r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2588
Expires: Fri, 16 Sep 2022 03:12:57 GMT
Date: Fri, 16 Sep 2022 02:29:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 02:10:42 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4viAWwo3TXsAuKIE1i4RB_NEOcteIJtwqb1giaWMtvSWzxWFWP4uRA==
Age: 1146
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vYs3g91XOwHZBSUMhtHfxLOyUzGpCuunlyHnYhMj8LI9nRNOwbAXtA==
age: 78874
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 02:29:49 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
oaq.io/Trials/login/auth.php
13.56.33.8301 Moved Permanently 175 B URL HTTP/1.1 oaq.io/Trials/login/auth.php
IP 13.56.33.8:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 00b1749e7f34b8de5bde2b4abd5cefef
da5846fe6898511ed9dcf79f12d78042fb649e01
b5aa18241aa2adbec8f48b308a46a386e31040f6bb85ca381e427b399679b56e
Analyzer Verdict Alert fortinet Phishing
GET /Trials/login/auth.php HTTP/1.1
Host: oaq.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: openresty/1.15.8.2
Date: Fri, 16 Sep 2022 02:29:49 GMT
Content-Type: text/html
Content-Length: 175
Connection: keep-alive
Referrer-Policy: no-referrer
Location: https://www.brandbucket.com/names/oaq.io?source=ext
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 16 Sep 2022 02:03:22 GMT
Cache-Control: max-age=3600
Expires: Fri, 16 Sep 2022 02:07:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: j3_I8kCLlQcYtJHRGPHSdPrcfMLlemBUwVLM0XnieieGteC4e6epPA==
Age: 1587
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3404
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:49 GMT
Last-Modified: Fri, 16 Sep 2022 01:33:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.38.227.80101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.227.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: t5U/y2DC29AH4a9wvXlQmA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AMdd917ckidWgj/rZQAyf+zgOGg=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9b328929c3c92fc64d16bb4a1c22a7b5
33921cc1c25bf214328da793a88d86ed6e6577fa
469dad55d34fba1f7698d6c067029aa97ab4223e32ee840833d2a5b8a08fe067
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9b328929c3c92fc64d16bb4a1c22a7b5
33921cc1c25bf214328da793a88d86ed6e6577fa
469dad55d34fba1f7698d6c067029aa97ab4223e32ee840833d2a5b8a08fe067
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9b328929c3c92fc64d16bb4a1c22a7b5
33921cc1c25bf214328da793a88d86ed6e6577fa
469dad55d34fba1f7698d6c067029aa97ab4223e32ee840833d2a5b8a08fe067
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9b328929c3c92fc64d16bb4a1c22a7b5
33921cc1c25bf214328da793a88d86ed6e6577fa
469dad55d34fba1f7698d6c067029aa97ab4223e32ee840833d2a5b8a08fe067
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9b328929c3c92fc64d16bb4a1c22a7b5
33921cc1c25bf214328da793a88d86ed6e6577fa
469dad55d34fba1f7698d6c067029aa97ab4223e32ee840833d2a5b8a08fe067
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/v0/amp-iframe-0.1.js
216.58.211.1200 OK 8.9 kB URL HTTP/2 cdn.ampproject.org/v0/amp-iframe-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (25649)
Hash f3392681c8bf2461bcb5504e6a0b0673
2a79dd0ac628e1651249987d0f59e6cdcdd7b0bb
b1bdc6c012140ff65a2d9bbbadb9111800b5080c61149f59aff02be0508f6d98
GET /v0/amp-iframe-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8943
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "e7f4ece37a2c74ab"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-recaptcha-input-0.1.js
216.58.211.1200 OK 9.2 kB URL HTTP/2 cdn.ampproject.org/v0/amp-recaptcha-input-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (25191)
Hash c7611ebfa552d88928a39ffe7293cdc8
326412d0c9065f315b46e2ac19a511dbcb13a8ae
33bbc50f1ee00b1e7507e7cdb3a21c29f626b9f06d08df08a3f29e6eff05a6c6
GET /v0/amp-recaptcha-input-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9197
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "9ff206e33cfecf9a"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-analytics-0.1.js
216.58.211.1200 OK 32 kB URL HTTP/2 cdn.ampproject.org/v0/amp-analytics-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (65534)
Hash fe2f0c81c0bb91987f8cc589f19703db
d96d7b887637256a573184a8a6ba8928e39b86f6
b36883401f6cc288c398c50ba24cefd11e6b081de6b0ee0ffaba97f15a49c0c1
GET /v0/amp-analytics-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 32045
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "41e651644f1ce250"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-animation-0.1.js
