimg.com

IN A

142.250.179.246

i.ytimg.com

IN A

216.58.204.86
GET

https://i.ytimg.com/vi/puqNXCKxW6I/mqdefault.jpg?sqp=-oaymwEFCJQBEFM&rs=AMzJL3m6ItWgRWV23cD03xgL8xTbwHsxsg

Request

GET /vi/puqNXCKxW6I/mqdefault.jpg?sqp=-oaymwEFCJQBEFM&rs=AMzJL3m6ItWgRWV23cD03xgL8xTbwHsxsg HTTP/2.0
host: i.ytimg.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
x-client-data: CJmLywE=
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.google.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

35.200.250.142.in-addr.arpa

Request

35.200.250.142.in-addr.arpa

IN PTR

Response

35.200.250.142.in-addr.arpa

IN PTR

lhr48s30-in-f31e100net
DNS

22.200.250.142.in-addr.arpa

Request

22.200.250.142.in-addr.arpa

IN PTR

Response

22.200.250.142.in-addr.arpa

IN PTR

lhr48s29-in-f221e100net
DNS

www.youtube.com

Request

www.youtube.com

IN A

Response

www.youtube.com

IN CNAME

youtube-ui.l.google.com

youtube-ui.l.google.com

IN A

172.217.169.46

youtube-ui.l.google.com

IN A

142.250.179.238

youtube-ui.l.google.com

IN A

142.250.180.14

youtube-ui.l.google.com

IN A

142.250.187.238

youtube-ui.l.google.com

IN A

142.250.200.46

youtube-ui.l.google.com

IN A

172.217.16.238

youtube-ui.l.google.com

IN A

216.58.201.110

youtube-ui.l.google.com

IN A

172.217.169.78

youtube-ui.l.google.com

IN A

172.217.169.14

youtube-ui.l.google.com

IN A

216.58.212.206

youtube-ui.l.google.com

IN A

142.250.178.14

youtube-ui.l.google.com

IN A

216.58.213.14

youtube-ui.l.google.com

IN A

142.250.187.206

youtube-ui.l.google.com

IN A

142.250.200.14

youtube-ui.l.google.com

IN A

216.58.204.78
DNS

googleads.g.doubleclick.net

Request

googleads.g.doubleclick.net

IN A

Response

googleads.g.doubleclick.net

IN A

142.250.179.226
DNS

static.doubleclick.net

Request

static.doubleclick.net

IN A

Response

static.doubleclick.net

IN A

216.58.213.6
GET

https://googleads.g.doubleclick.net/pagead/id

Request

GET /pagead/id HTTP/2.0
host: googleads.g.doubleclick.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.youtube.com
x-client-data: CJmLywE=
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: IDE=AHWqTUl03jq_bthyhifBEZ9fDiJgS8pVBm-t1LkXePh6iL5-8jWB4MLlzWgmuhJ_HnI
GET

https://static.doubleclick.net/instream/ad_status.js

Request

GET /instream/ad_status.js HTTP/2.0
host: static.doubleclick.net
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
x-client-data: CJmLywE=
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: IDE=AHWqTUl03jq_bthyhifBEZ9fDiJgS8pVBm-t1LkXePh6iL5-8jWB4MLlzWgmuhJ_HnI
DNS

jnn-pa.googleapis.com

Request

jnn-pa.googleapis.com

IN A

Response

jnn-pa.googleapis.com

IN A

142.250.200.42

jnn-pa.googleapis.com

IN A

142.250.187.202

jnn-pa.googleapis.com

IN A

142.250.180.10

jnn-pa.googleapis.com

IN A

142.250.179.234

jnn-pa.googleapis.com

IN A

142.250.187.234

jnn-pa.googleapis.com

IN A

216.58.201.106

jnn-pa.googleapis.com

IN A

142.250.178.10

jnn-pa.googleapis.com

IN A

172.217.16.234

jnn-pa.googleapis.com

IN A

216.58.204.74

jnn-pa.googleapis.com

IN A

216.58.213.10

jnn-pa.googleapis.com

IN A

142.250.200.10

jnn-pa.googleapis.com

IN A

216.58.212.202

jnn-pa.googleapis.com

IN A

172.217.169.10

jnn-pa.googleapis.com

IN A

172.217.169.74
OPTIONS

https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

Request

OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/2.0
host: jnn-pa.googleapis.com
accept: */*
access-control-request-method: POST
access-control-request-headers: content-type,x-goog-api-key,x-user-agent
origin: https://www.youtube.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.youtube.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

46.169.217.172.in-addr.arpa

Request

46.169.217.172.in-addr.arpa

IN PTR

Response

46.169.217.172.in-addr.arpa

IN PTR

lhr48s08-in-f141e100net
DNS

226.179.250.142.in-addr.arpa

Request

226.179.250.142.in-addr.arpa

IN PTR

Response

226.179.250.142.in-addr.arpa

IN PTR

lhr25s31-in-f21e100net
DNS

42.200.250.142.in-addr.arpa

Request

42.200.250.142.in-addr.arpa

IN PTR

Response

42.200.250.142.in-addr.arpa

IN PTR

lhr48s30-in-f101e100net
DNS

6.213.58.216.in-addr.arpa

Request

6.213.58.216.in-addr.arpa

IN PTR

Response

6.213.58.216.in-addr.arpa

IN PTR

lhr25s25-in-f61e100net

6.213.58.216.in-addr.arpa

IN PTR

ber01s14-in-f6�F
DNS

unmineable.com

Request

unmineable.com

IN A

Response

unmineable.com

IN A

172.67.134.54

unmineable.com

IN A

104.21.25.120
GET

https://unmineable.com/

Request

GET / HTTP/2.0
host: unmineable.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.google.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:38:02 GMT
content-type: text/html
last-modified: Thu, 20 Jun 2024 23:22:03 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U9a80wWsS2klC723WOIgRLYnQxKPOCAGkSA9E2zdZHED5AX5ED0p7lxRTVZGli29uUH8v7RnhFIJI8%2FNx8cBFgsUMNnrLFB1auFAtRFZvVul3%2BIrSUIbxCIulvYdcMNgyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 899662b92cec3698-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://www.unmineable.com/img/logos/RTM.png?v2

Request

GET /img/logos/RTM.png?v2 HTTP/2.0
host: www.unmineable.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://unmineable.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.692200672.1719333482
cookie: _ga_63JB9SJL7C=GS1.1.1719333481.1.0.1719333481.0.0.0

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:38:03 GMT
content-type: image/png
content-length: 100647
last-modified: Sat, 08 Jun 2024 23:56:01 GMT
etag: "6664ef91-18927"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 7151
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=koddaNnO6l80awvftcV7HHLkwwU4ezLejBWoBwX0Hwr%2FOlGQaPHkUGnY3VqD6vfzIlEEGMciodjAL3DXQCC9RwUUcbBnb0k2kwbNn0UAqurLjmbiQMR%2BV49%2FwN2r2f9mTH5ETMI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 899662c00fc93698-LHR
alt-svc: h3=":443"; ma=86400
GET

https://www.unmineable.com/img/logos/SDR.png?v2

Request

GET /img/logos/SDR.png?v2 HTTP/2.0
host: www.unmineable.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://unmineable.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.692200672.1719333482
cookie: _ga_63JB9SJL7C=GS1.1.1719333481.1.0.1719333481.0.0.0

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:38:03 GMT
content-type: image/png
content-length: 845
last-modified: Fri, 17 Jun 2022 19:15:14 GMT
etag: "62acd2c2-34d"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 53
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=doMYv%2Fx%2F%2FBCG97E7td3Ib4M9JoeEPGc%2Fwm1YBRNCEMUQDvwy2HO23y%2FW9w7Qn2qKn7LGG5y9jehP6EOvogP0sRXfuzqS17bwpTu6tdSqVAGwgcX86Tsv75zPIXm%2BYI9psMkbcJY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 899662c00fcf3698-LHR
alt-svc: h3=":443"; ma=86400
GET

https://www.unmineable.com/img/logos/XEL.png?v2

Request

GET /img/logos/XEL.png?v2 HTTP/2.0
host: www.unmineable.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://unmineable.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.692200672.1719333482
cookie: _ga_63JB9SJL7C=GS1.1.1719333481.1.0.1719333481.0.0.0

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:38:03 GMT
content-type: image/png
content-length: 100647
last-modified: Sat, 08 Jun 2024 23:56:01 GMT
etag: "6664ef91-18927"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 7109
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UV9Oh%2FlmfJP5xj60f3xkMFd564t8Of4s646nCc84G1muHiiRTcIcOX9xf9timnOnKn12Vp2qYXhNCmKoLGCPwv7%2B6Xsvi7JiMoq38gxg6jjuSdJmy%2FXb%2BT3%2BrDIGGp9bHFWqwYY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 899662c00fcc3698-LHR
alt-svc: h3=":443"; ma=86400
GET

https://www.unmineable.com/img/logos/BTC.png?v2

Request

GET /img/logos/BTC.png?v2 HTTP/2.0
host: www.unmineable.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://unmineable.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.692200672.1719333482
cookie: _ga_63JB9SJL7C=GS1.1.1719333481.1.0.1719333481.0.0.0

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:38:03 GMT
content-type: image/png
content-length: 1174
last-modified: Fri, 17 Jun 2022 19:15:14 GMT
etag: "62acd2c2-496"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 5779
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fkV7kF7pWbOEnvWkpXJsJDwbLuikzr99R61hVqfCRFjFRWVYtN7SSlBDTm3j0OK2kkO9vJNOz%2Ftorys3irBKn8Cma2Gcr48CsH76fkik2PA7GdvZknmPZsdJsKIcHehbHwhMdck%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 899662c00fca3698-LHR
alt-svc: h3=":443"; ma=86400
GET

https://www.unmineable.com/img/logos/XEL.png?v1

Request

GET /img/logos/XEL.png?v1 HTTP/2.0
host: www.unmineable.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://unmineable.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.692200672.1719333482
cookie: _ga_63JB9SJL7C=GS1.1.1719333481.1.0.1719333481.0.0.0

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:38:03 GMT
content-type: image/png
content-length: 1866
last-modified: Mon, 03 Jun 2024 23:20:32 GMT
etag: "665e4fc0-74a"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BgFfhI9hr%2FUuQvVCPpcydg7GzvLASaq0XVp4diVqsG9YqvamVecTSpkngVcsoMDFUV0tMq1tZGPYcdWTl7jV%2BV4G6%2FVgaJpt4IW3k4sfbnhUI784LoVVJfeW6ZELtFLPRQjn1X0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 899662c00fc23698-LHR
alt-svc: h3=":443"; ma=86400
GET

https://www.unmineable.com/img/logos/XMR.png?v1

Request

GET /img/logos/XMR.png?v1 HTTP/2.0
host: www.unmineable.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://unmineable.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.692200672.1719333482
cookie: _ga_63JB9SJL7C=GS1.1.1719333481.1.0.1719333481.0.0.0

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:38:03 GMT
content-type: image/png
content-length: 2731
last-modified: Mon, 20 May 2024 00:11:59 GMT
etag: "664a954f-aab"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K%2FjZnl0qmXD8haf76Wr3a%2BlRJRC4nuXbdUBHlSSUFyGutJ7ZDc7Cwz2%2FZ1R8fyMtrTnQyWUrou8xn6ChF4TqxCHIh8EPps38W0%2B3UzHSf%2F1h8cJy1Fg9R5UoNZRRd2x984ngRbc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 899662c00fc53698-LHR
alt-svc: h3=":443"; ma=86400
DNS

54.134.67.172.in-addr.arpa

Request

54.134.67.172.in-addr.arpa

IN PTR

Response
DNS

ws.unminable.com

Request

ws.unminable.com

IN A

Response

ws.unminable.com

IN A

159.65.209.153
DNS

api.unminable.com

Request

api.unminable.com

IN A

Response

api.unminable.com

IN A

139.59.196.11
DNS

api.support.unmineable.com

Request

api.support.unmineable.com

IN A

Response

api.support.unmineable.com

IN A

46.101.94.94
GET

https://api.support.unmineable.com/v4/notice?coin=&count=4&skip=0

Request

GET /v4/notice?coin=&count=4&skip=0 HTTP/1.1
Host: api.support.unmineable.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
Accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Origin: https://unmineable.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://unmineable.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 25 Jun 2024 16:38:03 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: W/"990-JR+0wXlaSxzEgakRDzuRAbz3i6I"
Content-Encoding: gzip
GET

https://api.support.unmineable.com/v4/notice?coin=&count=4&skip=0

Request

GET /v4/notice?coin=&count=4&skip=0 HTTP/1.1
Host: api.support.unmineable.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
Accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Origin: https://unmineable.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://unmineable.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
If-None-Match: W/"990-JR+0wXlaSxzEgakRDzuRAbz3i6I"

Response

HTTP/1.1 304 Not Modified

Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 25 Jun 2024 16:38:03 GMT
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: "990-JR+0wXlaSxzEgakRDzuRAbz3i6I"
GET

https://api.support.unmineable.com/v4/notice?coin=&count=4&skip=0

Request

GET /v4/notice?coin=&count=4&skip=0 HTTP/1.1
Host: api.support.unmineable.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
Accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Origin: https://unmineable.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://unmineable.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
If-None-Match: W/"990-JR+0wXlaSxzEgakRDzuRAbz3i6I"

Response

HTTP/1.1 304 Not Modified

Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 25 Jun 2024 16:38:03 GMT
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: "990-JR+0wXlaSxzEgakRDzuRAbz3i6I"
GET

https://api.support.unmineable.com/v4/notice?coin=BTC&count=4&skip=0

Request

GET /v4/notice?coin=BTC&count=4&skip=0 HTTP/1.1
Host: api.support.unmineable.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
Accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Origin: https://unmineable.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://unmineable.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 25 Jun 2024 16:38:03 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: W/"990-JR+0wXlaSxzEgakRDzuRAbz3i6I"
Content-Encoding: gzip
GET

https://api.support.unmineable.com/v4/notice?coin=BTC&count=4&skip=0

Request

GET /v4/notice?coin=BTC&count=4&skip=0 HTTP/1.1
Host: api.support.unmineable.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
Accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Origin: https://unmineable.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://unmineable.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
If-None-Match: W/"990-JR+0wXlaSxzEgakRDzuRAbz3i6I"

Response

HTTP/1.1 304 Not Modified

Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 25 Jun 2024 16:38:03 GMT
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: "990-JR+0wXlaSxzEgakRDzuRAbz3i6I"
GET

https://api.support.unmineable.com/v4/notice?coin=BTC&count=4&skip=0

Request

GET /v4/notice?coin=BTC&count=4&skip=0 HTTP/1.1
Host: api.support.unmineable.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
Accept: application/json, text/plain, */*
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
Origin: https://unmineable.com
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://unmineable.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
If-None-Match: W/"990-JR+0wXlaSxzEgakRDzuRAbz3i6I"

Response

HTTP/1.1 304 Not Modified

Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 25 Jun 2024 16:38:03 GMT
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: "990-JR+0wXlaSxzEgakRDzuRAbz3i6I"
DNS

www.unmineable.com

Request

www.unmineable.com

IN A

Response

www.unmineable.com

IN A

104.21.25.120

www.unmineable.com

IN A

172.67.134.54
DNS

153.209.65.159.in-addr.arpa

Request

153.209.65.159.in-addr.arpa

IN PTR

Response
DNS

153.209.65.159.in-addr.arpa

Request

153.209.65.159.in-addr.arpa

IN PTR

Response
DNS

11.196.59.139.in-addr.arpa

Request

11.196.59.139.in-addr.arpa

IN PTR

Response
DNS

11.196.59.139.in-addr.arpa

Request

11.196.59.139.in-addr.arpa

IN PTR

Response
DNS

94.94.101.46.in-addr.arpa

Request

94.94.101.46.in-addr.arpa

IN PTR

Response
DNS

94.94.101.46.in-addr.arpa

Request

94.94.101.46.in-addr.arpa

IN PTR

Response
DNS

cdn.unmineable.download

Request

cdn.unmineable.download

IN A

Response

cdn.unmineable.download

IN CNAME

unmineable.nyc3.cdn.digitaloceanspaces.com

unmineable.nyc3.cdn.digitaloceanspaces.com

IN A

104.18.42.227

unmineable.nyc3.cdn.digitaloceanspaces.com

IN A

172.64.145.29
DNS

cdn.unmineable.download

Request

cdn.unmineable.download

IN A

Response

cdn.unmineable.download

IN CNAME

unmineable.nyc3.cdn.digitaloceanspaces.com

unmineable.nyc3.cdn.digitaloceanspaces.com

IN A

104.18.42.227

unmineable.nyc3.cdn.digitaloceanspaces.com

IN A

172.64.145.29
GET

https://cdn.unmineable.download/unMiner.2.7.0-beta-mfi.exe

Request

GET /unMiner.2.7.0-beta-mfi.exe HTTP/2.0
host: cdn.unmineable.download
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://unmineable.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:38:08 GMT
content-type: application/octet-stream
content-length: 134196729
last-modified: Thu, 20 Jun 2024 23:12:30 GMT
x-rgw-object-type: Normal
etag: "acd7a6bd771548ef56df4c0e50419a77"
x-amz-request-id: tx00000f6fce4dcce3b0e5d-006674b8ae-1175b4a1-nyc3d
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: 483dc116-d42d-44ac-b517-a44c02625235
cache-control: max-age=3600
x-envoy-upstream-healthchecked-cluster:
cf-cache-status: HIT
age: 3417
accept-ranges: bytes
set-cookie: __cf_bm=.3Tmdh.vAVUKT1uiA2_xkZXUhuR8UGTYVxPfUaEO68A-1719333488-1.0.1.1-M7gCO8pBiAQHVic5yFRM3C2yek1.7IzM6.9OOZwELfk38QnU5N_c33kXkO3RXHR3sDsQEHsYQCs1EdU7AFHB1A; path=/; expires=Tue, 25-Jun-24 17:08:08 GMT; domain=.cdn.unmineable.download; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 899662e07cb594c0-LHR
DNS

227.42.18.104.in-addr.arpa

Request

227.42.18.104.in-addr.arpa

IN PTR

Response
DNS

ws.unminable.com

Request

ws.unminable.com

IN A

Response

ws.unminable.com

IN A

159.65.209.153
DNS

redirector.gvt1.com

Request

redirector.gvt1.com

IN A

Response

redirector.gvt1.com

IN A

142.250.187.206
DNS

redirector.gvt1.com

Request

redirector.gvt1.com

IN A

Response

redirector.gvt1.com

IN A

142.250.187.206
DNS

r3---sn-q4fl6ns6.gvt1.com

Request

r3---sn-q4fl6ns6.gvt1.com

IN A

Response

r3---sn-q4fl6ns6.gvt1.com

IN CNAME

r3.sn-q4fl6ns6.gvt1.com

r3.sn-q4fl6ns6.gvt1.com

IN A

74.125.1.104
DNS

r3---sn-q4fl6ns6.gvt1.com

Request

r3---sn-q4fl6ns6.gvt1.com

IN A

Response

r3---sn-q4fl6ns6.gvt1.com

IN CNAME

r3.sn-q4fl6ns6.gvt1.com

r3.sn-q4fl6ns6.gvt1.com

IN A

74.125.1.104
DNS

104.1.125.74.in-addr.arpa

Request

104.1.125.74.in-addr.arpa

IN PTR

Response

104.1.125.74.in-addr.arpa

IN PTR

dfw25s35-in-f81e100net
DNS

104.1.125.74.in-addr.arpa

Request

104.1.125.74.in-addr.arpa

IN PTR

Response

104.1.125.74.in-addr.arpa

IN PTR

dfw25s35-in-f81e100net
DNS

beacons.gcp.gvt2.com

Request

beacons.gcp.gvt2.com

IN A

Response

beacons.gcp.gvt2.com

IN CNAME

beacons-handoff.gcp.gvt2.com

beacons-handoff.gcp.gvt2.com

IN A

216.58.213.3
DNS

beacons.gcp.gvt2.com

Request

beacons.gcp.gvt2.com

IN A

Response

beacons.gcp.gvt2.com

IN CNAME

beacons-handoff.gcp.gvt2.com

beacons-handoff.gcp.gvt2.com

IN A

216.58.213.3
DNS

google.com

Request

google.com

IN A

Response

google.com

IN A

142.250.179.238
DNS

google.com

Request

google.com

IN A

Response

google.com

IN A

142.250.179.238
DNS

e2c14.gcp.gvt2.com

Request

e2c14.gcp.gvt2.com

IN A

Response

e2c14.gcp.gvt2.com

IN A

35.240.1.200
DNS

e2c14.gcp.gvt2.com

Request

e2c14.gcp.gvt2.com

IN A

Response

e2c14.gcp.gvt2.com

IN A

35.240.1.200
POST

https://e2c14.gcp.gvt2.com/nel/

Request

POST /nel/ HTTP/2.0
host: e2c14.gcp.gvt2.com
content-length: 273
content-type: application/json; charset=utf-8
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Tue, 25 Jun 2024 16:42:27 GMT
DNS

200.1.240.35.in-addr.arpa

Request

200.1.240.35.in-addr.arpa

IN PTR

Response

200.1.240.35.in-addr.arpa

IN PTR

200124035bcgoogleusercontentcom
DNS

200.1.240.35.in-addr.arpa

Request

200.1.240.35.in-addr.arpa

IN PTR

Response

200.1.240.35.in-addr.arpa

IN PTR

200124035bcgoogleusercontentcom
DNS

beacons2.gvt2.com

Request

beacons2.gvt2.com

IN A

Response

beacons2.gvt2.com

IN A

216.239.36.117

beacons2.gvt2.com

IN A

216.239.34.117

beacons2.gvt2.com

IN A

216.239.38.117

beacons2.gvt2.com

IN A

216.239.32.117
DNS

beacons2.gvt2.com

Request

beacons2.gvt2.com

IN A

Response

beacons2.gvt2.com

IN A

172.217.166.35
OPTIONS

https://beacons2.gvt2.com/domainreliability/upload-nel

Request

OPTIONS /domainreliability/upload-nel HTTP/2.0
host: beacons2.gvt2.com
origin: https://google.com
access-control-request-method: POST
access-control-request-headers: content-type
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

117.36.239.216.in-addr.arpa

Request

117.36.239.216.in-addr.arpa

IN PTR

Response
DNS

117.36.239.216.in-addr.arpa

Request

117.36.239.216.in-addr.arpa

IN PTR

Response
DNS

api.unminable.com

Request

api.unminable.com

IN A

Response

api.unminable.com

IN A

139.59.196.11
DNS

api.unminable.com

Request

api.unminable.com

IN A

Response

api.unminable.com

IN A

139.59.196.11
DNS

rx.unmineable.com

Request

rx.unmineable.com

IN A

Response

rx.unmineable.com

IN CNAME

rx.unminable.com

rx.unminable.com

IN CNAME

rx-eu.unminable.com

rx-eu.unminable.com

IN CNAME

rx-eu-lon.unminable.com

rx-eu-lon.unminable.com

IN A

161.35.34.195
DNS

rx.unmineable.com

Request

rx.unmineable.com

IN A

Response

rx.unmineable.com

IN CNAME

rx.unminable.com

rx.unminable.com

IN CNAME

rx-eu.unminable.com

rx-eu.unminable.com

IN CNAME

rx-eu-lon.unminable.com

rx-eu-lon.unminable.com

IN A

161.35.34.195
DNS

195.34.35.161.in-addr.arpa

Request

195.34.35.161.in-addr.arpa

IN PTR

Response
DNS

195.34.35.161.in-addr.arpa

Request

195.34.35.161.in-addr.arpa

IN PTR

Response
DNS

www.unmineable.com

Request

www.unmineable.com

IN A

Response

www.unmineable.com

IN A

104.21.25.120

www.unmineable.com

IN A

172.67.134.54
DNS

www.unmineable.com

Request

www.unmineable.com

IN A

Response

www.unmineable.com

IN A

172.67.134.54

www.unmineable.com

IN A

104.21.25.120
DNS

120.25.21.104.in-addr.arpa

Request

120.25.21.104.in-addr.arpa

IN PTR

Response
DNS

120.25.21.104.in-addr.arpa

Request

120.25.21.104.in-addr.arpa

IN PTR

Response
DNS

unmineable.com

Request

unmineable.com

IN A

Response

unmineable.com

IN A

172.67.134.54

unmineable.com

IN A

104.21.25.120
DNS

unmineable.com

Request

unmineable.com

IN A

Response

unmineable.com

IN A

104.21.25.120

unmineable.com

IN A

172.67.134.54
GET

https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v

Request

GET /coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v HTTP/2.0
host: unmineable.com
accept: text/html, application/xhtml+xml, image/jxr, */*
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:00 GMT
content-type: text/html
last-modified: Thu, 20 Jun 2024 23:22:03 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iJghMqLgbPJ8EDj%2BkXUcRqpaTVchdrkxY7M98LGaYzpgL4nhKvskw3k31ZH1yxO%2BLaPbLanJPk0q%2BKxy1RtuZB2HtgoYG3JWasMyRouodIlZsy9VUvLbEJWAADd2MAkkJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89966e680b5852ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://unmineable.com/static/css/app.2001a4003ed0515b7b6f718c743195ff.css

Request

GET /static/css/app.2001a4003ed0515b7b6f718c743195ff.css HTTP/2.0
host: unmineable.com
accept: text/css, */*
referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:01 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=118918
etag: W/"666650c5-1d086"
last-modified: Mon, 10 Jun 2024 01:03:01 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: HIT
age: 4729
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=prcNG5cYcjF2HSJJSlQpjQ%2BpZ3qHW%2BC2bfdfx2dui2Sjn2iOCoBmkFFwyfZLQIc1kxqnoZ%2Fc4jx%2BsW5GbqX09eXQrWQwQ97%2BTytpKxVwZ9k5jQBd1v6BTd1AyZ18blyocw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89966e68bc0052ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://unmineable.com/static/js/manifest.10ac1b40fa8ad56a1b35.js

Request

GET /static/js/manifest.10ac1b40fa8ad56a1b35.js HTTP/2.0
host: unmineable.com
accept: application/javascript, */*;q=0.8
referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:01 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=413449
etag: W/"6674b99b-64f09"
last-modified: Thu, 20 Jun 2024 23:22:03 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: HIT
age: 1378
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bx28NQmr8VIo9hw2l8Mz2Fway5gLIsjWLTjdLegSkl36kl0G4kamQWa8%2F8miMNx4VGNgJouKbBWoeBzBxaJIaR7pI2FB900S9bntrVmMvIpJ9xFzPCqxFxcUDi0QSCnAlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89966e68ec2b52ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://unmineable.com/static/js/vendor.dfc54f646a7f1993a946.js

Request

GET /static/js/vendor.dfc54f646a7f1993a946.js HTTP/2.0
host: unmineable.com
accept: application/javascript, */*;q=0.8
referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:01 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1511
etag: W/"6674b99b-5e7"
last-modified: Thu, 20 Jun 2024 23:22:03 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: HIT
age: 4161
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dR8ncKiW1PweP2BVcyB5UbYm9jlJk9BOXArsp1TKodm%2Fg0RGJIkbJwgI2RQyiGO26iMUoeObv%2B2%2BCGSt%2BO0RKOOjCP7XqNWeMEwvP8ny%2FERfr13DEvae0CHPRhvwU034MQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89966e68ec2352ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://unmineable.com/static/js/app.e725619bc8b497d46e80.js

Request

GET /static/js/app.e725619bc8b497d46e80.js HTTP/2.0
host: unmineable.com
accept: application/javascript, */*;q=0.8
referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:01 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=888177
etag: W/"660dcfb9-d8d71"
last-modified: Wed, 03 Apr 2024 21:52:57 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: HIT
age: 6045
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R1stPVhgzjqvbWPwHQfxFrXr5di3RyvB%2B7%2Fz5UsVea5We3nCdNCZH6yPnw17GqwZ2q3Hzt%2FNepnzEaSr3DY8kamPyTGNhRsR6upDcjHf1Lt8dGqcYiv6adLi%2Ffk84rSCiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89966e68ec2852ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://unmineable.com/img/logo.svg?v2

Request

GET /img/logo.svg?v2 HTTP/2.0
host: unmineable.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: _ga_63JB9SJL7C=GS1.1.1719333965.1.0.1719333965.0.0.0; _ga=GA1.1.1598397677.1719333966

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:07 GMT
content-type: image/svg+xml
last-modified: Fri, 23 Dec 2022 18:21:35 GMT
etag: W/"63a5f1af-15fc"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 4566
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ja7KB4E7hqyZ41VMl72SJOHaYLzjQsyYlCi4GwTeZR8gBaoaPGpHuRcsyMFTQCjKHFQSrV%2BySj1U%2Bb6sMgxfE%2B0Xn6y8DBH1BmVM6nT0p6WTmzUUl5prB1A6zidSG5jkmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89966e90e81d52ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://unmineable.com/img/icons/left-chevron-light.svg

Request

GET /img/icons/left-chevron-light.svg HTTP/2.0
host: unmineable.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: _ga_63JB9SJL7C=GS1.1.1719333965.1.0.1719333965.0.0.0; _ga=GA1.1.1598397677.1719333966

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:09 GMT
content-type: image/svg+xml
last-modified: Thu, 13 Oct 2022 21:16:45 GMT
etag: W/"6348803d-16a"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 2285
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WSqqAeqbooPiIDm9ZCLbqaUfZn2rhs40PjA%2BfFs5G5vG71K1USFzHlSD6Gy5CQyukndQTrTYKp%2FFi%2FwyVw9wGuXYst3qV8vjHpa%2F0dIHD78ifbYHBQ%2B3766QPaiTXJ1j9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89966e9d3bea52ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://unmineable.com/img/icons/right-chevron-light.svg

Request

GET /img/icons/right-chevron-light.svg HTTP/2.0
host: unmineable.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: _ga_63JB9SJL7C=GS1.1.1719333965.1.0.1719333965.0.0.0; _ga=GA1.1.1598397677.1719333966

