tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
200 OK 25 kB URL HTTP/1.1 tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3561)
Hash 9852b474ad80a9a3a98b17c59bf3fe3e
7f730d6c7cb8a30fec268e99a39bcfcbc3c9fc34
282f7226124386e2cfdac09ef8c63056d42bcca477505f75d51a2785b7746dc9
GET /cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 05:37:40 GMT
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8j5n84hVKKAkGaAi6TAYFsIzZve3P094KM3vKzkcggf0LdFW_3CPzQ==
Age: 52374
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 21b1296f31569e4fb94048c52df34904
3e3194f640d71b9da28e809660443e332bdba310
7ebe5d06efe28c8507b4cdfbf68c6e5bbd9919ba776990fb8a22d90cca0c1c1b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7EBE5D06EFE28C8507B4CDFBF68C6E5BBD9919BA776990FB8A22D90CCA0C1C1B"
Last-Modified: Sat, 27 Aug 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2374
Expires: Sun, 28 Aug 2022 20:50:08 GMT
Date: Sun, 28 Aug 2022 20:10:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 28 Aug 2022 19:13:59 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CvpU16n57buAMowHPmrI9eM2lWu25DemRs5WPDkceu10k_xC9yr68Q==
Age: 3395
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 27 Aug 2022 22:35:58 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gMWoef34GVRGVrOPLtEGweNT1rVxzVuwZlfGlzXUE9r-I3kIjamp0g==
age: 77676
X-Firefox-Spdy: h2
tesco.clientoffer.site/cp/_assets/css/style.css
200 OK 3.8 kB URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/css/style.css
IP
Hash e5621c12d849e3bd3042ccf305672aa4
d32db49015479d6fabe463f59c24a671c49b27c1
58f2216a1b4f704b67b142d3ae7f996c6f9a4da671f6ddd001fef5463047c6a2
GET /cp/_assets/css/style.css HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 13:31:28 GMT
ETag: W/"6308d0ed-3f02"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ybNe0qJjD8qSzpH-5V_aOVInuuCr3F4JfAQoJW99SKdYU9ZaGQQvoA==
Age: 23946
tesco.clientoffer.site/cp/_assets/css/main.css
200 OK 1.2 kB URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/css/main.css
IP
Hash 0916fb5ec241dc54ca7b253e11e8e192
09ee37c2ff98341fa052ba76405d262c0617275a
8f9bfbc2af716e23c7dcfeb858af1702605d29e4f3919031344c8a2d6a5ac9a2
GET /cp/_assets/css/main.css HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 13:31:28 GMT
ETag: W/"6308d0ed-110b"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q3C5dSwj4NEyrafTwlj3-v4t3xZihNjiWl7DuatlEKq0WzonMH18Ig==
Age: 23946
tesco.clientoffer.site/cp/_assets/css/form.css
200 OK 1.9 kB URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/css/form.css
IP
Hash bd8789e17fb9348917e9d7890b75f179
dc4ea96d1fd20f6cacd2d895ec88f90eb2ab60c8
2118ae07b15cad43d21db798a689fdb6b54f4ef8864bf422487b5c6903f74f71
GET /cp/_assets/css/form.css HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 13:31:28 GMT
ETag: W/"6308d0ed-29cb"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PQnUl6FZyZrEXX55_KXO0eys2XZTGbVErOvmAwHs2ayTOrUE48jbFg==
Age: 23946
tesco.clientoffer.site/cp/_assets/css/animate.css
200 OK 989 B URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/css/animate.css
IP
Hash 255c4a7c397eff6bd9c1d298af3b3228
51207f96fa80da5a3ef643a6e59efe9029554edd
fdaba9a0b2d4df63fcbcc450958e2620db9686c9854361a0deec2450a0b0cc99
GET /cp/_assets/css/animate.css HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 05:36:25 GMT
ETag: W/"6308d0ed-1ab5"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: S5j_-Osw8yj5Ws6S8D2RvG_6MQerJf2GK5vjlIvoYa_QXd59pGgD2w==
Age: 52449
cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css
200 OK 24 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css
IP
File type Unicode text, UTF-8 text, with very long lines (65306)
Hash 57a992194d8a5b4bbd4ade561fd348bb
bb66f00fe168c6df50af51abdededdfceb15c59f
be95ec6ab71f5fa87401a698cb9566490258fa9012bb0e8467920b0f74163a0a
GET /npm/bootstrap@5.1.3/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.1.3
x-jsd-version-type: version
etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 28 Aug 2022 20:10:34 GMT
age: 10519590
x-served-by: cache-fra19136-FRA, cache-bma1674-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 23938
X-Firefox-Spdy: h2
tesco.clientoffer.site/cp/_assets/css/fonts.css
200 OK 619 B URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/css/fonts.css
IP
File type ASCII text, with very long lines (661)
Hash 5fb9a7dbfb872ed15c66f37bef9e8fbf
ca8628021acb78768b4f3dc30dd959b24030bed5
1a306b7143fa4a1ce8cdf7e8aed354bc4a468874e2c7c391294e6152e1394f2d
GET /cp/_assets/css/fonts.css HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 13:31:28 GMT
ETag: W/"6308d0ed-12c5"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LqRM_vclxzQhe3asw43D12Qfnmf0uP8h9MFf6EJIXZ9RqpSN23zQvg==
Age: 23946
tesco.clientoffer.site/cp/_assets/forms/sweeps/gb/form.js
200 OK 616 B URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/forms/sweeps/gb/form.js
IP
Hash 5df41d0e5b07355df15622c0f84b9ee0
3b1730f81d3510e6a04d83795380d66b6b289eb9
35fe7ae97dafe8cc4e46fccb01926d17c1fcb2bcf4e98705a2207521e815974b
GET /cp/_assets/forms/sweeps/gb/form.js HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 13:31:30 GMT
ETag: W/"6308d0ed-5ae"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: slfKhi5k9MNG4VQb6Q0A2EGGzUTAYIplPGEUFXhNvW_noPRTji0z3w==
Age: 23944
tesco.clientoffer.site/cp/_assets/css/modal.css
200 OK 848 B URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/css/modal.css
IP
Hash 813186f3f0882c2b380e2d3df50365cc
0c7b61a161cfa7f9dade645d912b40fc8b5c1420
0984f677007d7a2d634b3bf45e297f13ac8ed1af43e458fc7896eb70436a8276
GET /cp/_assets/css/modal.css HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 13:31:28 GMT
ETag: W/"6308d0ed-950"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: d74RFfmJZZTdcPdpNJahiHA7UWhYd2b1uvRbKk77gXbwjC_6W6QBUA==
Age: 23946
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:10:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
tesco.clientoffer.site/cp/_assets/js/responsive.js
200 OK 454 B URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/js/responsive.js
IP
Hash 7a065c83bbffdfcf73ca7e36f0388498
bf1ae261c3826981ae8f4a9dd31fdf632b44b60d
09210cfc575bc762a1f685cd7db2d5369d619d82b78b1fd6ceb2c7159c6725b4
GET /cp/_assets/js/responsive.js HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 13:31:32 GMT
ETag: W/"6308d0ed-610"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Njripyv-EcmxhADQXVzTBeVEEKCACycxk8yQSlhJZadRsb69G4-zVQ==
Age: 23942
tesco.clientoffer.site/cp/_assets/css/site-console.css
200 OK 484 B URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/css/site-console.css
IP
Hash 6f3a3804acf36e3741c562be4dd35eb8
8c3403c5c9c990e1b86191fc9be6c8703ccd1830
00caaa3bd383b48779304f28e5019951429fb3144128daf542e7df53f1cd547d
GET /cp/_assets/css/site-console.css HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 13:31:28 GMT
ETag: W/"6308d0ed-55d"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gHr6v9NPMdQ6vCSoi1BfR1JdSmTf5XzQMeopCEzRP0TmKdOwaYnaxA==
Age: 23946
tesco.clientoffer.site/cp/_assets/js/bootstrap.min.js
200 OK 15 kB URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/js/bootstrap.min.js
IP
File type ASCII text, with very long lines (1289)
Hash 728c3e930a19229dc50e55963228f377
98cfa1f4e449edd131dea58be4ae4b14dce9494f
bcc041b43eb95a005a1ca7b8eeb4603a6d550865d3a3c1ec29f592575c0e8297
GET /cp/_assets/js/bootstrap.min.js HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 13:31:33 GMT
ETag: W/"6308d0ed-f2fc"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EoUlgrtzY7o_6K3jdaeUySEspJ1UEkUYy1L6ynypbB-BybhbAo6_TA==
Age: 23941
tesco.clientoffer.site/cp/_assets/js/recent_winners.js
200 OK 879 B URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/js/recent_winners.js
IP
Hash 3be841423494e18c46b96b49b1949c76
58b63756a12f2171c0c29517cd2b11b0e4d5b13e
27e2fa5dea55fb4d8af0213f8faddd867cb9d3b08c548c7c63f37675efd86a2d
GET /cp/_assets/js/recent_winners.js HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 13:31:37 GMT
ETag: W/"6308d0ed-803"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lg3yH53p3SSLpyCBc1UVG3R2gDSR7KWKLC5Vbr5Vl2MdihcZYQQREw==
Age: 23937
tesco.clientoffer.site/cp/_assets/js/jquery.min.js
200 OK 34 kB URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/js/jquery.min.js
IP
File type ASCII text, with very long lines (1963)
Hash 220344d87e905595d7efef6c6d1de612
93c1bd247d29cf1f167cfbe967b906362574a28b
2111ec5946ba20b79ae8b99421c8f35e86f51a278912fe4320acac7a6ab50c3d
GET /cp/_assets/js/jquery.min.js HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 13:31:32 GMT
ETag: W/"6308d0ed-1b9fc"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NDzHHiaj8_XkUXEHYNMp2qDSvuGV3kXGL-D9o3zFzor5uo-43Vdx1w==
Age: 23942
tesco.clientoffer.site/cp/tsco/gb/css/campaign.css
200 OK 494 B URL HTTP/1.1 tesco.clientoffer.site/cp/tsco/gb/css/campaign.css
IP
Hash d67a95c01e81d287cca3b4246b0d1877
6e11860e7f3b7bd0390fd1f2835064c4ed180485
17bfcf6cf79be2e5d83e1cfb7f0b170bff076e7d574513bc660dafd6d1bfec00
GET /cp/tsco/gb/css/campaign.css HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 494