216.58.211.1200 OK 19 kB URL HTTP/2 cdn.ampproject.org/v0/amp-animation-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (65532)
Hash 514c75ae252e8b99568f35de0d1dcf77
cac1bfd6f87eb48584755203062e4c82aaa499ab
1bf2d1aa34682e22c64d8c7055eda0e58440e7f43daf1917aaeca5a3187eb1f0
GET /v0/amp-animation-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 18986
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "b8fe126c2ddf7661"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
142.250.74.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Hash 1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 17:24:34 GMT
expires: Fri, 15 Sep 2023 17:24:34 GMT
cache-control: public, max-age=31536000
age: 32717
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-action-macro-0.1.js
216.58.211.1200 OK 1.5 kB URL HTTP/2 cdn.ampproject.org/v0/amp-action-macro-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (3580)
Hash a397b8aeb09be3844db5bfb6912bc671
689933e69d8975f4075f84f4032c8b0bfa7932e8
0d0f0d76dacff9b40c214be55bb335d65a9a9b21e540acfcf42edad0eb844ac7
GET /v0/amp-action-macro-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1461
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "62b4330468977a19"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-accordion-0.1.js
216.58.211.1200 OK 5.9 kB URL HTTP/2 cdn.ampproject.org/v0/amp-accordion-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (17551)
Hash db2577fb296afac06f6ee24488ba0b6f
72d79b49f4e8e7899be40e744d1e9ebf39f66425
957a1473b3568100713d910e1765560817dd8ab0e1e3610deb6f675f3889ad31
GET /v0/amp-accordion-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5857
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "cbe6854df5292c5b"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-lightbox-0.1.js
216.58.211.1200 OK 8.5 kB URL HTTP/2 cdn.ampproject.org/v0/amp-lightbox-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (26324)
Hash 6c3ad5f46240603045a89d57b503d3f3
fec6e64679359c8ad4d0d01ab9d6161b8dc5e4b4
a47b837f5f5da8ad3e1836872d18eea43bc57111c5711be14d5fceb4a880e316
GET /v0/amp-lightbox-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8456
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "be705d3b0b2daf4f"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-bind-0.1.js
216.58.211.1200 OK 16 kB URL HTTP/2 cdn.ampproject.org/v0/amp-bind-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (51047)
Hash 3324cde92da35f6e64c479c13e9162b4
0ea781fe8caba1bd3c35968c1e63376586368282
e9bd65b5907a2d4ef6d3685d3774c8b57b6d2a2dd67fdb665219c93469421065
GET /v0/amp-bind-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 16281
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "1400b402b0d25bd7"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-mustache-0.2.js
216.58.211.1200 OK 14 kB URL HTTP/2 cdn.ampproject.org/v0/amp-mustache-0.2.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (41897)
Hash 45e868961a313143e55c00fd2448cb62
189c3d62dc3afb20b000f9c2773aa502327ef671
c415725d75c9d3d553baeae0b594e6a2ce0b4c3509a3a39731ca06b47b8e6fdb
GET /v0/amp-mustache-0.2.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14319
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "254cd272eac0a811"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0.js
216.58.211.1200 OK 73 kB IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (64713)
Hash 3bb3651c2911804e149b12daab2d16ce
5d9445737307062dcd55cbeb08f341d160fa9571
f99ccb1d840a549707a41e024b8b16fe379ae0c1372a14cb1c846a409eaef158
GET /v0.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 72615
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=3000, stale-while-revalidate=1206600
etag: "d846f64d6544327b"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-list-0.1.js
216.58.211.1200 OK 13 kB URL HTTP/2 cdn.ampproject.org/v0/amp-list-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (42785)
Hash 565a71112d821e06c5524a836288c340
82cacf6c5529c310f2b0342943ca886fe4403cb9
cca06744d2fa31ad827845dce2a6ebc5d86919bcfc3a96258f26c61e181c5c06
GET /v0/amp-list-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12920
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "605caad0f87b3596"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9b328929c3c92fc64d16bb4a1c22a7b5
33921cc1c25bf214328da793a88d86ed6e6577fa
469dad55d34fba1f7698d6c067029aa97ab4223e32ee840833d2a5b8a08fe067
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/v0/amp-sidebar-0.1.js