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:09 GMT
content-type: image/svg+xml
last-modified: Thu, 13 Oct 2022 21:16:45 GMT
etag: W/"6348803d-198"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hiG8DJuGJXOyfqCfbgE%2Bzgfz4SUDgNLCcwU9anhEjQ2fi8CAVAiIOIH2lmbbdyXxlIyCKwpDpLZP4K0juEy3GwkFjp1qBOI7n8NtO8EAltCsNzkLvTyI%2Bp9CV3LUYB2fYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89966e9d3beb52ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
DNS

x2.c.lencr.org

Request

x2.c.lencr.org

IN A

Response

x2.c.lencr.org

IN CNAME

crl.root-x1.letsencrypt.org.edgekey.net

crl.root-x1.letsencrypt.org.edgekey.net

IN CNAME

e8652.dscx.akamaiedge.net

e8652.dscx.akamaiedge.net

IN A

23.55.97.11
DNS

x2.c.lencr.org

Request

x2.c.lencr.org

IN A

Response

x2.c.lencr.org

IN CNAME

crl.root-x1.letsencrypt.org.edgekey.net

crl.root-x1.letsencrypt.org.edgekey.net

IN CNAME

e8652.dscx.akamaiedge.net

e8652.dscx.akamaiedge.net

IN A

23.55.97.11
GET

http://x2.c.lencr.org/

Request

GET / HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: x2.c.lencr.org

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/pkix-crl
Last-Modified: Mon, 12 Feb 2024 22:07:27 GMT
ETag: "65ca969f-12b"
Cache-Control: max-age=3600
Expires: Tue, 25 Jun 2024 17:46:00 GMT
Date: Tue, 25 Jun 2024 16:46:00 GMT
Content-Length: 299
Connection: keep-alive
DNS

cdnjs.cloudflare.com

Request

cdnjs.cloudflare.com

IN A

Response

cdnjs.cloudflare.com

IN A

104.17.24.14

cdnjs.cloudflare.com

IN A

104.17.25.14
DNS

cdnjs.cloudflare.com

Request

cdnjs.cloudflare.com

IN A

Response

cdnjs.cloudflare.com

IN A

104.17.24.14

cdnjs.cloudflare.com

IN A

104.17.25.14
DNS

11.97.55.23.in-addr.arpa

Request

11.97.55.23.in-addr.arpa

IN PTR

Response

11.97.55.23.in-addr.arpa

IN PTR

a23-55-97-11deploystaticakamaitechnologiescom
DNS

11.97.55.23.in-addr.arpa

Request

11.97.55.23.in-addr.arpa

IN PTR

Response

11.97.55.23.in-addr.arpa

IN PTR

a23-55-97-11deploystaticakamaitechnologiescom
GET

https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

Request

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/2.0
host: cdnjs.cloudflare.com
accept: text/css, */*
referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:01 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 515238
expires: Sun, 15 Jun 2025 16:46:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QRFYg4d7Ar4iZIxBzVYhR58A7ny3%2BYIaxEXSpwEvHV88Fc4bHqFHKBR1y%2Ft3UmjEo3is46NR8HV4onod5FjllrLmDY1q00DjIXmAaVWJemsXgets%2FXtmqtKYM5nY21rc9QRQOo%2Fu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 89966e69bb8106a6-LHR
alt-svc: h3=":443"; ma=86400
GET

https://cdnjs.cloudflare.com/ajax/libs/bulma/0.7.2/css/bulma.min.css

Request

GET /ajax/libs/bulma/0.7.2/css/bulma.min.css HTTP/2.0
host: cdnjs.cloudflare.com
accept: text/css, */*
referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:01 GMT
content-type: text/css; charset=utf-8
content-length: 2086
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f2b-3d21"
last-modified: Mon, 04 May 2020 16:13:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1149692
expires: Sun, 15 Jun 2025 16:46:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b2rJpXIMH9NtmDAxpI6CgLnq%2BHjbakF8Hxba%2Fw4siDDxXHRgKRlEVHzuFZYqiTie3mMcd60PWQJ1UjLNFB2RXeFUPZhNo0xgYc%2Bf60qyKDeC5wFmIRu5J1rIgCCj5s2YmCK67lPe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 89966e69bb8406a6-LHR
alt-svc: h3=":443"; ma=86400
GET

https://cdnjs.cloudflare.com/ajax/libs/hint.css/2.5.0/hint.min.css

Request

GET /ajax/libs/hint.css/2.5.0/hint.min.css HTTP/2.0
host: cdnjs.cloudflare.com
accept: text/css, */*
referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:01 GMT
content-type: text/css; charset=utf-8
content-length: 1245
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e7c-259b"
last-modified: Mon, 04 May 2020 16:10:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1726858
expires: Sun, 15 Jun 2025 16:46:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eGEvdy2ZGirchL4vy3C0E9tTn6Eh2SN9e6A8Jn1sKNHfu01Loe%2F0y7ttKA%2F17qFE0OoyRkB0hSDBW0Y3i8TKbWp%2Btlk0amOyFzAHpow4jn4DAL0KuyLRmNh4SolTFGd4Fk80AZC4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 89966e69bb8306a6-LHR
alt-svc: h3=":443"; ma=86400
GET

https://cdnjs.cloudflare.com/ajax/libs/noty/3.1.4/noty.min.css

Request

GET /ajax/libs/noty/3.1.4/noty.min.css HTTP/2.0
host: cdnjs.cloudflare.com
accept: text/css, */*
referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:01 GMT
content-type: text/css; charset=utf-8
content-length: 17916
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e1d-29642"
last-modified: Mon, 04 May 2020 16:09:01 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 491642
expires: Sun, 15 Jun 2025 16:46:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1rtv4qZxk60%2FBsXYnQeEYjs5KowTgs0G5q5S2DjKqbX2%2BgflxV%2Bg%2BwTjLItYZbdR1BiJL%2FkHQhpmVM%2BroLsOwqlriXc9%2Boz8BxaW79QRq%2BsxY9ngY5nHM%2FTODLuzP%2FtkVOSc5d13"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 89966e69bb8206a6-LHR
alt-svc: h3=":443"; ma=86400
GET

https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

Request

GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/2.0
host: cdnjs.cloudflare.com
accept: */*
referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
origin: https://unmineable.com
accept-encoding: gzip, deflate, br

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:07 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2246
expires: Sun, 15 Jun 2025 16:46:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wrQMG9GBvfPVIMk%2FTKiStNz1SM7Lm6PHFgaA6Y3q4D9aJk5oe8ag4h2ABBSE%2FnfgyiE7AaSify0LtwqYNb3na756T7UTm4e42XPj4NVNKJfZ328oY%2F4R7k%2FtAALTXs4G5zCyJiFx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 89966e91fbc806a6-LHR
alt-svc: h3=":443"; ma=86400
DNS

o.pki.goog

Request

o.pki.goog

IN A

Response

o.pki.goog

IN CNAME

pki-goog.l.google.com

pki-goog.l.google.com

IN A

142.250.200.3
DNS

o.pki.goog

Request

o.pki.goog

IN A

Response

o.pki.goog

IN CNAME

pki-goog.l.google.com

pki-goog.l.google.com

IN A

142.250.200.3
GET

http://o.pki.goog/wr2/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEQDGCgF2SaJtvwmu6gM4lJDO

Request

GET /wr2/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEQDGCgF2SaJtvwmu6gM4lJDO HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: o.pki.goog

Response

HTTP/1.1 200 OK

Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Date: Tue, 25 Jun 2024 15:59:51 GMT
Cache-Control: public, max-age=14400
Content-Type: application/ocsp-response
Age: 2771
GET

http://o.pki.goog/wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEAIE94ivqY0gCWDtim5%2Ffhw%3D

Request

GET /wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEAIE94ivqY0gCWDtim5%2Ffhw%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: o.pki.goog

Response

HTTP/1.1 200 OK

Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Date: Tue, 25 Jun 2024 16:39:13 GMT
Cache-Control: public, max-age=14400
Content-Type: application/ocsp-response
Age: 413
DNS

ws.unminable.com

Request

ws.unminable.com

IN A

Response

ws.unminable.com

IN A

159.65.209.153
DNS

ws.unminable.com

Request

ws.unminable.com

IN A

Response

ws.unminable.com

IN A

159.65.209.153
GET

https://unmineable.com/img/favicon.png?v2

Request

GET /img/favicon.png?v2 HTTP/2.0
host: unmineable.com
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
dnt: 1

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:19 GMT
content-type: image/png
content-length: 21840
last-modified: Fri, 23 Dec 2022 18:21:35 GMT
etag: "63a5f1af-5550"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 4653
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c54LVDLx0QmDTpaEGUfLrlbe6U7jAyMWalXqfm5vPT2%2FUWKMnUnX3syype29A3zAFHAryKEKdrRDH5nTtdSgzZpWm4vKgSFpESsKWCR8X3IxymWozXEKcCtl8gZG0vrITg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89966edd7b4123e1-LHR
alt-svc: h3=":443"; ma=86400
GET

https://ws.unminable.com/?EIO=4&transport=websocket

Request

GET /?EIO=4&transport=websocket HTTP/1.1
Origin: https://unmineable.com
Sec-WebSocket-Key: XBKNS+a0tsqxUVuQceAI8w==
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Version: 13
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Host: ws.unminable.com
Cache-Control: no-cache

Response

HTTP/1.1 101 Switching Protocols

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:11 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6Abuc0v6Qd9ULhCjp4cE2xiyRjg=
GET

http://x1.c.lencr.org/

Request

GET / HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: x1.c.lencr.org

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/pkix-crl
Last-Modified: Mon, 12 Feb 2024 22:07:27 GMT
ETag: "65ca969f-2cd"
Cache-Control: max-age=3600
Expires: Tue, 25 Jun 2024 17:46:16 GMT
Date: Tue, 25 Jun 2024 16:46:16 GMT
Content-Length: 717
Connection: keep-alive
DNS

region1.google-analytics.com

Request

region1.google-analytics.com

IN A

Response

region1.google-analytics.com

IN A

216.239.34.36

region1.google-analytics.com

IN A

216.239.32.36
DNS

region1.google-analytics.com

Request

region1.google-analytics.com

IN A

Response

region1.google-analytics.com

IN A

216.239.34.36

region1.google-analytics.com

IN A

216.239.32.36
POST

https://region1.google-analytics.com/g/collect?v=2&tid=G-63JB9SJL7C&gtm=45je46j0v889667769za200&_p=1719333965339&gcd=13l3l3l3l1&npa=0&dma=0&tag_exp=0&cid=1598397677.1719333966&ul=en-us&sr=1280x720&frm=0&pscdl=noapi&_s=1&sid=1719333965&sct=1&seg=0&dl=https%3A%2F%2Funmineable.com%2Fcoins%2FUSDT%2Faddress%2FTScmMemZier9zmbgmik395DreowgQT8o9v&dt=unMineable%20-%20Earn%20your%20favorite%20crypto%20coins!&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=9673&_z=fetch

Request

POST /g/collect?v=2&tid=G-63JB9SJL7C&gtm=45je46j0v889667769za200&_p=1719333965339&gcd=13l3l3l3l1&npa=0&dma=0&tag_exp=0&cid=1598397677.1719333966&ul=en-us&sr=1280x720&frm=0&pscdl=noapi&_s=1&sid=1719333965&sct=1&seg=0&dl=https%3A%2F%2Funmineable.com%2Fcoins%2FUSDT%2Faddress%2FTScmMemZier9zmbgmik395DreowgQT8o9v&dt=unMineable%20-%20Earn%20your%20favorite%20crypto%20coins!&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=9673&_z=fetch HTTP/2.0
host: region1.google-analytics.com
accept: */*
origin: https://unmineable.com
referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
content-length: 0
cache-control: no-cache

Response

HTTP/2.0 204

access-control-allow-origin: https://unmineable.com
date: Tue, 25 Jun 2024 16:46:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
DNS

api.unminable.com

Request

api.unminable.com

IN A

Response

api.unminable.com

IN A

139.59.196.11
DNS

api.unminable.com

Request

api.unminable.com

IN A
DNS

api.unminable.com

Request

api.unminable.com

IN A
GET

https://api.unminable.com/v5/coin/USDT

Request

GET /v5/coin/USDT HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.unminable.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:08 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: W/"4e5-Cc/VhGEG8S7gMhuMd4AGQohJJ+I"
Content-Encoding: gzip
GET

https://api.unminable.com/v5/pool

Request

GET /v5/pool HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.unminable.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:09 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: W/"63c-hR98pYoewq7sYA60ySGv0ll2FWI"
Content-Encoding: gzip
GET

https://api.unminable.com/v3/site/version

Request

GET /v3/site/version HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/coins/USDT/address/TScmMemZier9zmbgmik395DreowgQT8o9v
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.unminable.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:09 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 32
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: "20-V8Ky/A5VU1K1PSLZXXJ0dZsmZmw"
GET

https://api.unminable.com/v5/pool

Request

GET /v5/pool HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.unminable.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:09 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: W/"63c-hR98pYoewq7sYA60ySGv0ll2FWI"
Content-Encoding: gzip
GET

https://api.unminable.com/v3/site/version

Request

GET /v3/site/version HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.unminable.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:09 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 32
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: "20-V8Ky/A5VU1K1PSLZXXJ0dZsmZmw"
GET

https://api.unminable.com/v5/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT

Request

GET /v5/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.unminable.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:09 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: W/"723-ANeI9sW0o5n8jn6HK25CDBjQkew"
Content-Encoding: gzip
DNS

www.unmineable.com

Request

www.unmineable.com

IN A

Response

www.unmineable.com

IN A

104.21.25.120

www.unmineable.com

IN A

172.67.134.54
DNS

www.unmineable.com

Request

www.unmineable.com

IN A
DNS

www.unmineable.com

Request

www.unmineable.com

IN A
DNS

www.unmineable.com

Request

www.unmineable.com

IN A
DNS

www.unmineable.com

Request

www.unmineable.com

IN A
DNS

api.support.unmineable.com

Request

api.support.unmineable.com

IN A
DNS

api.support.unmineable.com

Request

api.support.unmineable.com

IN A
DNS

api.support.unmineable.com

Request

api.support.unmineable.com

IN A
DNS

api.support.unmineable.com

Request

api.support.unmineable.com

IN A
DNS

api.support.unmineable.com

Request

api.support.unmineable.com

IN A
DNS

25.251.17.2.in-addr.arpa

Request

25.251.17.2.in-addr.arpa

IN PTR

Response

25.251.17.2.in-addr.arpa

IN PTR

a2-17-251-25deploystaticakamaitechnologiescom
DNS

25.251.17.2.in-addr.arpa

Request

25.251.17.2.in-addr.arpa

IN PTR
DNS

25.251.17.2.in-addr.arpa

Request

25.251.17.2.in-addr.arpa

IN PTR
DNS

25.251.17.2.in-addr.arpa

Request

25.251.17.2.in-addr.arpa

IN PTR
DNS

25.251.17.2.in-addr.arpa

Request

25.251.17.2.in-addr.arpa

IN PTR
DNS

2.159.190.20.in-addr.arpa

Request

2.159.190.20.in-addr.arpa

IN PTR

Response
DNS

2.159.190.20.in-addr.arpa

Request

2.159.190.20.in-addr.arpa

IN PTR
DNS

2.159.190.20.in-addr.arpa

Request

2.159.190.20.in-addr.arpa

IN PTR
GET

http://x2.c.lencr.org/

Request

GET / HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: x2.c.lencr.org

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/pkix-crl
Last-Modified: Mon, 12 Feb 2024 22:07:27 GMT
ETag: "65ca969f-12b"
Cache-Control: max-age=3600
Expires: Tue, 25 Jun 2024 17:46:19 GMT
Date: Tue, 25 Jun 2024 16:46:19 GMT
Content-Length: 299
Connection: keep-alive
DNS

watson.telemetry.microsoft.com

Request

watson.telemetry.microsoft.com

IN A

Response

watson.telemetry.microsoft.com

IN CNAME

blobcollector.events.data.trafficmanager.net

blobcollector.events.data.trafficmanager.net

IN CNAME

onedsblobprdwus16.westus.cloudapp.azure.com

onedsblobprdwus16.westus.cloudapp.azure.com

IN A

20.189.173.21
DNS

watson.telemetry.microsoft.com

Request

watson.telemetry.microsoft.com

IN A

Response

watson.telemetry.microsoft.com

IN CNAME

blobcollector.events.data.trafficmanager.net

blobcollector.events.data.trafficmanager.net

IN CNAME

onedsblobprdcus16.centralus.cloudapp.azure.com

onedsblobprdcus16.centralus.cloudapp.azure.com

IN A

104.208.16.94
POST

https://watson.telemetry.microsoft.com/Telemetry.Request

Request

POST /Telemetry.Request HTTP/1.1
Connection: Keep-Alive
User-Agent: MSDW
MSA_DeviceTicket: t=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&p=
AAD_TenantId: (null)
Content-Length: 4626
Host: watson.telemetry.microsoft.com

Response

HTTP/1.1 200 200 OK

Content-Length: 748
Content-Type: text/xml
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
Date: Tue, 25 Jun 2024 16:46:20 GMT
DNS

21.173.189.20.in-addr.arpa

Request

21.173.189.20.in-addr.arpa

IN PTR

Response
DNS

21.173.189.20.in-addr.arpa

Request

21.173.189.20.in-addr.arpa

IN PTR
GET

https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT

Request

GET /address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT HTTP/2.0
host: unmineable.com
accept: text/html, application/xhtml+xml, image/jxr, */*
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: _ga_63JB9SJL7C=GS1.1.1719333965.1.0.1719333965.0.0.0; _ga=GA1.1.1598397677.1719333966

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:22 GMT
content-type: text/html
last-modified: Thu, 20 Jun 2024 23:22:03 GMT
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AnEsTys3F7dT%2BmBhhMTCXXtHmJ2u3SZaqH46lT5xRZA6wlS%2BHHVvdS6dB3tGEw4c90vD9f%2BPu8ZHqtH5O29C5JN9cC%2Fp7hteB%2FUhfJifz2FFx4k6lfuxSSeP7OtZaiBz%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89966eecbc3b23ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://ws.unminable.com/?EIO=4&transport=websocket

Request

GET /?EIO=4&transport=websocket HTTP/1.1
Origin: https://unmineable.com
Sec-WebSocket-Key: sj67/VA/AmKV9VH9xFsHzw==
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Version: 13
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Host: ws.unminable.com
Cache-Control: no-cache

Response

HTTP/1.1 101 Switching Protocols

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:23 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TsfRX2FXRhrDvk94u55gkVqOVIU=
POST

https://region1.google-analytics.com/g/collect?v=2&tid=G-63JB9SJL7C&gtm=45je46j0v889667769za200&_p=1719333981430&gcd=13l3l3l3l1&npa=0&dma=0&tag_exp=0&cid=1598397677.1719333966&ul=en-us&sr=1280x720&frm=0&pscdl=noapi&_s=1&sid=1719333965&sct=1&seg=1&dl=https%3A%2F%2Funmineable.com%2Faddress%2FTScmMemZier9zmbgmik395DreowgQT8o9v%3Fcoin%3DUSDT&dt=unMineable%20-%20Earn%20your%20favorite%20crypto%20coins!&en=page_view&_ee=1&tfd=864&_z=fetch

Request

POST /g/collect?v=2&tid=G-63JB9SJL7C&gtm=45je46j0v889667769za200&_p=1719333981430&gcd=13l3l3l3l1&npa=0&dma=0&tag_exp=0&cid=1598397677.1719333966&ul=en-us&sr=1280x720&frm=0&pscdl=noapi&_s=1&sid=1719333965&sct=1&seg=1&dl=https%3A%2F%2Funmineable.com%2Faddress%2FTScmMemZier9zmbgmik395DreowgQT8o9v%3Fcoin%3DUSDT&dt=unMineable%20-%20Earn%20your%20favorite%20crypto%20coins!&en=page_view&_ee=1&tfd=864&_z=fetch HTTP/2.0
host: region1.google-analytics.com
accept: */*
origin: https://unmineable.com
referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
content-length: 0
cache-control: no-cache

Response

HTTP/2.0 204

access-control-allow-origin: https://unmineable.com
date: Tue, 25 Jun 2024 16:46:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.unmineable.com/img/logos/USDT.png?v2

Request

GET /img/logos/USDT.png?v2 HTTP/2.0
host: www.unmineable.com
accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
accept-encoding: gzip, deflate, br
cookie: _ga_63JB9SJL7C=GS1.1.1719333965.1.1.1719333981.0.0.0; _ga=GA1.1.1598397677.1719333966

Response

HTTP/2.0 200

date: Tue, 25 Jun 2024 16:46:23 GMT
content-type: image/png
content-length: 1056
last-modified: Fri, 17 Jun 2022 19:15:14 GMT
etag: "62acd2c2-420"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: HIT
age: 4896
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0uMFGvGhMG5bePTGfd59br0Kf35UiDdd6%2B4CPKHsga6NpHsNpGcun9MDOoOyNeaoiUx7J0o8ClqfG50PT9c4F07g1CWMB8cqzhOpkTR7NenIePqeZ%2FILYQK%2F8SaORNb2JE70loE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89966ef46ae36373-LHR
alt-svc: h3=":443"; ma=86400
GET

https://api.unminable.com/v3/site/version

Request

GET /v3/site/version HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.unminable.com
If-None-Match: "20-V8Ky/A5VU1K1PSLZXXJ0dZsmZmw"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:23 GMT
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: "20-V8Ky/A5VU1K1PSLZXXJ0dZsmZmw"
GET

https://api.unminable.com/v5/pool

Request

GET /v5/pool HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.unminable.com
If-None-Match: W/"63c-hR98pYoewq7sYA60ySGv0ll2FWI"
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:23 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: W/"63c-ODzVBrzIE5YSbz0TWppT2oXl9wQ"
Content-Encoding: gzip
GET

https://api.unminable.com/v3/site/version

Request

GET /v3/site/version HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.unminable.com
If-None-Match: "20-V8Ky/A5VU1K1PSLZXXJ0dZsmZmw"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:23 GMT
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: "20-V8Ky/A5VU1K1PSLZXXJ0dZsmZmw"
DNS

api.support.unmineable.com

Request

api.support.unmineable.com

IN A

Response

api.support.unmineable.com

IN A

46.101.94.94
DNS

api.support.unmineable.com

Request

api.support.unmineable.com

IN A
GET

https://api.unminable.com/v5/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT

Request

GET /v5/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.unminable.com
If-None-Match: W/"723-ANeI9sW0o5n8jn6HK25CDBjQkew"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:24 GMT
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: "723-ANeI9sW0o5n8jn6HK25CDBjQkew"
GET

https://api.support.unmineable.com/v4/notice?coin=USDT&count=4&skip=0

Request

GET /v4/notice?coin=USDT&count=4&skip=0 HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.support.unmineable.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 25 Jun 2024 16:46:24 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: W/"990-JR+0wXlaSxzEgakRDzuRAbz3i6I"
Content-Encoding: gzip
GET

https://api.unminable.com/v5/pool

Request

GET /v5/pool HTTP/1.1
Origin: https://unmineable.com
Referer: https://unmineable.com/address/TScmMemZier9zmbgmik395DreowgQT8o9v?coin=USDT
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edge/15.15063
Accept: application/json, text/plain, */*
Accept-Encoding: gzip, deflate, br
Host: api.unminable.com
If-None-Match: W/"63c-ODzVBrzIE5YSbz0TWppT2oXl9wQ"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Server: nginx/1.19.7
Date: Tue, 25 Jun 2024 16:46:24 GMT
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://unmineable.com
ETag: "63c-ODzVBrzIE5YSbz0TWppT2oXl9wQ"
DNS

171.101.63.23.in-addr.arpa

Request

171.101.63.23.in-addr.arpa

IN PTR

Response

171.101.63.23.in-addr.arpa

IN PTR

a23-63-101-171deploystaticakamaitechnologiescom
DNS

171.101.63.23.in-addr.arpa

Request

171.101.63.23.in-addr.arpa

IN PTR
DNS

171.101.63.23.in-addr.arpa

Request

171.101.63.23.in-addr.arpa

IN PTR
DNS

171.101.63.23.in-addr.arpa

Request

171.101.63.23.in-addr.arpa

IN PTR
DNS

watson.telemetry.microsoft.com

Request

watson.telemetry.microsoft.com

IN A

Response

watson.telemetry.microsoft.com

IN CNAME

blobcollector.events.data.trafficmanager.net

blobcollector.events.data.trafficmanager.net

IN CNAME

onedsblobprdwus16.westus.cloudapp.azure.com

onedsblobprdwus16.westus.cloudapp.azure.com

IN A

20.189.173.21
DNS

watson.telemetry.microsoft.com

Request

watson.telemetry.microsoft.com

IN A

Response

watson.telemetry.microsoft.com

IN CNAME

blobcollector.events.data.trafficmanager.net

blobcollector.events.data.trafficmanager.net

IN CNAME

onedsblobprdeus17.eastus.cloudapp.azure.com

onedsblobprdeus17.eastus.cloudapp.azure.com

IN A

20.42.65.92
POST

https://watson.telemetry.microsoft.com/Telemetry.Request

Request

POST /Telemetry.Request HTTP/1.1
Connection: Keep-Alive
User-Agent: MSDW
MSA_DeviceTicket: t=EwC4AlN5BAAUIUShNzVa+rgHy/M+tY/dQyCg+nEAAS+MJwYdKx7QU7OjdNUgsxcLNKzWu1h2d2HkHuyZygNTjC0A2MsUxtvfpcSz1M6vVe3XjUmbYhnDMjIVUGEpryKHBr6v45kXtT++qIeJoIu5WRWXrbzqgevpkmjKThEYX7eMGk9m2dMeOEbxm1ZYeJd7Sqr52VFjR7aDDbKtJ2tJcdYJfTCR2kqYZDk15XAL+omE+xlBQ+RmWviz9cDEMrzYUfhGggGsBlcqF7mPBmi9fx2zoDZSKweU5gUo2/NIla9giNMoKZKcrZAu3oV1i1XGTfMK4RcsXpfySn61A1uuu6i5jiErogYDSWXxsFpMcoFx1BU98nkAg/jcb2oAVwgDZgAACG89/ju9J0i2iAHdvWbzcIFd9EAG4SIp/pFoxNE5BoE2Amavv6vS+tFLuhBO6yltnCg2hPqbY0WvtmJBOKrvpXrxUL3KqyARcmW7X9GVGEhccNBe5A/Y23UqZlI116O2sb9791m/+4AmpNnJCziwL1TziqqF+woSuDLLhWwq2ldwUE/16flAXYi90U0KOK1jjnnmEjFZWGUKaL2X6ygzz0MSBQpzYHzFqvW/O2p/C0A9HRhPfAdTvhy/Bw6rnYED+1hOVJQi9BR5pjKRGKbVXE5DQ3TNL69qNn1gdnUW5SI5cQLck5a/ilEhBeq/3EqxqY6bMs4ER4mN/Y4v+2m0N53jfgSJfhxY8CSr4ibBSJz3zM0thKp1J1RoOq9OAW3iF89NIEpAyuuMGp7JO7dmUR8uIZT/vIA6OXINM2wD7duuXr/9ZoQyDVMRaA9WgCriWNmpkIJBOXPS3aqnSLX8xbVeYBEIsaeygDCpKogRD1y5i92TJuUslgcQLPEIux+Zw4ppGRfXc/gwAtEN78ehtz92SLgB&p=
AAD_TenantId: (null)
Content-Length: 4626
Host: watson.telemetry.microsoft.com

Response

HTTP/1.1 200 200 OK

Content-Length: 1149
Content-Type: text/xml
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
Date: Tue, 25 Jun 2024 16:46:27 GMT
POST

https://watson.telemetry.microsoft.com/Telemetry.Request

Request

POST /Telemetry.Request HTTP/1.1
Connection: Keep-Alive
User-Agent: MSDW
MSA_DeviceTicket: t=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&p=
AAD_TenantId: (null)
Content-Length: 321949
Host: watson.telemetry.microsoft.com

Response

HTTP/1.1 200 200 OK

Content-Length: 854
Content-Type: text/xml
Server: Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age=31536000
Date: Tue, 25 Jun 2024 16:46:30 GMT
DNS

beacons.gcp.gvt2.com

Request

beacons.gcp.gvt2.com

IN A

Response

beacons.gcp.gvt2.com

IN CNAME

beacons-handoff.gcp.gvt2.com

beacons-handoff.gcp.gvt2.com

IN A

216.58.213.3
DNS

beacons.gcp.gvt2.com

Request

beacons.gcp.gvt2.com

IN A

Response

beacons.gcp.gvt2.com

IN CNAME

beacons-handoff.gcp.gvt2.com

beacons-handoff.gcp.gvt2.com

IN A

216.58.213.3
DNS

beacons.gcp.gvt2.com

Request

beacons.gcp.gvt2.com

IN A

Response

beacons.gcp.gvt2.com

IN CNAME

beacons-handoff.gcp.gvt2.com

beacons-handoff.gcp.gvt2.com

IN A

216.58.213.3
DNS

beacons.gcp.gvt2.com

Request

beacons.gcp.gvt2.com

IN A

Response

beacons.gcp.gvt2.com

IN CNAME

beacons-handoff.gcp.gvt2.com

beacons-handoff.gcp.gvt2.com

IN A

216.58.213.3
DNS

beacons.gcp.gvt2.com

Request

beacons.gcp.gvt2.com

IN A

Response

beacons.gcp.gvt2.com

IN CNAME

beacons-handoff.gcp.gvt2.com

beacons-handoff.gcp.gvt2.com

IN A

216.58.213.3
DNS

beacons.gcp.gvt2.com

Request

beacons.gcp.gvt2.com

IN A

Response

beacons.gcp.gvt2.com

IN CNAME

beacons-handoff.gcp.gvt2.com

beacons-handoff.gcp.gvt2.com

IN A

216.58.213.3

20.26.156.215:443

github.com

tls, http2

MicrosoftEdgeCP.exe

1.1kB
5.1kB
12
9
172.64.149.23:80

http://crl.comodoca.com/AAACertificateServices.crl

http

MicrosoftEdgeCP.exe

602 B
1.3kB
7
4

HTTP Request

GET http://crl.comodoca.com/AAACertificateServices.crl

HTTP Response

200
204.79.197.203:443

https://www.msn.com/bundles/v1/edge/latest/manifest.appcache?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default

tls, http2

MicrosoftEdgeCP.exe

10.0kB
150.9kB
151
150

HTTP Request

GET https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default

HTTP Response

200

HTTP Request

GET https://www.msn.com/bundles/v1/edge/latest/manifest.appcache?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default

HTTP Response

200

HTTP Request

GET https://www.msn.com/spartan/ntp?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default

HTTP Response

200

HTTP Request

GET https://www.msn.com/bundles/v1/edge/latest/manifest.appcache?locale=en-US&market=US&enableregulatorypsm=0&enablecpsm=0&ishostisolationenforced=0&targetexperience=default

HTTP Response

200
204.79.197.203:443

www.msn.com

tls, http2

MicrosoftEdgeCP.exe

1.2kB
6.9kB
16
14
23.62.61.194:443

www.bing.com

tls, http2

MicrosoftEdgeCP.exe

1.2kB
6.0kB
17
16
23.62.61.194:443

https://www.bing.com/AS/IEOneBox/xls.aspx

tls, http2

MicrosoftEdgeCP.exe

94.6kB
249.5kB
377
332

HTTP Request

GET https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US

HTTP Response

200

HTTP Request

GET https://www.bing.com/rb/19/cir3,ortl,cc,nc/LnOYYBJP0qbrvbM8Vd1L9Iyk0wM.css?bu=C8oIhQP7A6IJiwj1B6oGWVmZBFk

HTTP Request

GET https://www.bing.com/rb/19/cir3,ortl,cc,nc/XxqYiyTu9Zkh9t7nVvBNsDKSLlQ.css?bu=BrcCP54CTFm5Ag

HTTP Request

GET https://www.bing.com/rb/3D/ortl,cc,nc/4-xJy3tX6bM2BGl5zKioiEcQ1TU.css?bu=A4gCjAKPAg

HTTP Request

GET https://www.bing.com/rb/4M/jnc,nj/0VZs9c95FAldbs0y9e3RnXknk6g.js?bu=D48s0SqbAuEq4yrlKucqjCuWLOErgCrgEforgCi-Kw