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:59 GMT
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Date: Sun, 28 Aug 2022 20:10:35 GMT
ETag: "6308d0ef-1ee"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vtu_dBzQFuhOWZsxpBfYQ6NyW3fhMVkj0NMN4cIhdiuaXTYIh0SYzQ==
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash 3bcc41af218d9cb973fcfc13df1794b6
47966010247f8fb4567e9145c874165f56bdf979
b65fd1258ab012197fde4d6f6e8402699082a71e425388f0b8830ab29e1f976f
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "7004E7A6281ECBAC4BF60D3D9409F56D3E89A398"
Expires: Mon, 29 Aug 2022 08:00:00 GMT
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 183
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 741fb0f0c8700b65-OSL
tesco.clientoffer.site/cp/tsco/gb/js/teaser.js
200 OK 1.5 kB URL HTTP/1.1 tesco.clientoffer.site/cp/tsco/gb/js/teaser.js
IP
Hash d004acdb22fc6ed7364c8e53cb605ec4
2e84c770d0effc7fcacc2bd81829a9b7a2d0436a
1984719df77193e08c0dcd713065913dd905e3ab253472434830d6188bc5c785
GET /cp/tsco/gb/js/teaser.js HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Last-Modified: Fri, 26 Aug 2022 13:55:59 GMT
ETag: W/"6308d0ef-1b4e"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pBbci0Rh6q5wIFvtlk5rwn9WVRjYz5mD_-nQAFaBrI-0P3dYK6jpvw==
tesco.clientoffer.site/cp/_assets/images/row_logos/en/footer3.png
200 OK 3.9 kB URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/images/row_logos/en/footer3.png
IP
File type PNG image data, 220 x 72, 8-bit colormap, non-interlaced\012- data
Hash 5b888b8cdd2625935c91e371d9bea9a9
d691b048c1ecc36a85fccd690f1bf5adf98233f2
f1df5212bffca09bb0e893bd0bc2959427323946f16e0530ca67f88ed800c8ff
GET /cp/_assets/images/row_logos/en/footer3.png HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3947
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Date: Sun, 28 Aug 2022 13:57:45 GMT
ETag: "6308d0ed-f6b"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FE0x1wqCip9Iu3_o65hdp-wB4n7hbPSrwxGJZg3__QFMmfPhQXtKGw==
Age: 22370
tesco.clientoffer.site/cp/tsco/gb/images/header-wap.png
200 OK 5.9 kB URL HTTP/1.1 tesco.clientoffer.site/cp/tsco/gb/images/header-wap.png
IP
File type PNG image data, 760 x 142, 8-bit colormap, non-interlaced\012- data
Hash 5a0fed39c2bb6060cccbd85faf41a962
66187065d944c08016d1ae1386b01959e6cd4dc7
dcde521c9a290cdfbfc011eb208441c9e720ee4e27cf20edc0dbfbfac46f8b20
GET /cp/tsco/gb/images/header-wap.png HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 5886
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:59 GMT
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Date: Sun, 28 Aug 2022 01:38:53 GMT
ETag: "6308d0ef-16fe"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KOnuOHIEIK8rBGc0xxQzf1CxKedA0vLb_zQy2RuXhNkHuhEagb2shg==
Age: 66702
tesco.clientoffer.site/ssi/elements/base/check.png
200 OK 348 B URL HTTP/1.1 tesco.clientoffer.site/ssi/elements/base/check.png
IP
File type PNG image data, 35 x 35, 8-bit colormap, non-interlaced\012- data
Hash 1aecb247e31cfe8ecdf4c1a30fd32799
8ca486751ab6c31c1acaa7868ee26f7d5dd98f83
9f15d5a161e11ec46c3474002d4ae27144633b19413b3ad8608ce11eefb810ad
GET /ssi/elements/base/check.png HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 348
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:56:55 GMT
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Date: Sun, 28 Aug 2022 13:57:45 GMT
ETag: "6308d127-15c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -hszytw3fxpFvhEATHNUfhG6tUNJhD-kkhkOCPS-P9FvkisrFJkqFQ==
Age: 22370
tesco.clientoffer.site/cp/_assets/images/row_logos/gb/footer1.png
200 OK 1.9 kB URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/images/row_logos/gb/footer1.png
IP
File type PNG image data, 220 x 72, 8-bit colormap, non-interlaced\012- data
Hash 2db5d20d16777c3f62e9c896d1417e67
be46fd052c697bab997363e871a8b1a9f0db1ba5
048badcfce1ef8bd27d6a7a3c1cdb3be0c9849d1a5dae6deeca5074d3ae7b703
GET /cp/_assets/images/row_logos/gb/footer1.png HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1862
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Date: Sun, 28 Aug 2022 13:57:45 GMT
ETag: "6308d0ed-746"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: i2cLgFj16JeXgYCOO6G8gGBgpXgnJho1ks2LfDXtpBNxWKYNlsdD1w==
Age: 22370
tesco.clientoffer.site/cp/tsco/gb/images/prizemob.png
200 OK 23 kB URL HTTP/1.1 tesco.clientoffer.site/cp/tsco/gb/images/prizemob.png
IP
File type PNG image data, 550 x 201, 8-bit colormap, non-interlaced\012- data
Hash 521a7362cbfcd09d8306a972f0160f7e
32c518ab53eceea1a537a7692f25c3b3082d949f
f45a412c319d113afc4fc0d8c0d67f88dedd2b2067312613ac2978b24c91ede7
GET /cp/tsco/gb/images/prizemob.png HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 23150
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:59 GMT
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Date: Sun, 28 Aug 2022 01:38:53 GMT
ETag: "6308d0ef-5a6e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: at0lWLYKIcSGMtt6CJFkVeZsgAF4smdlO8c1J0AYVYSxqlNqVJPNog==
Age: 66702
tesco.clientoffer.site/cp/_assets/images/row_logos/en/footer2.png
200 OK 1.8 kB URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/images/row_logos/en/footer2.png
IP
File type PNG image data, 220 x 72, 8-bit colormap, non-interlaced\012- data
Hash 5817e574e60b631f412d33aa003d3c9d
4f3f380f69f57486363ef53b55380f15f23e2084
a3bb731dddb7799e606b677ab561e60372d642d0cfc50cc591dbf557fec35ab1
GET /cp/_assets/images/row_logos/en/footer2.png HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1844
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Date: Sun, 28 Aug 2022 13:57:45 GMT
ETag: "6308d0ed-734"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: sKs-nuNbhPPsIdYpb1P1FJB8X6D9Q60W9cq9W4nedZte-_VlDvkHxg==
Age: 22370
tesco.clientoffer.site/cp/tsco/gb/images/header.png
200 OK 8.6 kB URL HTTP/1.1 tesco.clientoffer.site/cp/tsco/gb/images/header.png
IP
File type PNG image data, 1068 x 196, 8-bit colormap, non-interlaced\012- data
Hash 0f579687912dd1c2b2fd4c73a4d9606c
b8ad1b3f268d93073ffbe01a46d5534f4bb57007
1a4e5a2148a7479fbea96c21c161acf8c488254deb3d1357331085ae805395df
GET /cp/tsco/gb/images/header.png HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 8591
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:59 GMT
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Date: Sun, 28 Aug 2022 01:38:53 GMT
ETag: "6308d0ef-218f"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iuhKwc9NHaMBH--Xwtgn2UEy3owVrSZH0zhibPDAKIP4_ZLKmXDPbQ==
Age: 66702
tesco.clientoffer.site/cp/_assets/images/logo/logo.png
200 OK 1.5 kB URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/images/logo/logo.png
IP
File type PNG image data, 132 x 24, 8-bit colormap, non-interlaced\012- data
Hash beaa411dd0a0445bd7e493e513a5c12a
9a5dff703ba94a8579f5571afece1e16bf1bf14d
2d25a074898821440e0a79ae2414725a4741f0a11944caf69815614503ce39be
GET /cp/_assets/images/logo/logo.png HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1468
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Date: Sun, 28 Aug 2022 13:57:45 GMT
ETag: "6308d0ed-5bc"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LuzywMkg-VBkqMIds_j9ATAa1sQKq5rVkRn4h_dc-mxS-sHrnJHIHA==
Age: 22370
tesco.clientoffer.site/cp/tsco/gb/images/prize.png
200 OK 50 kB URL HTTP/1.1 tesco.clientoffer.site/cp/tsco/gb/images/prize.png
IP
File type PNG image data, 655 x 466, 8-bit colormap, non-interlaced\012- data
Hash 4dcf5f9d7a5250a7fde94375160918ed
b2ac3ac134196cc20cdb1f50baba4c28e600fc5f
b271333ac919cf9165b0078b171967c8e74e4be628fad99a10c5a863a02463ac
GET /cp/tsco/gb/images/prize.png HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 49491
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:59 GMT
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Date: Sun, 28 Aug 2022 01:38:53 GMT
ETag: "6308d0ef-c153"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: g-QS_IGwYIc9qGe2tuarVmX3zsjw3QUD-LLwobFAPDAlC3pFqcYBnA==
Age: 66702
tesco.clientoffer.site/cp/tsco/gb/images/background.jpg
200 OK 82 kB URL HTTP/1.1 tesco.clientoffer.site/cp/tsco/gb/images/background.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x925, components 3\012- data
Hash d96e50ee82220b6f735346b64ef0b356
adff5b8a2cf852a8440a0ce6bb14a25895686f1a
077655bd2e700a57e358bb3249e59083f1492a02285c4622b1f2d9331ff08fbb
GET /cp/tsco/gb/images/background.jpg HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/css/campaign.css
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 82246
Connection: keep-alive
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Last-Modified: Fri, 26 Aug 2022 13:55:59 GMT
ETag: "6308d0ef-14146"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: khE3TKYMz_fXtkEfLU1PXndinJbI5wcIMawn14fMpFoPspzKBdm7Nw==
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 604b3e578ba537ef86cc43c3b8663cd7
5fed2c2ce517f17c4409be7d5de3dd98b16ccdad
95797e39829db597f374a8fa5b1ec712c799a172bd7383559bb8b8ba8e1d124b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "95797E39829DB597F374A8FA5B1EC712C799A172BD7383559BB8B8BA8E1D124B"
