8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

18.245.143.36:80

GET /freewebsite.png HTTP/1.1
Host: 0catch.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 16 Aug 2024 23:16:03 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://0catch.com/freewebsite.png
X-Cache: Redirect from cloudfront
Via: 1.1 5e8927f6dbbe16e857124daf8548aeb2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR5-P1
X-Amz-Cf-Id: p8ao6N3Gne22p7Jt7aEAhzciYZRqKIZBFHKVsO_MSebRaWZFjrJC0A==

8.8.8.8:53

18.245.143.36:443

GET /freewebsite.png HTTP/2.0
host: 0catch.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: text/html
date: Thu, 15 Aug 2024 23:31:32 GMT
last-modified: Tue, 01 Feb 2022 15:27:48 GMT
etag: W/"e55ff6aa559bbfcf9221034ffe8cee76"
x-amz-version-id: DSazxJJ5V_vaol37KSceIaI5SjMUlr7B
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 56d50c15e83a778a8a2df6031ec29098.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P1
x-amz-cf-id: G00ns7LC4Ppo4BNaVjEWBYmC7369IcYF7bz5g9yYB31WsRBbQ4SKUw==
age: 85473

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

77.247.183.155:80

GET /go.php?sid=14 HTTP/1.1
Host: exotic-live.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 482
content-type: text/html; charset=utf-8
date: Fri, 16 Aug 2024 23:17:07 GMT
server: nginx
set-cookie: sid=a85b93d8-5c25-11ef-b3ae-dc43d8d52e0b; path=/; domain=.exotic-live.com; expires=Thu, 04 Sep 2092 02:31:14 GMT; max-age=2147483647; HttpOnly

77.247.183.155:80

GET /go.php?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTcyMzg1NzQyNywiaWF0IjoxNzIzODUwMjI3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydm01aDloNWM4YXFjMDZqMnMwNGVrYzciLCJuYmYiOjE3MjM4NTAyMjcsInRzIjoxNzIzODUwMjI3OTkwOTg1fQ.tuIXWQwi1lO2tlLozjBEXsPy_as3HA7NDmT_1wh4-G8&sid=a85b93d8-5c25-11ef-b3ae-dc43d8d52e0b HTTP/1.1
Host: exotic-live.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Referer: http://exotic-live.com/go.php?sid=14
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: sid=a85b93d8-5c25-11ef-b3ae-dc43d8d52e0b

HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Fri, 16 Aug 2024 23:17:08 GMT
location: http://ww1.exotic-live.com
server: nginx
set-cookie: sid=a85b93d8-5c25-11ef-b3ae-dc43d8d52e0b; path=/; domain=.exotic-live.com; expires=Thu, 04 Sep 2092 02:31:15 GMT; max-age=2147483647; HttpOnly

8.8.8.8:53

8.8.8.8:53

3.33.243.145:80

GET / HTTP/1.1
Host: ww1.exotic-live.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Referer: http://exotic-live.com/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: sid=a85b93d8-5c25-11ef-b3ae-dc43d8d52e0b

HTTP/1.1 200 OK
Server: openresty
Date: Fri, 16 Aug 2024 23:17:08 GMT
Content-Type: text/html
Content-Length: 114
Connection: keep-alive

3.33.243.145:80

GET /lander HTTP/1.1
Host: ww1.exotic-live.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Referer: http://ww1.exotic-live.com/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: sid=a85b93d8-5c25-11ef-b3ae-dc43d8d52e0b

HTTP/1.1 200 OK
Server: openresty
Date: Fri, 16 Aug 2024 23:17:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, max-age=86400
Set-Cookie: expiry_partner=; Path=/; Max-Age=86400
Set-Cookie: caf_ipaddr=194.110.13.70; Path=/; Max-Age=86400
Set-Cookie: country=GB; Path=/; Max-Age=86400
Set-Cookie: city=London; Path=/; Max-Age=86400
Set-Cookie: lander_type=parking; Path=/; Max-Age=86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_PovpBRwbfSmBGAfYFCwcwTnk0PgYgurBQy5szVNJ0MurhPJRgLkhgaSViHsH1t4B4aoOVpRuW/EoINd07aTD8w
X-Content-Type-Options: nosniff