HTTP Request

GET https://www.bing.com/rp/lZfFRIZsGLf3poBW6xAz2KFILkI.gz.js

HTTP Request

GET https://www.bing.com/rp/6wzJBpbyuAoCS5bfkKiW0Aw2R6o.gz.js

HTTP Request

GET https://www.bing.com/rp/DicRs1X5x7sMwnmwcxBuO2kpGeI.gz.js

HTTP Request

GET https://www.bing.com/rp/L3qgZ2pA6whKnPPHkQnZ2_d8WVo.gz.js

HTTP Request

GET https://www.bing.com/rp/IOwhK4uDW4Sh2EVXk1BBw5OkHPY.gz.js

HTTP Request

GET https://www.bing.com/rp/dcb-PwRbjINh_Wg-9pEP8tD_qO4.gz.js

HTTP Request

GET https://www.bing.com/rp/t4xaeuTBmu-Lp_KEbPyZVrfX8yw.gz.js

HTTP Request

GET https://www.bing.com/rp/7DRnJ-ywpuG7tVaukb2LDibhBUg.gz.js

HTTP Request

GET https://www.bing.com/rp/ss3d0sJoMnwEPabtwPxYd3-17LU.gz.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/manifest/IEOneBox_V2.appcache?setlang=en-US

HTTP Request

GET https://www.bing.com/rp/-io-xMNCwasGqLymZ_-Hy1lHlTU.gz.js

HTTP Request

GET https://www.bing.com/rp/WAAHGo-kP0xCDM16LGm9-alzHb8.gz.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Request

GET https://www.bing.com/AS/API/IEOneBox/V2/Suggestions?qry=google.&cc=US&setlang=en-US&cp=7&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=2e3d510377654357980cc4b487f513af

HTTP Request

GET https://www.bing.com/AS/API/IEOneBox/V2/Init?setlang=en-US

HTTP Response

404

HTTP Response

200

HTTP Response

404

HTTP Request

GET https://www.bing.com/AS/API/IEOneBox/V2/Suggestions?qry=google.c&cc=US&setlang=en-US&cp=8&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=c25e22f466e64cab9f61566ede68bb42

HTTP Request

GET https://www.bing.com/AS/API/IEOneBox/V2/Suggestions?qry=google.co&cc=US&setlang=en-US&cp=9&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=65b588600b124e08be1e189107a37a38

HTTP Request

GET https://www.bing.com/AS/API/IEOneBox/V2/Suggestions?qry=google.com&cc=US&setlang=en-US&cp=10&cvid=4e0dd97111fc4930a0512c4f863fe750&ig=71aec477872d43a0b80a23b2cf502d11

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404

HTTP Request

POST https://www.bing.com/AS/IEOneBox/xls.aspx

HTTP Response

404
23.62.61.194:443

www.bing.com

tls, http2

MicrosoftEdgeCP.exe

1.4kB
4.8kB
17
14
23.62.61.194:443

https://www.bing.com/partner/warmup.gif

tls, http2

MicrosoftEdgeCP.exe

1.8kB
6.0kB
21
17

HTTP Request

GET https://www.bing.com/partner/warmup.gif

HTTP Response

200
2.21.96.65:443

https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/consent/55a804ab-e5c6-4b97-9319-86263d365d28/iab2V2Data.json

tls, http2

MicrosoftEdgeCP.exe

19.3kB
491.5kB
377
369

HTTP Request

GET https://assets.msn.com/bundles/v1/edge/latest/vendors.c47bf4f4981f23895ddb.js

HTTP Request

GET https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/scripttemplates/otSDKStub.js

HTTP Request

GET https://assets.msn.com/bundles/v1/edge/latest/microsoft.8aa91a5fe4f5d8517ae1.js

HTTP Request

GET https://assets.msn.com/bundles/v1/edge/latest/common.5dd7cff85de67632bfd7.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/consent/55a804ab-e5c6-4b97-9319-86263d365d28/55a804ab-e5c6-4b97-9319-86263d365d28.json

HTTP Response

200

HTTP Request

GET https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/scripttemplates/202310.2.0/otBannerSdk.js

HTTP Response

200

HTTP Request

GET https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/scripttemplates/202310.2.0/otTCF.js

HTTP Request

GET https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/consent/55a804ab-e5c6-4b97-9319-86263d365d28/e51556d4-5848-4a4b-a5e2-bc98431e1bf7/en-gb.json

HTTP Request

GET https://assets.msn.com/staticsb/statics/latest/oneTrust/1.9/consent/55a804ab-e5c6-4b97-9319-86263d365d28/iab2V2Data.json

HTTP Response

200

HTTP Response

200

HTTP Response

200
2.21.96.65:443

assets.msn.com

tls, http2

MicrosoftEdgeCP.exe

1.1kB
4.6kB
15
13
2.21.96.65:443

assets.msn.com

tls, http2

MicrosoftEdgeCP.exe

1.1kB
4.6kB
15
13
2.21.96.65:443

assets.msn.com

tls, http2

MicrosoftEdgeCP.exe

1.1kB
4.6kB
15
14
20.52.64.200:443

https://browser.events.data.msn.com/OneCollector/1.0?cors=true&content-type=application%2Fx-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-2.2.2&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1719332792000&w=0&anoncknm=app_anon

tls, http2

MicrosoftEdgeCP.exe

17.2kB
9.1kB
37
24

HTTP Request

POST https://browser.events.data.msn.com/OneCollector/1.0?cors=true&content-type=application%2Fx-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-2.2.2&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1719332792000&w=0&anoncknm=app_anon

HTTP Response

200

HTTP Request

POST https://browser.events.data.msn.com/OneCollector/1.0?cors=true&content-type=application%2Fx-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-2.2.2&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1719332792000&w=0&anoncknm=app_anon

HTTP Response

200

HTTP Request

POST https://browser.events.data.msn.com/OneCollector/1.0?cors=true&content-type=application%2Fx-json-stream&client-id=NO_AUTH&client-version=1DS-Web-JS-2.2.2&apikey=0ded60c75e44443aa3484c42c1c43fe8-9fc57d3f-fdac-4bcf-b927-75eafe60192e-7279&upload-time=1719332792000&w=0&anoncknm=app_anon

HTTP Response

200
20.52.64.200:443

browser.events.data.msn.com

tls, http2

MicrosoftEdgeCP.exe

1.2kB
6.9kB
16
12
204.79.197.203:443

www.msn.com

tls, http2

MicrosoftEdge.exe

1.3kB
6.9kB
14
14
204.79.197.203:443

https://www.msn.com/favicon.ico

tls, http2

MicrosoftEdge.exe

1.6kB
8.8kB
17
16

HTTP Request

GET https://www.msn.com/favicon.ico

HTTP Response

200
142.250.187.196:80

http://www.google.com/

http

MicrosoftEdgeCP.exe

643 B
1.1kB
7
4

HTTP Request

GET http://www.google.com/

HTTP Response

302
142.250.187.196:80

www.google.com

MicrosoftEdgeCP.exe

236 B
92 B
5
2
142.250.187.196:443

https://www.google.com/gen_204?atyp=i&ct=psnt&cad=&nt=navigate&ei=uu96Zq2yNYLBhbIP2eOd8As&zx=1719332795787&opi=89978449

tls, http2

MicrosoftEdgeCP.exe

11.5kB
238.7kB
203
195

HTTP Request

GET https://www.google.com/?gws_rd=ssl

HTTP Response

200

HTTP Request

GET https://www.google.com/images/branding/googlelogo/1x/googlelogo_white_background_color_272x92dp.png

HTTP Request

GET https://www.google.com/xjs/_/ss/k=xjs.hp.frVVdfaDVpE.L.W.O/am=AQAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQACAQAAAAAAAAAgAAAAAAAABAAxA/d=1/ed=1/rs=ACT90oHkefDJ0fqTaV3k4PFElY4khx_7zQ/m=sb_he,d

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.google.com/client_204?&atyp=i&biw=800&bih=555&ei=uu96Zq2yNYLBhbIP2eOd8As&opi=89978449

HTTP Request

GET https://www.google.com/images/nav_logo229.png

HTTP Request

GET https://www.google.com/xjs/_/js/k=xjs.hp.en.Jd5h40X499A.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAAAAAAAIAAcAAAAAAAAAAAAAAB4AAAAAAAAAAAAAAAAAAAOxGcEAAKwCAAALw/d=1/ed=1/rs=ACT90oHBxkiWHuDsbZqroKH8vuU-3PA9Sg/m=sb_he,d

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.google.com/gen_204?atyp=i&ct=psnt&cad=&nt=navigate&ei=uu96Zq2yNYLBhbIP2eOd8As&zx=1719332795787&opi=89978449

HTTP Response

204
142.250.200.3:80

http://c.pki.goog/r/r1.crl

http

MicrosoftEdgeCP.exe

395 B
1.8kB
6
5

HTTP Request

GET http://c.pki.goog/r/r1.crl

HTTP Response

200
142.250.200.3:80

http://o.pki.goog/wr2/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEQDnTJ76UXaUrBBKliWHzurj

http

MicrosoftEdgeCP.exe

1.5kB
3.1kB
12
7

HTTP Request

GET http://o.pki.goog/wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEEl8TcEFiE%2BWEmblhZ5UF0Y%3D

HTTP Response

200

HTTP Request

GET http://o.pki.goog/wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEHoluFg8c2p6CT569vmSvZE%3D

HTTP Response

200

HTTP Request

GET http://o.pki.goog/wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEGoPtA5fYWOVCgzD4is3Bqg%3D

HTTP Response

200

HTTP Request

GET http://o.pki.goog/wr2/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEQDnTJ76UXaUrBBKliWHzurj

HTTP Response

200
142.250.187.196:443

https://www.google.com/favicon.ico

tls, http2

MicrosoftEdge.exe

2.1kB
8.9kB
23
18

HTTP Request

GET https://www.google.com/favicon.ico

HTTP Response

200
142.250.187.196:443

www.google.com

tls, http2

MicrosoftEdge.exe

1.3kB
4.9kB
15
11
172.217.16.227:443

ssl.gstatic.com

tls, http2

MicrosoftEdgeCP.exe

1.1kB
4.9kB
15
10
172.217.16.227:443

https://ssl.gstatic.com/gb/images/v1_ff29c1d8.png

tls, http2

MicrosoftEdgeCP.exe

3.5kB
65.1kB
61
54

HTTP Request

GET https://ssl.gstatic.com/gb/images/v1_ff29c1d8.png

HTTP Response

200
142.250.200.3:80

http://ocsp.pki.goog/gsr1/MFEwTzBNMEswSTAJBgUrDgMCGgUABBS3V7W2nAf4FiMTjpDJKg6%2BMgGqMQQUYHtmGkUNl8qJUC99BM00qP%2F8%2FUsCEHe9DWzbNvka6iEPxPBY0w0%3D

http

MicrosoftEdge.exe

515 B
1.9kB
6
5

HTTP Request

GET http://ocsp.pki.goog/gsr1/MFEwTzBNMEswSTAJBgUrDgMCGgUABBS3V7W2nAf4FiMTjpDJKg6%2BMgGqMQQUYHtmGkUNl8qJUC99BM00qP%2F8%2FUsCEHe9DWzbNvka6iEPxPBY0w0%3D

HTTP Response

200
142.250.200.3:80

http://c.pki.goog/r/r1.crl

http

MicrosoftEdge.exe

395 B
1.8kB
6
5

HTTP Request

GET http://c.pki.goog/r/r1.crl

HTTP Response

200
216.58.213.14:443

https://clients1.google.com/generate_204

tls, http2

MicrosoftEdgeCP.exe

2.5kB
7.6kB
19
13

HTTP Request

GET https://clients1.google.com/generate_204

HTTP Response

204
216.58.213.14:443

clients1.google.com

tls, http2

MicrosoftEdgeCP.exe

1.4kB
7.5kB
18
12
142.250.200.3:80

http://o.pki.goog/wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEEl8TcEFiE%2BWEmblhZ5UF0Y%3D

http

MicrosoftEdge.exe

565 B
1.6kB
7
5

HTTP Request

GET http://o.pki.goog/wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEEl8TcEFiE%2BWEmblhZ5UF0Y%3D

HTTP Response

200
142.250.187.206:443

apis.google.com

tls, http2

MicrosoftEdgeCP.exe

1.1kB
4.9kB
15
10
142.250.187.206:443

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.iZZZ0XsR8bM.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAQ/rs=AHpOoo_0-97nH_2IxP0suYF105-PdJv4zg/cb=gapi.loaded_0

tls, http2

MicrosoftEdgeCP.exe

3.3kB
50.2kB
50
44

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.iZZZ0XsR8bM.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAQ/rs=AHpOoo_0-97nH_2IxP0suYF105-PdJv4zg/cb=gapi.loaded_0

HTTP Response

200
204.79.197.200:443

ieonline.microsoft.com

tls, http2

MicrosoftEdge.exe

1.2kB
8.3kB
16
16
23.62.61.194:443

https://www.bing.com/cortanaassist/rules?cc=US&version=6

tls, http2

MicrosoftEdge.exe

3.8kB
64.4kB
62
59

HTTP Request

GET https://www.bing.com/cortanaassist/rules?cc=US&version=6

HTTP Response

404
23.62.61.194:443

www.bing.com

tls, http2

MicrosoftEdge.exe

1.4kB
4.9kB
17
15
142.250.187.196:443

https://www.google.com/async/newtab_promos

tls, http2

chrome.exe

3.3kB
45.0kB
47
46

HTTP Request

GET https://www.google.com/async/ddljson?async=ntp:2

HTTP Request

GET https://www.google.com/async/newtab_ogb?hl=en-US&async=fixed:0

HTTP Request

GET https://www.google.com/async/newtab_promos
142.250.187.206:443

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.iZZZ0XsR8bM.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAQ/rs=AHpOoo_0-97nH_2IxP0suYF105-PdJv4zg/cb=gapi.loaded_0

tls, http2

chrome.exe

3.1kB
50.9kB
41
45

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.iZZZ0XsR8bM.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAQ/rs=AHpOoo_0-97nH_2IxP0suYF105-PdJv4zg/cb=gapi.loaded_0
142.250.200.46:443

https://play.google.com/log?format=json&hasfast=true

tls, http2

chrome.exe

3.0kB
9.2kB
19
20

HTTP Request

POST https://play.google.com/log?format=json&hasfast=true
216.58.213.14:443

https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=106.0.5249.119&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D1.0.0.6%26installsource%3Dnotfromwebstore%26installedby%3Dother%26uc%26ping%3Dr%253D82%2526e%253D1

tls, http2

chrome.exe

2.2kB
9.7kB
20
21

HTTP Request

GET https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=106.0.5249.119&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D1.0.0.6%26installsource%3Dnotfromwebstore%26installedby%3Dother%26uc%26ping%3Dr%253D82%2526e%253D1
172.217.169.14:443

https://accounts.youtube.com/accounts/CheckConnection?pmpo=https%3A%2F%2Faccounts.google.com&v=780510026&timestamp=1719333225238

tls, http2

chrome.exe

3.8kB
40.4kB
41
46

HTTP Request

GET https://ogs.google.com/widget/app/so?eom=1&awwd=1&gm3=1&origin=chrome-untrusted%3A%2F%2Fnew-tab-page&origin=chrome%3A%2F%2Fnew-tab-page&cn=app&pid=1&spid=243&hl=en

HTTP Request

GET https://accounts.youtube.com/accounts/CheckConnection?pmpo=https%3A%2F%2Faccounts.google.com&v=780510026&timestamp=1719333225238
172.217.16.227:443

https://ssl.gstatic.com/gb/images/sprites/p_2x_eb7895ba582f.png

tls, http2

chrome.exe

4.7kB
153.8kB
78
121

HTTP Request

GET https://ssl.gstatic.com/gb/images/sprites/p_2x_eb7895ba582f.png
209.85.203.84:443

https://accounts.google.com/ServiceLogin?hl=en&continue=https://www.google.com/search?q%3Dunmineable%26oq%3Dunmineable%26aqs%3Dchrome..69i57.5894j0j7%26sourceid%3Dchrome%26ie%3DUTF-8&gae=cb-none

tls, http2

chrome.exe

2.6kB
7.6kB
19
19

HTTP Request

GET https://accounts.google.com/ServiceLogin?hl=en&continue=https://www.google.com/search?q%3Dunmineable%26oq%3Dunmineable%26aqs%3Dchrome..69i57.5894j0j7%26sourceid%3Dchrome%26ie%3DUTF-8&gae=cb-none
216.58.212.234:443

https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA2LjAuNTI0OS4xMTkSHgmA6QC9dWevzxIFDRkBE_oSBQ3oIX6GEgUN05ioBw==?alt=proto

tls, http2

chrome.exe

2.0kB
6.9kB
18
18

HTTP Request

GET https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA2LjAuNTI0OS4xMTkSHgmA6QC9dWevzxIFDRkBE_oSBQ3oIX6GEgUN05ioBw==?alt=proto
104.21.58.4:443

https://mm-watch.com/

tls, http2

chrome.exe

2.2kB
17.8kB
22
23

HTTP Request

GET https://mm-watch.com/

HTTP Response

200
104.21.58.4:443

mm-watch.com

tls

chrome.exe

943 B
3.9kB
8
6
23.63.101.153:80

http://apps.identrust.com/roots/dstrootcax3.p7c

http

chrome.exe

416 B
1.6kB
6
5

HTTP Request

GET http://apps.identrust.com/roots/dstrootcax3.p7c

HTTP Response

200
172.67.184.158:443

https://fonts.cdnfonts.com/css/glacial-indifference-2

tls, http2

chrome.exe

1.8kB
6.1kB
15
15

HTTP Request

GET https://fonts.cdnfonts.com/css/glacial-indifference-2

HTTP Response

200
104.17.24.14:443

https://cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js

tls, http2

chrome.exe

2.2kB
20.3kB
25
28

HTTP Request

GET https://cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js

HTTP Response

200
104.17.2.184:443

https://challenges.cloudflare.com/turnstile/v0/api.js?render=explicit

tls, http2

chrome.exe

1.7kB
3.4kB
13
11

HTTP Request

GET https://challenges.cloudflare.com/turnstile/v0/api.js?render=explicit

HTTP Response

302
104.21.58.4:443

https://mm-watch.com/manifest.json

tls, http2

chrome.exe

2.5kB
15.1kB
26
32

HTTP Request

GET https://analytics.mm-watch.com/dragbetween?date=1719333264474

HTTP Response

200

HTTP Request

GET https://api.mm-watch.com/home?timestamp=1719333264911

HTTP Response

200

HTTP Request

GET https://mm-watch.com/manifest.json

HTTP Response

200
151.101.130.132:443

https://player.ex.co/player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84

tls, http2

chrome.exe

6.5kB
192.7kB
102
157

HTTP Request

GET https://player.ex.co/player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84

HTTP Response

200

HTTP Request

GET https://player.ex.co/player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84

HTTP Response

304

HTTP Request

GET https://player.ex.co/player/5a0b8982-0afb-4f7f-8ed1-6d6faeaf4f84

HTTP Response

304
46.8.152.2:443

clickiocmp.com

tls

chrome.exe

3.3kB
79.7kB
47
64
151.101.130.132:443

https://player.ex.co/config?sfid=001Qw000008BdCjIAK&nid=1919177790

tls, http2

chrome.exe

2.3kB
9.9kB
21
26

HTTP Request

GET https://player.ex.co/config?sfid=001Qw000008BdCjIAK&nid=1919177790

HTTP Response

200

HTTP Request

GET https://player.ex.co/config?sfid=001Qw000008BdCjIAK&nid=1919177790

HTTP Response

304

HTTP Request

GET https://player.ex.co/config?sfid=001Qw000008BdCjIAK&nid=1919177790

HTTP Response

304
95.211.66.35:443

up.clickiocdn.com

tls

chrome.exe

1.0kB
3.2kB
8
6
95.211.66.35:443

up.clickiocdn.com

tls

chrome.exe

2.9kB
4.6kB
17
18
46.8.152.14:443

cdn.clickiocdn.com

tls

chrome.exe

3.9kB
111.5kB
59
87
52.203.56.39:443

collector-1.ex.co

tls

chrome.exe

16.1kB
10.4kB
54
55
95.211.66.35:443

s.clickiocdn.com

tls

chrome.exe

2.3kB
21.1kB
25
25
199.232.197.91:443

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/thumbnail-360.webp

tls, http2

chrome.exe

23.2kB
588.6kB
351
499

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Request

GET https://cdn.ex.co/player/ap/p/4.55.1-bafb08d/player.js

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/sync/0.0.1-112537f/cookie_sync.html?network=368531133%2C1919177790&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/sync/0.0.1-112537f/sync-cfbf3e6c.js

HTTP Response

200

HTTP Response

403

HTTP Request

GET https://cdn.ex.co/player/hls/1.4.10-exco/hls.min.js

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Request

GET https://cdn.ex.co/player/pb/3.4.3/expb.js

HTTP Response

200

HTTP Request

GET https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

HTTP Response

403

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Request

GET https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

HTTP Response

403

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Request

GET https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

HTTP Response

403

HTTP Response

403

HTTP Response

403

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Response

403

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Response

403

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Response

403

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Response

403

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Request

GET https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/thumbnail-720.webp

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Request

GET https://cdn.ex.co/player/ap/4.55.1-efec738/player.js

HTTP Response

200

HTTP Request

GET https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

HTTP Response

403

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Request

GET https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

HTTP Response

403

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Request

GET https://large-cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/360p.mp4

HTTP Response

403

HTTP Request

GET https://cdn.ex.co/transformations/production/3c400638-914c-45d9-a074-ce711ffc1771/thumbnail-360.webp

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/thumbnail-360.webp

HTTP Response

200
199.232.197.91:443

cdn.ex.co

tls

chrome.exe

989 B
6.3kB
9
11
162.210.193.230:443

p.channelexco.com

tls

chrome.exe

4.1kB
34.2kB
32
39
3.232.71.25:443

sync.ex.co

tls

chrome.exe

140.0kB
37.1kB
174
146
2.21.188.239:443

ads.pubmatic.com

tls

chrome.exe

5.5kB
23.4kB
32
34
2.21.188.239:443

ads.pubmatic.com

tls

chrome.exe

1.1kB
4.5kB
9
8
23.60.223.190:443

https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=17136_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

3.8kB
6.1kB
19
22

HTTP Request

GET https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=17136&endpoint=us-east

HTTP Response

301

HTTP Request

GET https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=17136_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

301
172.64.151.101:443

https://r.casalemedia.com/rum?cm_dsp_id=64&external_user_id=686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&gdpr=0&gdpr_consent=

tls, http2

chrome.exe

2.7kB
6.9kB
19
16

HTTP Request

GET https://ssum-sec.casalemedia.com/usermatch?s=190719&cb=https%3A%2F%2Frtb.channelexco.com%2Fcookie_sync%3Fbid%3D12517%26srv%3Dchannelexco.com%26cuid%3Defbe3a6d-e5ed-450b-8e47-518e785e2592%26uid%3D

HTTP Response

302

HTTP Request

GET https://dsum-sec.casalemedia.com/rrum?ixi=1&cm_dsp_id=85&cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dbm%26google_cm%26google_sc%26google_hm%3D

HTTP Response

302

HTTP Request

GET https://dsum.casalemedia.com/crum?cm_dsp_id=191&external_user_id=ee4067c7-6a65-b9ff-686cc0f9

HTTP Response

200

HTTP Request

GET https://r.casalemedia.com/rum?cm_dsp_id=64&external_user_id=686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&gdpr=0&gdpr_consent=

HTTP Response

200
91.134.110.133:443

https://ssbsync-global.smartadserver.com/api/sync?callerId=35&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirectUri=sync.ex.co%2Fv1%2Fsetuid%2Fsmartadserver%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%5Bssb_sync_pid%5D

tls, http2

chrome.exe

3.2kB
8.6kB
16
17

HTTP Request

GET https://ssbsync.smartadserver.com/api/sync?callerId=35

HTTP Response

200

HTTP Request

GET https://ssbsync-global.smartadserver.com/api/sync?callerId=35&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirectUri=sync.ex.co%2Fv1%2Fsetuid%2Fsmartadserver%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%5Bssb_sync_pid%5D

HTTP Response

200
154.54.250.81:443

ads.stickyadstv.com

tls

chrome.exe

3.3kB
6.7kB
14
16
149.202.238.97:443

https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333279238&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

tls, http

chrome.exe

6.0kB
8.5kB
18
16

HTTP Request

GET https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333269149&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

HTTP Response

302

HTTP Request

GET https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333269149&pgdomain=https%3a%2f%2fmm-watch.com%2fcars%2fbcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0%2c1!playbuzz.com%2c001Qw000008BdCjIAK%2c1%2c%2c%2c&gdpr=0&cklb=1

HTTP Response

200

HTTP Request

GET https://www9.smartadserver.com/ac?siteid=218209&pgid=1426227&fmtid=63953&ab=1&tgt=&oc=1&out=vast4&ps=1&pb=0&visit=S&vcn=s&tmstp=1719333279238&pgdomain=https://mm-watch.com/cars/bcc05517-b144-4887-96b0-096eb352f7e1&vph=475&vpw=844&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&schain=1.0,1!playbuzz.com,001Qw000008BdCjIAK,1,,,&gdpr=0

HTTP Response

200
35.244.159.8:443

https://us-u.openx.net/w/1.0/sd?id=537072971&val=84daa6ca-0538-48d1-9010-ae8e49c9a74c&ttd_puid=da8c16cf-c237-363c-4695-02b4590558f3&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

4.9kB
7.3kB
27
33

HTTP Request

GET https://u.openx.net/w/1.0/cm?id=f0686912-7fb3-48f6-be19-4d168ad880c0&r=https%3A%2F%2Frtb.channelexco.com%2Fcookie_sync%3Fbid%3D13005%26srv%3Dchannelexco.com%26cuid%3Defbe3a6d-e5ed-450b-8e47-518e785e2592%26uid%3D

HTTP Request

GET https://playbuzzltd-d.openx.net/w/1.0/pd?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Request

GET https://eu-u.openx.net/w/1.0/sd?id=537113484&val=6640692441033083723&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Request

GET https://us-u.openx.net/w/1.0/sd?id=537072956&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&val=45dKpbOQRPP4lE395pVQ9O2QSvH4lEj848U1iFe8

HTTP Request

GET https://us-u.openx.net/w/1.0/sd?id=537072971&val=84daa6ca-0538-48d1-9010-ae8e49c9a74c&ttd_puid=da8c16cf-c237-363c-4695-02b4590558f3&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
37.252.171.21:443

secure.adnxs.com

tls

chrome.exe

3.3kB
8.6kB
18
17
63.33.236.25:443

https://ap.lijit.com/pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fsync.ex.co%2Fv1%2Fsetuid%2Fsovrn%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%24UID

tls, http2

chrome.exe

4.1kB
7.5kB
22
24

HTTP Request

GET https://ap.lijit.com/pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Frtb.channelexco.com%2Fcookie_sync%3Fbid%3D8197%26srv%3Dchannelexco.com%26cuid%3Defbe3a6d-e5ed-450b-8e47-518e785e2592%26uid%3D%24UID

HTTP Response

204

HTTP Request

GET https://ap.lijit.com/pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fsync.ex.co%2Fv1%2Fsetuid%2Fsovrn%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%24UID

HTTP Response

204

HTTP Request

GET https://ap.lijit.com/pixel?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fsync.ex.co%2Fv1%2Fsetuid%2Fsovrn%2F%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26uid%3D%24UID

HTTP Response

204
2.23.9.250:443

https://eus.rubiconproject.com/usync.html?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http

chrome.exe

8.7kB
18.6kB
27
27

HTTP Request

GET https://eus.rubiconproject.com/usync.html?p=17136&endpoint=us-east

HTTP Response

200

HTTP Request

GET https://eus.rubiconproject.com/usync.js

HTTP Response

200

HTTP Request

GET https://eus.rubiconproject.com/usync.html?p=17136_2&endpoint=us-east&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://eus.rubiconproject.com/usync.html?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200
52.223.40.198:443

match.adsrvr.org

tls

chrome.exe

12.8kB
32.9kB
61
66
52.49.45.15:443

id.crwdcntrl.net

tls

chrome.exe

2.3kB
7.4kB
15
18
35.227.252.103:443

https://rtb.openx.net/openrtbb/prebidjs

tls, http2

chrome.exe

4.2kB
5.5kB
18
18

HTTP Request

POST https://rtb.openx.net/openrtbb/prebidjs
34.120.63.153:443

https://prebid.media.net/rtb/prebid?cid=8CUB64530

tls, http2

chrome.exe

5.2kB
7.6kB
20
19

HTTP Request

POST https://prebid.media.net/rtb/prebid?cid=8CUB64530
34.120.133.55:443

https://api.rlcdn.com/api/identity/envelope?pid=13963&ct=1&cv=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

2.3kB
7.7kB
16
16

HTTP Request

GET https://api.rlcdn.com/api/identity/envelope?pid=13963&ct=1&cv=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
54.217.164.78:443

ads.yieldmo.com

tls

chrome.exe

22.3kB
19.7kB
66
59
5.196.111.64:443

https://prg.smartadserver.com/prebid/v1

tls, http

chrome.exe

5.4kB
8.9kB
16
17

HTTP Request

POST https://prg.smartadserver.com/prebid/v1

HTTP Response

200

HTTP Request

POST https://prg.smartadserver.com/prebid/v1

HTTP Response

200
69.173.156.150:443

https://prebid-server.rubiconproject.com/openrtb2/auction

tls, http

chrome.exe

44.9kB
10.5kB
55
44

HTTP Request

POST https://prebid-server.rubiconproject.com/openrtb2/auction

HTTP Response

200

HTTP Request

POST https://prebid-server.rubiconproject.com/openrtb2/auction

HTTP Response

200

HTTP Request

POST https://prebid-server.rubiconproject.com/openrtb2/auction

HTTP Response

200

HTTP Request

POST https://prebid-server.rubiconproject.com/openrtb2/auction

HTTP Response

200

HTTP Request

POST https://prebid-server.rubiconproject.com/openrtb2/auction

HTTP Response

200

HTTP Request

POST https://prebid-server.rubiconproject.com/openrtb2/auction

HTTP Response

200

HTTP Request

POST https://prebid-server.rubiconproject.com/openrtb2/auction

HTTP Response

200

HTTP Request

POST https://prebid-server.rubiconproject.com/openrtb2/auction

HTTP Response

200

HTTP Request

POST https://prebid-server.rubiconproject.com/openrtb2/auction

HTTP Response

200
178.250.1.8:443

https://bidder.criteo.com/csm/events

tls, http2

chrome.exe

8.3kB
5.6kB
24
22

HTTP Request

POST https://bidder.criteo.com/cdb?profileId=207&av=36&wv=8.27.0&cb=60021215696&lsavail=0

HTTP Response

204

HTTP Request

POST https://bidder.criteo.com/cdb?ptv=139&profileId=185&av=36&wv=8.27.0&cb=40843460864