Last-Modified: Sat, 27 Aug 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10326
Expires: Sun, 28 Aug 2022 23:02:41 GMT
Date: Sun, 28 Aug 2022 20:10:35 GMT
Connection: keep-alive
kit.fontawesome.com/0711a5d108.js
200 OK 4.5 kB URL HTTP/2 kit.fontawesome.com/0711a5d108.js
IP
Hash eac5e62c30ae220449d479c490f54155
6c3d75ce7ae8aa5d34a4870312eb5dd922420b7d
3af65f233d8c7e89f9e099c1ef2b047d80eb71b64c4bd72460d08b2fe85556f9
GET /0711a5d108.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 28 Aug 2022 20:10:34 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fw-bM_KAOvRUMQtqZJsh
cf-cache-status: MISS
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
server: cloudflare
cf-ray: 741fb0f02e4c0b31-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4d5455dbc4b3b56953d64174705b33eb
02f1207890122b5bbaa01b2589b4dcd1eec6bb2e
e63551b73bd6f634fe8e77669674c9cc7f7859331bcd8b2df35d38a6bcb7b496
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E63551B73BD6F634FE8E77669674C9CC7F7859331BCD8B2DF35D38A6BCB7B496"
Last-Modified: Sun, 28 Aug 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14904
Expires: Mon, 29 Aug 2022 00:18:59 GMT
Date: Sun, 28 Aug 2022 20:10:35 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4d5455dbc4b3b56953d64174705b33eb
02f1207890122b5bbaa01b2589b4dcd1eec6bb2e
e63551b73bd6f634fe8e77669674c9cc7f7859331bcd8b2df35d38a6bcb7b496
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E63551B73BD6F634FE8E77669674C9CC7F7859331BCD8B2DF35D38A6BCB7B496"
Last-Modified: Sun, 28 Aug 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14904
Expires: Mon, 29 Aug 2022 00:18:59 GMT
Date: Sun, 28 Aug 2022 20:10:35 GMT
Connection: keep-alive
ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2
200 OK 78 kB URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 78168, version 331.-31196\012- data
Hash a9fd1225fb2cd32320e2b931dca01089
44ec5c6a868b4ce62350d9f040ed8e18f7a1d128
c5dd43f53f3af822cbf17b1fb75f46192cdbd51724f277acf6cf0dacb3fd57e7
GET /releases/v5.15.4/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 28 Aug 2022 20:10:35 GMT
content-type: font/woff2
content-length: 78168
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:58:24 GMT
etag: "a9fd1225fb2cd32320e2b931dca01089"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 d9ef81045d0cf909bd3143957da09138.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: Pz6y8-ZmIw-AcJLXeInFNAflHrBWZaIVLc-009tQnAdRm8eLDSZlzA==
cf-cache-status: MISS
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kh5eD1KLiTAKrzJXfmjVfR8uWw0uFiRyZRjZP5UtlXP3RmMu6BqTNzLMYjS6n3KnYac65yfczkpzwTcfoMMJa0dH9F5hkETG0Kq3uFKqWMDzR5ZoxOhMPlR6ZPg2iPok5cMiZSrLsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 741fb0f2db3d0b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
content2020.qubiqlabs.com/html_feeds/unsubscribe/en.html?brand=Quiztionnaire
200 OK 2.8 kB URL HTTP/1.1 content2020.qubiqlabs.com/html_feeds/unsubscribe/en.html?brand=Quiztionnaire
IP
File type HTML document text\012- HTML document, ASCII text
Hash 6653cef3ff8dbf8c88992dcf27c67c24
41af48e47680ef4be3e2ffbde88300826ced3605
490d6edff4c41f1506064ea644347abaca9c37cb56cdfc3f25707f359d9426a2
GET /html_feeds/unsubscribe/en.html?brand=Quiztionnaire HTTP/1.1
Host: content2020.qubiqlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: *
content2020.qubiqlabs.com/html_feeds/terms/gb/tc_gb_default.html?brand=Quiztionnaire
200 OK 5.7 kB URL HTTP/1.1 content2020.qubiqlabs.com/html_feeds/terms/gb/tc_gb_default.html?brand=Quiztionnaire
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 94cbdcdcca5bb05726d5421fe2773ba8
e13a352e42a6944de5857549e277f6fed2aeccb3
905b26b3f0f18b71d2abd674784f2629d053b12dd717ca78818908fbfcfd2cab
Analyzer Verdict Alert fortinet Phishing
GET /html_feeds/terms/gb/tc_gb_default.html?brand=Quiztionnaire HTTP/1.1
Host: content2020.qubiqlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: *
content2020.qubiqlabs.com/html_feeds/requirements/gb/rq_gb_default.html?brand=Quiztionnaire
200 OK 4.1 kB URL HTTP/1.1 content2020.qubiqlabs.com/html_feeds/requirements/gb/rq_gb_default.html?brand=Quiztionnaire
IP
File type HTML document text\012- exported SGML document, ASCII text
Hash a1331a4572749d0c3497bf9d26763f7d
3dd669030de4580e3dc964835820b49287c7c1d4
c38443c693fcfc98b6bc611cec8a4b645783035fa5d44995afb7b60f78715b85
GET /html_feeds/requirements/gb/rq_gb_default.html?brand=Quiztionnaire HTTP/1.1
Host: content2020.qubiqlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: *
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ba1c786997031360c89b6f14d30fc35a
997075ebaf04149c94c2de15d8e21b7aaf39b6ec
9a5bd1330fe192035ef9b10ac02179205be1c40db9e8014e9e8aa62b57b6ebeb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=95546
Date: Sun, 28 Aug 2022 20:10:35 GMT
Etag: "630a9df5-1d7"
Expires: Mon, 29 Aug 2022 22:43:01 GMT
Last-Modified: Sat, 27 Aug 2022 22:43:01 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Nmxy9ssCs8qPhr3dh1nZDNb4Una4_uyg8_eHEmCcM4Z8JqdIikWhTg==
content2020.qubiqlabs.com/html_feeds/reward_status/en/rs_default.html?brand=Quiztionnaire
200 OK 2.5 kB URL HTTP/1.1 content2020.qubiqlabs.com/html_feeds/reward_status/en/rs_default.html?brand=Quiztionnaire
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash edbae6c7299a2298a60d79ef7042b747
11752eff8f039e6bd671edafaea39ac86a9fa359
1253aa240f916f0dadcacfc174c0b84c1b45bd1bd04dae250296e324efa59ed6
Analyzer Verdict Alert fortinet Phishing
GET /html_feeds/reward_status/en/rs_default.html?brand=Quiztionnaire HTTP/1.1
Host: content2020.qubiqlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: *
content2020.qubiqlabs.com/html_feeds/reward_options/gb/ro_gb_default.html?brand=Quiztionnaire
200 OK 2.8 kB URL HTTP/1.1 content2020.qubiqlabs.com/html_feeds/reward_options/gb/ro_gb_default.html?brand=Quiztionnaire
IP
File type HTML document text\012- HTML document, ASCII text
Hash c2d6d88fbc5d6c5e0c26b8e3a9da13d0
86506e59a06a7b0f6b10e5d9c61623956117a661
34cca75ed62f23385f81cd51174170b20a034017f55fee18c65a54f26a634b57
Analyzer Verdict Alert fortinet Phishing
GET /html_feeds/reward_options/gb/ro_gb_default.html?brand=Quiztionnaire HTTP/1.1
Host: content2020.qubiqlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: *
content2020.qubiqlabs.com/html_feeds/privacy_policy/gb/pp_gb_default.html?brand=Quiztionnaire
200 OK 19 kB URL HTTP/1.1 content2020.qubiqlabs.com/html_feeds/privacy_policy/gb/pp_gb_default.html?brand=Quiztionnaire
IP
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (413)
Hash 4efdfffd94d7e46a07ae801be53ca544
d91906571269fbc939e39444db5ca12d141238a0
f6607d0fcf25f281c91cb716b2e2d893381c7e9fc84480bdf2e76b85ef3ee3b9
Analyzer Verdict Alert fortinet Phishing
GET /html_feeds/privacy_policy/gb/pp_gb_default.html?brand=Quiztionnaire HTTP/1.1
Host: content2020.qubiqlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: *
content2020.qubiqlabs.com/html_feeds/support/en/support_default.html?brand=Quiztionnaire
200 OK 213 B URL HTTP/1.1 content2020.qubiqlabs.com/html_feeds/support/en/support_default.html?brand=Quiztionnaire
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash af7fb56ff46d6887d397b7fb1d2d952a
889cdc842a56e98476f5014c11c57aac68b0f370
123dbbbb5e48d21c250cfb89014ce1b703e02ac624e395e9a75da5cfc1c8f1fc
GET /html_feeds/support/en/support_default.html?brand=Quiztionnaire HTTP/1.1
Host: content2020.qubiqlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Access-Control-Allow-Origin: *
cdn.formulead.com/css/main.min.css
200 OK 94 kB URL HTTP/1.1 cdn.formulead.com/css/main.min.css
IP
File type ASCII text, with very long lines (65518)
Hash 696d60deadf94d2655e0849094fab2fb
c38ea3c192a0ade3cd5999e9ffe846524ea0c383
b37ed1d3763b12d7f7282c0e4034715d8016d206a498d70f1a377e56e02bee02
GET /css/main.min.css HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Accept-Ranges: bytes
Cache-Control: public, max-age=2678400
Last-Modified: Fri, 26 Aug 2022 11:57:09 GMT
ETag: W/"b15a1-182da035a08"
Vary: Accept-Encoding
Content-Encoding: gzip
st.formulead.com/assets/img/spinner/double-ring.gif
200 OK 93 kB URL HTTP/2 st.formulead.com/assets/img/spinner/double-ring.gif
IP
File type GIF image data, version 89a, 256 x 256\012- data
Hash 2f2ad9512c7ad4ea794d3a5d6adbd69e
76c48ce3db2dca18e28b2648ef34e7735f294772
7d77afe35414413c958c359b06daa7dad9c2a385d116e5870aafb772261cdd98
GET /assets/img/spinner/double-ring.gif HTTP/1.1
Host: st.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 92622
server: nginx/1.19.0
last-modified: Tue, 26 Jul 2022 09:06:23 GMT
accept-ranges: bytes
access-control-allow-origin: *
date: Sun, 28 Aug 2022 08:49:33 GMT
etag: "62dfae8f-169ce"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p_sy2DMotrIk650d3kFoRqgL8FCOpCvLcgE_nnidJ20q2PxrOIZPEA==
age: 40862
X-Firefox-Spdy: h2
cdn.formulead.com/p/62663c8eeb14be592d224298/p.js
200 OK 426 kB URL HTTP/1.1 cdn.formulead.com/p/62663c8eeb14be592d224298/p.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 426 kB (425904 bytes)
Hash b6da398d3fc9d5a5830e5522bf0d1d13
e9a8d576f348e28522b2264dd6b68a50854cf9bd
3a6cce65a87b4ecfae044d143738cd2f7554404200428b4bc93c3bed2d17d45c