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

88.221.135.162:443

GET /parking-lander/static/css/main.b04c2b5f.css HTTP/2.0
host: img1.wsimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
x-amz-id-2: QOMABTNkUXrncFzQRA2OmvEw/BVKd3XkW1sfgYZR8LjRQcjPBVBnZD3f7f4OjW1bptatZSYGU7bbxRs5fYRMsw==
x-amz-request-id: RF56D3F00JETZ3WN
last-modified: Mon, 12 Aug 2024 21:32:59 GMT
etag: "5d48da9587ed5173cf3b747bc119b22d"
x-amz-server-side-encryption: AES256
x-amz-version-id: RzXeenZTvJi.dxYORPdUng46OnM.KgPP
accept-ranges: bytes
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
content-length: 1003
cache-control: max-age=31536000
expires: Sat, 16 Aug 2025 23:17:09 GMT
date: Fri, 16 Aug 2024 23:17:09 GMT
timing-allow-origin: *
access-control-allow-origin: *

88.221.135.162:443

GET /parking-lander/static/js/main.44e3ce99.js HTTP/2.0
host: img1.wsimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
x-amz-id-2: kFNhPgoAiMYulFnOk/188fr6vENs+u2h/ALDPC3hvrTtFhoxzkwz2qcUNhRH/oDPMxyrs4rQAO6YYl0aUlkGUg==
x-amz-request-id: RF5D4V186RPANJTW
last-modified: Mon, 12 Aug 2024 21:32:55 GMT
etag: "dc17f34b710dca1e7c9a19df357e6e9e"
x-amz-server-side-encryption: AES256
x-amz-version-id: Ud8b43sjPjhANm.r_9yFiUaf3gvo_hjw
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 176557
cache-control: max-age=31536000
expires: Sat, 16 Aug 2025 23:17:09 GMT
date: Fri, 16 Aug 2024 23:17:09 GMT
timing-allow-origin: *
access-control-allow-origin: *

104.22.74.216:443

GET /tag?o=5097926782615552&upapi=true HTTP/2.0
host: btloader.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Fri, 16 Aug 2024 23:17:09 GMT
content-type: application/javascript
content-length: 19032
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
content-encoding: gzip
etag: "34b09e3279a427c15be09cd8874f379f"
last-modified: Fri, 16 Aug 2024 22:22:27 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 3058
accept-ranges: bytes
server: cloudflare
cf-ray: 8b4522dcdc086543-LHR

104.22.74.216:443

GET /tag?o=5097926782615552&upapi=true HTTP/2.0
host: btloader.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "34b09e3279a427c15be09cd8874f379f"
if-modified-since: Fri, 16 Aug 2024 22:22:27 GMT

HTTP/2.0 304
date: Fri, 16 Aug 2024 23:17:10 GMT
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
etag: "34b09e3279a427c15be09cd8874f379f"
last-modified: Fri, 16 Aug 2024 22:22:27 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 3059
server: cloudflare
cf-ray: 8b4522e4aa5a6543-LHR

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

172.217.20.196:443

GET /adsense/domains/caf.js?abp=1&gdabp=true HTTP/2.0
host: www.google.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

88.221.135.162:443

GET /parking-lander/px.js?ch=1&abp=1&gdabp=true HTTP/2.0
host: img1.wsimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: http://ww1.exotic-live.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
x-amz-id-2: HDoIse5Az8bxOG46GCYTu8LbGX/cTKRgwdKx7mCXQ0ycTGitUKkBSerKPNoj4TsFlPwCFh07LJL8hxp7u6Vkkg==
x-amz-request-id: AQ8NNKZ1Q37WSQN1
last-modified: Mon, 05 Aug 2024 16:19:34 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-server-side-encryption: AES256
x-amz-version-id: VpOp5kH7xlZ8sBobCxe1ryeMkfP8S_g6
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Sat, 16 Aug 2025 23:17:10 GMT
date: Fri, 16 Aug 2024 23:17:10 GMT
content-length: 20
timing-allow-origin: *
access-control-allow-origin: *