HTTP Response

204

HTTP Request

POST https://bidder.criteo.com/csm/events

HTTP Response

204
52.57.224.82:443

btlr.sharethrough.com

tls

chrome.exe

3.9kB
7.6kB
16
20
52.212.11.67:443

https://ad.360yield-basic.com/pb

tls, http2

chrome.exe

23.9kB
9.4kB
53
44

HTTP Request

POST https://ad.360yield-basic.com/pb

HTTP Response

204

HTTP Request

POST https://ad.360yield-basic.com/pb

HTTP Response

204

HTTP Request

POST https://ad.360yield-basic.com/pb

HTTP Response

204

HTTP Request

POST https://ad.360yield-basic.com/pb

HTTP Response

204

HTTP Request

POST https://ad.360yield-basic.com/pb

HTTP Response

204

HTTP Request

POST https://ad.360yield-basic.com/pb

HTTP Response

204

HTTP Request

POST https://ad.360yield-basic.com/pb

HTTP Response

204

HTTP Request

POST https://ad.360yield-basic.com/pb

HTTP Response

204

HTTP Request

POST https://ad.360yield-basic.com/pb

HTTP Response

204
34.234.127.232:443

i.liadm.com

tls

chrome.exe

2.7kB
6.5kB
14
13
52.46.151.131:443

https://s.amazon-adsystem.com/dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http

chrome.exe

9.5kB
13.3kB
29
28

HTTP Request

GET https://s.amazon-adsystem.com/dcm?pid=78af914c-e755-4b90-bded-1b172aedc763&us_privacy=&gdpr=&gdpr_consent=&id=ZnrxlrmqPq8AAFKyAdC9GwAAETMAAAAB&gpp=&gpp_sid=

HTTP Response

302

HTTP Request

GET https://s.amazon-adsystem.com/dcm?pid=78af914c-e755-4b90-bded-1b172aedc763&us_privacy=&gdpr=&gdpr_consent=&id=ZnrxlrmqPq8AAFKyAdC9GwAAETMAAAAB&gpp=&gpp_sid=&dcc=t

HTTP Response

200

HTTP Request

GET https://s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302

HTTP Request

GET https://s.amazon-adsystem.com/ecm3?id=LXUMMYH8-18-IISD&ex=d-rubiconproject.com&status=ok&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://s.amazon-adsystem.com/ecm3?ex=rubiconprojectHMT&id=-aiq0gcVS-CVYUVZDwpb0A&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://s.amazon-adsystem.com/dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://s.amazon-adsystem.com/dcm?pid=72348060-38ad-4586-8e4f-f1e2a8e789b3&id=4052082643997295311&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200
52.223.40.198:443

match.adsrvr.org

tls

chrome.exe

747 B
132 B
5
3
23.81.164.159:443

rtb.channelexco.com

tls, http2

chrome.exe

1.0kB
4.6kB
10
9
23.81.164.159:443

https://rtb.channelexco.com/cookie_sync?bid=20543&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=6F33541D-0234-4D12-A971-323BE606F1A8

tls, http2

chrome.exe

3.6kB
6.9kB
25
24

HTTP Request

GET https://rtb.channelexco.com/cookie_sync?bid=19349&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=8159859772855155319

HTTP Request

GET https://rtb.channelexco.com/cookie_sync?bid=12517&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=ZnrxlrmqPq8AAFKyAdC9GwAA%264403

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://rtb.channelexco.com/cookie_sync?bid=12295&srv=channelexco.com&uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

204

HTTP Request

GET https://rtb.channelexco.com/cookie_sync?bid=20543&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=6F33541D-0234-4D12-A971-323BE606F1A8

HTTP Response

204

HTTP Request

GET https://rtb.channelexco.com/cookie_sync?bid=20543&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=6F33541D-0234-4D12-A971-323BE606F1A8

HTTP Response

204

HTTP Request

GET https://rtb.channelexco.com/cookie_sync?bid=20543&srv=channelexco.com&cuid=efbe3a6d-e5ed-450b-8e47-518e785e2592&uid=6F33541D-0234-4D12-A971-323BE606F1A8

HTTP Response

204
34.160.19.107:443

https://dmp.brand-display.com/cm/api/index?cm_dsp_id=191&cm_user_id=%3cIndex_user_id%3e

tls, http2

chrome.exe

2.0kB
6.2kB
17
18

HTTP Request

GET https://dmp.brand-display.com/cm/api/index?cm_dsp_id=191&cm_user_id=%3cIndex_user_id%3e
35.208.249.213:443

https://trace.mediago.io/ju/cs/indexexchange

tls, http2

chrome.exe

1.9kB
5.3kB
16
16

HTTP Request

GET https://trace.mediago.io/ju/cs/indexexchange
151.101.130.49:443

sync-tm.everesttech.net

tls

chrome.exe

5.0kB
8.7kB
27
30
23.19.226.132:443

e.channelexco.com

tls

chrome.exe

13.4kB
8.5kB
48
34
34.95.81.168:443

https://euexchangesync.digitaleast.mobi/usersync/index.gif?us_privacy=&gdpr=&gdpr_consent=&gpp=&gpp_sid=

tls, http2

chrome.exe

2.0kB
6.2kB
17
19

HTTP Request

GET https://euexchangesync.digitaleast.mobi/usersync/index.gif?us_privacy=&gdpr=&gdpr_consent=&gpp=&gpp_sid=
216.58.201.98:443

https://cm.g.doubleclick.net/pixel?google_nid=casale_media2_dbm&google_cm&google_sc&google_hm=ZnrxlrmqPq8AAFKyAdC9GwAA

tls, http2

chrome.exe

2.0kB
7.3kB
18
18

HTTP Request

GET https://cm.g.doubleclick.net/pixel?google_nid=casale_media2_dbm&google_cm&google_sc&google_hm=ZnrxlrmqPq8AAFKyAdC9GwAA
185.64.190.78:443

https://image6.pubmatic.com/AdServer/UCookieSetPug?&rd=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D91%26partneruserid%3D%23PM_USER_ID%26gdpr%3DPM_GDPR%26gdpr_consent%3DPM_CONSENT&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

13.5kB
39.1kB
49
62

HTTP Request

GET https://image6.pubmatic.com/AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=86447134&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=0&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

HTTP Response

200

HTTP Request

GET https://image6.pubmatic.com/AdServer/UCookieSetPug?rd=https%3A%2F%2Fidsync.frontend.weborama.fr%2Fids%3Fkey%3Dpubmatic%26value%3D%23PM_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://image6.pubmatic.com/AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=22981483&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=1&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

HTTP Request

GET https://image6.pubmatic.com/AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=23923092&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=1&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://image6.pubmatic.com/AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=71204157&p=158554&s=0&a=0&ptask=ALL&np=0&fp=0&rp=1&mpc=0&spug=1&coppa=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

HTTP Response

200

HTTP Request

GET https://image6.pubmatic.com/AdServer/UCookieSetPug?&rd=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D91%26partneruserid%3D%23PM_USER_ID%26gdpr%3DPM_GDPR%26gdpr_consent%3DPM_CONSENT&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302
23.81.164.159:443

rtb.channelexco.com

tls, http2

chrome.exe

1.2kB
4.8kB
13
13
23.14.90.90:443

https://creatives.sascdn.com/shim.gif

tls, http

chrome.exe

1.8kB
5.2kB
14
14

HTTP Request

GET https://creatives.sascdn.com/shim.gif

HTTP Response

200
52.205.135.229:443

collector.ex.co

tls

chrome.exe

40.7kB
9.7kB
63
52
69.173.156.148:443

https://token.rubiconproject.com/token?pid=2249&pt=n&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

tls, http

chrome.exe

7.9kB
12.4kB
21
28

HTTP Request

GET https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

200

HTTP Request

GET https://token.rubiconproject.com/token?pid=2974&pt=n&a=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302

HTTP Request

GET https://token.rubiconproject.com/token?pid=2249&pt=n&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302
35.190.80.1:443

https://a.nel.cloudflare.com/report/v4?s=ajcS%2FkGs6qlTR2l%2FmZbNpoZV7ap%2F3bKYW%2BucuE8jRmEOgP%2Bxdai4GmNjSJ7GNqkggspWcFlZljjUbO%2BawRUIKJJqIOOhAAVOZ5QhgFn7UgRNZbsvThIWYUJvQifVYZAliTD7ydkGHzbtUQ%3D%3D

tls, http2

chrome.exe

1.8kB
4.6kB
15
15

HTTP Request

OPTIONS https://a.nel.cloudflare.com/report/v4?s=ajcS%2FkGs6qlTR2l%2FmZbNpoZV7ap%2F3bKYW%2BucuE8jRmEOgP%2Bxdai4GmNjSJ7GNqkggspWcFlZljjUbO%2BawRUIKJJqIOOhAAVOZ5QhgFn7UgRNZbsvThIWYUJvQifVYZAliTD7ydkGHzbtUQ%3D%3D
178.250.1.9:443

https://dis.criteo.com/dis/usersync.aspx?r=115&p=226&cp=medianet&cu=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&gpp=&gpp_sid=&url=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D1%26type%3Dcrt%26ovsid%3D%40%40CRITEO_USERID%40%40

tls, http2

chrome.exe

3.2kB
5.9kB
16
14

HTTP Request

GET https://dis.criteo.com/dis/usersync.aspx?r=3&p=4&cp=pubmaticUS&cu=1&&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&url=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:@@CRITEO_USERID@@

HTTP Response

200

HTTP Request

GET https://dis.criteo.com/dis/usersync.aspx?r=115&p=226&cp=medianet&cu=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&gpp=&gpp_sid=&url=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D1%26type%3Dcrt%26ovsid%3D%40%40CRITEO_USERID%40%40

HTTP Response

302
52.95.125.22:443

https://aax-eu.amazon-adsystem.com/s/dcm?pid=fa457a28-e898-4449-9a1d-2b11dd13a271&id=825a6ab2-de9d-8dc6-869b-802331369313&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http

chrome.exe

6.7kB
11.4kB
24
24

HTTP Request

GET https://aax-eu.amazon-adsystem.com/s/dcm?pid=4bd6ceca-c698-4782-a536-f380f757484c&id=6F33541D-0234-4D12-A971-323BE606F1A8&redir=true&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302

HTTP Request

GET https://aax-eu.amazon-adsystem.com/s/ecm3?ex=rubiconprojectHMT&id=VyquXflKSZ-TKfuQZbAPVw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://aax-eu.amazon-adsystem.com/s/dcm?pid=fa457a28-e898-4449-9a1d-2b11dd13a271&id=825a6ab2-de9d-8dc6-869b-802331369313&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200
185.89.210.122:443

ib.adnxs.com

tls

chrome.exe

4.3kB
9.4kB
20
20
199.232.197.91:443

https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_009.ts

tls, http2

chrome.exe

198.8kB
7.5MB
4155
5461

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/master.m3u8

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/encoded-1.m3u8

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_000.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_001.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/09a35d29-3e0b-4d04-9407-d4f39e199385/master.m3u8

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/09a35d29-3e0b-4d04-9407-d4f39e199385/encoded-1.m3u8

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/09a35d29-3e0b-4d04-9407-d4f39e199385/file_1_000.ts

HTTP Request

GET https://cdn.ex.co/transformations/production/f5213f0a-1d83-4790-b4b8-119137701636/master.m3u8

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/f5213f0a-1d83-4790-b4b8-119137701636/encoded-1.m3u8

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/f5213f0a-1d83-4790-b4b8-119137701636/file_1_000.ts

HTTP Response

200

HTTP Request

GET https://large-cdn.ex.co/video-uploads/production/001Qw000008BdCjIAK/23decc06-428e-4825-acd0-90d98963e577.m3u8

HTTP Request

GET https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/master.m3u8

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/encoded-1.m3u8

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_000.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_001.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_002.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_003.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_004.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/ea4c66d8-08d6-41ff-a6c5-0e93d5691596/file_1_005.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/master.m3u8

HTTP Response

304

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/encoded-1.m3u8

HTTP Response

304

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_000.ts

HTTP Response

304

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_001.ts

HTTP Response

206

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_001.ts

HTTP Response

206

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_002.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_003.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_004.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_005.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_006.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_007.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_008.ts

HTTP Response

200

HTTP Request

GET https://cdn.ex.co/transformations/production/7c6ec4ab-6e3b-4cc1-a2cb-9c5bb6f28e5b/file_1_009.ts

HTTP Response

200
85.114.159.93:443

dsp.adfarm1.adition.com

tls

chrome.exe

2.4kB
6.1kB
12
12
91.228.74.166:443

cms.quantserve.com

tls

chrome.exe

5.0kB
8.8kB
23
21
54.174.33.90:443

sync.srv.stackadapt.com

tls

chrome.exe

4.4kB
10.2kB
15
15
35.214.149.91:443

x.bidswitch.net

tls

chrome.exe

17.8kB
16.0kB
31
25
198.47.127.205:443

https://simage2.pubmatic.com/AdServer/Pug?vcode&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie={viewer_token}&gdpr=1

tls, http2

chrome.exe

15.7kB
11.4kB
47
60

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTc4JnRsPTE1NzY4MDA=&piggybackCookie=8159859772855155319&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMzOTkmdGw9NDMyMDA%3D&piggybackCookie=7384480169877371019&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MzEmdGw9MTI5NjAw&piggybackCookie=oDHTg3vfVxNfj2Iimit6yL9l0Sc&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9MjE5MSZ0bD0yNTkyMDA=&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9Mjk0NSZ0bD0xMjk2MDA=&piggybackCookie=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=&us_privacy=

HTTP Response

200

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MzcmdGw9ODY0MDA=&piggybackCookie=37883803138716&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMzMDEmdGw9MTI5NjAw&piggybackCookie=cd0498ca-3310-11ef-9349-8843a12a8555

HTTP Response

200

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4NDkmdGw9MTI5NjAw&piggybackCookie=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9ODImdGw9MTU3NjgwMCZkcF9pZD0yMg==&piggybackCookie=3314471828681895967&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&piggybackCookie=uid:e9b79c2f-0b03-40c2-b690-5a4d8081b9d0&vcode=bz0yJnR5cGU9MSZjb2RlPTMwNjImdGw9MTI5NjAw

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMwNTQmdGw9NDMyMDA%3D&piggybackCookie=qxMs33szgjnA4wFVnH6e5ThUdsT-QZQcObYHm9EKDq4&pi=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&tc=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4NzUmdGw9NDMyMDA=&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=6640692441033083723

HTTP Response

200

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTQ2MSZ0bD0xMDA4MA==&piggybackCookie=AQAJ-rPdbZM42AJig1RIAQEBAQEBAQCRUT68pwEBAJFRPryn&expiration=1719419672&nuid=6F33541D-0234-4D12-A971-323BE606F1A8&is_secure=true&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMyMDMmdGw9NDMyMDA=&piggybackCookie=RX-0bbaa6a2-fb56-4fd6-9967-f836f08f90c8-003

HTTP Response

302

HTTP Request

GET https://simage2.pubmatic.com/AdServer/Pug?vcode&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie={viewer_token}&gdpr=1

HTTP Response

200
69.173.151.100:443

pixel-us-east.rubiconproject.com

tls

chrome.exe

7.5kB
10.0kB
19
19
198.47.127.205:443

https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw&piggybackCookie=Gp1rLOrtXaWRTWVXhaSnWSaY&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

13.4kB
10.2kB
36
45

HTTP Request

GET https://image2.pubmatic.com/AdServer/Pug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&vcode=bz0yJnR5cGU9MSZjb2RlPTExMTMmdGw9NDMyMDA=&piggybackCookie=sUbadOFB1CKqRd0stETAJb9B2iCqRdgtsRRZ1jtn

HTTP Response

200

HTTP Request

GET https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0ODkmdGw9NDMyMDA=&piggybackCookie=OPU7d3f53a5e1994323b156921d1da1551d

HTTP Response

200

HTTP Request

GET https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3MzkmdGw9MTI5NjAw&piggybackCookie=5108559734156128624

HTTP Request

GET https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=934304454267114567

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMyOTcmdGw9MTI5NjAw&piggybackCookie=AAD5Jk7M9eMAABdSEix9nA&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MjImdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Request

GET https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTIxNzcmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=CAESENrEVyLDmsXON17PsTfFw-I&google_cver=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5NjkmdGw9MTI5NjAw&piggybackCookie=686596f9-f8ee-4091-a11a-6456c5f4f9ab-667af198-5553&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw&piggybackCookie=Gp1rLOrtXaWRTWVXhaSnWSaY&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw&piggybackCookie=Gp1rLOrtXaWRTWVXhaSnWSaY&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302
198.47.127.205:443

image2.pubmatic.com

chrome.exe

98 B
52 B
2
1
82.145.213.8:443

t.adx.opera.com

tls

chrome.exe

1.9kB
5.1kB
14
13
69.173.156.148:443

https://token.rubiconproject.com/token?pid=36584&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

tls, http

chrome.exe

3.8kB
3.5kB
11
11

HTTP Request

GET https://token.rubiconproject.com/token?pid=36584&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302
69.173.156.148:443

https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

tls, http

chrome.exe

9.5kB
8.5kB
19
21

HTTP Request

GET https://token.rubiconproject.com/token?pid=25470&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302

HTTP Request

GET https://token.rubiconproject.com/token?pid=37556&a=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302

HTTP Request

GET https://token.rubiconproject.com/khaos.json?gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1&khaos=LXUMMYH8-18-IISD

HTTP Response

200
69.173.156.148:443

token.rubiconproject.com

tls

chrome.exe

1.1kB
4.7kB
10
14
51.68.39.188:443

https://dsp.nrich.ai/bidswitch/sync?bidswitch_ssp_id=pubmatic&bsw_custom_parameter=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=&us_privacy=

tls, http

chrome.exe

2.6kB
6.3kB
14
13

HTTP Request

GET https://dsp.nrich.ai/bidswitch/sync?bidswitch_ssp_id=pubmatic&bsw_custom_parameter=4f62fbba-ecd4-4b71-afc7-4916045d677d&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=&us_privacy=

HTTP Response

302
34.253.242.146:443

match.prod.bidr.io

tls

chrome.exe

12.7kB
14.9kB
26
23
69.173.156.148:443

https://pixel.rubiconproject.com/exchange/sync.php?p=18694&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http

chrome.exe

15.6kB
18.9kB
35
43

HTTP Request

GET https://pixel.rubiconproject.com/exchange/sync.php?p=pbs-apn&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302

HTTP Request

GET https://pixel.rubiconproject.com/tap.php?v=8981&nid=2307&put=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&expires=30

HTTP Response

200

HTTP Request

GET https://pixel.rubiconproject.com/exchange/sync.php?p=pbs-adaptmx&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302

HTTP Request

GET https://pixel.rubiconproject.com/tap.php?v=17149&nid=2861&put=a2731526-763e-41f3-bfa9-3764fef9c62f&expires=30&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

200

HTTP Request

GET https://pixel.rubiconproject.com/exchange/sync.php?p=18694&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302
69.173.156.148:443

https://pixel.rubiconproject.com/exchange/sync.php?p=primis&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

tls, http

chrome.exe

9.8kB
13.3kB
25
31

HTTP Request

GET https://pixel.rubiconproject.com/exchange/sync.php?p=a9us&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302

HTTP Request

GET https://pixel.rubiconproject.com/tap.php?v=31950&nid=2974&put=y-UsVTG_JE2oKoqJ_bYKsoib.qoQ18hhpUSbuVHw--~A&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://pixel.rubiconproject.com/exchange/sync.php?p=primis&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302
69.173.156.148:443

https://pixel.rubiconproject.com/exchange/sync.php?p=dfp&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_gid=CAESEIohowEVDGcBfXD_8-NJkZM&google_cver=1

tls, http

chrome.exe

6.9kB
8.5kB
19
21

HTTP Request

GET https://pixel.rubiconproject.com/token?pid=2179&pt=n&puid=VyquXflKSZ-TKfuQZbAPVw&rk=usync-other&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302

HTTP Request

GET https://pixel.rubiconproject.com/exchange/sync.php?p=dfp&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_gid=CAESEIohowEVDGcBfXD_8-NJkZM&google_cver=1

HTTP Response

302
54.171.39.192:443

pr-bh.ybp.yahoo.com

tls

chrome.exe

5.2kB
9.6kB
26
28
51.178.195.216:443

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=135&partneruserid=TAM_OK&redirurl=https%3A%2F%2Fs.amazon-adsystem.com%2Fdcm%3Fpid%3D72348060-38ad-4586-8e4f-f1e2a8e789b3%26id%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http

chrome.exe

6.4kB
7.3kB
19
15

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=150&partneruserid=0&redirurl=https%3A%2F%2Fwt.rqtrk.eu%3Fpid%3D58a76248-f101-4e52-b8f7-c4de9362ea12%26src%3Dwww%26type%3D100%26sid%3D0%26uid%3DSMART_USER_ID%26gdpr_pd%3D0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?partnerid=75&issi=1&partneruserid=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=135&partneruserid=TAM_OK&redirurl=https%3A%2F%2Fs.amazon-adsystem.com%2Fdcm%3Fpid%3D72348060-38ad-4586-8e4f-f1e2a8e789b3%26id%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302
51.178.195.216:443

https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=160&partneruserid=1&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmartrtb_dbm%26google_cm%26google_sc%26google_hm%3DSMART_USER_ID_B64&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http

chrome.exe

8.1kB
7.9kB
21
17

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=160&partneruserid=1&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmartrtb_dbm%26google_cm%26google_sc%26google_hm%3DSMART_USER_ID_B64&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=92&partneruserid=YZ9IXur4Q8di&ev=1&pid=560288&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

200

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?partnerid=76&partneruserid=CAESECTx64G1gYoM7aBY6pXkGzM&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_cver=1

HTTP Response

200

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=160&partneruserid=1&redirurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dsmartrtb_dbm%26google_cm%26google_sc%26google_hm%3DSMART_USER_ID_B64&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302
208.93.169.131:443

https://bh.contextweb.com/bh/rtset?pid=561118&ev=1&rurl=https%3a%2f%2fads.yieldmo.com/v000/sync?userid=%%VGUID%%&pn_id=pp&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=1&us_privacy=

tls, http2

chrome.exe

5.4kB
14.5kB
22
23

HTTP Request

GET https://bh.contextweb.com/bh/rtset?pid=560288&ev=1&rurl=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D92%26partneruserid%3D%25%25VGUID%25%25&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://bh.contextweb.com/bh/rtset?ev=AAD5Jk7M9eMAABdSEix9nA&do=add&pid=558502&rurl=https%3A%2F%2Fmatch.prod.bidr.io%2Fcookie-sync%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26userid%3D4052082643997295311%26gdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26bee_sync_partners%3Dpm%26bee_sync_current_partner%3Dpp%26bee_sync_initiator%3Dadx%26bee_sync_hop_count%3D3&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://bh.contextweb.com/bh/rtset?pid=561118&ev=1&rurl=https%3a%2f%2fads.yieldmo.com/v000/sync?userid=%%VGUID%%&pn_id=pp&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr_pd=1&us_privacy=

HTTP Response

302
69.173.156.148:443

https://pixel.rubiconproject.com/token?pid=2179&pt=n&puid=-aiq0gcVS-CVYUVZDwpb0A&rk=usync-na&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

tls, http

chrome.exe

4.0kB
7.3kB
15
18

HTTP Request

GET https://pixel.rubiconproject.com/token?pid=2179&pt=n&puid=-aiq0gcVS-CVYUVZDwpb0A&rk=usync-na&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302
69.173.156.148:443

https://pixel.rubiconproject.com/exchange/sync.php?p=18694&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

tls, http

chrome.exe

4.1kB
7.8kB
16
21

HTTP Request

GET https://pixel.rubiconproject.com/exchange/sync.php?p=18694&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&gdpr=1

HTTP Response

302
13.107.42.14:443

px.ads.linkedin.com

tls

chrome.exe

2.4kB
6.5kB
16
18
34.102.163.6:443

ad.mrtnsvr.com

tls

chrome.exe

655 B
132 B
3
3
52.46.151.131:443

s.amazon-adsystem.com

tls

chrome.exe

897 B
719 B
7
9
34.102.163.6:443

ad.mrtnsvr.com

tls

chrome.exe

747 B
212 B
5
5
34.253.242.146:443

match.prod.bidr.io

tls

chrome.exe

884 B
460 B
7
7
35.214.243.89:443

csync.loopme.me

chrome.exe

156 B
3
54.160.38.67:443

sync.ipredictive.com

tls

chrome.exe

2.4kB
7.6kB
11
11
18.196.133.194:443

match.sharethrough.com

tls

chrome.exe

8.9kB
11.5kB
37
42
35.186.193.173:443

https://ipac.ctnsnet.com/int/cm?exc=14&redir=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MTEmdGw9MjAxNjA=&piggybackCookie=[user_id]

tls, http2

chrome.exe

2.0kB
5.2kB
16
16

HTTP Request

GET https://ipac.ctnsnet.com/int/cm?exc=14&redir=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM0MTEmdGw9MjAxNjA=&piggybackCookie=[user_id]
213.155.156.166:443

https://d5p.de17a.com/getuid/pubmatic;c?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=$UID

tls, http2

chrome.exe

3.0kB
8.8kB
16
17

HTTP Request

GET https://d5p.de17a.com/getuid/pubmatic?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=$UID

HTTP Response

302

HTTP Request

GET https://d5p.de17a.com/getuid/pubmatic;c?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&piggybackCookie=$UID

HTTP Response

302
195.5.165.20:443

core.iprom.net

tls

chrome.exe

2.4kB
6.1kB
11
9
35.214.243.89:443

csync.loopme.me

chrome.exe

156 B
3
193.0.160.130:443

p.rfihub.com

tls

chrome.exe

4.1kB
8.4kB
16
17
51.178.195.216:443

https://rtb-csync.smartadserver.com/redir/?partnerid=76&partneruserid=CAESECTx64G1gYoM7aBY6pXkGzM&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_cver=1

tls, http

chrome.exe

8.9kB
4.8kB
19
15

HTTP Request

GET https://rtb-csync.smartadserver.com/redir?partneruserid=AAD5Jk7M9eMAABdSEix9nA&partnerid=127&redirurl=https%3A%2F%2Fmatch.prod.bidr.io%2Fcookie-sync%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26bee_sync_partners%3Dpp%252Cpm%26bee_sync_current_partner%3Dsas%26bee_sync_initiator%3Dadx%26bee_sync_hop_count%3D2%26userid%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=139&partneruserid=0&redirurl=https%3A%2F%2Fmatch.sharethrough.com%2Fsync%2Fv1%3Fsource_id%3D98KUz37ype9D3X2sf9ovgeTt%26source_user_id%3DSMART_USER_ID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?partnerid=75&issi=1&partneruserid=84daa6ca-0538-48d1-9010-ae8e49c9a74c&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://rtb-csync.smartadserver.com/redir/?partnerid=76&partneruserid=CAESECTx64G1gYoM7aBY6pXkGzM&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_cver=1

HTTP Response

200
35.186.154.107:443

cm-supply-web.gammaplatform.com

chrome.exe

156 B
3
34.111.113.62:443

https://pixel.tapad.com/idsync/ex/receive?partner_id=3355&partner_device_id=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

2.3kB
6.7kB
15
15

HTTP Request

GET https://pixel.tapad.com/idsync/ex/receive?partner_id=3355&partner_device_id=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
52.222.201.10:443

https://live.primis.tech/live/liveCS.php?source=external&advId=100&advUuid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

2.3kB
7.5kB
16
17

HTTP Request

GET https://live.primis.tech/live/liveCS.php?source=external&advId=100&advUuid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200
145.40.97.66:443

https://prebid.a-mo.net/setuid/magnite?uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

2.1kB
5.3kB
13
13

HTTP Request

GET https://prebid.a-mo.net/setuid/magnite?uid=LXUMMYH8-18-IISD&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

204
52.215.155.11:443

cm.adgrx.com

tls

chrome.exe

3.0kB
8.9kB
17
18
54.72.120.129:443

sync.crwdcntrl.net

tls

chrome.exe

3.0kB
7.3kB
17
19
34.111.129.221:443

https://cr.frontend.weborama.fr/cr?key=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

2.2kB
6.0kB
15
15

HTTP Request

GET https://cr.frontend.weborama.fr/cr?key=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
104.22.50.98:443

https://mwzeom.zeotap.com/mw?zpartnerid=1384&env=mWeb&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&cid=6F33541D-0234-4D12-A971-323BE606F1A8

tls, http2

chrome.exe

2.3kB
5.9kB
16
15

HTTP Request

GET https://mwzeom.zeotap.com/mw?zpartnerid=1384&env=mWeb&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&cid=6F33541D-0234-4D12-A971-323BE606F1A8

HTTP Response

200
34.91.62.186:443

um.simpli.fi

tls

chrome.exe

5.0kB
9.0kB
25
25
37.157.6.243:443

c1.adform.net

tls

chrome.exe

7.3kB
13.4kB
30
31
185.184.8.90:443

https://creativecdn.com/cm-notify?pi=openx&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

4.1kB
8.7kB
22
19

HTTP Request

GET https://creativecdn.com/cm-notify?pi=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://creativecdn.com/cm-notify?pi=pubmatic&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&tc=1

HTTP Response

302

HTTP Request

GET https://creativecdn.com/cm-notify?pi=sharethrough&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://creativecdn.com/cm-notify?pi=openx&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302
34.36.216.150:443

https://pixel-sync.sitescout.com/dmp/pixelSync?nid=3&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

2.2kB
5.2kB
15
14

HTTP Request

GET https://pixel-sync.sitescout.com/dmp/pixelSync?nid=3&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA
3.75.62.37:443

https://ups.analytics.yahoo.com/ups/55940/sync?_origin=1&redir2=true&uid=ZnrxlrmqPq8AAFKyAdC9GwAAETMAAAAB&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&gdpr=1&gpp=&gpp_sid=

tls, http2

chrome.exe

3.4kB
7.4kB
22
24

HTTP Request

GET https://ups.analytics.yahoo.com/ups/58292/sync?_origin=1&uid=6F33541D-0234-4D12-A971-323BE606F1A8&redir=true&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Request

GET https://cms.analytics.yahoo.com/cms?partner_id=DELI&gdpr=0

HTTP Request

GET https://ups.analytics.yahoo.com/ups/58679/cms?partner_id=DELI&gdpr=0

HTTP Request

GET https://ups.analytics.yahoo.com/ups/55940/sync?_origin=1&redir2=true&uid=ZnrxlrmqPq8AAFKyAdC9GwAAETMAAAAB&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&gdpr=1&gpp=&gpp_sid=
64.158.223.140:443

https://medianet-match.dotomi.com/match/bounce/current?DotomiTest=132caacea90c170a&is_secure=true&version=1&networkId=57734&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D8%26vsid%3D3623348742093549000V10%26type%3Dcon%26refUrl%3D%26vid%3D93332740063623348742093549000V10%26axid_e%3D%26ovsid%3D%24UID

tls, http2

chrome.exe

4.3kB
7.9kB
17
17

HTTP Request

GET https://pubmatic-match.dotomi.com/match/bounce/current?networkId=17100&version=1&nuid=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://pubmatic-match.dotomi.com/match/bounce/current?DotomiTest=232cd4d287601583&is_secure=true&networkId=17100&version=1&nuid=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://medianet-match.dotomi.com/match/bounce/current?version=1&networkId=57734&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D8%26vsid%3D3623348742093549000V10%26type%3Dcon%26refUrl%3D%26vid%3D93332740063623348742093549000V10%26axid_e%3D%26ovsid%3D%24UID

HTTP Response

302

HTTP Request

GET https://medianet-match.dotomi.com/match/bounce/current?DotomiTest=132caacea90c170a&is_secure=true&version=1&networkId=57734&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redir=https%3A%2F%2Fcontextual.media.net%2Fcksync.php%3Fcs%3D8%26vsid%3D3623348742093549000V10%26type%3Dcon%26refUrl%3D%26vid%3D93332740063623348742093549000V10%26axid_e%3D%26ovsid%3D%24UID