GET /p/62663c8eeb14be592d224298/p.js HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Pragma: no-cache
Cache-Control: no-cache
set-cookie: lid=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
plc=62663c8eeb14be592d224298; Path=/; Expires=Tue, 27 Aug 2024 20:10:35 GMT; Secure; SameSite=None
qst.sid=s%3A0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK.6D4NCrtXlVWgbdyVv8BCXloXwF885qvjPR7oL3xk7u4; Path=/; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ba1c786997031360c89b6f14d30fc35a
997075ebaf04149c94c2de15d8e21b7aaf39b6ec
9a5bd1330fe192035ef9b10ac02179205be1c40db9e8014e9e8aa62b57b6ebeb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=95546
Date: Sun, 28 Aug 2022 20:10:35 GMT
Etag: "630a9df5-1d7"
Expires: Mon, 29 Aug 2022 22:43:01 GMT
Last-Modified: Sat, 27 Aug 2022 22:43:01 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 320EZ-wK5IlvSZK7GktZi_9Xbi-JbW989y16N40nWmSkjRmiRKPp-w==
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ba1c786997031360c89b6f14d30fc35a
997075ebaf04149c94c2de15d8e21b7aaf39b6ec
9a5bd1330fe192035ef9b10ac02179205be1c40db9e8014e9e8aa62b57b6ebeb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 28 Aug 2022 20:10:35 GMT
Server: ECS (dcb/7F83)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YA8O8LDZp83KCkFt2xE9rL1TF6Vc3cOKJWPBwIiRIOT43EQP_Trdgg==
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 28 Aug 2022 19:17:13 GMT
Cache-Control: max-age=3600
Expires: Sun, 28 Aug 2022 19:47:34 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: t-ZM2JwCe6qumBsyq3jobxqqUvX1FBaL-JIuynQtP74QD1-6DyjXcw==
Age: 3203
content2020.qubiqlabs.com/html_feeds/assets/css/style.css
200 OK 1.6 kB URL HTTP/1.1 content2020.qubiqlabs.com/html_feeds/assets/css/style.css
IP
Hash c4b6bce2779e16e247525c0340c55684
6d95e776b86d4a0c17926beb3b850efe43d44cd8
cfcc65c90359102fe586101d4ae60fd3f2d79b5e917eecae6907500fa77e37fa
GET /html_feeds/assets/css/style.css HTTP/1.1
Host: content2020.qubiqlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: text/css
Content-Length: 1623
Connection: keep-alive
Last-Modified: Fri, 26 Aug 2022 13:56:13 GMT
ETag: "6308d0fd-657"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
ocsp.digicert.com/
200 OK 471 B IP
Hash 396ffb5d17a8a353f8f748959fcf7966
8301f51528695b9c8a48de0e6e889b603f34308c
a5c0dd3453bdba148aea970cda083b70b3ba680286a6c65878cc369d20f1d216
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3929
Cache-Control: max-age=133296
Content-Type: application/ocsp-response
Date: Sun, 28 Aug 2022 20:10:35 GMT
Etag: "630b2212-1d7"
Expires: Tue, 30 Aug 2022 09:12:11 GMT
Last-Modified: Sun, 28 Aug 2022 08:06:42 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
content2020.qubiqlabs.com/fonts/Poppins/poppins-v19-latin-regular.woff2
200 OK 7.9 kB URL HTTP/1.1 content2020.qubiqlabs.com/fonts/Poppins/poppins-v19-latin-regular.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
Analyzer Verdict Alert fortinet Phishing
GET /fonts/Poppins/poppins-v19-latin-regular.woff2 HTTP/1.1
Host: content2020.qubiqlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: application/octet-stream
Content-Length: 7884
Connection: keep-alive
Last-Modified: Fri, 26 Aug 2022 13:56:13 GMT
ETag: "6308d0fd-1ecc"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
cdn.formulead.com/v/country
200 OK 51 B URL HTTP/1.1 cdn.formulead.com/v/country
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 91440c116c92d75cfc02cd72bd060a82
591d3adc1d1d80e012b0dd0214df1f0438ae37f5
1b35c679adcfb2f8fbf92afcaf9f7a741f3c6273503a54b6c55448e1b2807c80
GET /v/country HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:35 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 51
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Pragma: no-cache
Cache-Control: no-cache
ETag: W/"33-WR063B0dgOASsN0CFN8fBDiuN/U"
set-cookie: qst.sid=s%3AmD8sLw00l3w4D3d_UoKxRGMyQmofCyj8.yO8BNFvB7MiFcODaMyg5VAn2rFYQmm5rRF%2FZzAq3Q6U; Path=/; HttpOnly
Vary: Accept-Encoding
tesco.clientoffer.site/favicon.ico
200 OK 1.2 kB URL HTTP/1.1 tesco.clientoffer.site/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 2b41416e68dcc31606e749cc9da0e7e4
7801b077f31134407e429aa5d3cfd65ed2197e59
934e627d59f1a7b1d98df885aa0d09603b4027b25d29e5ddeaadd15fdd318c6b
GET /favicon.ico HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: image/x-icon
Content-Length: 1150
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:56:13 GMT
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Date: Sun, 28 Aug 2022 15:22:59 GMT
ETag: "6308d0fd-47e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -6Bvz7kDWLJwq_7GVXTKIprjeriWb10LBYrwO4c7INOjfYii4blxxw==
Age: 17256
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cXKz3vfx0mj0xTYCEEno1Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aWWDS3q3K4xUTWMuzPcPY5h3asE=
cdn.formulead.com/p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=initial
200 OK 2 B URL HTTP/1.1 cdn.formulead.com/p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=initial
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=initial HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-iivmxswc,x-request-id,x-session-id
Referer: http://tesco.clientoffer.site/
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:36 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
ETag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 157ed86038f439599299c07120bf4f55
3267ca597172124084fa984c3f79ab8679d26abc
0c6fd6918aecb605125b104bf294db84db1ca3476caebd794a14625e2b6c8771
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 Aug 2022 20:10:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6Le28S4hAAAAAA_HM_1PgW6fsQqLb2dZORF4Hbu-
200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Le28S4hAAAAAA_HM_1PgW6fsQqLb2dZORF4Hbu-
IP
File type ASCII text, with very long lines (884), with no line terminators
Hash 30fd6c8498a9d1c2603d03017a4d3456
4f663349148a311be5fb4d95c33c4766ca417a26
c19a6141cc1b25f12396e784faea3a64fd3220c6ee15575f94911594579f7671
GET /recaptcha/api.js?render=6Le28S4hAAAAAA_HM_1PgW6fsQqLb2dZORF4Hbu- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 28 Aug 2022 20:10:36 GMT
date: Sun, 28 Aug 2022 20:10:36 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.formulead.com/p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=initial
200 OK 5.5 kB URL HTTP/1.1 cdn.formulead.com/p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=initial
IP
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (23056), with no line terminators
Hash b72c9167b71637ec2c835a9e30f39b04
eddeeccb8d51785ea8132ef786dcb0d6126478f0
7daa18ae9b0ffbd4f5f333552904d29ed06fcbd37ba3b121fcfcdd016ceb00bf
GET /p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=initial HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Session-Id: s:0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK.6D4NCrtXlVWgbdyVv8BCXloXwF885qvjPR7oL3xk7u4
X-Request-Id: 4792787806f8eb647ffeb5b0
X-iivmxswc: baa30518134d507b9d3cb600c500ec26bc2f3681f1e90af3cdae7cb489c3919e
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Cookie: plc=62663c8eeb14be592d224298
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:36 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Pragma: no-cache
Cache-Control: no-cache
Set-Cookie: stp=1; Path=/; Expires=Tue, 27 Aug 2024 20:10:36 GMT; Secure; SameSite=None
ck_tsp=2022-08-28T20%3A10%3A36.150Z; Path=/; Expires=Tue, 27 Aug 2024 20:10:36 GMT; Secure; SameSite=None
sip=91.90.42.154; Path=/; Expires=Tue, 27 Aug 2024 20:10:36 GMT; Secure; SameSite=None
ETag: W/"5ae7-VbslhOU1P6uVUb/wOzOFF5hEp1s"
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e59e2181a2976b333b3162a3491dfb88
0ee17255adb3f92f1b66bbbccb5302a81d6c51ba
68e3061755635bdd642272ed609b678d0f714583829b2e2378846f1ffcc513f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 Aug 2022 20:10:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tesco.clientoffer.site/cp/_assets/images/elements/wall_pop_deals_au.svg
200 OK 18 kB URL HTTP/1.1 tesco.clientoffer.site/cp/_assets/images/elements/wall_pop_deals_au.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1265)
Hash aec5a7e5da00db91efe55abfd1f874e2
e8af0dc9fb817f2c7fe75acb36782c637711af2f
3fd56e99c955886f1f7ef96ffc79ac661a514b2a7f5d7efb13d3a23018d0c571
GET /cp/_assets/images/elements/wall_pop_deals_au.svg HTTP/1.1
Host: tesco.clientoffer.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tesco.clientoffer.site/cp/tsco/gb/index.html?pre=1&p_id=62663c8eeb14be592d224298&_c_id=aff_code:LDA;aff_offer_id:2150;request_id:c454da598ab8968eac2d951d21190f7d;aff_tid:;aff_goal_id:10506;aff_goal_id2:10507;aff_id:1339;aff_version:default;aff_adv_id:2;aff_inc:tesco&_c_user=ld_first_name:;ld_last_name:;ld_email:;ld_title:;ld_gender:;ld_phone_cell:&_c_loc=ld_zip_code:;ld_address_line1:;ld_street_name:;ld_street_number:;ld_city:&_c_dob=ld_dob:;ld_dayob:;ld_monthob:;ld_yearob:&aff_click_id=&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_tt=dp&ch=&aff_ttp=&request_id=c454da598ab8968eac2d951d21190f7d
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.19.0