88.221.135.162:443

GET /parking-lander/px.js?ch=2&abp=2&gdabp=true HTTP/2.0
host: img1.wsimg.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: http://ww1.exotic-live.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
x-amz-id-2: nPNjPDSUp4BsH8dRSBIs/nMJH9Dxv2Bqu6CxHdv8IpMeWKMEf6upLJm4ThD2zRaUdrKyl7e+m/0=
x-amz-request-id: 442CMVXXV9PRNZ6G
last-modified: Mon, 12 Aug 2024 21:33:01 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-server-side-encryption: AES256
x-amz-version-id: e0VKuYHuvFVwTSEshrtSpW54NV2lY1g5
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Sat, 16 Aug 2025 23:17:10 GMT
date: Fri, 16 Aug 2024 23:17:10 GMT
content-length: 20
timing-allow-origin: *
access-control-allow-origin: *

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

172.67.69.19:443

GET /px.gif?ch=2 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Fri, 16 Aug 2024 23:17:10 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPpF3CcOnTRiRgI4urS9c4v_8yDKLNd69bQoz_ViyfYzsV6ewFNsiyb6BmeIMRtdN6L2Meyt6NXt1w
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 17 Aug 2024 23:17:10 GMT
cache-control: public, max-age=86400
age: 310094
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W5iw%2FJxDGkdNGvBzdpn74cHtUMfZqau617rPk20b16Li6a%2BaH5fWzpBghzXZCGAtg%2FMIACSJqba3XEHzPqjZlozEo055TxzcuT%2FfmFkQd3KQVzHEmM2n80%2BE54YUMHVMkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b4522e5bec19473-LHR

172.67.69.19:443

GET /px.gif?ch=1&e=0.9824614551279742 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Fri, 16 Aug 2024 23:17:10 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPpF3CcOnTRiRgI4urS9c4v_8yDKLNd69bQoz_ViyfYzsV6ewFNsiyb6BmeIMRtdN6L2Meyt6NXt1w
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 17 Aug 2024 23:17:10 GMT
cache-control: public, max-age=86400
age: 310094
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Oy%2F5PrFm%2B3Kj%2Ffb3P7HWEstz8IU3%2BJ6lSRTuAu8IYXA2Gp7hr8OxFOkyzPGQi1%2FoagUxbGtq%2FdTTjQm2qvJiUKais%2BC71%2FRTt%2BkoqVcMbxKXIlfVs0b%2BG2arusG5HI%2BS1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b4522e5bec69473-LHR

50.17.135.148:443

OPTIONS /v1/domains/domain?domain=ww1.exotic-live.com&portfolioId=&abp=1&gdabp=true HTTP/2.0
host: api.aws.parking.godaddy.com
accept: */*
access-control-request-method: GET
access-control-request-headers: x-request-id
origin: http://ww1.exotic-live.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Fri, 16 Aug 2024 23:17:10 GMT
content-length: 0
set-cookie: AWSALB=nfJyUvN7WnCuS5O56dTcopyiUzID/3Aex5N9F1lCQhiPtAsiPyaQis47pMdrY1jw3+AuJOM8OUw2HvOGtbadZz1rhRP1Am82fXwjDgJkKNTpWmy34Y4o36rvgGc0; Expires=Fri, 23 Aug 2024 23:17:10 GMT; Path=/
set-cookie: AWSALBCORS=nfJyUvN7WnCuS5O56dTcopyiUzID/3Aex5N9F1lCQhiPtAsiPyaQis47pMdrY1jw3+AuJOM8OUw2HvOGtbadZz1rhRP1Am82fXwjDgJkKNTpWmy34Y4o36rvgGc0; Expires=Fri, 23 Aug 2024 23:17:10 GMT; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-headers: X-Request-Id
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: http://ww1.exotic-live.com
access-control-max-age: 600
x-request-id: svSmK9YC