HTTP Response

302
46.228.164.11:443

https://ad.turn.com/r/cs?pid=45&rndcb=2246083055

tls, http2

chrome.exe

2.6kB
9.3kB
18
21

HTTP Request

GET https://ad.turn.com/r/cs?pid=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://ad.turn.com/r/cs?pid=45&rndcb=752804979

HTTP Response

302

HTTP Request

GET https://ad.turn.com/r/cs?pid=45&rndcb=2246083055

HTTP Response

302
35.186.154.107:443

cm-supply-web.gammaplatform.com

chrome.exe

156 B
3
188.166.17.21:443

https://match.adsby.bidtheatre.com/pubmaticmatch?redir=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMwNjImdGw9MTI5NjAw&piggybackCookie=uid:$UID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http

chrome.exe

2.5kB
8.0kB
14
15

HTTP Request

GET https://match.adsby.bidtheatre.com/pubmaticmatch?redir=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMwNjImdGw9MTI5NjAw&piggybackCookie=uid:$UID&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302
57.129.18.109:443

https://wt.rqtrk.eu/?pid=58a76248-f101-4e52-b8f7-c4de9362ea12&src=www&type=100&sid=0&uid=4052082643997295311&gdpr_pd=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http2

chrome.exe

2.1kB
5.2kB
12
12

HTTP Request

GET https://wt.rqtrk.eu/?pid=58a76248-f101-4e52-b8f7-c4de9362ea12&src=www&type=100&sid=0&uid=4052082643997295311&gdpr_pd=0&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200
198.47.127.20:443

https://simage4.pubmatic.com/AdServer/SPug?partnerID=158554&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

tls, http2

chrome.exe

23.1kB
8.8kB
39
44

HTTP Request

GET https://image4.pubmatic.com/AdServer/SPug?partnerID=156078&xid=y-9Ec1PTxE2uVm5pQeI5j82hUnYgoJFEA-~A&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://image4.pubmatic.com/AdServer/SPug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&p=160648&pmc=1&pr=https%3A%2F%2Fsync-pm.ads.yieldmo.com%2Fsync%3Fpn_id%3Dpub%26id%3D6F33541D-0234-4D12-A971-323BE606F1A8%26gdpr1%26gdpr_consent%3CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://simage4.pubmatic.com/AdServer/SPug?partnerID=158554&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

HTTP Response

200

HTTP Request

GET https://image4.pubmatic.com/AdServer/SPug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&p=160648&pmc=1&pr=https%3A%2F%2Fsync-pm.ads.yieldmo.com%2Fsync%3Fpn_id%3Dpub%26id%3D6F33541D-0234-4D12-A971-323BE606F1A8%26gdpr1%26gdpr_consent%3CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=%24%7BUS_PRIVACY%7D

HTTP Response

302

HTTP Request

GET https://image4.pubmatic.com/AdServer/SPug?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&p=160648&pmc=1&pr=https%3A%2F%2Fsync-pm.ads.yieldmo.com%2Fsync%3Fpn_id%3Dpub%26id%3D6F33541D-0234-4D12-A971-323BE606F1A8%26gdpr1%26gdpr_consent%3CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=%24%7BUS_PRIVACY%7D

HTTP Response

302

HTTP Request

GET https://simage4.pubmatic.com/AdServer/SPug?partnerID=158554&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

HTTP Response

200

HTTP Request

GET https://simage4.pubmatic.com/AdServer/SPug?partnerID=158554&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=

HTTP Response

200
34.111.131.239:443

https://idsync.frontend.weborama.fr/ids?key=pubmatic&value=6F33541D-0234-4D12-A971-323BE606F1A8

tls, http2

chrome.exe

1.8kB
5.3kB
14
14

HTTP Request

GET https://idsync.frontend.weborama.fr/ids?key=pubmatic&value=6F33541D-0234-4D12-A971-323BE606F1A8
34.251.19.157:443

pm.w55c.net

tls

chrome.exe

2.8kB
7.5kB
15
14
89.207.16.140:443

casale-match.dotomi.com

tls

chrome.exe

1.8kB
4.4kB
12
13
178.250.1.3:443

https://static.criteo.net/js/ld/publishertag.prebid.139.js

tls, http2

chrome.exe

2.4kB
37.1kB
30
35

HTTP Request

GET https://static.criteo.net/js/ld/publishertag.prebid.139.js

HTTP Response

200
178.250.1.11:443

https://gum.criteo.com/sync?r=2&c=321&gdpr=1&gdpr_pd=0&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&j=window.advBidxc.mnetRtusId

tls, http2

chrome.exe

3.6kB
11.7kB
17
19

HTTP Request

GET https://gum.criteo.com/syncframe?origin=publishertag&topUrl=mm-watch.com&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://gum.criteo.com/sid/json?origin=publishertag&domain=mm-watch.com&sn=ChromeSyncframe&so=0&topUrl=mm-watch.com&cw=1&lsw=1&topicsavail=0&fledgeavail=0

HTTP Request

GET https://gum.criteo.com/sync?r=2&c=321&gdpr=1&gdpr_pd=0&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=&j=window.advBidxc.mnetRtusId

HTTP Response

200

HTTP Response

200
77.245.57.72:443

sync.adkernel.com

tls

chrome.exe

1.8kB
4.1kB
11
10
2.23.8.24:443

https://contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUB64530&prvid=77%2C2034%2C2033%2C2043%2C2030%2C2041%2C262%2C461%2C2027%2C4%2C159%2C2026%2C10000%2C459%2C9%2C109%2C97%2C2109&itype=PREBID&purpose1=1&gdprconsent=1&gdpr=1&gdprstring=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&coppa=0&usp_status=0&usp_consent=1

tls, http2

chrome.exe

2.7kB
17.9kB
20
27

HTTP Request

GET https://contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CUB64530&prvid=77%2C2034%2C2033%2C2043%2C2030%2C2041%2C262%2C461%2C2027%2C4%2C159%2C2026%2C10000%2C459%2C9%2C109%2C97%2C2109&itype=PREBID&purpose1=1&gdprconsent=1&gdpr=1&gdprstring=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&coppa=0&usp_status=0&usp_consent=1

HTTP Response

200
198.47.127.18:443

https://image8.pubmatic.com/AdServer/ImgSync?sec=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=${US_PRIVACY}

tls, http2

chrome.exe

11.9kB
11.4kB
25
25

HTTP Request

GET https://image8.pubmatic.com/AdServer/ImgSync?p=160648&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D160648%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fsync-pm.ads.yieldmo.com%252Fsync%253Fpn_id%253Dpub%2526id%253D%2523PMUID%2526gdpr%2531%2526gdpr_consent%253CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://image8.pubmatic.com/AdServer/ImgSync?sec=1&gdpr=0&gdpr_consent=&us_privacy=${US_PRIVACY}

HTTP Response

200

HTTP Request

GET https://image8.pubmatic.com/AdServer/ImgSync?sec=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&us_privacy=${US_PRIVACY}

HTTP Response

302
141.95.171.140:443

https://green.erne.co/pubmatic/cm?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http

chrome.exe

3.7kB
8.8kB
14
14

HTTP Request

GET https://green.erne.co/pubmatic/cm?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://green.erne.co/pubmatic/cm?gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302
46.228.174.117:443

sync.1rx.io

tls

chrome.exe

1.1kB
6.7kB
10
9
46.228.174.117:443

sync.1rx.io

tls

chrome.exe

6.2kB
13.1kB
22
22
104.18.25.173:443

https://s.tribalfusion.com/z/i.match?p=b11&redirect=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%26piggybackCookie%3D%24TF_USER_ID_ENC%24&u=${PUBMATIC_UID}

tls, http2

chrome.exe

2.3kB
6.4kB
17
18

HTTP Request

GET https://a.tribalfusion.com/i.match?p=b11&redirect=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%26piggybackCookie%3D%24TF_USER_ID_ENC%24&u=${PUBMATIC_UID}

HTTP Response

302

HTTP Request

GET https://s.tribalfusion.com/z/i.match?p=b11&redirect=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%26piggybackCookie%3D%24TF_USER_ID_ENC%24&u=${PUBMATIC_UID}

HTTP Response

200
162.55.120.196:443

matching.truffle.bid

tls

chrome.exe

2.9kB
4.2kB
13
14
141.94.171.214:443

https://pixel-eu.onaudience.com/?partner=154&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3Db2c3o90%26t%3Dr%26uid%3D%25m%26r%3Dhttps%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%2526piggybackCookie%253DGp1rLOrtXaWRTWVXhaSnWSaY%2526gdpr%253D1%2526gdpr_consent%253DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http

chrome.exe

9.6kB
14.3kB
20
21

HTTP Request

GET https://pixel-eu.onaudience.com/?partner=270&smartmap=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirect=image2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%26piggybackCookie%3D%25_rid%26gdpr%3D1%26gdpr_consent%3D%25_gdpr_consent

HTTP Response

302

HTTP Request

GET https://pixel-eu.onaudience.com/?partner=153&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3D0rif2bu%26t%3Dr%26uid%3D%25m%26r%3Dhttps%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%2526piggybackCookie%253DGp1rLOrtXaWRTWVXhaSnWSaY%2526gdpr%253D1%2526gdpr_consent%253DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://pixel-eu.onaudience.com/?partner=270&smartmap=1&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&redirect=image2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%26piggybackCookie%3D%25_rid%26gdpr%3D1%26gdpr_consent%3D%25_gdpr_consent

HTTP Response

302

HTTP Request

GET https://pixel-eu.onaudience.com/?partner=154&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3Db2c3o90%26t%3Dr%26uid%3D%25m%26r%3Dhttps%253A%252F%252Fimage2.pubmatic.com%252FAdServer%252FPug%253Fvcode%253Dbz0yJnR5cGU9MSZjb2RlPTI4ODQmdGw9MTI5NjAw%2526piggybackCookie%253DGp1rLOrtXaWRTWVXhaSnWSaY%2526gdpr%253D1%2526gdpr_consent%253DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302
141.94.171.212:443

https://pixel.onaudience.com/?partner=162&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3Ddn5h51u%26t%3Dgif%26uid%3D%25m

tls, http

chrome.exe

5.5kB
9.4kB
15
15

HTTP Request

GET https://pixel.onaudience.com/?partner=214&mapped=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://pixel.onaudience.com/?partner=214&mapped=6F33541D-0234-4D12-A971-323BE606F1A8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://pixel.onaudience.com/?partner=162&icm&cver&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&smartmap=1&redirect=ps.eyeota.net%2Fpixel%3Fgdpr%3D1%26gdpr_consent%3DCQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA%26pid%3Ddn5h51u%26t%3Dgif%26uid%3D%25m

HTTP Response

302
77.243.51.121:443

https://uipglob.semasio.net/pubmatic/1/info?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http

chrome.exe

3.6kB
6.0kB
13
12

HTTP Request

GET https://uipglob.semasio.net/pubmatic/1/info?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302

HTTP Request

GET https://uipglob.semasio.net/pubmatic/1/info?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

302
54.229.31.146:443

sync-pm.ads.yieldmo.com

tls

chrome.exe

4.0kB
8.7kB
19
22
141.94.171.214:443

pixel-eu.onaudience.com

tls

chrome.exe

908 B
833 B
7
6
46.228.174.117:443

sync.targeting.unrulymedia.com

chrome.exe

52 B
1
46.228.174.117:443

sync.targeting.unrulymedia.com

tls

chrome.exe

2.9kB
7.9kB
16
14
3.125.70.222:443

ps.eyeota.net

tls

chrome.exe

9.6kB
13.8kB
23
23
3.125.70.222:443

ps.eyeota.net

tls

chrome.exe

5.3kB
9.9kB
16
15
46.228.174.117:443

sync.targeting.unrulymedia.com

chrome.exe

98 B
52 B
2
1
77.243.51.121:443

https://uipglob.semasio.net/pubmatic/1/info2?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

tls, http

chrome.exe

3.6kB
2.0kB
12
9

HTTP Request

GET https://uipglob.semasio.net/pubmatic/1/info2?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200

HTTP Request

GET https://uipglob.semasio.net/pubmatic/1/info2?sType=sync&sExtCookieId=6F33541D-0234-4D12-A971-323BE606F1A8&sInitiator=external&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA

HTTP Response

200
77.243.51.121:443

uipglob.semasio.net

tls

chrome.exe

897 B
584 B
7
6
3.125.70.222:443

ps.eyeota.net

tls

chrome.exe

3.1kB
1.5kB
11
7
3.125.70.222:443

ps.eyeota.net

tls

chrome.exe

838 B
661 B
6
6
35.214.243.89:443

csync.loopme.me

chrome.exe

156 B
3
2.21.188.27:443

https://c21lg-d.media.net/log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct

tls, http

chrome.exe

2.1kB
5.5kB
13
13

HTTP Request

GET https://c21lg-d.media.net/log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct

HTTP Response

200
2.21.188.27:443

https://c21lg-d.media.net/log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct

tls, http2

chrome.exe

3.5kB
25.6kB
35
39

HTTP Request

GET https://hbx.media.net/pubcid.php?itype=HB&cb=window.advBidxc.mnetCoRtusId

HTTP Response

200

HTTP Request

GET https://c21lg-d.media.net/log?logid=kfk&evtid=cs&origin=1&pvgid=data-con&ovsid=b2e15d9b-d063-436c-854b-7ae570093bcb&cs=15&vsid=3623348742093549000V10

HTTP Response

200

HTTP Request

GET https://c21lg-d.media.net/log?logid=kfk&evtid=cs&del=1&vsid=3623348742093549000V10&origin=1&flt=0&pvgid[]=data-p&pvgid[]=data-b&pvgid[]=data-t&pvgid[]=data-sov&pvgid[]=data-r1&pvgid[]=data-pb&pvgid[]=data-xu&pvgid[]=data-k&pvgid[]=data-tx&pvgid[]=data-ct

HTTP Response

200
2.21.188.27:443

https://c21lg-d.media.net/log?logid=kfk&evtid=cs&origin=1&pvgid=data-c&ovsid=Z3wY3d2fGaHy4B7mg3yH_EBgFrrrDyLv&cs=15&vsid=3623348742093549000V10

tls, http

chrome.exe

1.9kB
5.5kB
13
13

HTTP Request

GET https://c21lg-d.media.net/log?logid=kfk&evtid=cs&origin=1&pvgid=data-c&ovsid=Z3wY3d2fGaHy4B7mg3yH_EBgFrrrDyLv&cs=15&vsid=3623348742093549000V10

HTTP Response

200
2.21.188.27:443

https://cs.media.net/cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c

tls, http

chrome.exe

1.9kB
5.6kB
14
14

HTTP Request

GET https://cs.media.net/cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c

HTTP Response

200
2.21.188.27:443

https://cs.media.net/cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c

tls, http

chrome.exe

3.5kB
6.5kB
16
16

HTTP Request

GET https://cs.media.net/cksync?type=g&cs=8&gdpr=1&gdpr_consent=CQAxFUAQAxFUAA_AEAENA6EsAP_gAEPgAAAAKTtV_G__bWlr8X73aftkeY1P9_h77sQxBhfJE-4FzLvW_JwXx2ExNA36tqIKmRIEu3bBIQNlHJDUTVCgaogVryDMak2coTNKJ6BkiFMRO2dYCF5vmwtj-QKY5vr993dx2B-t_dv83dzyz4VHn3a5_2e0WJCdA58tDfv9bROb-9IOd_58v4v8_F_rE2_eT1l_tevp7D9-cts7_XW-9_fff79Ll_-mB_gpKAWYaFRAGWRISEGgYQQIAVBWEBFAgAAABIGiAgBMGBTsDAJdYSIAQAoABggBAACjIAEAAAkACEQAQAFAgAAgECgADAAgGAgAYGAAMAFgIBAACA6BCmBBAoFgAkZkRCmBCFAkEBLZUIJAECCuEIRZ4EEAiJgoAAASACsAAQFgsDiSQErEggS4g2gAAIAEAggAqEUnZgCCAM2WqvFk2jK0gLR8wXvaYAAA.YAAAAAAAAAAA&google_gid=CAESECwH1UczWMWFpTPAOLSJyfY&google_cver=1

HTTP Response

200

HTTP Request

GET https://cs.media.net/cksync?cs=1&type=ttd&ovsid=84daa6ca-0538-48d1-9010-ae8e49c9a74c

HTTP Response

200
34.203.44.126:443

vop.sundaysky.com

tls

chrome.exe

3.2kB
5.6kB
20
21
46.228.164.13:443

https://d.turn.com/r/dd/id/L2NzaWQvMS9jaWQvMjg0NTA1NDYvdC8w/url/https://ps.eyeota.net/match?bid=1mpjpn0&turn_id=$!{TURN_UUID}&newuser=1&dc_rc=2&dc_mr=5&dc_orig=dn5h51u&&referrer_pid=dn5h51u

tls, http2

chrome.exe

1.9kB
7.6kB
15
16

HTTP Request

GET https://d.turn.com/r/dd/id/L2NzaWQvMS9jaWQvMjg0NTA1NDYvdC8w/url/https://ps.eyeota.net/match?bid=1mpjpn0&turn_id=$!{TURN_UUID}&newuser=1&dc_rc=2&dc_mr=5&dc_orig=dn5h51u&&referrer_pid=dn5h51u