Last-Modified: Fri, 26 Aug 2022 13:55:57 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sun, 28 Aug 2022 01:38:53 GMT
ETag: W/"6308d0ed-cf18"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TiT5K9yba0l2RaxdR5NovXuCRsboyMvHOt6lypixIyOl5vsNxEvqyQ==
Age: 66703
content2020.qubiqlabs.com/fonts/myriad-pro/MyriadPro-Regular.woff
200 OK 52 kB URL HTTP/1.1 content2020.qubiqlabs.com/fonts/myriad-pro/MyriadPro-Regular.woff
IP
File type Web Open Font Format, CFF, length 51572, version 0.0\012- data
Hash 6a324f29ef3efabd2176f8b697ad71ed
dd696f0c713eb491c6e16bec9fda63f3f23999ba
6d64c461708b8f11e06451c96779d22fc2b8de582214c77493ecc57c32ede06e
Analyzer Verdict Alert fortinet Phishing
GET /fonts/myriad-pro/MyriadPro-Regular.woff HTTP/1.1
Host: content2020.qubiqlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:36 GMT
Content-Type: application/font-woff
Content-Length: 51572
Connection: keep-alive
Last-Modified: Fri, 26 Aug 2022 13:56:13 GMT
ETag: "6308d0fd-c974"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
cdn.formulead.com/v/fingerprint-cache?vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs=803716228
200 OK 110 B URL HTTP/1.1 cdn.formulead.com/v/fingerprint-cache?vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs=803716228
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash bad7f8dd7c7e0222df76f8164f37d7f0
e6f37c1e21f83b5e26660d2beee029c5fdfdf447
c167a02d8d16558f88713a894be5587558e1876b822e73e1a9eef21815bd233f
GET /v/fingerprint-cache?vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs=803716228 HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Cookie: plc=62663c8eeb14be592d224298; stp=1; ck_tsp=2022-08-28T20%3A10%3A36.150Z; sip=91.90.42.154
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:36 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 110
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Pragma: no-cache
Cache-Control: no-cache
ETag: W/"6e-5vN8HiH4O14mZg0r7uApxf399Ec"
set-cookie: qst.sid=s%3APGLXtREc2uIYrtT3UL4VdmHe4fHuKQA8.HTV%2BzjZbTXm27u6%2BLIXlORWxJWddJWRpEAgEIWBnlm8; Path=/; HttpOnly
Vary: Accept-Encoding
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 15c29744a0c9c69655bec5e8a12fda55
2d50014c5536359dda0f45ea5c4184243d4ef466
dc7445be282a0abeb696e4cb2c97e5e9106d58bef0947c6642ffcf190e8f2bd9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC7445BE282A0ABEB696E4CB2C97E5E9106D58BEF0947C6642FFCF190E8F2BD9"
Last-Modified: Sun, 28 Aug 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21598
Expires: Mon, 29 Aug 2022 02:10:34 GMT
Date: Sun, 28 Aug 2022 20:10:36 GMT
Connection: keep-alive
submittrk.com/clk?aff_id=1339&offer_id=2150&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_click_id=&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&aff_tt=dp
200 OK 82 B URL HTTP/1.1 submittrk.com/clk?aff_id=1339&offer_id=2150&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_click_id=&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&aff_tt=dp
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 079f48b5fc34da317b15aad3ab7f5b10
f1a8b4d7a719306166c8a2dac62c854b14e16cf4
fa51756a5b4340ff538c3f71644c77b5a36e1d13bfbab9edfd023ef0a21bd5d2
GET /clk?aff_id=1339&offer_id=2150&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=&aff_fbp=&aff_click_id=&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&aff_tt=dp HTTP/1.1
Host: submittrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:36 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 82
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS, PUT, DELETE, PATCH
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Authorization, Content-Type
ETag: W/"52-8ai016cZMGFmyKLaxiyFSxThbPQ"
Set-Cookie: hexa.sid=s%3AYrt6Exm2JNMsJbtXtBFX2zEynmnrtyvt.%2FxdHAERNCdkS9Qu%2FADas9rrHIOw6f46CqYrAF2rceIw; Path=/; HttpOnly; Secure
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1bb8df25d5aa0c6ff660f97b81e64458
be7596032c78bc836b7e780a3b20e5d5518f89f3
80892cb99d64aa076366b4b9fb5f303271d0e97fd9d7734402f571027fb490e8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 Aug 2022 20:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/3TZgZIog-UsaFDv31vC4L9R_/recaptcha__en.js
200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/3TZgZIog-UsaFDv31vC4L9R_/recaptcha__en.js
IP
File type ASCII text, with very long lines (565)
Size 158 kB (158046 bytes)
Hash 5394f2e9f2582c5f0fdb4a75afc867b9
2f07b881d60b4882909b4960c7daa00df12ed0b6
8acfac4ce6dc9331af0cb251d1ddb8cb2db19bff78e09489dd4556ce636e1339
GET /recaptcha/releases/3TZgZIog-UsaFDv31vC4L9R_/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 28 Aug 2022 09:07:35 GMT
expires: Mon, 28 Aug 2023 09:07:35 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 21 Aug 2022 22:02:06 GMT
content-type: text/javascript
age: 39782
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5ab82d0d153255175b1c3c600842227d
a6c6d3bd5479cc2977dd6cf320ad80572f54c1e0
0423daa554124197ae0b9184e4d38dcebeb41906b300fd4d7c2d05eabb9fb90f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 Aug 2022 20:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.formulead.com/p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=full
200 OK 2 B URL HTTP/1.1 cdn.formulead.com/p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=full
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=full HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-iivmxswc,x-request-id,x-session-id
Referer: http://tesco.clientoffer.site/
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:37 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
ETag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
Vary: Accept-Encoding
cdn.formulead.com/vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html
200 OK 2 B URL HTTP/1.1 cdn.formulead.com/vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-flow-id,x-lead-id,x-offer-id,x-ofvuinwk,x-placement-id,x-session-id,x-zqhkygow
Referer: http://tesco.clientoffer.site/
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:37 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
ETag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
Vary: Accept-Encoding
cdn.formulead.com/t/errors
200 OK 2 B URL HTTP/1.1 cdn.formulead.com/t/errors
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /t/errors HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-session-id
Referer: http://tesco.clientoffer.site/
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:37 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
ETag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
Vary: Accept-Encoding
cdn.formulead.com/content-elements/gb/sponsor/true
200 OK 77 kB URL HTTP/1.1 cdn.formulead.com/content-elements/gb/sponsor/true
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash 43d2e1d6363ded50a6f9c33ba63f8572
02407c962940c88d0bd5809a4c18ee41050d311f
96ecae99b46dacbb375c85623ae966d7a80268b4d274c0febbc78a77ab9dbf0d
GET /content-elements/gb/sponsor/true HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:37 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
ETag: W/"25991-6GoA1/JHWhNoSXtv1v7fVnQul4Y"
set-cookie: qst.sid=s%3ASUQewKHGj-rfEVP8gDJeDmLvmW3Pl2MT.Px22fFXlnRYtpf7z62x%2Fp8nbb3YrMw9M0yHvFkr7IsM; Path=/; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 86b2884af34c96fbb194bd340a2d0193
e55b2a45be21cff15398ac7b7aff45206198fbdf
eff4ee2043ba81d81d564fae2b72994858725e9282d45972ca92291bbc193fee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6115
Expires: Sun, 28 Aug 2022 21:52:32 GMT
Date: Sun, 28 Aug 2022 20:10:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 86b2884af34c96fbb194bd340a2d0193
e55b2a45be21cff15398ac7b7aff45206198fbdf
eff4ee2043ba81d81d564fae2b72994858725e9282d45972ca92291bbc193fee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6115
Expires: Sun, 28 Aug 2022 21:52:32 GMT
Date: Sun, 28 Aug 2022 20:10:37 GMT
Connection: keep-alive
cdn.formulead.com/t/errors
200 OK 16 B URL HTTP/1.1 cdn.formulead.com/t/errors
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /t/errors HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Session-Id: s:0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK.6D4NCrtXlVWgbdyVv8BCXloXwF885qvjPR7oL3xk7u4
Content-Type: application/json
Content-Length: 152
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:37 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 16
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Pragma: no-cache
Cache-Control: no-cache
ETag: W/"10-oV4hJxRVSENxc/wX8+mA4/Pe4tA"
Vary: Accept-Encoding
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c76ac95-9347-4b2c-b714-273aa0c3ce73.jpeg
200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c76ac95-9347-4b2c-b714-273aa0c3ce73.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f492a725bd0ff1ffb9bda36a618c8163
54ebcbafcc02053b2e9477ef29e89c9924abb9e0
bbe69be8f14be3d6fdf09fee9cfdcee5847875bc9f6f6097e4afe1692553c125
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c76ac95-9347-4b2c-b714-273aa0c3ce73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6921