50.17.135.148:443

GET /v1/domains/domain?domain=ww1.exotic-live.com&portfolioId=&abp=1&gdabp=true HTTP/2.0
host: api.aws.parking.godaddy.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
x-request-id: 71b2562a-5370-41b4-8568-897a4667c320
accept: */*
origin: http://ww1.exotic-live.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Fri, 16 Aug 2024 23:17:10 GMT
content-type: application/json
content-length: 1027
set-cookie: AWSALB=2zRwPAhE8Dt8KiTTi3A8MUT9Y6XJ/98b/MZ3d30yjvlfPaHRgMdDPprVwaH7ekcYkIIEnzPy/fs5g2mArILZtcuA4j6Z8LILzb4DbmaWMzyqleh171rJkG31xsA9; Expires=Fri, 23 Aug 2024 23:17:10 GMT; Path=/
set-cookie: AWSALBCORS=2zRwPAhE8Dt8KiTTi3A8MUT9Y6XJ/98b/MZ3d30yjvlfPaHRgMdDPprVwaH7ekcYkIIEnzPy/fs5g2mArILZtcuA4j6Z8LILzb4DbmaWMzyqleh171rJkG31xsA9; Expires=Fri, 23 Aug 2024 23:17:10 GMT; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin: http://ww1.exotic-live.com
access-control-max-age: 600
cache-control: Private,max-age=86400
set-cookie: cpvisitor=fa4d45b3-9770-43b0-90b8-1bf48f465842; Path=/; Expires=Sun, 15 Sep 2024 23:17:10 GMT; Secure; SameSite=None
x-request-id: 71b2562a-5370-41b4-8568-897a4667c320

8.8.8.8:53

18.244.155.128:80

GET /notice?domain=godaddy_parking_iab.com&c=teconsent&js=nj&noticeType=bb&text=true&privacypolicylink=https%3A%2F%2Fwww.godaddy.com%2Fagreements%2Fshowdoc%3Fpageid%3DPRIVACY&gtm=1 HTTP/1.1
Host: consent.truste.com
Connection: keep-alive
Origin: http://ww1.exotic-live.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Referer: http://ww1.exotic-live.com/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 16 Aug 2024 23:17:11 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://consent.truste.com/notice?domain=godaddy_parking_iab.com&c=teconsent&js=nj&noticeType=bb&text=true&privacypolicylink=https%3A%2F%2Fwww.godaddy.com%2Fagreements%2Fshowdoc%3Fpageid%3DPRIVACY&gtm=1
X-Cache: Redirect from cloudfront
Via: 1.1 bf3844a119fafd26895a288a42b50a42.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P8
X-Amz-Cf-Id: ZoZVk2XgdMiGqQJHrF4dJ9aDR-AjHZt1pWy0rLBjwZTSjYRPw6nd8A==
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: *

18.244.155.128:443

GET /notice?domain=godaddy_parking_iab.com&c=teconsent&js=nj&noticeType=bb&text=true&privacypolicylink=https%3A%2F%2Fwww.godaddy.com%2Fagreements%2Fshowdoc%3Fpageid%3DPRIVACY&gtm=1 HTTP/2.0
host: consent.truste.com
origin: null
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: text/javascript; charset=UTF-8
date: Fri, 16 Aug 2024 23:17:11 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 fee1af928fb542120a907076855ee8f0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P8
x-amz-cf-id: AbkhRhw4tDKixSPqu5cYFpd7Jntd6EG8LuII2pUwk3oNMB-v0nmQWQ==
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: *

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

18.165.242.33:443

GET /asset/tcfapi2.2.js HTTP/2.0
host: consent.trustarc.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: http://ww1.exotic-live.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: text/javascript
last-modified: Mon, 29 Jul 2024 03:05:22 GMT
pragma: public
content-encoding: gzip
date: Fri, 16 Aug 2024 22:45:27 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c0d3087d57a8a55d4c0bfa30ec3ed778.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P6
x-amz-cf-id: _vv7X-yhfv01XdpjGQ-gHJnXEav0exG2PChuf_jOL6IxZAQwgmq9ZA==
age: 1904
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-expose-headers: *

18.165.242.33:443

GET /asset/notice.js/v/v1.7-38 HTTP/2.0
host: consent.trustarc.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: http://ww1.exotic-live.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: text/javascript
date: Fri, 16 Aug 2024 22:55:48 GMT
last-modified: Mon, 5 Aug 2024 02:19:53 GMT
pragma: public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c0d3087d57a8a55d4c0bfa30ec3ed778.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P6
x-amz-cf-id: ZsY0YRuuMMVyolWR5DxL-dMXyEKZGhbqaPEWh1XBcndNMMOYopeX7Q==
age: 1283
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-expose-headers: *