HTTP Response

302

8.8.8.8:53

github.com

dns

MicrosoftEdgeCP.exe

280 B
5

DNS Request

github.com

DNS Request

github.com

DNS Request

github.com

DNS Request

github.com

DNS Request

github.com
8.8.8.8:53

github.com

dns

MicrosoftEdgeCP.exe

112 B
72 B
2
1

DNS Request

github.com

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

215.156.26.20.in-addr.arpa

dns

360 B
5

DNS Request

215.156.26.20.in-addr.arpa

DNS Request

215.156.26.20.in-addr.arpa

DNS Request

215.156.26.20.in-addr.arpa

DNS Request

215.156.26.20.in-addr.arpa

DNS Request

215.156.26.20.in-addr.arpa
8.8.8.8:53

82.90.14.23.in-addr.arpa

dns

350 B
5

DNS Request

82.90.14.23.in-addr.arpa

DNS Request

82.90.14.23.in-addr.arpa

DNS Request

82.90.14.23.in-addr.arpa

DNS Request

82.90.14.23.in-addr.arpa

DNS Request

82.90.14.23.in-addr.arpa
8.8.8.8:53

202.110.86.104.in-addr.arpa

dns

365 B
139 B
5
1

DNS Request

202.110.86.104.in-addr.arpa

DNS Request

202.110.86.104.in-addr.arpa

DNS Request

202.110.86.104.in-addr.arpa

DNS Request

202.110.86.104.in-addr.arpa

DNS Request

202.110.86.104.in-addr.arpa
8.8.8.8:53

crl.comodoca.com

dns

MicrosoftEdgeCP.exe

248 B
143 B
4
1

DNS Request

crl.comodoca.com

DNS Request

crl.comodoca.com

DNS Request

crl.comodoca.com

DNS Request

crl.comodoca.com

DNS Response

172.64.149.23

104.18.38.233
8.8.8.8:53

161.19.199.152.in-addr.arpa

dns

73 B
144 B
1
1

DNS Request

161.19.199.152.in-addr.arpa
8.8.8.8:53

23.149.64.172.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

23.149.64.172.in-addr.arpa
8.8.8.8:53

233.38.18.104.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

233.38.18.104.in-addr.arpa
8.8.8.8:53

172.214.232.199.in-addr.arpa

dns

74 B
128 B
1
1

DNS Request

172.214.232.199.in-addr.arpa
8.8.8.8:53

www.msn.com

dns

MicrosoftEdge.exe

57 B
132 B
1
1

DNS Request

www.msn.com

DNS Response

204.79.197.203
8.8.8.8:53

194.61.62.23.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

194.61.62.23.in-addr.arpa
8.8.8.8:53

assets.msn.com

dns

MicrosoftEdgeCP.exe

133 B
271 B
2
2

DNS Request

assets.msn.com

DNS Response

2.21.96.65

2.21.96.90

2.21.96.104

2.21.96.11

DNS Request

200.42.244.104.in-addr.arpa
8.8.8.8:53

browser.events.data.msn.com

dns

MicrosoftEdgeCP.exe

73 B
212 B
1
1

DNS Request

browser.events.data.msn.com

DNS Response

20.52.64.200
8.8.8.8:53

65.96.21.2.in-addr.arpa

dns

69 B
131 B
1
1

DNS Request

65.96.21.2.in-addr.arpa
8.8.8.8:53

200.64.52.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

200.64.52.20.in-addr.arpa
8.8.8.8:53

www.google.com

dns

chrome.exe

120 B
76 B
2
1

DNS Request

www.google.com

DNS Request

www.google.com

DNS Response

142.250.187.196
8.8.8.8:53

c.pki.goog

dns

MicrosoftEdge.exe

119 B
202 B
2
2

DNS Request

c.pki.goog

DNS Response

142.250.200.3

DNS Request

r.casalemedia.com

DNS Response

104.18.36.155

172.64.151.101
8.8.8.8:53

o.pki.goog

dns

MicrosoftEdgeCP.exe

56 B
107 B
1
1

DNS Request

o.pki.goog

DNS Response

142.250.200.3
8.8.8.8:53

ssl.gstatic.com

dns

chrome.exe

61 B
77 B
1
1

DNS Request

ssl.gstatic.com

DNS Response

172.217.16.227
8.8.8.8:53

clients1.google.com

dns

MicrosoftEdgeCP.exe

65 B
105 B
1
1

DNS Request

clients1.google.com

DNS Response

216.58.213.14
8.8.8.8:53

227.16.217.172.in-addr.arpa

dns

146 B
140 B
2
1

DNS Request

227.16.217.172.in-addr.arpa

DNS Request

227.16.217.172.in-addr.arpa
8.8.8.8:53

14.213.58.216.in-addr.arpa

dns

216 B
141 B
3
1

DNS Request

14.213.58.216.in-addr.arpa

DNS Request

14.213.58.216.in-addr.arpa

DNS Request

14.213.58.216.in-addr.arpa
8.8.8.8:53

apis.google.com

dns

chrome.exe

61 B
98 B
1
1

DNS Request

apis.google.com

DNS Response

142.250.187.206
8.8.8.8:53

206.187.250.142.in-addr.arpa

dns

74 B
113 B
1
1

DNS Request

206.187.250.142.in-addr.arpa
8.8.8.8:53

200.197.79.204.in-addr.arpa

dns

73 B
106 B
1
1

DNS Request

200.197.79.204.in-addr.arpa
8.8.8.8:53

www.microsoft.com

dns

MicrosoftEdge.exe

126 B
230 B
2
1

DNS Request

www.microsoft.com

DNS Request

www.microsoft.com

DNS Response

23.34.233.128
8.8.8.8:53

76.234.34.23.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

76.234.34.23.in-addr.arpa
8.8.8.8:53

128.233.34.23.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

128.233.34.23.in-addr.arpa
8.8.8.8:53

14.227.111.52.in-addr.arpa

dns

144 B
158 B
2
1

DNS Request

14.227.111.52.in-addr.arpa

DNS Request

14.227.111.52.in-addr.arpa
8.8.8.8:53

17.173.189.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

17.173.189.20.in-addr.arpa
8.8.8.8:53

www.google.com

dns

chrome.exe

60 B
76 B
1
1

DNS Request

www.google.com

DNS Response

142.250.187.196
8.8.8.8:53

apis.google.com

dns

chrome.exe

61 B
98 B
1
1

DNS Request

apis.google.com

DNS Response

142.250.187.206
8.8.8.8:53

195.187.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

195.187.250.142.in-addr.arpa
8.8.8.8:53

play.google.com

dns

chrome.exe

61 B
77 B
1
1

DNS Request

play.google.com

DNS Response

142.250.200.46
8.8.8.8:53

46.200.250.142.in-addr.arpa

dns

73 B
112 B
1
1

DNS Request

46.200.250.142.in-addr.arpa
8.8.8.8:53

clients2.google.com

dns

chrome.exe

65 B
105 B
1
1

DNS Request

clients2.google.com

DNS Response

216.58.213.14
224.0.0.251:5353

chrome.exe

408 B
6
8.8.8.8:53

ogs.google.com

dns

chrome.exe

60 B
97 B
1
1

DNS Request

ogs.google.com

DNS Response

172.217.169.14
8.8.8.8:53

ssl.gstatic.com

dns

chrome.exe

61 B
77 B
1
1

DNS Request

ssl.gstatic.com

DNS Response

172.217.16.227
8.8.8.8:53

67.169.217.172.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

67.169.217.172.in-addr.arpa
8.8.8.8:53

14.169.217.172.in-addr.arpa

dns

73 B
112 B
1
1

DNS Request

14.169.217.172.in-addr.arpa
142.250.187.196:443

www.google.com

https

chrome.exe

10.0kB
140.8kB
79
142
142.250.200.46:443

play.google.com

https

chrome.exe

7.0kB
8.4kB
15
15
8.8.8.8:53

accounts.google.com

dns

chrome.exe

65 B
81 B
1
1

DNS Request

accounts.google.com

DNS Response

209.85.203.84
209.85.203.84:443

accounts.google.com

https

chrome.exe

8.2kB
125.5kB
73
125
8.8.8.8:53

content-autofill.googleapis.com

dns

chrome.exe

77 B
285 B
1
1

DNS Request

content-autofill.googleapis.com

DNS Response

216.58.212.234

216.58.201.106

142.250.187.234

172.217.16.234

142.250.179.234

216.58.204.74

142.250.180.10

216.58.212.202

142.250.200.10

172.217.169.74

142.250.200.42

142.250.187.202

142.250.178.10
8.8.8.8:53

accounts.youtube.com

dns

chrome.exe

66 B
110 B
1
1

DNS Request

accounts.youtube.com

DNS Response

172.217.169.14
8.8.8.8:53

84.203.85.209.in-addr.arpa

dns

144 B
210 B
2
2

DNS Request

84.203.85.209.in-addr.arpa

DNS Request

84.203.85.209.in-addr.arpa
8.8.8.8:53

234.212.58.216.in-addr.arpa

dns

146 B
346 B
2
2

DNS Request

234.212.58.216.in-addr.arpa

DNS Request

234.212.58.216.in-addr.arpa
142.250.200.46:443

play.google.com

https

chrome.exe

3.3kB
7.0kB
7
10
8.8.8.8:53

mm-watch.com

dns

chrome.exe

116 B
180 B
2
2

DNS Request

mm-watch.com

DNS Request

mm-watch.com

DNS Response

104.21.58.4

172.67.196.77

DNS Response

172.67.196.77

104.21.58.4
8.8.8.8:53

apps.identrust.com

dns

chrome.exe

64 B
165 B
1
1

DNS Request

apps.identrust.com

DNS Response

23.63.101.153

23.63.101.171
104.21.58.4:443

mm-watch.com

https

chrome.exe

43.8kB
2.2MB
291
1831
8.8.8.8:53

fonts.cdnfonts.com

dns

chrome.exe

64 B
96 B
1
1

DNS Request

fonts.cdnfonts.com

DNS Response

172.67.184.158

104.21.72.124
8.8.8.8:53

cdnjs.cloudflare.com

dns

MicrosoftEdgeCP.exe

66 B
98 B
1
1

DNS Request

cdnjs.cloudflare.com

DNS Response

104.17.24.14

104.17.25.14
8.8.8.8:53

challenges.cloudflare.com

dns

chrome.exe

142 B
206 B
2
2

DNS Request

challenges.cloudflare.com

DNS Response

104.17.2.184

104.17.3.184

DNS Request

challenges.cloudflare.com

DNS Response

104.17.3.184

104.17.2.184
8.8.8.8:53

analytics.mm-watch.com

dns

chrome.exe

136 B
200 B
2
2

DNS Request

analytics.mm-watch.com

DNS Request

analytics.mm-watch.com

DNS Response

104.21.58.4

172.67.196.77

DNS Response

172.67.196.77

104.21.58.4
104.17.2.184:443

challenges.cloudflare.com

https

chrome.exe

4.0kB
19.4kB
16
22
172.67.184.158:443

fonts.cdnfonts.com

https

chrome.exe

5.5kB
54.6kB
31
51
8.8.8.8:53

4.58.21.104.in-addr.arpa

dns

70 B
132 B
1
1

DNS Request

4.58.21.104.in-addr.arpa
8.8.8.8:53

153.101.63.23.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

153.101.63.23.in-addr.arpa
8.8.8.8:53

158.184.67.172.in-addr.arpa

dns

73 B
135 B
1
1

DNS Request

158.184.67.172.in-addr.arpa
8.8.8.8:53

14.24.17.104.in-addr.arpa

dns

143 B
267 B
2
2

DNS Request

14.24.17.104.in-addr.arpa

DNS Request

21.171.252.37.in-addr.arpa
8.8.8.8:53

184.2.17.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

184.2.17.104.in-addr.arpa
8.8.8.8:53

clickiocmp.com

dns

chrome.exe

60 B
76 B
1
1

DNS Request

clickiocmp.com

DNS Response

46.8.152.2
8.8.8.8:53

player.ex.co

dns

chrome.exe

58 B
159 B
1
1

DNS Request

player.ex.co

DNS Response

151.101.130.132

151.101.194.132

151.101.2.132

151.101.66.132
8.8.8.8:53

api.mm-watch.com

dns

chrome.exe

62 B
94 B
1
1

DNS Request

api.mm-watch.com

DNS Response

172.67.196.77

104.21.58.4
8.8.8.8:53

up.clickiocdn.com

dns

chrome.exe

63 B
109 B
1
1

DNS Request

up.clickiocdn.com

DNS Response

95.211.66.35

95.211.66.34
8.8.8.8:53

cdn.clickiocdn.com

dns

chrome.exe

64 B
97 B
1
1

DNS Request

cdn.clickiocdn.com

DNS Response

46.8.152.14
216.58.212.234:443

content-autofill.googleapis.com

https

chrome.exe

3.4kB
7.1kB
8
11
8.8.8.8:53

collector-1.ex.co

dns

chrome.exe

63 B
111 B
1
1

DNS Request

collector-1.ex.co

DNS Response

52.203.56.39

54.196.134.74

52.202.170.3
104.21.58.4:443

api.mm-watch.com

https

chrome.exe

5.6kB
10.4kB
9
13
8.8.8.8:53

132.130.101.151.in-addr.arpa

dns

74 B
134 B
1
1

DNS Request

132.130.101.151.in-addr.arpa
8.8.8.8:53

2.152.8.46.in-addr.arpa

dns

69 B
129 B
1
1

DNS Request

2.152.8.46.in-addr.arpa
8.8.8.8:53

35.66.211.95.in-addr.arpa

dns

71 B
107 B
1
1

DNS Request

35.66.211.95.in-addr.arpa
8.8.8.8:53

14.152.8.46.in-addr.arpa

dns

70 B
130 B
1
1

DNS Request

14.152.8.46.in-addr.arpa
8.8.8.8:53

39.56.203.52.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

39.56.203.52.in-addr.arpa
8.8.8.8:53

s.clickiocdn.com

dns

chrome.exe

62 B
94 B
1
1

DNS Request

s.clickiocdn.com

DNS Response

95.211.66.35

95.211.66.34
172.67.196.77:443

api.mm-watch.com

https

chrome.exe

4.2kB
9.9kB
12
15
8.8.8.8:53

cdn.ex.co

dns

chrome.exe

55 B
120 B
1
1

DNS Request

cdn.ex.co

DNS Response

199.232.197.91

199.232.193.91
8.8.8.8:53

p.channelexco.com

dns

chrome.exe

63 B
105 B
1
1

DNS Request

p.channelexco.com

DNS Response

162.210.193.230
8.8.8.8:53

sync.ex.co

dns

chrome.exe

56 B
104 B
1
1

DNS Request

sync.ex.co

DNS Response

3.232.71.25

44.207.87.22

44.206.126.35
8.8.8.8:53

91.197.232.199.in-addr.arpa

dns

73 B
127 B
1
1

DNS Request

91.197.232.199.in-addr.arpa
8.8.8.8:53

77.196.67.172.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

77.196.67.172.in-addr.arpa
8.8.8.8:53

ads.pubmatic.com

dns

chrome.exe

62 B
145 B
1
1

DNS Request

ads.pubmatic.com

DNS Response

2.21.188.239
8.8.8.8:53

s-119.channelexco.com

dns

chrome.exe

67 B
83 B
1
1

DNS Request

s-119.channelexco.com

DNS Response

162.210.193.230
8.8.8.8:53

ads.stickyadstv.com

dns

chrome.exe

130 B
380 B
2
2

DNS Request

ads.stickyadstv.com

DNS Response

154.54.250.81

154.57.158.115

DNS Request

ads.stickyadstv.com

DNS Response

154.54.250.80

154.57.158.116
8.8.8.8:53

secure-assets.rubiconproject.com

dns

chrome.exe

78 B
183 B
1
1

DNS Request

secure-assets.rubiconproject.com

DNS Response

23.60.223.190
8.8.8.8:53

ssbsync.smartadserver.com

dns

chrome.exe

142 B
948 B
2
2

DNS Request

ssbsync.smartadserver.com

DNS Response

91.134.110.133

149.202.238.101

149.202.238.100

164.132.25.180

5.196.111.68

178.32.210.231

91.134.110.132

217.182.178.228

164.132.25.181

217.182.178.229

51.178.195.212

178.32.197.52

5.135.209.100

178.32.197.53

5.135.209.101

178.32.210.230

5.196.111.69

51.178.195.213

DNS Request

ssbsync.smartadserver.com

DNS Response

89.149.193.85

81.17.55.109

89.149.193.117

81.17.55.108

89.149.192.197

89.149.193.101

89.149.192.196

81.17.55.171

81.17.55.123

89.149.193.116

89.149.192.75

81.17.55.170

89.149.193.84

89.149.193.100

89.149.192.76

81.17.55.122

89.149.192.245

89.149.192.244
8.8.8.8:53

ssum-sec.casalemedia.com

dns

chrome.exe

70 B
102 B
1
1

DNS Request

ssum-sec.casalemedia.com

DNS Response

172.64.151.101

104.18.36.155
8.8.8.8:53

u.openx.net

dns

chrome.exe

57 B
89 B
1
1

DNS Request

u.openx.net

DNS Response

35.244.159.8

34.98.64.218
8.8.8.8:53

ap.lijit.com

dns

chrome.exe

116 B
620 B
2
2

DNS Request

ap.lijit.com

DNS Response

63.33.236.25

54.194.13.213

54.246.192.145

34.249.225.179

34.254.218.2

63.32.125.49

34.249.248.83

54.75.71.78

DNS Request

ap.lijit.com

DNS Response

54.229.26.183

34.252.158.198

79.125.58.169

63.35.80.10

79.125.108.226

34.254.50.66

54.217.7.55

52.214.42.132
8.8.8.8:53

secure.adnxs.com

dns

chrome.exe

62 B
243 B
1
1

DNS Request

secure.adnxs.com

DNS Response

37.252.171.21

37.252.173.215

37.252.171.149

37.252.172.123

37.252.171.85

37.252.171.53

37.252.171.52
8.8.8.8:53

www9.smartadserver.com

dns

chrome.exe

68 B
435 B
1
1

DNS Request

www9.smartadserver.com

DNS Response

149.202.238.97

178.32.197.48

178.32.210.226

51.178.195.209

5.135.209.96

51.178.195.208

149.202.238.96

164.132.25.177

164.132.25.176

217.182.178.224

5.135.209.97

178.32.197.49

5.196.111.65

178.32.210.227

91.134.110.129

91.134.110.128

217.182.178.225

5.196.111.64
8.8.8.8:53

large-cdn.ex.co

dns

chrome.exe

61 B
126 B
1
1

DNS Request

large-cdn.ex.co

DNS Response

199.232.197.91

199.232.193.91
8.8.8.8:53

eus.rubiconproject.com

dns

chrome.exe

68 B
165 B
1
1

DNS Request

eus.rubiconproject.com

DNS Response

2.23.9.250
172.64.151.101:443

ssum-sec.casalemedia.com

https

chrome.exe

10.2kB
16.1kB
27
32
8.8.8.8:53

api.rlcdn.com

dns

chrome.exe

118 B
150 B
2
2

DNS Request

api.rlcdn.com

DNS Request

api.rlcdn.com

DNS Response

34.120.133.55

DNS Response

34.120.133.55
8.8.8.8:53

id.crwdcntrl.net

dns

chrome.exe

62 B
190 B
1
1

DNS Request

id.crwdcntrl.net

DNS Response

52.49.45.15

63.33.74.9

52.19.165.229

34.247.240.165

34.254.52.227

52.50.8.163

52.215.98.156

52.211.142.73
8.8.8.8:53

match.adsrvr.org

dns

chrome.exe

62 B
126 B
1
1

DNS Request

match.adsrvr.org

DNS Response

52.223.40.198

35.71.131.137

3.33.220.150

15.197.193.217
8.8.8.8:53

prg.smartadserver.com

dns

chrome.exe

67 B
442 B
1
1

DNS Request

prg.smartadserver.com

DNS Response

5.196.111.64

149.202.238.96

5.135.209.97

149.202.238.97

178.32.210.227

91.134.110.128

217.182.178.224

178.32.210.226

178.32.197.48

178.32.197.49

91.134.110.129

51.178.195.209

164.132.25.176

164.132.25.177

217.182.178.225

51.178.195.208

5.135.209.96

5.196.111.65
8.8.8.8:53

prebid.media.net

dns

chrome.exe

62 B
78 B
1
1

DNS Request

prebid.media.net

DNS Response

34.120.63.153
8.8.8.8:53

rtb.ex.co

dns

chrome.exe

126 B
239 B
2
2

DNS Request

rtb.ex.co

DNS Response

44.207.87.22

3.232.71.25

44.206.126.35

DNS Request

66.97.40.145.in-addr.arpa
8.8.8.8:53

rtb.openx.net

dns

chrome.exe

59 B
91 B
1
1

DNS Request

rtb.openx.net

DNS Response

35.227.252.103

35.186.253.211
8.8.8.8:53

prebid-server.rubiconproject.com

dns

chrome.exe

78 B
187 B
1
1

DNS Request

prebid-server.rubiconproject.com

DNS Response

69.173.156.150
8.8.8.8:53

ads.yieldmo.com

dns

chrome.exe

61 B
291 B
1
1

DNS Request

ads.yieldmo.com

DNS Response

54.217.164.78

52.211.129.237

52.16.246.58

54.155.87.64

52.211.91.163

52.213.240.31

54.72.64.29

52.50.194.100
8.8.8.8:53

bidder.criteo.com

dns

chrome.exe

63 B
113 B
1
1

DNS Request

bidder.criteo.com

DNS Response

178.250.1.8
8.8.8.8:53

btlr.sharethrough.com

dns

chrome.exe

67 B
227 B
1
1

DNS Request

btlr.sharethrough.com

DNS Response

52.57.224.82

52.29.6.178

18.185.42.31

18.197.99.182

3.69.14.198

3.64.135.1

54.93.146.124

18.197.138.194
8.8.8.8:53

ad.360yield-basic.com

dns

chrome.exe

134 B
524 B
2
2

DNS Request

ad.360yield-basic.com

DNS Request

ad.360yield-basic.com

DNS Response

52.212.11.67

52.214.128.20

54.155.206.189

52.18.168.73

52.48.59.220

52.17.139.76

54.73.231.133

52.51.2.157

DNS Response

52.51.2.157

54.73.231.133

54.155.206.189

34.255.155.127

34.246.179.114

34.255.242.185

54.194.204.172

18.200.130.123
8.8.8.8:53

s.amazon-adsystem.com

dns

chrome.exe

67 B
83 B
1
1

DNS Request

s.amazon-adsystem.com

DNS Response

52.46.151.131
8.8.8.8:53

i.liadm.com

dns

chrome.exe

57 B
224 B
1
1

DNS Request

i.liadm.com

DNS Response

34.234.127.232

52.203.46.124

52.205.95.49

52.23.112.231

23.22.69.33

44.198.92.90

52.4.234.210

44.214.123.156
8.8.8.8:53

rtb.channelexco.com

dns

chrome.exe

130 B
214 B
2
2

DNS Request

rtb.channelexco.com

DNS Response

23.81.164.159

DNS Request

rtb.channelexco.com

DNS Response

23.81.164.159
8.8.8.8:53

dsum-sec.casalemedia.com

dns

chrome.exe

70 B
102 B
1
1

DNS Request

dsum-sec.casalemedia.com

DNS Response

172.64.151.101

104.18.36.155
8.8.8.8:53

trace.mediago.io

dns

chrome.exe

62 B
78 B
1
1

DNS Request

trace.mediago.io

DNS Response

35.208.249.213
8.8.8.8:53

dmp.brand-display.com

dns

chrome.exe

67 B
83 B
1
1

DNS Request

dmp.brand-display.com

DNS Response

34.160.19.107
8.8.8.8:53

sync-tm.everesttech.net

dns

chrome.exe

69 B
223 B
1
1

DNS Request

sync-tm.everesttech.net

DNS Response

151.101.130.49

151.101.66.49

151.101.194.49

151.101.2.49
8.8.8.8:53

e.channelexco.com

dns

chrome.exe

63 B
105 B
1
1

DNS Request

e.channelexco.com

DNS Response

23.19.226.132
8.8.8.8:53

euexchangesync.digitaleast.mobi

dns

chrome.exe

77 B
93 B
1
1

DNS Request

euexchangesync.digitaleast.mobi

DNS Response

34.95.81.168
8.8.8.8:53

230.193.210.162.in-addr.arpa

dns

74 B
137 B
1
1

DNS Request

230.193.210.162.in-addr.arpa
8.8.8.8:53

25.71.232.3.in-addr.arpa

dns

70 B
123 B
1
1

DNS Request

25.71.232.3.in-addr.arpa
8.8.8.8:53

239.188.21.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

239.188.21.2.in-addr.arpa
8.8.8.8:53

190.223.60.23.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

190.223.60.23.in-addr.arpa
8.8.8.8:53

101.151.64.172.in-addr.arpa

dns

73 B
135 B
1
1

DNS Request

101.151.64.172.in-addr.arpa
8.8.8.8:53

133.110.134.91.in-addr.arpa

dns

73 B
109 B
1
1

DNS Request

133.110.134.91.in-addr.arpa
8.8.8.8:53

81.250.54.154.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

81.250.54.154.in-addr.arpa
8.8.8.8:53

8.159.244.35.in-addr.arpa

dns

71 B
122 B
1
1

DNS Request

8.159.244.35.in-addr.arpa
8.8.8.8:53

97.238.202.149.in-addr.arpa

dns

73 B
109 B
1
1

DNS Request

97.238.202.149.in-addr.arpa
8.8.8.8:53

25.236.33.63.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

25.236.33.63.in-addr.arpa
8.8.8.8:53

50.201.222.52.in-addr.arpa

dns

72 B
129 B
1
1

DNS Request

50.201.222.52.in-addr.arpa
8.8.8.8:53

250.9.23.2.in-addr.arpa

dns

69 B
131 B
1
1

DNS Request

250.9.23.2.in-addr.arpa
8.8.8.8:53

198.40.223.52.in-addr.arpa

dns

72 B
128 B
1
1

DNS Request

198.40.223.52.in-addr.arpa
8.8.8.8:53

153.63.120.34.in-addr.arpa

dns

72 B
124 B
1
1

DNS Request

153.63.120.34.in-addr.arpa
8.8.8.8:53

15.45.49.52.in-addr.arpa

dns

70 B
131 B
1
1

DNS Request

15.45.49.52.in-addr.arpa
8.8.8.8:53

103.252.227.35.in-addr.arpa

dns

73 B
126 B
1
1

DNS Request

103.252.227.35.in-addr.arpa
8.8.8.8:53

55.133.120.34.in-addr.arpa

dns

72 B
124 B
1
1

DNS Request

55.133.120.34.in-addr.arpa
8.8.8.8:53

64.111.196.5.in-addr.arpa

dns

71 B
105 B
1
1

DNS Request

64.111.196.5.in-addr.arpa
8.8.8.8:53

78.164.217.54.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

78.164.217.54.in-addr.arpa
8.8.8.8:53

150.156.173.69.in-addr.arpa

dns

73 B
127 B
1
1

DNS Request

150.156.173.69.in-addr.arpa
8.8.8.8:53

8.1.250.178.in-addr.arpa

dns

70 B
124 B
1
1

DNS Request

8.1.250.178.in-addr.arpa
8.8.8.8:53

82.224.57.52.in-addr.arpa

dns

71 B
136 B
1
1

DNS Request

82.224.57.52.in-addr.arpa
8.8.8.8:53

67.11.212.52.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

67.11.212.52.in-addr.arpa
8.8.8.8:53

cm.g.doubleclick.net

dns

chrome.exe

66 B
82 B
1
1

DNS Request

cm.g.doubleclick.net

DNS Response

216.58.201.98
8.8.8.8:53

image6.pubmatic.com

dns

chrome.exe

65 B
136 B
1
1

DNS Request

image6.pubmatic.com

DNS Response

185.64.190.78
8.8.8.8:53

creatives.sascdn.com

dns

chrome.exe

132 B
498 B
2
2

DNS Request

creatives.sascdn.com

DNS Response

23.14.90.90

23.14.90.72

DNS Request

creatives.sascdn.com

DNS Response

23.14.90.90

23.14.90.72
8.8.8.8:53

collector.ex.co

dns

chrome.exe

61 B
109 B
1
1

DNS Request

collector.ex.co

DNS Response

52.205.135.229

54.163.249.122

44.219.102.171
8.8.8.8:53

token.rubiconproject.com

dns

chrome.exe

70 B
151 B
1
1

DNS Request

token.rubiconproject.com

DNS Response

69.173.156.148

69.173.156.149
8.8.8.8:53

dsum.casalemedia.com

dns

chrome.exe

66 B
98 B
1
1

DNS Request

dsum.casalemedia.com

DNS Response

104.18.36.155

172.64.151.101
8.8.8.8:53

ssbsync-global.smartadserver.com

dns

chrome.exe

78 B
455 B
1
1

DNS Request

ssbsync-global.smartadserver.com

DNS Response

164.132.25.180

51.178.195.212

217.182.178.228

5.135.209.100

178.32.210.230

178.32.197.52

178.32.197.53

91.134.110.133

178.32.210.231

217.182.178.229

5.196.111.69

5.135.209.101

149.202.238.100

5.196.111.68

164.132.25.181

91.134.110.132

149.202.238.101

51.178.195.213
8.8.8.8:53

a.nel.cloudflare.com

dns

chrome.exe

66 B
82 B
1
1

DNS Request

a.nel.cloudflare.com

DNS Response

35.190.80.1
216.58.201.98:443

cm.g.doubleclick.net

https

chrome.exe

15.4kB
27.1kB
69
74
8.8.8.8:53

dis.criteo.com

dns

chrome.exe

60 B
110 B
1
1

DNS Request

dis.criteo.com

DNS Response

178.250.1.9
8.8.8.8:53

aax-eu.amazon-adsystem.com

dns

chrome.exe

72 B
88 B
1
1

DNS Request

aax-eu.amazon-adsystem.com

DNS Response

52.95.125.22
8.8.8.8:53

ib.adnxs.com

dns

chrome.exe

58 B
319 B
1
1

DNS Request

ib.adnxs.com

DNS Response

185.89.210.122

185.89.210.212

185.89.210.90

185.89.210.20

185.89.210.82

185.89.211.84

185.89.210.244

185.89.210.153

185.89.210.141

185.89.211.116

185.89.210.180

185.89.210.46
8.8.8.8:53

cms.quantserve.com

dns

chrome.exe

64 B
174 B
1
1

DNS Request

cms.quantserve.com

DNS Response

91.228.74.166

91.228.74.159

91.228.74.200

91.228.74.244
8.8.8.8:53

x.bidswitch.net

dns

chrome.exe

122 B
208 B
2
2

DNS Request

x.bidswitch.net

DNS Response

35.214.149.91

DNS Request

x.bidswitch.net

DNS Response

35.214.149.91
8.8.8.8:53

sync.srv.stackadapt.com

dns

chrome.exe

69 B
197 B
1
1

DNS Request

sync.srv.stackadapt.com

DNS Response

54.174.33.90

54.172.224.53

54.164.16.2

54.204.57.1

52.86.0.224

54.147.209.196

54.159.1.74

54.166.206.131
8.8.8.8:53

dsp.adfarm1.adition.com

dns

chrome.exe

69 B
101 B
1
1

DNS Request

dsp.adfarm1.adition.com

DNS Response

85.114.159.93

85.114.159.118
35.190.80.1:443

a.nel.cloudflare.com

https

chrome.exe

2.6kB
4.1kB
7
8
8.8.8.8:53

simage2.pubmatic.com

dns

chrome.exe

66 B
139 B
1
1

DNS Request

simage2.pubmatic.com

DNS Response

198.47.127.205
8.8.8.8:53

pixel-us-east.rubiconproject.com

dns

chrome.exe

78 B
151 B
1
1

DNS Request

pixel-us-east.rubiconproject.com

DNS Response

69.173.151.100
8.8.8.8:53

image2.pubmatic.com

dns

chrome.exe

65 B
137 B
1
1

DNS Request

image2.pubmatic.com

DNS Response

198.47.127.205
8.8.8.8:53

t.adx.opera.com

dns

chrome.exe

61 B
104 B
1
1

DNS Request

t.adx.opera.com

DNS Response

82.145.213.8
8.8.8.8:53

dsp.nrich.ai

dns

chrome.exe

58 B
74 B
1
1

DNS Request

dsp.nrich.ai

DNS Response

51.68.39.188
8.8.8.8:53

pixel.rubiconproject.com

dns

chrome.exe

140 B
302 B
2
2

DNS Request

pixel.rubiconproject.com

DNS Request

pixel.rubiconproject.com

DNS Response

69.173.156.148

69.173.156.149

DNS Response

69.173.156.149

69.173.156.148
8.8.8.8:53

match.prod.bidr.io

dns

chrome.exe

64 B
192 B
1
1

DNS Request

match.prod.bidr.io

DNS Response

34.253.242.146

34.251.183.115

52.213.189.168

34.246.197.210

52.212.235.85

52.17.93.114

52.17.120.207

34.240.216.83
8.8.8.8:53

pr-bh.ybp.yahoo.com

dns

chrome.exe

65 B
173 B
1
1

DNS Request

pr-bh.ybp.yahoo.com

DNS Response

54.171.39.192

54.247.33.148

34.250.228.35

54.217.40.10
8.8.8.8:53

rtb-csync.smartadserver.com

dns

chrome.exe

73 B
414 B
1
1

DNS Request

rtb-csync.smartadserver.com

DNS Response

51.178.195.216

149.202.238.105

51.178.195.217

5.196.111.72

91.134.110.136

178.32.197.56

217.182.178.234

5.135.209.104

164.132.25.184

149.202.238.104

164.132.25.185

178.32.197.57

91.134.110.137

5.135.209.105

217.182.178.233

5.196.111.73
8.8.8.8:53

bh.contextweb.com

dns

chrome.exe

63 B
129 B
1
1

DNS Request

bh.contextweb.com

DNS Response

208.93.169.131
8.8.8.8:53

px.ads.linkedin.com

dns

chrome.exe

65 B
168 B
1
1

DNS Request

px.ads.linkedin.com

DNS Response

13.107.42.14
8.8.8.8:53

ad.mrtnsvr.com

dns

chrome.exe

120 B
152 B
2
2

DNS Request

ad.mrtnsvr.com

DNS Response

34.102.163.6

DNS Request

ad.mrtnsvr.com

DNS Response

34.102.163.6
8.8.8.8:53

107.19.160.34.in-addr.arpa

dns

72 B
124 B
1
1

DNS Request

107.19.160.34.in-addr.arpa
8.8.8.8:53

232.127.234.34.in-addr.arpa

dns

73 B
129 B
1
1

DNS Request

232.127.234.34.in-addr.arpa
8.8.8.8:53

131.151.46.52.in-addr.arpa

dns

72 B
143 B
1
1

DNS Request

131.151.46.52.in-addr.arpa
8.8.8.8:53

49.130.101.151.in-addr.arpa

dns

73 B
133 B
1
1

DNS Request

49.130.101.151.in-addr.arpa
8.8.8.8:53

168.81.95.34.in-addr.arpa

dns

71 B
122 B
1
1

DNS Request

168.81.95.34.in-addr.arpa
8.8.8.8:53

132.226.19.23.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

132.226.19.23.in-addr.arpa
8.8.8.8:53

213.249.208.35.in-addr.arpa

dns

73 B
126 B
1
1

DNS Request

213.249.208.35.in-addr.arpa
8.8.8.8:53

159.164.81.23.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

159.164.81.23.in-addr.arpa
8.8.8.8:53

98.201.58.216.in-addr.arpa

dns

72 B
169 B
1
1

DNS Request

98.201.58.216.in-addr.arpa
8.8.8.8:53

78.190.64.185.in-addr.arpa

dns

72 B
132 B
1
1

DNS Request

78.190.64.185.in-addr.arpa
8.8.8.8:53

90.90.14.23.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

90.90.14.23.in-addr.arpa
8.8.8.8:53

229.135.205.52.in-addr.arpa

dns

73 B
129 B
1
1

DNS Request

229.135.205.52.in-addr.arpa
8.8.8.8:53

148.156.173.69.in-addr.arpa

dns

73 B
127 B
1
1

DNS Request

148.156.173.69.in-addr.arpa
8.8.8.8:53

1.80.190.35.in-addr.arpa

dns

70 B
120 B
1
1

DNS Request

1.80.190.35.in-addr.arpa
8.8.8.8:53

9.1.250.178.in-addr.arpa

dns

70 B
124 B
1
1

DNS Request

9.1.250.178.in-addr.arpa
8.8.8.8:53

22.125.95.52.in-addr.arpa

dns

71 B
142 B
1
1

DNS Request

22.125.95.52.in-addr.arpa
8.8.8.8:53

122.210.89.185.in-addr.arpa

dns

73 B
134 B
1
1

DNS Request

122.210.89.185.in-addr.arpa
8.8.8.8:53

166.74.228.91.in-addr.arpa

dns

72 B
132 B
1
1

DNS Request

166.74.228.91.in-addr.arpa
8.8.8.8:53

91.149.214.35.in-addr.arpa

dns

72 B
124 B
1
1

DNS Request

91.149.214.35.in-addr.arpa
8.8.8.8:53

93.159.114.85.in-addr.arpa

dns

72 B
109 B
1
1

DNS Request

93.159.114.85.in-addr.arpa
8.8.8.8:53

205.127.47.198.in-addr.arpa

dns

73 B
127 B
1
1

DNS Request

205.127.47.198.in-addr.arpa
8.8.8.8:53

90.33.174.54.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

90.33.174.54.in-addr.arpa
8.8.8.8:53

8.213.145.82.in-addr.arpa

dns

71 B
132 B
1
1

DNS Request

8.213.145.82.in-addr.arpa
8.8.8.8:53

100.151.173.69.in-addr.arpa

dns

73 B
127 B
1
1

DNS Request

100.151.173.69.in-addr.arpa
8.8.8.8:53

188.39.68.51.in-addr.arpa

dns

71 B
109 B
1
1

DNS Request

188.39.68.51.in-addr.arpa
8.8.8.8:53

146.242.253.34.in-addr.arpa

dns

73 B
137 B
1
1

DNS Request

146.242.253.34.in-addr.arpa
8.8.8.8:53

192.39.171.54.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

192.39.171.54.in-addr.arpa
8.8.8.8:53