216.58.211.1200 OK 9.7 kB URL HTTP/2 cdn.ampproject.org/v0/amp-sidebar-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (31286)
Hash 09fb321c0177fe1e01acce6aa96410b8
406e1cd9716310aa28d16df1315a80d35ac9d92d
50b75d8d8cf95bcc44ab40ee65d118b5261743fe183c39c99ebed411654aec6c
GET /v0/amp-sidebar-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9656
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "acc3868951df8a41"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-form-0.1.js
216.58.211.1200 OK 15 kB URL HTTP/2 cdn.ampproject.org/v0/amp-form-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (50567)
Hash 6f1e36348282faf6eefe8a75d1db235d
1690937f3823b9996441e486b733fafa958cb27a
67d67fd41a61617faf1967a07e3e2a21fe29392f7f5304ee474745fd8b35e6b4
GET /v0/amp-form-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14969
date: Fri, 16 Sep 2022 02:29:51 GMT
expires: Fri, 16 Sep 2022 02:29:51 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "c92f7c08ac4608ee"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5988
Expires: Fri, 16 Sep 2022 04:09:39 GMT
Date: Fri, 16 Sep 2022 02:29:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5988
Expires: Fri, 16 Sep 2022 04:09:39 GMT
Date: Fri, 16 Sep 2022 02:29:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5988
Expires: Fri, 16 Sep 2022 04:09:39 GMT
Date: Fri, 16 Sep 2022 02:29:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5988
Expires: Fri, 16 Sep 2022 04:09:39 GMT
Date: Fri, 16 Sep 2022 02:29:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5988
Expires: Fri, 16 Sep 2022 04:09:39 GMT
Date: Fri, 16 Sep 2022 02:29:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 512280055633fcce9abc7d11a9816a24
de5c3e010fca76659455a144875a52c25fa72bdd
435eadb36830928b20d4cf8ead62134b75bd0ed3228489d9fdee66450bcbeaed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13536
x-amzn-requestid: 5533b257-1558-472b-aeb9-8207a78e1110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDzFa4IAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb1-05d0dfde7a488ed97d2a40d5;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JAzbRqinDuqQuQoESEsL26c1Y1UTQ5tO1thL3ugE6LPQtNTWGaGTLg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:48:32 GMT
age: 16879
etag: "de5c3e010fca76659455a144875a52c25fa72bdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 69c9db5022c0c66909867f1e0946f5a8
9825e0fc606dc983280a6cd05803bb07e3435ef6
f2809509eee24ed69e6003ac9263423ea949bcc9205969c6cdd476e89ede9b01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8864
x-amzn-requestid: 6e1a82d1-e35e-4d77-be31-6969a13918da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU_6GiXoAMFaLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b98-46ca0525157031324749ee5b;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:39:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sZDehRAgImuoJtVDIS6Mgz2871fOYrT0H7cx0QucG6mDuE1NmrW5Hw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:59 GMT
age: 16732
etag: "9825e0fc606dc983280a6cd05803bb07e3435ef6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09103090-a36c-4678-bb8f-b717f544ca1f.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09103090-a36c-4678-bb8f-b717f544ca1f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6572617127bde36c63aa1163e3352688
d97c94761ed3c1fc84ab46dcc77405e7b8c7c71c
91fdabb99b1317407413b424f50ad025c0578a57d89a0f4c8228d91a36b8e6c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09103090-a36c-4678-bb8f-b717f544ca1f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6820
x-amzn-requestid: 3aab395b-9355-4a3a-b033-73420df43ee5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhUksFUxoAMFr4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239aea-5be8dbdf57158b0e37ee719f;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I8QSOY13buUN6y89zoSzcjZmV8EygMJUdiPiVouUi4a5LHBJ3AM3wQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:48:32 GMT
age: 16879
etag: "d97c94761ed3c1fc84ab46dcc77405e7b8c7c71c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9f324c1-b260-459e-99b9-15f07eb8a371.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9f324c1-b260-459e-99b9-15f07eb8a371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6df61daeab506e87fcf2705cd27551c1
e7a56868fe8a8d8bf2dc370c25da434a94d5382e
747c2d9c7e12ffd3e47e32860614cb678d1595971caca1caecb8b17b7156d545
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9f324c1-b260-459e-99b9-15f07eb8a371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9101