18.165.242.33:443

GET /iab/v2?domain=godaddy_parking_iab.com&locale=en&iab22=true HTTP/2.0
host: consent.trustarc.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: http://ww1.exotic-live.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: application/json;charset=utf-8
date: Fri, 16 Aug 2024 23:09:08 GMT
cache-control: max-age=604800
x-cache: Hit from cloudfront
via: 1.1 c0d3087d57a8a55d4c0bfa30ec3ed778.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P6
x-amz-cf-id: YzWlOYf50XseOId_cRxLOZnRd6e0eZWM5VdzJfgTtXW6FG4vmuKvhw==
age: 483
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
access-control-expose-headers: *

18.165.242.33:443

GET /get?name=MuseoSans_500.otf HTTP/2.0
host: consent.trustarc.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: http://ww1.exotic-live.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: font
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: application/octet-stream
content-length: 62504
date: Fri, 16 Aug 2024 23:07:03 GMT
pragma: public
x-cache: Hit from cloudfront
via: 1.1 c0d3087d57a8a55d4c0bfa30ec3ed778.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P6
x-amz-cf-id: xNFBMX3hUQvbg6QVyB2nsafZ622-o0OJ2qXsM9E_3lsRthCViXkFsw==
age: 608
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-expose-headers: *

18.165.242.33:443

GET /get?name=MuseoSans-300.otf HTTP/2.0
host: consent.trustarc.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: http://ww1.exotic-live.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: font
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: application/octet-stream
content-length: 62924
date: Fri, 16 Aug 2024 23:07:56 GMT
pragma: public
x-cache: Hit from cloudfront
via: 1.1 c0d3087d57a8a55d4c0bfa30ec3ed778.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P6
x-amz-cf-id: KeUEHC8yRocB4H43CCKrdbeGRmdd9k-FTlmi_tIvATpfZxE1SrBdLg==
age: 555
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-expose-headers: *

18.165.242.33:443

GET /log?domain=godaddy_parking_iab.com&country=gb&state=&behavior=implied&session=550e52a1-ff60-4d9a-ba55-4ebb13df12f0&userType=NEW&c=d8f8&referer=http://ww1.exotic-live.com&language=en HTTP/2.0
host: consent.trustarc.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: image/gif
content-length: 43
date: Fri, 16 Aug 2024 23:17:11 GMT
cache-control: private, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-security-policy: object-src 'none'; frame-ancestors https://*.trustarc.com https://*.prod.internal.trustarc.com https://*.trustarc.eu https://*.prod.internal.trustarc.eu https://*.staging.internal.trustarc.com https://*.trustarc-svc.net https://*.truste-svc.net https://*.qa.truste-svc.net https://*.dev.truste-svc.net http://localhost:* https://*.nymity.com https://*.qanym;; upgrade-insecure-requests; block-all-mixed-content; report-uri https://csp-reporter.tools.trustarc-svc.net/report
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: cross-origin
expect-ct: enforce, max-age=60
permissions-policy: geolocation=(), camera=(), speaker=(), microphone=(), vibrate=()
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-cache: Miss from cloudfront
via: 1.1 bb2554f7baaaf76b8275e54a76206d98.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P6
x-amz-cf-id: EfvOI8zX_Zt6b3kIjdaIQA7TRVroGNY_pELTPObziIZzv7CNOo37eg==
vary: Origin

18.165.242.33:443

GET /asset/ic-error.svg HTTP/2.0
host: consent.trustarc.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: image/svg+xml
last-modified: Wed, 20 Mar 2019 06:14:12 GMT
pragma: public
content-encoding: gzip
date: Fri, 16 Aug 2024 23:11:52 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bb2554f7baaaf76b8275e54a76206d98.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P6
x-amz-cf-id: nIwLjc3fGrHHfDLUAR7n8EP8j_3rH99fhaXftfWV6yfNJYyE4uB2cg==
age: 319
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=2592000
vary: Origin