216.195.178.51.in-addr.arpa

dns

73 B
109 B
1
1

DNS Request

216.195.178.51.in-addr.arpa
8.8.8.8:53

131.169.93.208.in-addr.arpa

dns

73 B
138 B
1
1

DNS Request

131.169.93.208.in-addr.arpa
8.8.8.8:53

csync.loopme.me

dns

chrome.exe

61 B
291 B
1
1

DNS Request

csync.loopme.me

DNS Response

35.214.243.89

35.214.139.131

35.214.154.224

35.214.226.31

35.214.174.180

35.214.191.66

35.214.230.142

35.214.154.11

35.214.129.72

35.214.157.207

35.214.130.98
8.8.8.8:53

sync.ipredictive.com

dns

chrome.exe

66 B
194 B
1
1

DNS Request

sync.ipredictive.com

DNS Response

54.160.38.67

54.161.57.47

52.87.19.33

54.157.154.118

52.87.13.120

52.44.76.179

52.72.140.222

52.87.131.177
8.8.8.8:53

match.sharethrough.com

dns

chrome.exe

68 B
233 B
1
1

DNS Request

match.sharethrough.com

DNS Response

18.196.133.194

3.122.213.30

18.193.153.32

35.157.83.226

52.57.239.98

18.159.181.185

18.158.98.19

35.156.19.8
8.8.8.8:53

ipac.ctnsnet.com

dns

chrome.exe

62 B
78 B
1
1

DNS Request

ipac.ctnsnet.com

DNS Response

35.186.193.173
8.8.8.8:53

d5p.de17a.com

dns

chrome.exe

59 B
251 B
1
1

DNS Request

d5p.de17a.com

DNS Response

213.155.156.166

213.155.156.169

213.155.156.165

213.155.156.182

213.155.156.181

213.155.156.183

213.155.156.167

213.155.156.184

213.155.156.185

213.155.156.164

213.155.156.180

213.155.156.168
8.8.8.8:53

core.iprom.net

dns

chrome.exe

60 B
76 B
1
1

DNS Request

core.iprom.net

DNS Response

195.5.165.20
8.8.8.8:53

p.rfihub.com

dns

chrome.exe

58 B
148 B
1
1

DNS Request

p.rfihub.com

DNS Response

193.0.160.130
8.8.8.8:53

cm-supply-web.gammaplatform.com

dns

chrome.exe

77 B
93 B
1
1

DNS Request

cm-supply-web.gammaplatform.com

DNS Response

35.186.154.107
8.8.8.8:53

live.primis.tech

dns

chrome.exe

62 B
169 B
1
1

DNS Request

live.primis.tech

DNS Response

52.222.201.10

52.222.201.14

52.222.201.51

52.222.201.106
8.8.8.8:53

pixel.tapad.com

dns

chrome.exe

61 B
77 B
1
1

DNS Request

pixel.tapad.com

DNS Response

34.111.113.62
8.8.8.8:53

prebid.a-mo.net

dns

chrome.exe

61 B
139 B
1
1

DNS Request

prebid.a-mo.net

DNS Response

145.40.97.66

147.75.84.158

145.40.97.67
8.8.8.8:53

cm.adgrx.com

dns

chrome.exe

58 B
135 B
1
1

DNS Request

cm.adgrx.com

DNS Response

52.215.155.11
8.8.8.8:53

sync.crwdcntrl.net

dns

chrome.exe

64 B
192 B
1
1

DNS Request

sync.crwdcntrl.net

DNS Response

54.72.120.129

63.33.74.9

52.50.8.163

54.229.28.67

34.247.240.165

52.215.98.156

34.254.52.227

52.211.142.73
8.8.8.8:53

cr.frontend.weborama.fr

dns

chrome.exe

69 B
85 B
1
1

DNS Request

cr.frontend.weborama.fr

DNS Response

34.111.129.221
8.8.8.8:53

mwzeom.zeotap.com

dns

chrome.exe

63 B
111 B
1
1

DNS Request

mwzeom.zeotap.com

DNS Response

104.22.50.98

172.67.40.173

104.22.51.98
8.8.8.8:53

um.simpli.fi

dns

chrome.exe

58 B
106 B
1
1

DNS Request

um.simpli.fi

DNS Response

34.91.62.186

35.204.158.49

35.204.74.118
8.8.8.8:53

c1.adform.net

dns

chrome.exe

59 B
176 B
1
1

DNS Request

c1.adform.net

DNS Response

37.157.6.243

37.157.6.254

37.157.6.233

37.157.6.232

37.157.6.237
8.8.8.8:53

ups.analytics.yahoo.com

dns

chrome.exe

69 B
254 B
1
1

DNS Request

ups.analytics.yahoo.com

DNS Response

3.75.62.37

3.71.149.231
8.8.8.8:53

creativecdn.com

dns

chrome.exe

61 B
77 B
1
1

DNS Request

creativecdn.com

DNS Response

185.184.8.90
8.8.8.8:53

pixel-sync.sitescout.com

dns

chrome.exe

70 B
86 B
1
1

DNS Request

pixel-sync.sitescout.com

DNS Response

34.36.216.150
8.8.8.8:53

pubmatic-match.dotomi.com

dns

chrome.exe

71 B
147 B
1
1

DNS Request

pubmatic-match.dotomi.com

DNS Response

64.158.223.140
8.8.8.8:53

ad.turn.com

dns

chrome.exe

57 B
109 B
1
1

DNS Request

ad.turn.com

DNS Response

46.228.164.11
34.111.113.62:443

pixel.tapad.com

https

chrome.exe

3.0kB
5.9kB
8
10
8.8.8.8:53

match.adsby.bidtheatre.com

dns

chrome.exe

72 B
120 B
1
1

DNS Request

match.adsby.bidtheatre.com

DNS Response

188.166.17.21

64.227.64.62

134.122.57.34
8.8.8.8:53

wt.rqtrk.eu

dns

chrome.exe

128 B
270 B
2
2

DNS Request

wt.rqtrk.eu

DNS Response

57.129.18.109

57.129.18.111

57.129.18.121

57.129.18.113

57.129.18.105

DNS Request

0.160.250.34.in-addr.arpa
8.8.8.8:53

14.42.107.13.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

14.42.107.13.in-addr.arpa
8.8.8.8:53

6.163.102.34.in-addr.arpa

dns

71 B
122 B
1
1

DNS Request

6.163.102.34.in-addr.arpa
8.8.8.8:53

194.133.196.18.in-addr.arpa

dns

73 B
140 B
1
1

DNS Request

194.133.196.18.in-addr.arpa
8.8.8.8:53

173.193.186.35.in-addr.arpa

dns

73 B
126 B
1
1

DNS Request

173.193.186.35.in-addr.arpa
8.8.8.8:53

166.156.155.213.in-addr.arpa

dns

148 B
272 B
2
2

DNS Request

166.156.155.213.in-addr.arpa

DNS Request

166.156.155.213.in-addr.arpa
8.8.8.8:53

67.38.160.54.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

67.38.160.54.in-addr.arpa
8.8.8.8:53

130.160.0.193.in-addr.arpa

dns

72 B
139 B
1
1

DNS Request

130.160.0.193.in-addr.arpa
8.8.8.8:53

20.165.5.195.in-addr.arpa

dns

71 B
123 B
1
1

DNS Request

20.165.5.195.in-addr.arpa
8.8.8.8:53

62.113.111.34.in-addr.arpa

dns

72 B
124 B
1
1

DNS Request

62.113.111.34.in-addr.arpa
8.8.8.8:53

10.201.222.52.in-addr.arpa

dns

72 B
129 B
1
1

DNS Request

10.201.222.52.in-addr.arpa
8.8.8.8:53

11.155.215.52.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

11.155.215.52.in-addr.arpa
8.8.8.8:53

129.120.72.54.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

129.120.72.54.in-addr.arpa
8.8.8.8:53

221.129.111.34.in-addr.arpa

dns

73 B
126 B
1
1

DNS Request

221.129.111.34.in-addr.arpa
8.8.8.8:53

150.216.36.34.in-addr.arpa

dns

72 B
124 B
1
1

DNS Request

150.216.36.34.in-addr.arpa
8.8.8.8:53

98.50.22.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

98.50.22.104.in-addr.arpa
8.8.8.8:53

90.8.184.185.in-addr.arpa

dns

71 B
113 B
1
1

DNS Request

90.8.184.185.in-addr.arpa
8.8.8.8:53

186.62.91.34.in-addr.arpa

dns

71 B
122 B
1
1

DNS Request

186.62.91.34.in-addr.arpa
8.8.8.8:53

243.6.157.37.in-addr.arpa

dns

71 B
143 B
1
1

DNS Request

243.6.157.37.in-addr.arpa
8.8.8.8:53

37.62.75.3.in-addr.arpa

dns

69 B
132 B
1
1

DNS Request

37.62.75.3.in-addr.arpa
8.8.8.8:53

140.223.158.64.in-addr.arpa

dns

73 B
116 B
1
1

DNS Request

140.223.158.64.in-addr.arpa
8.8.8.8:53

11.164.228.46.in-addr.arpa

dns

72 B
112 B
1
1

DNS Request

11.164.228.46.in-addr.arpa
8.8.8.8:53

21.17.166.188.in-addr.arpa

dns

72 B
139 B
1
1

DNS Request

21.17.166.188.in-addr.arpa
34.111.129.221:443

cr.frontend.weborama.fr

https

chrome.exe

2.6kB
5.4kB
6
8
34.36.216.150:443

pixel-sync.sitescout.com

https

chrome.exe

2.9kB
5.5kB
9
10
8.8.8.8:53

image4.pubmatic.com

dns

chrome.exe

65 B
143 B
1
1

DNS Request

image4.pubmatic.com

DNS Response

198.47.127.20
8.8.8.8:53

idsync.frontend.weborama.fr

dns

chrome.exe

73 B
89 B
1
1

DNS Request

idsync.frontend.weborama.fr

DNS Response

34.111.131.239
8.8.8.8:53

pm.w55c.net

dns

chrome.exe

57 B
123 B
1
1

DNS Request

pm.w55c.net

DNS Response

34.251.19.157

54.77.130.68

34.250.160.0
8.8.8.8:53

casale-match.dotomi.com

dns

chrome.exe

138 B
290 B
2
2

DNS Request

casale-match.dotomi.com

DNS Request

casale-match.dotomi.com

DNS Response

89.207.16.140

DNS Response

89.207.16.140
8.8.8.8:53

static.criteo.net

dns

chrome.exe

63 B
113 B
1
1

DNS Request

static.criteo.net

DNS Response

178.250.1.3
8.8.8.8:53

109.18.129.57.in-addr.arpa

dns

72 B
109 B
1
1

DNS Request

109.18.129.57.in-addr.arpa
8.8.8.8:53

20.127.47.198.in-addr.arpa

dns

72 B
126 B
1
1

DNS Request

20.127.47.198.in-addr.arpa
8.8.8.8:53

239.131.111.34.in-addr.arpa

dns

73 B
126 B
1
1

DNS Request

239.131.111.34.in-addr.arpa
8.8.8.8:53

140.16.207.89.in-addr.arpa

dns

72 B
115 B
1
1

DNS Request

140.16.207.89.in-addr.arpa
8.8.8.8:53

157.19.251.34.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

157.19.251.34.in-addr.arpa
8.8.8.8:53

3.1.250.178.in-addr.arpa

dns

70 B
124 B
1
1

DNS Request

3.1.250.178.in-addr.arpa
8.8.8.8:53

gum.criteo.com

dns

chrome.exe

60 B
107 B
1
1

DNS Request

gum.criteo.com

DNS Response

178.250.1.11
35.244.159.8:443

u.openx.net

https

chrome.exe

6.9kB
7.6kB
14
15
8.8.8.8:53

playbuzzltd-d.openx.net

dns

chrome.exe

69 B
101 B
1
1

DNS Request

playbuzzltd-d.openx.net

DNS Response

34.98.64.218

35.244.159.8
8.8.8.8:53

contextual.media.net

dns

chrome.exe

132 B
164 B
2
2

DNS Request

contextual.media.net

DNS Response

2.23.8.24

DNS Request

contextual.media.net

DNS Response

2.23.8.24
8.8.8.8:53

sync.adkernel.com

dns

chrome.exe

63 B
109 B
1
1

DNS Request

sync.adkernel.com

DNS Response

77.245.57.72
8.8.8.8:53

image8.pubmatic.com

dns

chrome.exe

65 B
146 B
1
1

DNS Request

image8.pubmatic.com

DNS Response

198.47.127.18
8.8.8.8:53

us-u.openx.net

dns

chrome.exe

60 B
92 B
1
1

DNS Request

us-u.openx.net

DNS Response

35.244.159.8

34.98.64.218
8.8.8.8:53

eu-u.openx.net

dns

chrome.exe

60 B
92 B
1
1

DNS Request

eu-u.openx.net

DNS Response

34.98.64.218

35.244.159.8
8.8.8.8:53

green.erne.co

dns

chrome.exe

59 B
235 B
1
1

DNS Request

green.erne.co

DNS Response

141.95.171.140

141.95.171.142

141.94.242.206

141.95.172.216

141.94.242.204

141.95.171.139

141.94.242.226

141.95.171.141

141.94.161.158

141.94.161.190

141.94.240.143
8.8.8.8:53

sync.1rx.io

dns

chrome.exe

57 B
73 B
1
1

DNS Request

sync.1rx.io

DNS Response

46.228.174.117
8.8.8.8:53

a.tribalfusion.com

dns

chrome.exe

64 B
96 B
1
1

DNS Request

a.tribalfusion.com

DNS Response

104.18.25.173

104.18.24.173
8.8.8.8:53

matching.truffle.bid

dns

chrome.exe

66 B
98 B
1
1

DNS Request

matching.truffle.bid

DNS Response

162.55.120.196

23.88.86.2
8.8.8.8:53

pixel-eu.onaudience.com

dns

chrome.exe

69 B
197 B
1
1

DNS Request

pixel-eu.onaudience.com

DNS Response

141.94.171.214

146.59.148.16

141.94.171.215

141.94.171.213

141.94.170.77

141.94.171.216

141.94.170.64

141.94.171.212
8.8.8.8:53

uipglob.semasio.net

dns

chrome.exe

65 B
152 B
1
1

DNS Request

uipglob.semasio.net

DNS Response

77.243.51.121

77.243.51.122
8.8.8.8:53

pixel.onaudience.com

dns

chrome.exe

66 B
226 B
1
1

DNS Request

pixel.onaudience.com

DNS Response

141.94.171.212

148.113.153.94

141.94.171.215

141.94.171.213

141.94.170.77

141.94.171.214

148.113.153.93

141.94.170.64

141.94.171.216

146.59.148.16
8.8.8.8:53

sync-pm.ads.yieldmo.com

dns

chrome.exe

69 B
314 B
1
1

DNS Request

sync-pm.ads.yieldmo.com

DNS Response

54.229.31.146

52.30.120.118

52.30.110.0

52.31.121.40

54.216.188.132

52.209.221.228

54.171.30.155

34.250.157.234
8.8.8.8:53

sync.targeting.unrulymedia.com

dns

chrome.exe

76 B
117 B
1
1

DNS Request

sync.targeting.unrulymedia.com

DNS Response

46.228.174.117
8.8.8.8:53

ps.eyeota.net

dns

chrome.exe

59 B
75 B
1
1

DNS Request

ps.eyeota.net

DNS Response

3.125.70.222
104.18.25.173:443

a.tribalfusion.com

https

chrome.exe

3.4kB
7.1kB
13
14
8.8.8.8:53

s.tribalfusion.com

dns

chrome.exe

64 B
96 B
1
1

DNS Request

s.tribalfusion.com

DNS Response

104.18.24.173

104.18.25.173
8.8.8.8:53

11.1.250.178.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

11.1.250.178.in-addr.arpa
8.8.8.8:53

72.57.245.77.in-addr.arpa

dns

71 B
146 B
1
1

DNS Request

72.57.245.77.in-addr.arpa
8.8.8.8:53

18.127.47.198.in-addr.arpa

dns

72 B
126 B
1
1

DNS Request

18.127.47.198.in-addr.arpa
8.8.8.8:53

140.171.95.141.in-addr.arpa

dns

73 B
105 B
1
1

DNS Request

140.171.95.141.in-addr.arpa
8.8.8.8:53

117.174.228.46.in-addr.arpa

dns

73 B
133 B
1
1

DNS Request

117.174.228.46.in-addr.arpa
8.8.8.8:53

24.8.23.2.in-addr.arpa

dns

68 B
129 B
1
1

DNS Request

24.8.23.2.in-addr.arpa
8.8.8.8:53

173.25.18.104.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

173.25.18.104.in-addr.arpa
8.8.8.8:53

214.171.94.141.in-addr.arpa

dns

73 B
110 B
1
1

DNS Request

214.171.94.141.in-addr.arpa
8.8.8.8:53

196.120.55.162.in-addr.arpa

dns

73 B
131 B
1
1

DNS Request

196.120.55.162.in-addr.arpa
8.8.8.8:53

simage4.pubmatic.com

dns

chrome.exe

66 B
144 B
1
1

DNS Request

simage4.pubmatic.com

DNS Response

198.47.127.20
8.8.8.8:53

cms.analytics.yahoo.com

dns

chrome.exe

69 B
254 B
1
1

DNS Request

cms.analytics.yahoo.com

DNS Response

3.71.149.231

3.75.62.37
8.8.8.8:53

hbx.media.net

dns

chrome.exe

118 B
150 B
2
2

DNS Request

hbx.media.net

DNS Request

hbx.media.net

DNS Response

2.21.188.27

DNS Response

2.21.188.27
8.8.8.8:53

c21lg-d.media.net

dns

chrome.exe

63 B
148 B
1
1

DNS Request

c21lg-d.media.net

DNS Response

2.21.188.27
8.8.8.8:53

medianet-match.dotomi.com

dns

chrome.exe

71 B
147 B
1
1

DNS Request

medianet-match.dotomi.com

DNS Response

64.158.223.140
2.23.8.24:443

contextual.media.net

https

chrome.exe

9.8kB
21.4kB
40
50
8.8.8.8:53

cs.media.net

dns

chrome.exe

116 B
148 B
2
2

DNS Request

cs.media.net

DNS Request

cs.media.net

DNS Response

2.21.188.27

DNS Response

2.21.188.27
8.8.8.8:53

vop.sundaysky.com

dns

chrome.exe

63 B
194 B
1
1

DNS Request

vop.sundaysky.com

DNS Response

34.203.44.126

34.234.198.234

54.237.180.194

54.156.208.114
8.8.8.8:53

d.turn.com

dns

chrome.exe

56 B
93 B
1
1

DNS Request

d.turn.com

DNS Response

46.228.164.13
8.8.8.8:53

212.171.94.141.in-addr.arpa

dns

73 B
110 B
1
1

DNS Request

212.171.94.141.in-addr.arpa
8.8.8.8:53

121.51.243.77.in-addr.arpa

dns

72 B
132 B
1
1

DNS Request

121.51.243.77.in-addr.arpa
8.8.8.8:53

146.31.229.54.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

146.31.229.54.in-addr.arpa
8.8.8.8:53

222.70.125.3.in-addr.arpa

dns

71 B
136 B
1
1

DNS Request

222.70.125.3.in-addr.arpa
8.8.8.8:53

27.188.21.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

27.188.21.2.in-addr.arpa
8.8.8.8:53

13.164.228.46.in-addr.arpa

dns

72 B
101 B
1
1

DNS Request

13.164.228.46.in-addr.arpa

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

PowerShell

T1059.001

Persistence

Event Triggered Execution

T1546

Accessibility Features

T1546.008

Privilege Escalation

Event Triggered Execution

T1546

Accessibility Features

T1546.008

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Process Discovery

T1057

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776

Filesize
471B

MD5
b9b9f42ce6d2b20bf169d05480d239d4

SHA1
32b094cc2ff79f07fcd68d585846b919bc350e4d

SHA256
4d16bb8c9a34d4de9d39bb5f0e87095617b5ad551112db17b38b6cb752fbdae4

SHA512
36b45c544439c6b1fab4c2fa58712475a65ad467e3da61086c4a953d6587d35f5c6ae7de740863295ae0d3534cbf67d0bed6843d95b6786b50431bfeebcf1010

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776

Filesize
404B

MD5
8f4bd73bba60460cff3e171b94cbd2e1

SHA1
b6dde9bc6ab2a851139b518b24fc163a865094c3

SHA256
77664f097a6b2a7176017ad346bd5304defd7380b0a78a7eac9c0c1a3ea16f55

SHA512
a05145420a2959573409bc205fa8083861c45a00984ddbb8fd831d712756c36b073f0b54541d3f786b1a4dea6ba4d4798301f22c0df6639bd8b299683982f529

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

Filesize
40B

MD5
c86640aaa33658aa24db5a9e946108b5

SHA1
42a8819c961a6db7e165a84bab0781ef72e71d81

SHA256
bad1ea3662cf7bbc1c20e838088b1b20eb1cdc6060eff54f7513c67a6bfd0717

SHA512
5fea5255ffee9a38d99ff112b0ccadccc5c08458ba90d91655a92bbfdb83d921188bd1952893c934467d211b10e6b9f89ae8b4a5fe1a3db1124641f86897fc83

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\1bb8414b-dcb5-4401-bff8-26070e1ccc44.tmp

Filesize
7KB

MD5
da57d9b6563827437e3b2a3c6fa301a3

SHA1
1f5e6fb0405a5caa00d86819c2680d29b8db5bbf

SHA256
057c1217477db3e20cfaa81b737b11b29005ff02aae899972d24a6cabe5a2f02

SHA512
552a07a91044b08d9a376b67e1c9a90070c06593f1698853e4d903bc6d0146722ef22f74fe2b90788d17c4fa4bdc408bf992c68fd756cf8ae87a64d27e5ed41b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

Filesize
174KB

MD5
056d8d48d2ac08e9c07910fd031fcafa

SHA1
d2438c5c892c6fdd969e5f03e53b644e05aa10ec

SHA256
997b40d03a2af5c5c174df937bf6391ebab3108e5658786a72ce9eb2dfe317e4

SHA512
957f4ef73a863b44c2f26e95b983393a7f31904b9a1142765b512829080baecbf523bf8bb7b440c5b70e4a4e91fe330b4001bd47c50ec934eed44027670f732c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

Filesize
71KB

MD5
21dab2772c630855b88d662b6fc16b48

SHA1
823a3626c0b26adb32df45fe235b029ca8e49f94

SHA256
91cdb014ede3aeb6f6829a00b1434417bbbf803570e03f6f05fdf2a77af4cb5f

SHA512
a9c224a40d0fe75f66612470991faf26659e051a4d03eb397529df4cfccc416d62487f7645728c34911dbbc3710ff61ce7754cddca3095ec167effb9bea9702e

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000045

Filesize
30KB

MD5
65162f996ce398fa95636a0793ade83b

SHA1
9566ac2aaa5ae50d6255efeec82d974f8598be9a

SHA256
fb9d7136ea2365dd3f8ed4a35a71327a5bed5a7a7959f6b9dfb0c38414da32da

SHA512
8fd7858e81b88a9e60f00a3c70ccd7534da524c124a88f3fdc47570a59b87a2592434aa27a451a7dee6cf2160d61af24bbd214c35f49104dd5f5754996dd69f0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000af

Filesize
137KB

MD5
4abaab8e7de1b432de604b80bb1ed6d9

SHA1
b2b6af238b1a5447d6a1298fd5437331ca53a9ab

SHA256
f1bca05f29b170f9ac7ead7d29850d5b54a2878596ece51edf5947f529f2dd18

SHA512
72ed23003c13bdca7cec70becde014e5654fea43b9776e1c013733bc94084e94698fbdc982f5507ec16b03dafba50c26d2e5bd1c9f4efc808d27d75a835b5241

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b2

Filesize
250KB

MD5
9a23e02c51224896115a872ee5f62800

SHA1
447ac79a43947ca2519a6a9e4d63333c81156c06

SHA256
f6acbc67934394aa13122f6cb281e96a0765dca464725108b63b046da126831b

SHA512
9d1e4546a4ced1959212bd1c0f0f8f8a09e6d69b85db5d9cd0172c614745c46143b269ac9a47253fadccfd5834f2db03d35398db16419607b4e749fbd8938321

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b6

Filesize
142KB

MD5
25851d979c841f8b89dbe3218c12160b

SHA1
6ff9133123dd5d855642ece0a5600941dc1e2a21

SHA256
8bfd4f08f5e3b456ba52571c86a9f18e889dc2d337752c1cb442c0087cdc79c0

SHA512
a58580a81a3a35004d742309c8f44edf84d5d55b14be1d91378da68196d5f599f1e137f20da6c051013037ef8175121df8f2c26d5b8cdefcb57385bbb47a55ba

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b9

Filesize
76KB

MD5
780da1b5b535dbaac26fac4b4b016d90

SHA1
2105ccd0677faa41b50b8b37fefb10fee2df18b6

SHA256
a81b5d63b6122abca07088a5edb93b7561798a662c583a0c66f42e9561af6d30

SHA512
7a04f6dc150ad2b18015ad501118b16d89cec92f15952f8e414ddd721d100394dc5350f4d8f4dccf803c2612267eb869e3eae8fecf947f4f9c6def6a443b4cae

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bc

Filesize
107KB

MD5
27df62a07c2e93c196302ba0931c5001

SHA1
7dea0ac816114d98cf272e062014ed4a12b755ff

SHA256
88c157bfb97579e9d15e4d9397bf0db75b96ea526567a2b42583b3da18003db6

SHA512
013587fdc8a40bae312134eccf9883fc10d1c626d0befa6bbfbfb8b6f93345bb769858946d6994df9eea8e5dec0c39aa33db36058cc2d0c38e69b32076bcfe41

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bd

Filesize
23KB

MD5
984850a72d69f48adee0195c308c81fe

SHA1
816f7155f2ca133c1d3ad7083766731326920e30

SHA256
7f1a72a83330106b371210cff5640db8038b6a9246b3488ecb111f26835d050a

SHA512
fd9b9c36fc9073ad747170433922f989f2e2206971ad2a376f9c10c1bae5743fc04cae76a4eed8cd1466ded8f207a8828e9dcae43377c63cf7988a393066dec1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c0

Filesize
27KB

MD5
7820201f0db0c706a0ea5bb7ce018ef2

SHA1
6d116650afbb3b25bfd6226c7d5ee00dd1fe4515

SHA256
04f262a5cce0399379de17e5635f1e1acaf4371afe981edaaf792625a682c44a

SHA512
bfecb88d8852c413525e1e1bdb3eb69c97a10e4ff67ae3ca5eb97fff5a2ee369a1b80a0d314440a375d0f9e950e0e970a6de6afed09062d8523ca28ac878946f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000d3

Filesize
16KB

MD5
49295de6ccd23cf80b6418a2d209868f

SHA1
42a955b4560bb22cb9b5b39577f7a691ea345018

SHA256
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa

SHA512
2954ab185fd84a08933bb6e79d91e301021fce4e632b477e765c172cacf72913561e101ed2f7e66bfbdc5946b35f2b63eb2b6f878e0afc9d26ffe71ee112a1c0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000109

Filesize
98KB

MD5
0d5a212d8c2029a60cce8178d6437482

SHA1
b8335dab89c63fc4526a2c1225528a0190205366

SHA256
8359279a768d7f7b0b9590d3a4754e33c2a3816163a40b58f6d4ce6bcaac2b5b

SHA512
d32935dbb809586cd01f7cdc3887fc003cf9801747f6ecd59d31b4a377cbb05687db29e6f73982765a3ca41ca5d37aa926b103e85f24fd60a4063851dffa9254

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\920445ca75376f6a_0

Filesize
229B

MD5
fe77b78e8636ac1644505e600025ab6e

SHA1
78bbcf9a426c9edb149731adb21bf110a25e71a9

SHA256
06f38be3a9da5b5ffd2845f44d6d04d2e9e49ffd639b2cd6bdfb1712644cb28a

SHA512
53c7a281cac2a7a5885f4caff7029001164eb8c7300ddd2b791ba7d5a16448a0b86ab1b461e28fe9a60fbf563041fd71ac066cced7672808c11b5799cdd2b9fb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
480B

MD5
b08f5ef5f0e01c45405aed221df51990

SHA1
e8aebc139d6901ff0833b5fbbbaf36580c608ad2

SHA256
68b08024bf79c718da6eb66abc1d0a81eb955b67d0e4982b92376958c5096729

SHA512
d5fb404ca6262d67cdbd76ecbed24ee706cebdeeaf76d240f4717afdf23658401606b1fdc42f8daec32ab3fd4f45daf8523d22b746da676b6d57a27671d78eec

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
285cafcac6f880507753c4b23a1abb5b

SHA1
696f12cc31e268efddf5ec35692ec8b5fc162847

SHA256
c777bd970895309fb74e7f74187a8008c16af5cf20bf1ac688e0a1f21a45e989

SHA512
402f48827ab866625731774c830d40bc3364ca46a37d0095add88e228ffecff20cef61626f90c0b64100d9c84bf02264b70c77c6c2fe14ee1f9adf3b2e1de1b3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
936B

MD5
d7f44b7cc235f03dd6fd613369387b8f

SHA1
a178739c563ef08f669333d714ef111c80c07505

SHA256
7aa96f5134b8faace7970bab3fa5c6f6e6e78c57b1e08f1fadf9dc7554f71519

SHA512
4389f6ee826fd779d61eeb15fa425199493efd85c6f10914f77f66204c7cff2bf557dbf631b498ccba9c5d9097107c17179c635eacc96630a628d5c6443458ef

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
4KB

MD5
200d022f768ccb13f282f1ad0e8c6ff8

SHA1
91c69225767c2a1ed2aa00e1e8a5941b673249fd

SHA256
eb2e9756d07ab6defa2571a4784272b051c83ade7d9b085446d8d2d11ad9a787

SHA512
9f1ebe7543a9e4dbc5a9d0dd50ceb95efa5d82a5d86ccaf9efa31208f899c584311f0e19032c71fc66f240a95398e6496c63f678020326c2ab008b18f5f9d4cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\Paths\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

Filesize
264KB

MD5
b41a72bb211433483965ae85b5228edf

SHA1
baf1fc7f165e5c15fb2ea5a80391cb2f4c3e38c3

SHA256
1d84022c748215b04f567ee07fc1b65021cca88fc89682c52016183701e46d46

SHA512
f73340814d19b242ed9956a3985cf3b74b7b3f044c42230dcf2592ac18dd2c89c2b9c8e6e6baa61872b95365855cb1f05dbbf469f09e59ba88883c156367c6f2

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\MANIFEST-000001

Filesize
23B

MD5
3fd11ff447c1ee23538dc4d9724427a3

SHA1
1335e6f71cc4e3cf7025233523b4760f8893e9c9

SHA256
720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed

SHA512
10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
28KB

MD5
69c12add26d09f57e05cea5fdae8f474

SHA1
bebd55e393d7e930986ee69984da057f251468f4

SHA256
b7f03404e01fc23a8af8b6cfbd1b01e2ee8a44991fae929ac809ac7dbc0f5717

SHA512
5e64c43d84ed34f0cc462e4963228e8d6264d2c7681aa20d43b4fdcf7167909a75bd50826c48ac5ca7f47c61c245e5b1e981ec96b79ed0307cd1bca925677957

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
c1975aa49c1b1b2b96970146f4c676ea

SHA1
167f542fce90d66aa6e3165e8141411a6e644c7a

SHA256
9fddb48ec9c2f143908fc90a3d50faf4060cc1ed6609971c54853e58e4db2960

SHA512
b7d5095992186ede0911edc891dd59f4bdf5f43a3bef9d983dc86fe79f8ac93037937510b115d9341011f0c21d7e8619b13c073e6c8a4139b937f6e199827d78

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
15KB

MD5
73c2c3b3e252f454e3a1a5095fd4dfd1

SHA1
2d5a8319596b8a90e15cfd36d3e1767a979bb5b7

SHA256
862efbe361d50015e45f721b5ef6426af089600abb5cdea3db1c5489253eca6e

SHA512
2a2404307f6c71b290a90f6c9b6912af0ed8017a1ef26a2ad8a94da8b70f4ddb7514a7d328de6cb82bb0f3bd16336e3d2552da917ab8a44c32a5f2e3e68de3ab

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

Filesize
26KB

MD5
6c98c5b7161157096f52d9027617d153

SHA1
91ffe4619e64e0089a24709fb515d14edae2b68f

SHA256
1962567adb1a1325f1a3d217536c8814324d17b6c972519a0921cdf497213151

SHA512
f958bc747f4ac033c3a0ddde854e617e7ffb70e0c01ab11e6ffc95846a2d5563a5ecad54b64b7f4bc035307c044120a87d47f75f75bd6b4df7cb467284c00aac

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
d9a427647546d8e6f92a3b46cefec741

SHA1
33813deef6c277e51a30e2a29a5638b9fc10f60f

SHA256
e133b3f011d3881980eac2836f4919a129809720d9121d4282be11115180ffe6

SHA512
f119e57d08308686a4735a00d94834b3fc6048599fd372413ac3fdccd5307b859ed495e5b90a44721aedebc77df1c528bdf6f285011f9376520c405b25f26ed0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
533B

MD5
58ab643876713436318fdf9ee189d62f

SHA1
f48b3b6204572d9cac08455d369bfbadb4954a58

SHA256
1127acbea4704fc84240dc0607f1e102d42f3c52106b141431b8ffdff66cb6e8

SHA512
765ac4d72b4b52aa8c347e764ffaa64eebc372a2897bcdf4d300721d862490d0364a3084655483fd5d7b8ca762ca61154b57dfd6a4c9206bcd20325a59ca48f4

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
533B

MD5
d6ffbe34de8b32033388109a015c38a6

SHA1
94c25d86f2c94ce0c255c2e6418396774f665171

SHA256
0425f5b7c23ce48426e6301866e4239c3bd8d37f485cfb52079080349591a6cd

SHA512
ec920d27cd2462254817ecaffe44ab0e3ff189301c37302f0e287e3c9db847c410aa25a9251841cd04f2e85237f70e23c49df4d25bd5d26e4d82bc4cfce8107d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
a518d210c534947f8ee213192e10747e

SHA1
86832aa1e96586482689b22c2bf75f1b9d12db2e

SHA256
9572a079006f3b068470e6c20a36e6f91850c4c92d0609f4802fef9680484271

SHA512
f324f4f9ec5f13efe5c06cd40e7ed187fe7d3808b52d371cd4143e1365d6bf8be363f070429bc10feb7b307bc6c98af1063dddeb1ee035c591c8e09e58d5abb0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
b2d1f2f76fc90f12198ec09ba26fc345

SHA1
11150c913a60116f14585ad7688574d786402197

SHA256
237a44eea902c4c8de1bd12ca4c19687d93140a8a4b9f8b81f6a698cf636b402

SHA512
06539f5189fbe10ad752119ffce5aa33b45328dda30359e80c7324b2121b67ef00c10139eb34a5f87ba0b551907c4d6a05c9b6244844d8ef1f88034aa6811e5a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
2e8d046ce6c008078601f2ea371d3e1e

SHA1
392c12526c2366b06ced5b8ad10d9008cef6f3f1

SHA256
e1bc1515e6812e878c37a8d91838d67fdb451c60128d56ab87747d96bce1bee2

SHA512
09dc50057b292a8c5f670e9093bd30611e6beab372882dccb68f7ef4413842ccdff215b0d0e8bcee14de2027166e6cdb17c6fc640f561549ed3397a3e117b584

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
8KB

MD5
ee10b6a0406e2536d056269357dc8043

SHA1
427c54987b8fdb200598842c96b3cfc47d9d492f

SHA256
402e6e33f7181aaf0f817f18f1430bc54cfee779dd92c79114f2fdcc705b51d7

SHA512
3d054c20859b438c37975ad98d5d5c0d792bf53212a75d432783a30d3847db1f648980fa035ef6943637c0d3c3e5d1ae20da1e690f573168d19fc4d1ab5ca20c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
5ebf69027d7a6df27dabdee68db94c2c

SHA1
9fbe4d7b4a91eba01ccbc5052500bed8921304bc

SHA256
19bed9b1960582ebe7de77c6a651933bc9930b4a6f90858a3ef91a4dcf9f0b8e

SHA512
5e14655d4cada567ed039dc9918fddb0fe66dfd04bb485e14d9b66056eb05bfd1263c5bd15de8a407c749275ea0afc7cd32a5db57ec1893c7bc836c03c97d93c

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
09d0bcac102cac10b26c636f77d07d13

SHA1
eab5fb19e99093fed37b1bb134e88ace7a164444

SHA256
e0b02e25f391fa6634341f6277faf8d7e74616ad4ae090ab93168d444a023c95

SHA512
2dcf2114d74dc4d0b22d18d0b2c2f718dd0550212036a9be8bcd7774bb43b3102f3d0e5d67a9ed4e5806d0519f17d0e2cabcb242550a874ca62d4545cc265e3a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
7KB

MD5
5b37469d73fc8e49a17c8ab7b6e7f6af

SHA1
b1cbdddd8ae3cfe83f892966fb509f2418b3007f

SHA256
d5f381bacd3fe0db753f1fa221991241d8137b06609af44e07f91c439ba8bbf5

SHA512
a96ec720635c79140df37edfc837b8eef754ef69ea26a5655197d569f9d81a66eb09673ea0c70f3599796d83ae2a27441fe1122f738b09d86d8388c601f58969

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
4b6ce9a76a3c298ff54da7828159380a

SHA1
d5e5034de6c383451e3e8c27ef4d38954a127388

SHA256
0950ddf0590177cce8e52e0a853bab11ae14002c48adf41e7964eb36568b3b8c

SHA512
36c6b50a27a3aaa20df6531da87d72aef784822e975c42726d25f85b9d7192152f20f1300e4d53b0d58d13e60a59c858a851b89d4d0618c7a86c27999771b986

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
6KB

MD5
eaadf89dbbbfcb7aa9f8435e9e1d8d78

SHA1
0059511e29fec1cb7fc65b282fc0b0c1dd30d801

SHA256
108656fb54e912b6331a7f1535b99f95db98aa84d2f7d9f07be036dd8accbadd

SHA512
504acd2f500be9a3067a7f052fe0636e23c463ef06e5a413cb9bb69d27783ad3fb7eac8f7d85085ae99d9e0d88187f533aa9c5c4d927acd834710cc69a3e3ac9