x-amzn-requestid: d4785813-3308-423a-bfab-26f810acc8ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0qE_yIAMFhGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b50-1fb25e9171579b5e070d1009;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I2WF4L8TNoAlpuGMmQmTewovWgyg9M0RuXJxpzSsKWGmeaXcGZJFMw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:35 GMT
age: 16756
etag: "e7a56868fe8a8d8bf2dc370c25da434a94d5382e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 974f0e1d052879e47d9230adbd2935e4
d36b8ee08a7c5465ac2b0b0810f9dd4ff9dd6cb2
eb7d70fc9b159adbbaa96c0ee5d6032bb0839883b950b0d586a300dd1d8348bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12744
x-amzn-requestid: f5921831-e306-442b-a43f-e4cfc67980aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhUj4GlEoAMFxbQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239ae5-7ae58b110d2dcfb507939612;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _nrQcy13_zOPbKnLI2-OCakZzR4MsMwO3t45Q9T0hnPL6HGnRo3uPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:03 GMT
age: 17148
etag: "d36b8ee08a7c5465ac2b0b0810f9dd4ff9dd6cb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f876cdc19dca10c62d83d19303512c7f
9f812c7bc1b42b0cea3e42694e7d1f6738789770
c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12123
x-amzn-requestid: 2beedee9-cf7e-47d6-ac4d-3ca9251aa565
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfSWEFAZoAMFd6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322ca8d-37688e4a23c3234a25becf57;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:47:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: H2ySDtSQZtsrCA99y1a2_fLQcRI8hvN_nvA9U_V_iCm6c3cq3DigXQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:11:59 GMT
age: 15472
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk5_thumb.jpg
172.67.4.41200 OK 5.6 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk5_thumb.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Hash bca3c9b14d1a37b805e41f8cbe61be7e
5a3849459df95c9ac261840c9efe5cd265cd755a
f730c29ffb9ba16b6e0bcb09ded50ef3076f7125fc133103ed7d26843f3e57b0
GET /images2/nice_bk5_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:51 GMT
content-type: image/jpeg
content-length: 5617
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16068
etag: "5ee1f391-3ec4"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d432b9c0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
172.67.4.41200 OK 584 B URL HTTP/2 www.brandbucket.com/amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 172.67.4.41:0
Hash a809816af7a849bd9df64409b44f55ea
3881358ed4d4e0ce545cf57045a509ae01178f36
853861b61cd9738244dac5b316ccfba33078abc27847bfdd097448d3f27ff7b5
GET /amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
AMP-Same-Origin: true
Connection: keep-alive
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:51 GMT
content-type: application/json
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
set-cookie: cart=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
fav=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
amp_run_time: 0.017854s
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74b62d459c880b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/417005/large_benei.png
172.67.4.41200 OK 5.6 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/417005/large_benei.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 7840582b34f6ea543cb81da71f7a32ff
cd56b1780a76f0326cdbfd3090dc9c68978deab5
5836db92ad7bf7a2203005de02f0940e943efed57c084e2074e07acebfbb9dec
GET /sites/default/files/logo_uploads/417005/large_benei.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:51 GMT
content-type: image/png
content-length: 5572
last-modified: Thu, 03 Mar 2022 12:56:56 GMT
etag: "6220bb18-15c4"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45fce70b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/321724/large_oaq.io_0.png
172.67.4.41200 OK 4.9 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/321724/large_oaq.io_0.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash d65a90e71e28e9b12c46d4b437a8829d
8db4843364649c72946df4274a7f1f7fa900fddc
903c1c9c48335a0d03498e46a623bfffd344aecbb1c28f3b017ef802458a6056
GET /sites/default/files/logo_uploads/321724/large_oaq.io_0.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:51 GMT
content-type: image/png
content-length: 4866
last-modified: Mon, 21 Dec 2020 03:14:30 GMT