x-amzn-requestid: 727cc3c0-9535-43cf-8aa6-1f46d74a5e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xis-bGrXIAMF6ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8ec2-4794034041513a7022688600;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QiL5v8h4rNJMJ8tsIdWb0xv7H28K96hH3V8-Fg312NDEdkNZ32IedQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 21:45:27 GMT
age: 80710
etag: "54ebcbafcc02053b2e9477ef29e89c9924abb9e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78cd7e71-95b2-4fb2-99cc-1b8645fc4d73.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78cd7e71-95b2-4fb2-99cc-1b8645fc4d73.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e0a52aaf6cfd3c91ef396ec21e668634
96e49f02f48d8e212335722d7a95eba9b21050de
edd20b6a1790cc65fd16f64e6e58c01140d814ffb27a6fe6f41c7dc285a76b2b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78cd7e71-95b2-4fb2-99cc-1b8645fc4d73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10824
x-amzn-requestid: abf116d5-7ffd-4100-bbbb-f8ebcc903e48
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XaJqgGfToAMFfmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6307230f-058b88810d3d902475af52a3;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 07:21:51 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: 1QjI_En26B7SLes62WrxkEODPzBCDiUUo8ttH3vOUYsTTTo-ucHIqA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Sun, 28 Aug 2022 08:42:16 GMT
age: 41301
etag: "96e49f02f48d8e212335722d7a95eba9b21050de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c51c541-314b-4130-a3af-d06caf60bb7b.jpeg
200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c51c541-314b-4130-a3af-d06caf60bb7b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d86049a1b34617a0d41fb4ef97009303
0c0aa0266043aa373afb74a15ab605fba7ceb654
02bcd4310d68f5cffd90c1cced9e9789876f3c51c1edb21f9b0dec1e659118b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c51c541-314b-4130-a3af-d06caf60bb7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7058
x-amzn-requestid: 9059da6e-9360-445d-8605-e05f29234b44
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XiuGcGYqoAMFRfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a908f-3faf9a64271fb8a02010d3e5;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:45:51 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: IevbIr8ZUpryBbm6-c5-3MXJ4eXrXrHxTFGNl3-alDedXci9AzRzxw==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 22:04:08 GMT
etag: "0c0aa0266043aa373afb74a15ab605fba7ceb654"
content-type: image/jpeg
age: 79589
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc60fda11-5aa3-4174-a58a-46af88fedd75.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc60fda11-5aa3-4174-a58a-46af88fedd75.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2ed3a605211c6899462d3cc9ebe4449
2f6a2cc93fe0d831ede16d39ed2c77ca8a9b3c8a
b873f5f34ff3cf148f728493d31aeed89e0233add814b2a37b3e94b1f5448fc8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc60fda11-5aa3-4174-a58a-46af88fedd75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14267
x-amzn-requestid: 2593485d-9c6a-4436-ad0d-a52c3f2d13e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XitJbFN1oAMF51A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8f08-5db644bf2d42438a3adc4111;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yoo_lXPNt8RF6hYWCbPBF0hX3gI7YQZRMgwyWGie71gkNOpj-rxquQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 21:47:54 GMT
age: 80563
etag: "2f6a2cc93fe0d831ede16d39ed2c77ca8a9b3c8a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2b0d146-88a6-4ec6-a71c-bb9dd4314497.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2b0d146-88a6-4ec6-a71c-bb9dd4314497.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef5729bf444dd3cc7b8e7945187e09ee
ec62fa681d45d696fc7308fede11cd16979594fd
34d5df4a669399f171489c9cd0f90a53eea21c35c1ccd310df39cc356c9922cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2b0d146-88a6-4ec6-a71c-bb9dd4314497.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7505
x-amzn-requestid: 66ed5a9b-1b9c-40c4-b757-7c13e9dc6410
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XitJxFFSIAMFhrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8f0b-24404d4f7a2cae8f4c3bcb97;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:39:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UFJ0DtBufSFfM1vFxdagMV5tpP5ZEH2NbdduFvVM6sL7UVpdhSBhGQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 22:03:39 GMT
age: 79618
etag: "ec62fa681d45d696fc7308fede11cd16979594fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febffc56c-14ba-44c3-a52a-2f2dca64b931.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febffc56c-14ba-44c3-a52a-2f2dca64b931.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd559f24c149a22515344de424d9836d
10ae4c1080524020dfeb06984c8c98aabe07db6a
176d82e8f33969b2060fc8d1c8ac93e3e0934f857d90bcdeb7d83454d7d0448d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febffc56c-14ba-44c3-a52a-2f2dca64b931.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8884
x-amzn-requestid: b83f1ecc-1efc-4178-84ce-9d05c053e078
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XitVoF9_oAMFegA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8f57-098fcb077607ffbd2a589692;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:40:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GcDiexM3A8JfyGrpvFB9OVebksdmIlIM48gwihb_4qcAs3Nzb2253A==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 21:55:42 GMT
age: 80095
etag: "10ae4c1080524020dfeb06984c8c98aabe07db6a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
event.trk-consulatu.com/register/event_log/zqd2ojv4ek
200 OK 0 B URL HTTP/2 event.trk-consulatu.com/register/event_log/zqd2ojv4ek
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /register/event_log/zqd2ojv4ek HTTP/1.1
Host: event.trk-consulatu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://tesco.clientoffer.site/
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 28 Aug 2022 20:10:37 GMT
content-length: 0
access-control-allow-headers: content-type
access-control-expose-headers: Authorization, Link, X-Total-Count
access-control-allow-origin: http://tesco.clientoffer.site
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1800
cf-cache-status: DYNAMIC
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jW20uqZRO%2F%2FG%2BqTDlNDZV4VRhRJgbZzc8%2BWvyIhGaTOM8x8Q03x8PnP1JOtpJl%2FTdbpuwM%2BAWzbmYSKBu1H6KC7I4VIgIPfkDGeEw43Hl8lmlbWguzCxHJchFS907twMFot79S7%2BikmPyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 741fb0ff3bcbb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 Aug 2022 12:31:58 GMT
expires: Sun, 27 Aug 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 113919
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
event.trk-consulatu.com/register/event_log/zqd2ojv4ek
200 OK 0 B URL HTTP/2 event.trk-consulatu.com/register/event_log/zqd2ojv4ek
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /register/event_log/zqd2ojv4ek HTTP/1.1
Host: event.trk-consulatu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tesco.clientoffer.site/
Content-type: application/json
Origin: http://tesco.clientoffer.site
Content-Length: 103
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 28 Aug 2022 20:10:37 GMT
content-length: 0
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-pushplatformapp-params:
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src https://* data:; font-src 'self' data:
x-pushplatformapp-alert: pushPlatformApp.pushSubscription.deleted
x-frame-options: DENY
access-control-expose-headers: Authorization, Link, X-Total-Count
access-control-allow-origin: http://tesco.clientoffer.site
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
x-content-type-options: nosniff
feature-policy: geolocation 'none'; midi 'none'; sync-xhr 'none'; microphone 'none'; camera 'none'; magnetometer 'none'; gyroscope 'none'; speaker 'none'; fullscreen 'self'; payment 'none'
cf-cache-status: DYNAMIC
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G%2BCBAP6FCjeG5OqM6P6qCTFU%2FmqLuzM63z51LmIWPoKR2e9999nmZkv35EfkE%2BSnEKS79z4OL1%2FzaF%2Fywp%2B6rDOqvB4QMHgucWXpTliSxdQusUcrZ7zzM7ndguw8rkYuDE53YcP12jePAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 741fb100ae92b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Aug 2022 00:48:31 GMT
expires: Sat, 26 Aug 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 242526
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
upload.wikimedia.org/wikipedia/commons/thumb/e/e4/Infobox_info_icon.svg/1024px-Infobox_info_icon.svg.png
200 OK 14 kB URL HTTP/2 upload.wikimedia.org/wikipedia/commons/thumb/e/e4/Infobox_info_icon.svg/1024px-Infobox_info_icon.svg.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8cdf5e0cf6959239b8278e79c1c4796b
0a0e8d32ae153e5c1ea12cc5e8c9554181b49601
147b305520fa035adfb61c89e09c0f24883abbeb693afbbed60c99a43a84feca
GET /wikipedia/commons/thumb/e/e4/Infobox_info_icon.svg/1024px-Infobox_info_icon.svg.png HTTP/1.1
Host: upload.wikimedia.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 28 Aug 2022 08:08:23 GMT