18.165.242.33:443

GET /asset/ic-close-white.svg HTTP/2.0
host: consent.trustarc.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: image/png
content-length: 2639
date: Fri, 16 Aug 2024 23:09:54 GMT
pragma: public
x-cache: Hit from cloudfront
via: 1.1 bb2554f7baaaf76b8275e54a76206d98.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P6
x-amz-cf-id: LhVlkM3SKsg3NdvOPOYSUV3JhMKjklGS7-2hq0KBiuGcR5Y2lCvVBQ==
age: 437
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=2592000
vary: Origin

18.165.242.33:443

GET /get?name=Powered-By-TrustArc.png HTTP/2.0
host: consent.trustarc.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: image/svg+xml
last-modified: Wed, 20 Mar 2019 06:14:09 GMT
pragma: public
content-encoding: gzip
date: Fri, 16 Aug 2024 23:17:09 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bb2554f7baaaf76b8275e54a76206d98.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P6
x-amz-cf-id: WM8GouWQ0DcWoFcgFkaDuaRJi_ImNHodP_dM6fYY2G-_AEv_0uD8SQ==
age: 2
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=2592000
vary: Origin

18.165.242.33:443

GET /bannermsg?action=views&domain=godaddy_parking_iab.com&behavior=implied&country=gb&language=en&rand=0.21965182074605138&session=550e52a1-ff60-4d9a-ba55-4ebb13df12f0&userType=NEW&referer=http://ww1.exotic-live.com HTTP/2.0
host: consent.trustarc.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: http://ww1.exotic-live.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
content-type: image/gif
content-length: 43
date: Fri, 16 Aug 2024 23:17:11 GMT
cache-control: private, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-security-policy: object-src 'none'; frame-ancestors https://*.trustarc.com https://*.prod.internal.trustarc.com https://*.trustarc.eu https://*.prod.internal.trustarc.eu https://*.staging.internal.trustarc.com https://*.trustarc-svc.net https://*.truste-svc.net https://*.qa.truste-svc.net https://*.dev.truste-svc.net http://localhost:* https://*.nymity.com https://*.qanym;; upgrade-insecure-requests; block-all-mixed-content; report-uri https://csp-reporter.tools.trustarc-svc.net/report
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: cross-origin
expect-ct: enforce, max-age=60
permissions-policy: geolocation=(), camera=(), speaker=(), microphone=(), vibrate=()
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-cache: Miss from cloudfront
via: 1.1 bb2554f7baaaf76b8275e54a76206d98.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P6
x-amz-cf-id: 6QcePVy5iPqEW160MNZWMwz1syFc8rl2d5YW5gM-mn948nElG6jrpw==
vary: Origin

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

150.171.28.10:443

GET /th?id=OADD2.10239340418540_1UQTKN6JO04LNXB5Q&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

HTTP/2.0 200
cache-control: public, max-age=2592000
content-length: 940465
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4F5445B06EEB4EB895BA976E7FECDC94 Ref B: LON04EDGE1110 Ref C: 2024-08-16T23:17:44Z
date: Fri, 16 Aug 2024 23:17:43 GMT

150.171.28.10:443

GET /th?id=OADD2.10239339388130_1LUEK7XGBN2FMZI35&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

HTTP/2.0 200
cache-control: public, max-age=2592000
content-length: 577346
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4CA8114000B44E2BBA5DA8F08A22E240 Ref B: LON04EDGE1110 Ref C: 2024-08-16T23:17:44Z
date: Fri, 16 Aug 2024 23:17:43 GMT

150.171.28.10:443

GET /th?id=OADD2.10239339388129_199HS4001G3EH5S78&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

HTTP/2.0 200
cache-control: public, max-age=2592000
content-length: 676162
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9667B79459984948A99419E30B9F168A Ref B: LON04EDGE1110 Ref C: 2024-08-16T23:17:44Z
date: Fri, 16 Aug 2024 23:17:43 GMT

150.171.28.10:443

GET /th?id=OADD2.10239340418539_1KFG8UNZE5MUR2Y24&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

HTTP/2.0 200
cache-control: public, max-age=2592000
content-length: 838075
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 02CF5AF909F54E89A8C49BD23BB5D205 Ref B: LON04EDGE1110 Ref C: 2024-08-16T23:17:44Z
date: Fri, 16 Aug 2024 23:17:43 GMT

150.171.28.10:443

GET /th?id=OADD2.10239317301036_1G9CB801VBJIYBSI0&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

8.8.8.8:53