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
e1efab5d1c92e31425bd6af90c04fd1b

SHA1
0b3ff3c6cbac2f759cc8fd0253e814e849e0e39d

SHA256
8dad8cfa5e434f5bcd3466fa7387c9ca1caa8d73253a2eaba23be4d86e977706

SHA512
2bb2e1f1f91fe117570035dcc9e4b5f3bb57ee4844f48b297edee6948934fa7da45f83c8e9bbfdcaed20eeee0d144755287c99dfd6b5a3c6b4136c3d1acf3acb

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
5KB

MD5
70db530f843d45989b2e4ae9f3762556

SHA1
310b44fe80023ab7d7ba3aa6823ae82168fa9f71

SHA256
761b24ffe79636d9cb6afd794d2f7d1aacd02f9d2b68728a90ac4d4cc1f58f9d

SHA512
d10ff2283d7190d34141fe2b997b8331a80bf2effb73f4dd2d1e45fc1bea482bffe5c17e97a545f144522c56d85705db405d15249fe5036f00380888ff409f26

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

Filesize
4KB

MD5
6d6f85d7e7327fda2e06a0c2a85d13a1

SHA1
3b093adb3b15e39e495d3a298c4696f5a84d3a99

SHA256
420eb6c56a9f5fd44be28e7ace06468a7b53620221b4aa690b84de30f08cdb04

SHA512
cfcb067781d3deb597346e7229160b564776d3aa44c7bd2cdd93cac1df446ba25b4f4e800621769ad383e77eb417c33653c92ae6f30f2271f9aec018ddadae3a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
428187208abe12a45057d9e9f20fba79

SHA1
846c3e17e224d7fc6fc6200f9d89f57748e00123

SHA256
c5338d169a6ace534b6c60e7f7c522fb64438be4c4e4926af6ca98a17ca9a93d

SHA512
7f1bb4592eda2a5e8bb1dc5e522288bcc86dd2191e07c6bb96d4c67990a91e526c110fe7f2408c5e32672e46c0bd7cd687976e8a01e5231b82c4e3fc529257bc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
1c5ae00803a1226975885dff31cad7ce

SHA1
f1d376e15895488452215a1596ba74d9592f1824

SHA256
e5de67455d2292cdf6546502556acd112b0753be8e531b5da545c75d91f5cb99

SHA512
52fb0b4a21ddc87ca000bff40195199fce657920310340aa85c80017fe95e1199929a11f79656e0ca2776c6c2a89042012b146237a05aef9335c38b6f5e55d5d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
5KB

MD5
165b56b337cec86840af68086b9b3bc3

SHA1
f95ba4d71976b27a38d98ae32c5b11265a457c9d

SHA256
2a27b4d6c5be40c33e12e25c5984afd0b8b0a6c1e1d032cd91c5db978d7815fd

SHA512
4a39c5021921edafc108f56f1a5d3fffa18896ed6e6eae24e38c5e584c9748ddc2ff440b997589cf3ee71ca156c8bfff7b8da085e6a84408ce8debaabeaa679a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
6KB

MD5
e88da8325f4bd33a9135240eb641cbd6

SHA1
2f14628ddd898875e7126d81a09c63ae13797cf3

SHA256
d8e0a68d6cfd4f455310fe962de955c0cb7d2d1eaaad4ada489b9885548210e3

SHA512
faa4d854c3eec66ecfca5c9ec9538f8a0c00ece265ed48803beb7515ef2b8e65f6a9ff2763f9b6e9a733848222531234d35a2a8942b1ff7467227774524bcb4b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
c4e945c7172d0da5a3ca57d07738dce0

SHA1
8a5a0bb7a9f75b33bde252a5b75b2c46f26ae80b

SHA256
74f95578a377508363e9b67af4be9816f0f5783f27ac14f1230b03794211d766

SHA512
ab4d5e6084bfa468e2ad446e9f12b35cf197e11a7a57253d5dbfa614e475421a49e3c513e0c40302634f0127c67da6db185fe4976b58b533118782c78e22d9b0

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
6e8a04886c3649de160c22f40689ac4d

SHA1
6e7a07e6b1e8fc10b6bcdb0513fc0a94c2e400c1

SHA256
ce623a80b1fa2e84d292e993b68ff8cba1c30e32239b364d7d9d4a286e320dba

SHA512
9e87129bd5a2c2b1f407f0116952b967adf546e19676294226221241fe34d8f4d2a6fc3ea52320c628fce5332bbaee9d76d014946dceb3ad9b65b2d3a6a3ce1b

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
38f952ccc76de698509b3a03e8faaaf4

SHA1
5a09a76faaa8e7f7d68988f6c07c2ee7416079b1

SHA256
b77518ef15be2452a9ded1e0f61a382568826e7c5a37c05b26d284929c119a9a

SHA512
53ecfb24162c6c845c50a46e12bd4c996ebafa7ea1c457764f3e5856bc09206eaae36b0bc2081a9d62449b55cb804faf4ecf0d267ea6668459045271599d82f3

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
bf2d4f1fa3151b6626b447f5fcb476ca

SHA1
ace292115049ae526f582d4dcc7f92917538faf3

SHA256
472f7f81b921d29ab7a057cfceff7234211a77c49a21d9cdacf2b5a4936009c1

SHA512
93351c416271ea05f55052c980b484f249ffe6c2187fc2ebe124b0cd9a92b815c1cda0ae6c2bd27d0dac7a030c870e7f0e9855f4081fa64bc329063f171b70ee

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
5ad4f828fc1552a4528e820b462b412b

SHA1
fc92a26a5402c2695f6773cc22ad88f757bae712

SHA256
05bb3a0429d10603fb08c525e3b68b2d4d70fdae6130e9e74885c38903af89b6

SHA512
961faa5104bebd5c789a37835ec2059a267c2b4864837662b053929f7d36744b3f56d3a947b0448063484438bc99954324c3937d38e57a2084de548ebc7bede8

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Filesize
7KB

MD5
763cda70061cbaf9da5341d59d27f66b

SHA1
801922b3f3121d540c06c1da520bac7571384ec6

SHA256
48a48310fef9eeec89123ddff045651858025fde98c1f1839044393ae7f9f3b2

SHA512
fe485df755c9a5764fdd9dd03eac666d037eae79b12ac31900c949a226bf86b911bb11a385a11c0b6933de587b095824c369cfadf30b368f386aa6506a741144

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

Filesize
12KB

MD5
aba231278475eaba003d9095f9590ffa

SHA1
15185ddd93d205db07592bcd9fafc818f935e245

SHA256
f469b2a5e6163e2da4959c1a7aca678e86eee772c6ff9d7dcc7e04141b8b0f57

SHA512
5fac0593d000c46d55022b48c2d7de39f905e77c501314b939deac48fc3effd74ad0e050221a7757bf8abf7b7c6d723350c37ecc7146718825afc746a5fd1780

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

Filesize
56B

MD5
94275bde03760c160b707ba8806ef545

SHA1
aad8d87b0796de7baca00ab000b2b12a26427859

SHA256
c58cb79fa4a9ade48ed821dd9f98957b0adfda7c2d267e3d07951c2d371aa968

SHA512
2aabd49bc9f0ed3a5c690773f48a92dbbbd60264090a0db2fe0f166f8c20c767a74d1e1d7cc6a46c34cfbd1587ddb565e791d494cd0d2ca375ab8cc11cd8f930

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe62c638.TMP

Filesize
120B

MD5
5139a79f76a741fd4871856ebc30da7b

SHA1
bdfe70468004d8a4e436d0867598cb7f822302a1

SHA256
e7aa499429acc82d8f114b339658d13091c3dd9b48dc427d9f24cd279d885e5e

SHA512
3ee11e667adec22c9b939d413c185fe0391a6f6bf3bbcf235feb78a537ca2828da3e5326d808e493b32ac5145f40a98cbf7acc4c41260d79d5d135cb94a1a79a

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
289KB

MD5
1629188aa211e97a41a66321f613beb2

SHA1
f6c7389a2caa4d3e84fc565288940d3caeb1ffa3

SHA256
d08792392a5d5b2c772040af92edf406eebb6d2358f3e114e7f7383a26b15a46

SHA512
5806279f111a4c1b6d8f5e212b6c27e1f745eebe0aef65a4b08e3c2d593fb81d0d35e2e3180194bf02665dfe3ed8db9cab25805dd94d76e9151e6f745abf86f1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
157KB

MD5
dc394c4cc804ea557fd48d1dc608a369

SHA1
b7345d69fad9124931a402b50f1afeccad1004b9

SHA256
3f4842a69a7bf4435233ab44aa7ce558c13b1d58df37364d6baf235745dcfc8f

SHA512
814133f0752d7af2268c468b8b1ff51af8e197ff3adcdbb5e4d1040b618f2d04cd9c6b3ffc0b3f1c9c97c946c381deb7f5e86a95968e694c9b8b02771cc20250

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
289KB

MD5
dcdf5e5f0d7b732710056a5f7df3d9c4

SHA1
fd7f1796c95b69bd9df12a519b2a864aee4297e7

SHA256
1d1fd64559dd0428893014e43ca29e0a033142b80cdfbd451787093f80819394

SHA512
e4c90a8d37f038ea1101e737754c6f8680642b7bf1fbb9d89ec7b6133550b4c3eef6e7036e079df291538664115b0fa6e249ae7bfb2d0c581dd4593945d294c1

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

Filesize
157KB

MD5
47352f4814ecfef07d3381afc2f27afc

SHA1
549ae39dbb152ac11282a2503649c0031529eb8f

SHA256
2071bb24549268ed8f106da7392caafa0de9783e298ed67fbf37b517de55db79

SHA512
4278ed034f34c8ee06129876f22628021267ed48a5dbd07f5ce8634128474b376f8a407382e869c31364f3cbe27d5529213122421ad19ab308a9cf44f8bf0e6d

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
93KB

MD5
1ad94d9b6a1beeaec1239cd0f7f8d787

SHA1
e8ffca648721cfc88e6736f857f0e7389c4bb4ed

SHA256
dba1ce477238a370196d5a7f986c19d90a1b79c79c204df745a04606b7773eb3

SHA512
af4c9b84ea414011b2f45f9083e1e34caca04bb34bd49a8a19f79cf5eb087fa78ff4a8202047eb1dc79e2498b67526023168f1a7b157a26b457c4740a3741205

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
98KB

MD5
66c06799c3b33c11f02806b03c34579b

SHA1
eab33161dbeb7d7e1a3a786739540ea5781b902b

SHA256
bf3769f477255543c0abb4f93b0cdc28761acb1eb5a06cb11940ce7fe31aecae

SHA512
62a022960863f88c2fce93110b6d7432713c048e0f19e7ffacb96fe210b110e706f9d527a3f13483aa99b57fab844a3829fde66a6fe6a6ba21bb5e6d31d26eed

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
106KB

MD5
8860f2534ff89eea7e702c4edb4737c5

SHA1
4bec386bfb2d9b6a1f4abcbcb293bfc97cc781a8

SHA256
288aca85fafb62f2ac3245e70d7a628fb0dd6298a2e3101bde0d6a44dd438fe7

SHA512
42df361f929abdb9bf58ee0aa8ef1957dab7ac25a18109905a7483db725bd8d14faed1f920686cd3eb48353cdbe237258a9469ff667029ab965a2462acccf4cc

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
99KB

MD5
afb37d456afcf28f5bd27db4d2f64253

SHA1
d2f4a667ca0f23c971086bce8cd829afccdb08b2

SHA256
59b233fabc3edcc3e28c4218b0bafc1a6a47c1984e2fdeb673d66c546cec4f83

SHA512
dfad103882fcaab2c7e51948fd2589548ab2ae6b4dcbf36b6c976910e97ecceee50cbc3cd8054b8e3395d0e9f1652c52213230e07332976f0e3e2c3dda9c507f

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

Filesize
110KB

MD5
2c774d0c5b076c9abe4a1cde88c1fb90

SHA1
bf629641195970e697d0cb1cd2d053a0f8752a2b

SHA256
680746d34814aed85a9cfefe578bd29263a1d016b968e352a28d4ca53d4dfea1

SHA512
d9ac0a7f046f45ef2917db475cf842d6217e1cc4a4c147811677caba70977d49eb6bb9917341acd865ea82a958ecc68366ae51b9f7dda5a6b7a8adc67ca8c3d5

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5f0a0b.TMP

Filesize
93KB

MD5
b539028c6aa1c76e57f5e251b8d436b5

SHA1
6269474231edf577e329a4e053f6ef400fde0e1a

SHA256
c8681064f7f84ff6dba5e0017b9654e0858cf542d63a588d84af5a1bffefd254

SHA512
a95e2c3645a4459d219d6c028be7c6de2b357ce6d64909073af28561b73e377f2bbdc364b6cc5242b5727369518ddab1add8de4a8d53ce54fced0bede2024bda

Download Submit
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\OHP8MVFQ\edgecompatviewlist[1].xml

Filesize
74KB

MD5
d4fc49dc14f63895d997fa4940f24378

SHA1
3efb1437a7c5e46034147cbbc8db017c69d02c31

SHA256
853d2f4eb81c9fdcea2ee079f6faf98214b111b77cdf68709b38989d123890f1

SHA512
cc60d79b4afe5007634ac21dc4bc92081880be4c0d798a1735b63b27e936c02f399964f744dc73711987f01e8a1064b02a4867dd6cac27538e5fbe275cc61e0a

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\DOMStore\WJHVSVAS\www.msn[1].xml

Filesize
485B

MD5
0fc058f42397d6e19ea624d84273136e

SHA1
a2e80a0591323b8776e1cb2a0714ce4c8de957f0

SHA256
9f5ccf4684a81614a65e567bc23a6d7d458b07fd1dc93b936ac1d6cd9393dda0

SHA512
f1dcb52ceaeea100fcdb9dc9efd8507b77b2c11c244190eb38814caa45aad74eeca82f9b0eddb41c193b07110efb0f21a6f22a3969bdb0155887775900393530

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\4J2O6FKV\favicon[1].ico

Filesize
758B

MD5
84cc977d0eb148166481b01d8418e375

SHA1
00e2461bcd67d7ba511db230415000aefbd30d2d

SHA256
bbf8da37d92138cc08ffeec8e3379c334988d5ae99f4415579999bfbbb57a66c

SHA512
f47a507077f9173fb07ec200c2677ba5f783d645be100f12efe71f701a74272a98e853c4fab63740d685853935d545730992d0004c9d2fe8e1965445cab509c3

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\BBAOZ6VC\favicon[1].ico

Filesize
5KB

MD5
f3418a443e7d841097c714d69ec4bcb8

SHA1
49263695f6b0cdd72f45cf1b775e660fdc36c606

SHA256
6da5620880159634213e197fafca1dde0272153be3e4590818533fab8d040770

SHA512
82d017c4b7ec8e0c46e8b75da0ca6a52fd8bce7fcf4e556cbdf16b49fc81be9953fe7e25a05f63ecd41c7272e8bb0a9fd9aedf0ac06cb6032330b096b3702563

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\BBAOZ6VC\favicon[2].png

Filesize
21KB

MD5
460001a1a68a498e31aed7388b0c6038

SHA1
12e21e72bf3d3140cc29edbc355c23e68c195a53

SHA256
eab1dbfc5babc3539aa81d65f75b44615db880df2b6edcd7697bc41962fc37b6

SHA512
f6b59fec10391eada4531929b186668625efda980b22f9f53668b096b3dc0d2af756fbc7a129e587608c3bfdeff31ed0ba80757cc977f61fd802c68bb15156f7

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\OXK6KPY1\suggestions[1].en-US

Filesize
17KB

MD5
5a34cb996293fde2cb7a4ac89587393a

SHA1
3c96c993500690d1a77873cd62bc639b3a10653f

SHA256
c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

SHA512
e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\DataStore\Data\nouser1\120712-0049\DBStore\LogFiles\edb.log

Filesize
512KB

MD5
c5ecb9710801bfd6893101f06f0c96f2

SHA1
a135164c65e7d2d19ae235792b0dd9a120d81786

SHA256
9e5ad646bec2300d6459216937bcbc054d2986931126cef2d89ba37cfff29a3b

SHA512
1e252960735d243fab4ac13e9cde3e0d3d34153ee2e0e31bfea3239a3239d4ad96b1e3281583e625c25a47bab16963f92702e05a528cb237cce143f5ef851479

Download Submit
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Temp\~DF1C8BF48477D76BFC.TMP

Filesize
28KB

MD5
7b4441240be65036964b369a61a8072d

SHA1
c4847468825fe31e2d3ae32380cfeefe95eb1547

SHA256
af148ec48156c962848448d56f4e9f3fbdb4e856cad1e91a425e48743b23245e

SHA512
5709e11f06d3d206487e3964b5fe94da70c020c6ad7eacc83d7f56f0c5dfd71aecc92e5860db3a189b676f2340b3344e234585d2d7ede43c9c7abaab61a65b08

Download Submit
C:\Users\Admin\AppData\Local\Temp\4c0fd5f3-1cab-4723-a181-c2da875e2580.tmp.ico

Filesize
4KB

MD5
c77d51e37440c8152eaecfa7414279ec

SHA1
b2a96c470db78a5db21074e53d32f8a22c8d70cd

SHA256
8efd9f928ec28f7a101b246bbd5370af0a493451c2618ddeebf4e8aa787267d8

SHA512
a381347ccc977294c5f47743bc95fe6c834639df2eb879acf009b27eb6fbffe648bc717b078c93bd96470a73ac37464743221e9e879118860492cafd74515743

Download Submit
C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_21qhsadz.shl.ps1

Filesize
1B

MD5
c4ca4238a0b923820dcc509a6f75849b

SHA1
356a192b7913b04c54574d18c28d46e6395428ab

SHA256
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

SHA512
4dff4ea340f0a823f15d3f4f01ab62eae0e5da579ccb851f8db9dfe84c58b2b37b89903a740e1ee172da793a6e79d560e5f7f9bd058a12a280433ed6fa46510a

Download Submit
C:\Users\Admin\AppData\Local\Temp\nse523D.tmp\StdUtils.dll

Filesize
100KB

MD5
c6a6e03f77c313b267498515488c5740

SHA1
3d49fc2784b9450962ed6b82b46e9c3c957d7c15

SHA256
b72e9013a6204e9f01076dc38dabbf30870d44dfc66962adbf73619d4331601e

SHA512
9870c5879f7b72836805088079ad5bbafcb59fc3d9127f2160d4ec3d6e88d3cc8ebe5a9f5d20a4720fe6407c1336ef10f33b2b9621bc587e930d4cbacf337803

Download Submit
C:\Users\Admin\AppData\Local\Temp\nse523D.tmp\WinShell.dll

Filesize
3KB

MD5
1cc7c37b7e0c8cd8bf04b6cc283e1e56

SHA1
0b9519763be6625bd5abce175dcc59c96d100d4c

SHA256
9be85b986ea66a6997dde658abe82b3147ed2a1a3dcb784bb5176f41d22815a6

SHA512
7acf7f8e68aa6066b59ca9f2ae2e67997e6b347bc08eb788d2a119b3295c844b5b9606757168e8d2fbd61c2cda367bf80e9e48c9a52c28d5a7a00464bfd2048f

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Speech\Files\UserLexicons\SP_32B96A940601477099625F98F0AD2ECE.dat

Filesize
940B

MD5
0bd9a8184c1865a89beedc20926cdb15

SHA1
8e9b4b6f508c529341abae8098a49b2ac7aa2a00

SHA256
a0c2862f2a387b988a939d22a6f110785827c1733b3596f6a896e1bfa539029d

SHA512
b89490a940ca07f4102bcbcf8c1317ca8f5aab198ea563e99aa04af97056671f646e6db905818ff711a40ca2b7443d7e8b93f5fd90149605d5935303de21f56f

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\10f3aa85-1c97-4abb-8424-f1d76e0eb31e.tmp

Filesize
259B

MD5
82b91d25973c52190ac3b0fa496d4d9b

SHA1
e9e4b4b757f23d4d5629e28a49dd9e2d3c2dbd14

SHA256
a44e5f17fa99010c3e54beaee7baf24cf2f244bae7985202b96aef70ddad932b

SHA512
1b4660940fabcff1e1bafa426311c2db406103d2fc1b86248544011b4aa55074e6866bd4623957dd26762317cc0a457895fbca107d6f824018fd5a12c7d5c923

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\46515ad7-3bed-41c2-8452-bb377ff71fe1.tmp

Filesize
419B

MD5
97fbad61055997e140fd08f9a1c1c0bb

SHA1
c96e3309985d2e19f6d512b177a9fc648deb1fa4

SHA256
5d2b787124fe8df2168c63ef4376e551f70e3d3ea5b6bb9dbad6825a5ff2c3f6

SHA512
91ef7492f0225ceffcd5095b776bc47197210a5d6d00f29b2ca36ccf48b169050a9bb0755f13f243a859ca6c1986a8c2f70cc17911d8c6ba072b65f51f73b5a9

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\5d316ee9-cb37-43a2-92ca-ab859e7c3614.tmp

Filesize
419B

MD5
e78e027cc407b0c31a89537556514daa

SHA1
e6e382119d718822b86d9b160ea9da688e81677e

SHA256
f8574310a4ee32cde77192ee912a3100c94c4e3f552db0d7bb8808fe1123ace2

SHA512
1b5d7a0d2dbfc1b067c99f46ffdf151ae2e5246619f544bfd39b7213b968211e6531882c5b2b9a97792f980c778ba8ed72a12168eb6827742c78dbc74d633581

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\Local Storage\leveldb\MANIFEST-000001

Filesize
41B

MD5
5af87dfd673ba2115e2fcf5cfdb727ab

SHA1
d5b5bbf396dc291274584ef71f444f420b6056f1

SHA256
f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4

SHA512
de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\Network Persistent State~RFe649106.TMP

Filesize
59B

MD5
2800881c775077e1c4b6e06bf4676de4

SHA1
2873631068c8b3b9495638c865915be822442c8b

SHA256
226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974

SHA512
e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\TransportSecurity~RFe63dc6b.TMP

Filesize
419B

MD5
5cf4f2fcd662adf8c3be47531611457c

SHA1
44ab2b55cf2fe23947a48ee4d8c6c09c181d9d40

SHA256
0f6073dfaa541346ed1cf621e80255f8b96e67b77aa1ac2b5d886dea572d0238

SHA512
07f0f59af1652aba515bcb11fc11f918be4e3180ac30113fbcd47ecef1165e22cf50079dd98649775da60d23599aadadb27b4a287eb3e8142527d8d5a58ed6ac

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\b69f90e2-7098-425a-972d-192b140f920b.tmp

Filesize
419B

MD5
ba7f41c7382a0daaa0096226346acda6

SHA1
76da351294ef8b55de6b44a2089c65d39f866001

SHA256
7ce7555ead24e165b2ceb204515704a2c96b9149649c3cdf8a44282e4b5a8bc2

SHA512
5b811b960c8254a1a9662d945f0a8b420c51a52fffe2b48140e0dcad1cc74b1c5a91596ec21ff87640560aa807f5c30dd1b263201c47e6799991f47176038714

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\d5ca4e8b-c65b-4405-922e-9cca59e0d3a0.tmp

Filesize
335B

MD5
d247da13f1a4ef7e43a5f7302579b6f6

SHA1
38ee9c6e8b1fd50024deee6d7844c0bc70098106

SHA256
0a89562abe5b23670f588fd09518ae5d384ffc43f742a0ae789cdef23ddf0a25

SHA512
8af73dcc87914963799647136c72285279fe5aa689914d0669739dad107cb441f57c972534a6a015fe3369fd7ec915f870cd1d23d558e17fcb65dd74d0f72f2e

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\settings.json

Filesize
293B

MD5
9aeac5c8d64f519dd008dda7ae3226a8

SHA1
e590d73941c5beccef2cf50ce1eb0bdf2bef2dba

SHA256
827bb2e4fa6d69e7fc897938aaca8096edba684ebe9263d4c0f257d7846b0212

SHA512
9705442a81459382b5c1d1886f1b8d01aea1596b4db6f132e7da83c5d913167f12e5f8bd43f0de460c3e79bb2cb93714827b0cd822f701e8653f0be3689581c4

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\settings.json

Filesize
339B

MD5
bfd0abc496589508f2a826afcc0ff537

SHA1
a9ccc5043eb23413bafaea6854d5cb9c402bf237

SHA256
1bd63cad66c5154ca6b22dbc047b8fb6f9d603869b40ce876c322917b19f03c1

SHA512
d1212819ec060d022c70ff439f75708d5ee0b409f616bdc824458909a2ce88496202bbf6eeaeddacbfbd689721036ef58ef39a3f9d24b015fc10b6bc2d53a32e

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\settings.json

Filesize
893B

MD5
59f67f6824e53bbadbaf8528e093fbc6

SHA1
6b82feb94ec8ebe20e1e8adc0d93bfef1602fd14

SHA256
e43b13859cbb8a018666380d521d294b1c5b12ac4e5dbe188446f679ba3a1da3

SHA512
780eda0a5c1f1a71215ea7b4f57529ca208f92b3f02a45b99a70e90a4393e546429c2533ecf8bbf0f07b94953cf25d0bf801e579a01d860e8d859b4aafeee670

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\settings.json

Filesize
1KB

MD5
e1a03805314d51b11c49a70f1dd7bad9

SHA1
4b6d2a8d8f2f3e22cb6a7541f6a59a809ce5696d

SHA256
59ea11d76b920e58e5fa2d4a4cefc71af393cfedcd0b8c2f29372bbd8cc499b8

SHA512
48642f16c964e7cd924e3533c25463c9ee6c69bbf3f3de4dfe026458b8867a34c611cc5293cf14a6c6b86471c8600bf4b79aa85ba6969a11727aa7ed82a5292a

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\settings.json

Filesize
1KB

MD5
241c24a95bb45d8ac0f6bda5043c055b

SHA1
8eade28d0325ac5c03d95fec95ef86be5cfe3141

SHA256
2b318a9e0a05801e4a93ed48c1867eae9df08811c279aae851f42a70117b9d0d

SHA512
1a4ea479ddcdfd520334d972c2c9da9223807e2a5bc5c2199c804d603f3a8bf524f25ef9d396c3aadff6bd2c5e35d1142c9ba7ef12404ae32e5c47da2c89f775

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\settings.json

Filesize
1KB

MD5
7ce9d8db8e9cb497fc4d98dc4882481a

SHA1
a066d732db47c8dd06abf7890a639aab5d8331dd

SHA256
b3cc33e391f3b5811da859896976c8d90a98f63460b8a39663d9abb900354a42

SHA512
6c138cd8b541d741cbb8b66b6c7e3a8c9ed365a92ac708fd18c2568026c68d0677472787f348ccf0cee3a1590e9c793eb5ce7f135bb82ae6603b8b8922d40f6c

Download Submit
C:\Users\Admin\AppData\Roaming\unmineable-miner-mfi\settings.json

Filesize
1KB

MD5
85de660a6b0d9e9c0909cc220cf99c45

SHA1
d26e8c6dc481c8a2d0c3b77bf9b759457ad0abde

SHA256
e7634162643ea0c3b3b098ace41d39d81517177befc57ddcdb98527f059a593d

SHA512
8efc1a40b8d3e3ce24123d3f867089ff70fa9040c187ab516553ac4a452ed4249dd88538ffbefc69482a4b00d4e0fd8da22c14ee1caa297c3c7ccea7c8f0b6f3

Download Submit
memory/204-369-0x000001E323600000-0x000001E323700000-memory.dmp

Filesize
1024KB

Download
memory/204-463-0x000001EB369B0000-0x000001EB369B2000-memory.dmp

Filesize
8KB

Download
memory/204-401-0x000001EB35900000-0x000001EB35A00000-memory.dmp

Filesize
1024KB

Download
memory/204-411-0x000001EB36B40000-0x000001EB36B60000-memory.dmp

Filesize
128KB

Download
memory/204-420-0x000001EB36380000-0x000001EB36382000-memory.dmp

Filesize
8KB

Download
memory/204-422-0x000001EB365C0000-0x000001EB365C2000-memory.dmp

Filesize
8KB

Download
memory/204-424-0x000001EB365E0000-0x000001EB365E2000-memory.dmp

Filesize
8KB

Download
memory/1460-64-0x000002341B470000-0x000002341B472000-memory.dmp

Filesize
8KB

Download
memory/1460-72-0x000002342C000000-0x000002342C002000-memory.dmp

Filesize
8KB

Download
memory/1460-74-0x000002342C020000-0x000002342C022000-memory.dmp

Filesize
8KB

Download
memory/1460-70-0x000002342BE40000-0x000002342BE42000-memory.dmp

Filesize
8KB

Download
memory/1460-68-0x000002341B4F0000-0x000002341B4F2000-memory.dmp

Filesize
8KB

Download
memory/1460-66-0x000002341B4D0000-0x000002341B4D2000-memory.dmp

Filesize
8KB

Download
memory/1592-3570-0x0000020EF1C40000-0x0000020EF1C62000-memory.dmp

Filesize
136KB

Download
memory/1592-3551-0x0000020EF1C40000-0x0000020EF1C6A000-memory.dmp

Filesize
168KB

Download
memory/2732-344-0x000001E608DE0000-0x000001E608DE1000-memory.dmp

Filesize
4KB

Download
memory/2732-345-0x000001E608DF0000-0x000001E608DF1000-memory.dmp

Filesize
4KB

Download
memory/2732-16-0x000001E67FE20000-0x000001E67FE30000-memory.dmp

Filesize
64KB

Download
memory/2732-35-0x000001E604B30000-0x000001E604B32000-memory.dmp

Filesize
8KB

Download
memory/2732-0-0x000001E67FD20000-0x000001E67FD30000-memory.dmp

Filesize
64KB

Download
memory/4264-3098-0x0000028873E60000-0x0000028873E82000-memory.dmp

Filesize
136KB

Download
memory/4264-3140-0x0000028874440000-0x000002887447C000-memory.dmp

Filesize
240KB

Download
memory/4264-3219-0x0000028874500000-0x0000028874576000-memory.dmp

Filesize
472KB

Download
memory/4364-305-0x000001EEDE0E0000-0x000001EEDE100000-memory.dmp

Filesize
128KB

Download
memory/4364-310-0x000001EEDE180000-0x000001EEDE1A0000-memory.dmp

Filesize
128KB

Download
memory/4364-279-0x000001EEDD800000-0x000001EEDD900000-memory.dmp

Filesize
1024KB

Download
memory/4364-276-0x000001EEDCD00000-0x000001EEDCD20000-memory.dmp

Filesize
128KB

Download
memory/4364-198-0x000001EEDCD20000-0x000001EEDCD40000-memory.dmp

Filesize
128KB

Download
memory/4364-192-0x000001EECC6F0000-0x000001EECC7F0000-memory.dmp

Filesize
1024KB

Download
memory/4364-189-0x000001EECB800000-0x000001EECB900000-memory.dmp

Filesize
1024KB

Download
memory/4364-159-0x000001EECBD10000-0x000001EECBD30000-memory.dmp

Filesize
128KB

Download
memory/4364-149-0x000001EECBA20000-0x000001EECBA40000-memory.dmp

Filesize
128KB

Download
memory/5056-45-0x0000017F95380000-0x0000017F95480000-memory.dmp

Filesize
1024KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request