etag: 8cdf5e0cf6959239b8278e79c1c4796b
server: ATS/8.0.8
content-type: image/webp
content-length: 13578
last-modified: Sun, 23 Jun 2019 23:36:38 GMT
age: 43333
x-cache: cp3053 hit, cp3065 hit/614
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3065"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 86400, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 86400, "failure_fraction": 0.05, "success_fraction": 0.0}
accept-ch: Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version
permissions-policy: interest-cohort=(),ch-ua-arch=(self "intake-analytics.wikimedia.org"),ch-ua-bitness=(self "intake-analytics.wikimedia.org"),ch-ua-full-version-list=(self "intake-analytics.wikimedia.org"),ch-ua-model=(self "intake-analytics.wikimedia.org"),ch-ua-platform-version=(self "intake-analytics.wikimedia.org")
x-client-ip: 91.90.42.154
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.formulead.com/v/reverse-dns-lookup
200 OK 88 B URL HTTP/1.1 cdn.formulead.com/v/reverse-dns-lookup
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 9e040edd17bb2e1b8595c5bca9c3781a
cb57e3f304d455c0b252e6a05bc0e55814c8c553
56c21491b74b93d01b73e9f45bde0ad2c392e0b4afbe710b7c324c7c090178e0
GET /v/reverse-dns-lookup HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Cookie: plc=62663c8eeb14be592d224298; stp=1; ck_tsp=2022-08-28T20%3A10%3A36.150Z; sip=91.90.42.154
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:37 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 88
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Pragma: no-cache
Cache-Control: no-cache
ETag: W/"58-y1fj8wTUVcCyUuagW8DlWBTIxVM"
set-cookie: qst.sid=s%3ARrx4INnzt-qDKYvbpr8ysZR0oGYFRrZ3.BdkAasEoQ5bRp42bgPCZz%2FSIzcwkp%2B4daE8CsITMPTU; Path=/; HttpOnly
Vary: Accept-Encoding
cdn.formulead.com/vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html
200 OK 484 B URL HTTP/1.1 cdn.formulead.com/vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html
IP
File type JSON data\012- , ASCII text, with very long lines (484), with no line terminators
Hash eb702bb6d4f71b805198b31e3bbb65df
a97407a0f8b373ba4b030abcffb8591fdfe4e4f4
da5b9d9bd44732fa8d820376ecda10cf97c58dc0d217383ad6b8370544be1bed
GET /vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Session-Id: s:0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK.6D4NCrtXlVWgbdyVv8BCXloXwF885qvjPR7oL3xk7u4
X-Offer-Id: 607e975a6e70d9ef7767c232
X-Flow-Id: 607e975a6e70d9ef7767c232
X-Placement-Id: 62663c8eeb14be592d224298
x-zqhkygow: 58a99afdc7411ffba3eea039d027eef6ded57ff803bea1991987c9159e5f3d6f
x-ofvuinwk: d7cf699d14a566e59464b7c6a07ad0eb61e15202888e2b9204013d79b7c92b77
X-Lead-Id: 4792787806f8eb647ffeb5b0
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:37 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6b84adbf5826fcd175df4c0dca3a6893
73a9c60a4775da221cd24c98664b33571a2d7335
c0f8de8b417c69fadd41cfc20e023026b1e93d2ed447976faf40558be2c216a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 Aug 2022 20:10:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
IP
File type ASCII text, with very long lines (32341)
Hash 856f85cc1b07156fa844b44a10c236c2
7cef457c0e1cd0c20f4e699564ea8997f0332021
c61aa9ce7b32f93630abac1a4b27382f9333e0ff69477c9d9099070ae0742b01
GET /ajax/libs/jquery/1.11.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Aug 2022 10:50:55 GMT
expires: Wed, 23 Aug 2023 10:50:55 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 465583
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4b60f31bf1dfc910d0b031da4b57aeb9
b8122448f5a86c44f7016a54423d3ed40a13c97a
d90b29d7a5265652ce8ba1b77e47610dde65179be14d5e595e0cd3e214dd26b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 28 Aug 2022 20:10:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.formulead.com/t/page
200 OK 2 B IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /t/page HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-session-id
Referer: http://tesco.clientoffer.site/
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:38 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
ETag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
Vary: Accept-Encoding
cdn.formulead.com/v/recaptcha3?token=03ANYolqtuYoJYTSEOvERCIqd6mVqDqV96LzkDFICMZaFxvcIWHAmSTsZSjzQOElDcwQg3N7tmJE6lgTfyRDGBT5L3ZFacQ0QtCW_RDbggAwzVmnqlDC3MffEj7-2VSVceknw03eqBLx1ZPrB4UtUS7XReLedUWMnMUdAb7uBwMPjK0VfGwxpB_GnDCGMUS6odsflfrKYcn169Rw5djCGaXjQMb0jMAgIsvKkxnCRbBecvPUVbl1v1UmA4JjpjfY6fKXApHyKl_tOmxaHr9__Yt4M4qovJD8H1coEwUB6DiMNPFXh6LqlpFGVYcqARJQKiH-Rt2lTzWA-cZfZdrHjoKMSoj9Sn5SUBfoKfHmDl-OIpCYFP-5cOuUp3UKZoPae1N8pMc-3xiiOWqdW_aaD9AW1e2BMSVoF6x67Fxc-SKPnrjCEiyJsGEF6T9ys158K2XBJV_QXLpnmJWsh8HZzsPHitD0HFC36i5z9x6WFKCL-I6La_OAeuSSQ2G_6DEh3AyEzwyeRYegWX9nJ6n4Ij4BXiMqw2VfnEuw&step=1
200 OK 169 B URL HTTP/1.1 cdn.formulead.com/v/recaptcha3?token=03ANYolqtuYoJYTSEOvERCIqd6mVqDqV96LzkDFICMZaFxvcIWHAmSTsZSjzQOElDcwQg3N7tmJE6lgTfyRDGBT5L3ZFacQ0QtCW_RDbggAwzVmnqlDC3MffEj7-2VSVceknw03eqBLx1ZPrB4UtUS7XReLedUWMnMUdAb7uBwMPjK0VfGwxpB_GnDCGMUS6odsflfrKYcn169Rw5djCGaXjQMb0jMAgIsvKkxnCRbBecvPUVbl1v1UmA4JjpjfY6fKXApHyKl_tOmxaHr9__Yt4M4qovJD8H1coEwUB6DiMNPFXh6LqlpFGVYcqARJQKiH-Rt2lTzWA-cZfZdrHjoKMSoj9Sn5SUBfoKfHmDl-OIpCYFP-5cOuUp3UKZoPae1N8pMc-3xiiOWqdW_aaD9AW1e2BMSVoF6x67Fxc-SKPnrjCEiyJsGEF6T9ys158K2XBJV_QXLpnmJWsh8HZzsPHitD0HFC36i5z9x6WFKCL-I6La_OAeuSSQ2G_6DEh3AyEzwyeRYegWX9nJ6n4Ij4BXiMqw2VfnEuw&step=1
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4beff59b81fed2e7b0042187b1566
72cdd2bf0c4d50e0ffa141df3a61b7f550952674
599ed527f599ac341575224294ac7050df7bf4f8c24858c879d30b267c83a79f
GET /v/recaptcha3?token=03ANYolqtuYoJYTSEOvERCIqd6mVqDqV96LzkDFICMZaFxvcIWHAmSTsZSjzQOElDcwQg3N7tmJE6lgTfyRDGBT5L3ZFacQ0QtCW_RDbggAwzVmnqlDC3MffEj7-2VSVceknw03eqBLx1ZPrB4UtUS7XReLedUWMnMUdAb7uBwMPjK0VfGwxpB_GnDCGMUS6odsflfrKYcn169Rw5djCGaXjQMb0jMAgIsvKkxnCRbBecvPUVbl1v1UmA4JjpjfY6fKXApHyKl_tOmxaHr9__Yt4M4qovJD8H1coEwUB6DiMNPFXh6LqlpFGVYcqARJQKiH-Rt2lTzWA-cZfZdrHjoKMSoj9Sn5SUBfoKfHmDl-OIpCYFP-5cOuUp3UKZoPae1N8pMc-3xiiOWqdW_aaD9AW1e2BMSVoF6x67Fxc-SKPnrjCEiyJsGEF6T9ys158K2XBJV_QXLpnmJWsh8HZzsPHitD0HFC36i5z9x6WFKCL-I6La_OAeuSSQ2G_6DEh3AyEzwyeRYegWX9nJ6n4Ij4BXiMqw2VfnEuw&step=1 HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Cookie: plc=62663c8eeb14be592d224298; stp=1; ck_tsp=2022-08-28T20%3A10%3A36.150Z; sip=91.90.42.154
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:38 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 169
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Pragma: no-cache
Cache-Control: no-cache
ETag: W/"a9-cs3SvwxNUOD/oUHfOmG39VCVJnQ"
set-cookie: qst.sid=s%3AhMbOXIwd_R-pLiN2lYEH7VCdozVA6Zzt.SspVO%2FkR4%2BrTHpPiNT90GaLpBhlPHq0HG5%2B208jJw4A; Path=/; HttpOnly
Vary: Accept-Encoding
cdn.formulead.com/p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=full
200 OK 68 kB URL HTTP/1.1 cdn.formulead.com/p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=full
IP
File type HTML document, Unicode text, UTF-8 text, with very long lines (65328), with no line terminators
Hash 0eb6b5402e9ea978324ace8055fd4165
4c2a4e0ce34d9829dc5565bae3f5365ed4b67c67
5cb44a04db2e7b19c2e53dc80d0fda3793c037bb9f35846687180948815f5c08
GET /p/62663c8eeb14be592d224298/feed?sc_domain=tesco.clientoffer.site&cl_ip=91.90.42.154&qb_placement_id=62663c8eeb14be592d224298&qb_offer_id=607e975a6e70d9ef7767c232&qb_flow_id=607e975a6e70d9ef7767c232&qb_vendor_id=570e5c924ce290010026cc24&qb_country=GB&ql_session_id=0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK&pre=1&p_id=62663c8eeb14be592d224298&aff_code=LDA&aff_offer_id=2150&request_id=c454da598ab8968eac2d951d21190f7d&aff_goal_id=10506&aff_goal_id2=10507&aff_id=1339&aff_version=default&aff_adv_id=2&aff_inc=tesco&aff_tt=dp&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html&sc_url_wl=https%3A%2F%2Flp.nectarjunkie.com%2Fcp%2Ftsco%2Fgb%2Findex.html&stp=1&feed_type=full HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Session-Id: s:0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK.6D4NCrtXlVWgbdyVv8BCXloXwF885qvjPR7oL3xk7u4
X-Request-Id: 4792787806f8eb647ffeb5b0
X-iivmxswc: baa30518134d507b9d3cb600c500ec26bc2f3681f1e90af3cdae7cb489c3919e
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Cookie: plc=62663c8eeb14be592d224298; stp=1; ck_tsp=2022-08-28T20%3A10%3A36.150Z; sip=91.90.42.154
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:40 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Pragma: no-cache
Cache-Control: no-cache
Set-Cookie: stp=1; Path=/; Expires=Tue, 27 Aug 2024 20:10:37 GMT; Secure; SameSite=None
ck_tsp=2022-08-28T20%3A10%3A37.244Z; Path=/; Expires=Tue, 27 Aug 2024 20:10:37 GMT; Secure; SameSite=None
sip=91.90.42.154; Path=/; Expires=Tue, 27 Aug 2024 20:10:37 GMT; Secure; SameSite=None
ETag: W/"3b43c-LMgt9zNJ1EdJTYIbaXmj7d/TNCM"
Vary: Accept-Encoding
Content-Encoding: gzip
cdn.formulead.com/vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_cljs_lead_count=0&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp_lead_count=0&vl_rc3=true&vl_rc3_score=0.1&vl_rc3_host=tesco.clientoffer.site&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html