etag: "5fe01316-1302"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d432b920b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk3_thumb.jpg
172.67.4.41200 OK 6.2 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk3_thumb.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Hash 7c72d58b1656eb337865be3d7945019a
70f88fa2fa40ec3b8e7c98b033f5f48e07dfcf07
81684900b1c4f2f5d1b3e6d9917a02e11cf87160152e784ccece4ee159f9ccbe
GET /images2/nice_bk3_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:51 GMT
content-type: image/jpeg
content-length: 6202
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16805
etag: "5ee1f392-41a5"
last-modified: Thu, 11 Jun 2020 09:04:18 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d432b980b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk2_thumb.jpg
172.67.4.41200 OK 6.6 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk2_thumb.jpg
IP 172.67.4.41:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 150x96, components 3\012- data
Hash 87c01ad06c8f0f82f63762112b62c261
4c58266d4e8d2d205fbfe88af39d47e96e353733
96d5437cff72a446bada499ea347636473a33dc3f6a09a5bcce71e794bb7b8dd
GET /images2/nice_bk2_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:51 GMT
content-type: image/jpeg
content-length: 6565
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16629
etag: "5ee1f391-40f5"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d432b950b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk4_thumb.jpg
172.67.4.41200 OK 6.1 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk4_thumb.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Hash 57aee6ca35013ad9b91ae2583c1831f7
73616462427ff5288ac0e19e54eac477270a7b59
0514463b5d215bf6e91ed3a61d6189e34e89e5921249add1e0f9bbd2e9b41294
GET /images2/nice_bk4_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:51 GMT
content-type: image/jpeg
content-length: 6091
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16406
etag: "5ee1f391-4016"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d432b9a0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk1_thumb.jpg
172.67.4.41200 OK 5.8 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk1_thumb.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 150x98, components 3\012- data
Hash b4dad318d2eef70faeb94c1de940b8e9
fd7b8e6d33dfdb9514f59ba26b855ec61f2b21ce
d4f3a8ecf34eb859108c375c36cca14e484d752a87763c58a80e20220e866004
GET /images2/nice_bk1_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/jpeg
content-length: 5793
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16185
etag: "5ee1f38e-3f39"
last-modified: Thu, 11 Jun 2020 09:04:14 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d432b930b3d-OSL
X-Firefox-Spdy: h2
q.quora.com/_/ad/b81fc17866594cbbb3efebdd1241e062/pixel?tag=ViewContent
52.2.80.154200 OK 43 B URL HTTP/1.1 q.quora.com/_/ad/b81fc17866594cbbb3efebdd1241e062/pixel?tag=ViewContent
IP 52.2.80.154:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /_/ad/b81fc17866594cbbb3efebdd1241e062/pixel?tag=ViewContent HTTP/1.1
Host: q.quora.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Fri, 16 Sep 2022 02:29:51 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,939ce47714a509ca62d4fc183440ce85,10.0.0.223,48990,91.90.42.154,,60973283981,1,1663295391.973,0.001,,.,0,0,0.000,0.000,-,0,0,197,185,92,10,34729,,,,,,-,
Content-Length: 43
Connection: keep-alive
www.brandbucket.com/images7/icon_plus.png
172.67.4.41200 OK 604 B URL HTTP/2 www.brandbucket.com/images7/icon_plus.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 94865622c5c9f42d952bbea159d15dd6
217ad71873550f450b555bdc83805a1969a2a4b7
70a3df33b31f08827510b14236a8c6320ea413b2b4210b4232416c20bcc751cc
GET /images7/icon_plus.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 604
cf-bgj: imgq:100,h2pri
cf-polished: origSize=743
etag: "5ede24b6-2e7"
last-modified: Mon, 08 Jun 2020 11:44:54 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d432b9e0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/head_logo2.png
172.67.4.41200 OK 5.9 kB URL HTTP/2 www.brandbucket.com/images7/head_logo2.png
IP 172.67.4.41:0
File type PNG image data, 580 x 90, 8-bit gray+alpha, non-interlaced\012- data
Hash fb4bff13a9b6f0b181ca99f55e1851bf
2969bbee6ce6f471d131c52ea806070eeb2f75be
372a7875b90613c3706d7bac0792679818354119b0d656e5ef16875ba701a585
GET /images7/head_logo2.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 5907
cf-bgj: imgq:100,h2pri