200 OK 2 B URL HTTP/1.1 cdn.formulead.com/vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_cljs_lead_count=0&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp_lead_count=0&vl_rc3=true&vl_rc3_score=0.1&vl_rc3_host=tesco.clientoffer.site&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_cljs_lead_count=0&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp_lead_count=0&vl_rc3=true&vl_rc3_score=0.1&vl_rc3_host=tesco.clientoffer.site&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-flow-id,x-lead-id,x-offer-id,x-ofvuinwk,x-placement-id,x-session-id,x-zqhkygow
Referer: http://tesco.clientoffer.site/
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:40 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
ETag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
Vary: Accept-Encoding
cdn.formulead.com/t/page
200 OK 16 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /t/page HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Session-Id: s:0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK.6D4NCrtXlVWgbdyVv8BCXloXwF885qvjPR7oL3xk7u4
Content-Type: application/json
Content-Length: 117
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:40 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 16
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Pragma: no-cache
Cache-Control: no-cache
ETag: W/"10-oV4hJxRVSENxc/wX8+mA4/Pe4tA"
Vary: Accept-Encoding
cdn.formulead.com/vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_cljs_lead_count=0&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp_lead_count=0&vl_rc3=true&vl_rc3_score=0.1&vl_rc3_host=tesco.clientoffer.site&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html
200 OK 486 B URL HTTP/1.1 cdn.formulead.com/vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_cljs_lead_count=0&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp_lead_count=0&vl_rc3=true&vl_rc3_score=0.1&vl_rc3_host=tesco.clientoffer.site&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html
IP
File type JSON data\012- , ASCII text, with very long lines (486), with no line terminators
Hash b9fc44c121052218fdd704f3d001d6af
7aef6686948a870b8601cc817863c8b94c749236
de20cce7fa9e66596d04ed9b3b1e51710c248cc5dec0cac8e219b7665e0ec3bd
GET /vl/ql/?qb_country=GB&aff_source=1339_&cl_city=Oslo&cl_country=NO&cl_ip=91.90.42.154&ld_address_line1=&ld_email=&ld_first_name=&ld_last_name=&ld_zip_code=&aff_version=default&aff_code=LDA&aff_id=1339&aff_offer_id=2150&aff_sub2=&aff_sub3=&aff_sub=&cl_browser=Firefox&cl_browser_tz=UTC&cl_device=DESKTOP&cl_language=en-US&cl_os=Linux&cl_ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp=293c4ae45796181754e835201e3b50fc&vl_fp_cljs_device=unknown&vl_fp_cljs_language=en-US&vl_fp_cljs_lead_count=0&vl_fp_comp_has_lied_browser=false&vl_fp_comp_has_lied_languages=false&vl_fp_comp_has_lied_os=false&vl_fp_comp_has_lied_resolution=false&vl_fp_comp_navigator_platform=Linux%20x86_64&vl_fp_comp_color_depth=24&vl_fp_comp_resolution=1280&vl_fp_comp_resolution=1024&vl_fp_comp_user_agent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vl_fp_lead_count=0&vl_rc3=true&vl_rc3_score=0.1&vl_rc3_host=tesco.clientoffer.site&sc_url=http%3A%2F%2Ftesco.clientoffer.site%2Fcp%2Ftsco%2Fgb%2Findex.html HTTP/1.1
Host: cdn.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Session-Id: s:0tVOL5cPLdAquBqrjh0G0DNAcHIqXuiK.6D4NCrtXlVWgbdyVv8BCXloXwF885qvjPR7oL3xk7u4
X-Offer-Id: 607e975a6e70d9ef7767c232
X-Flow-Id: 607e975a6e70d9ef7767c232
X-Placement-Id: 62663c8eeb14be592d224298
x-zqhkygow: 58a99afdc7411ffba3eea039d027eef6ded57ff803bea1991987c9159e5f3d6f
x-ofvuinwk: ea68935083c992fbc5cda61f84f8e82167a45c6852f408ffa520155377e0fb75
X-Lead-Id: 4792787806f8eb647ffeb5b0
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.0
Date: Sun, 28 Aug 2022 20:10:41 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: http://tesco.clientoffer.site
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type, X-CSRF-Token, X-Session-Id, X-Offer-Id, X-Flow-Id, X-Flow_Id, X-Placement-Id, X-Placement_Id, X-Lead-Id, X-Sig, X-iivmxswc, X-Request-id, X-zqhkygow, X-ofvuinwk
Vary: Accept-Encoding
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=0711a5d108
200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=0711a5d108
IP
GET /releases/v5.15.4/css/free-v4-font-face.min.css?token=0711a5d108 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tesco.clientoffer.site/
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 28 Aug 2022 20:10:35 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"f2e0b2680d9b0bcb6e0039c4424e5a59"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 283a3ebaefd33728d45267e54657c3e2.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: Hy1UW-1-zsLF3iWUAJJdpsE-LW_6qOiMgI9eAYulLHh84VIO-qy0AA==
cf-cache-status: MISS
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NFpw7bVP%2FeQIa%2BDujstuciScqpJXejXlf3t%2FtI%2FvXSyOy97gheZWFGMAhjo8J0sIWTxLmFr%2FaiMiEH%2FF%2Fu68V8wkU5YjnC8wlqmhkWd6cxJTnT8vd9YAnAXk4JvkWcUEJrNY5XFjnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 741fb0f179900b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=0711a5d108
200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=0711a5d108
IP
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=0711a5d108 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tesco.clientoffer.site/
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 28 Aug 2022 20:10:35 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d542b221a74ce095eec8b4baabd68ca.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: FinpV0YRShzkP9Z1wpLaCdFyny5upg1Dlrk7UPDxw8mIz6K6FkLskA==
cf-cache-status: MISS
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YnA6VLcd3setiMOVSLdNofW0expF1poFk2%2FGXQZoty8fCu%2FPlque38Bbk3FhVL0TwIFv6k5jV6K2Aecd7gtje1Ku8HUjaBi9fLOOXgZFllM3R6lkuETG9GwFQI8etEx72C24DJIYeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 741fb0f1798e0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
st.formulead.com/assets/css/recent_winners.css
200 OK 0 B URL HTTP/2 st.formulead.com/assets/css/recent_winners.css
IP
GET /assets/css/recent_winners.css HTTP/1.1
Host: st.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx/1.19.0
date: Sun, 28 Aug 2022 01:48:03 GMT
last-modified: Tue, 26 Jul 2022 09:06:23 GMT
etag: W/"62dfae8f-461"
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wu2OXsaFOwt42r_pcfy9hBMGho7DhaqGxgPiUPd0SGjA6KemYY7VSA==
age: 66152
X-Firefox-Spdy: h2
st.formulead.com/assets/js/helpers.js
200 OK 0 B URL HTTP/2 st.formulead.com/assets/js/helpers.js
IP
GET /assets/js/helpers.js HTTP/1.1
Host: st.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf8
server: nginx/1.19.0
last-modified: Tue, 26 Jul 2022 09:06:23 GMT
access-control-allow-origin: *
content-encoding: gzip
date: Sun, 28 Aug 2022 08:12:57 GMT
etag: W/"62dfae8f-fcdd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QsFy7Uq3Cr6H7moi0UvKOs4bdML5U3AFpvc2wMyGLSmGbaGvX56icQ==
age: 43058
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=0711a5d108
200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=0711a5d108
IP
GET /releases/v5.15.4/css/free.min.css?token=0711a5d108 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tesco.clientoffer.site/
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 28 Aug 2022 20:10:35 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 269b0fad85dfd450220cf6573a2d384e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: n650eXHCAH8Q9ABAHtrkiAwK3sO9s7ZzIKsoBvUMrdvDA5DnmVKlyg==
cf-cache-status: MISS
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rQkUouk%2BQUIslueNzY66HDNqCLZkv0n4Ou7em0VMsXQKzuKdrVQklsxxo%2Fa6vr4Uhp9CthTwotA2nUarpB5UuMCAXVKYXiS%2B2DbkB9iQ1Qq9K7dmLGthCRFI54jUHH%2FMlFhvRbzF5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 741fb0f189a70b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
st.formulead.com/assets/js/bioep.min.js
200 OK 0 B URL HTTP/2 st.formulead.com/assets/js/bioep.min.js
IP
GET /assets/js/bioep.min.js HTTP/1.1
Host: st.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf8
server: nginx/1.19.0
last-modified: Tue, 26 Jul 2022 09:06:23 GMT
access-control-allow-origin: *
content-encoding: gzip
date: Sun, 28 Aug 2022 02:59:47 GMT
etag: W/"62dfae8f-14c4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rmisYDTmt54a6-YqZ-FdX72T6pwykjh_1yvl2sK0oFK2Pe4ywWAxVQ==
age: 61848
X-Firefox-Spdy: h2
st.formulead.com/sponsors/uk/index.html
200 OK 0 B URL HTTP/2 st.formulead.com/sponsors/uk/index.html
IP
GET /sponsors/uk/index.html HTTP/1.1
Host: st.formulead.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tesco.clientoffer.site
Connection: keep-alive
Referer: http://tesco.clientoffer.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf8
server: nginx/1.19.0
date: Sun, 28 Aug 2022 08:21:29 GMT
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cJgIpQ3Tvb5nVgGCW-MNWUXnPBG1ZLVQbo_1IH9XuZxqiJmg66xKLw==
age: 42547
X-Firefox-Spdy: h2
54.230.111.111
23.36.76.226
93.184.220.29
104.18.23.52
34.78.252.25
151.101.85.229