cf-polished: origSize=10386
etag: "5ee085a5-2892"
last-modified: Wed, 10 Jun 2020 07:03:01 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45ac920b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_heart.png
172.67.4.41200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images6/icon_heart.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 88e4464632078c7b6cbfbccffd95878a
68c907205dfcfaf600fb84c28c1363f029dc8e78
3051e31080b34dacf5378df68561065fb516b05594c5695b95905e32e8a551af
GET /images6/icon_heart.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 1095
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1405
etag: "5a12dec0-57d"
last-modified: Mon, 20 Nov 2017 13:55:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45ac9d0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bc_refine_blk.png
172.67.4.41200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images6/icon_bc_refine_blk.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 21fed69f80de4815a845b554523f1f0b
1f8f3562f2581619b0b12be06996eb7d2efef926
eb56a89bd14ada5dc2498e27f8b074a3a889c47c07f06a73c04d212fb9f48016
GET /images6/icon_bc_refine_blk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 1081
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2074
etag: "5fe9acd4-81a"
last-modified: Mon, 28 Dec 2020 10:00:52 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45ac900b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_cart_blk.png
172.67.4.41200 OK 594 B URL HTTP/2 www.brandbucket.com/images6/icon_cart_blk.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 0f4bfd7ce7e3cd0031e75eafb5ae5ced
975cf52ea1a8c5a75b1bedbead36161629aba05f
2e924b33b08af08800be44199679ee7f7e46012070bcd2dbf5b916bb99e684dc
GET /images6/icon_cart_blk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 594
cf-bgj: imgq:100,h2pri
cf-polished: origSize=693
etag: "5a12debd-2b5"
last-modified: Mon, 20 Nov 2017 13:55:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45ac930b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_percent.png
172.67.4.41200 OK 771 B URL HTTP/2 www.brandbucket.com/images7/icon_percent.png
IP 172.67.4.41:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 20b4980f9d03b45ec7ec243f3a898d97
b09250a824c84a5f90862ccb93d155128d30d753
25e04c953669e488a0f727d11b858f19a67c2165d8232586fff448e16290d446
GET /images7/icon_percent.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 771
cf-bgj: imgq:100,h2pri
cf-polished: origSize=875
etag: "6023e899-36b"
last-modified: Wed, 10 Feb 2021 14:07:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45ccaa0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_cart.png
172.67.4.41200 OK 488 B URL HTTP/2 www.brandbucket.com/images7/icon_cart.png
IP 172.67.4.41:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash ecdbbc8258f81f5cc36944941eb381cd
6a7970f95e21da0a54211e49760bf2ac5738915a
e7501a24075314198d656bed11723ea4beceddd08864f53a31a6eecabc000946
GET /images7/icon_cart.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 488
cf-bgj: imgq:100,h2pri
cf-polished: origSize=851
etag: "5ebbcbcf-353"
last-modified: Wed, 13 May 2020 10:28:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45cccb0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk1_.jpg
172.67.4.41200 OK 184 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk1_.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 1600x1024, components 3\012- data
Size 184 kB (184078 bytes)
Hash a16d81686e7139d223f7abbe22f781e8
bc8d96b0698f2cb7fa9202e77d184eeb861ae9f7
3d4b4be3f8b7b79f2b5ba988c6e4ca6f993db5b87bb7a157f91c0d46276f9cff
GET /images2/nice_bk1_.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/jpeg
content-length: 184078
cf-bgj: imgq:100,h2pri
cf-polished: origSize=202326
etag: "5fdbcc77-31656"
last-modified: Thu, 17 Dec 2020 21:24:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45dcce0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk2.jpg
172.67.4.41200 OK 153 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk2.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 1600x1024, components 3\012- data
Size 153 kB (153149 bytes)
Hash 2b609e5c7b90f4aa31c19ad4dbb9888b
95d70cc4b3896f11079f94cf2851235551b17281
6730326e166c0ba1f3b8d128d62da81d7578c6beb946139e64d5833fa014de0e
GET /images2/nice_bk2.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/jpeg
content-length: 153149
cf-bgj: imgq:100,h2pri
cf-polished: origSize=158414
etag: "54d4c43d-26ace"
last-modified: Fri, 06 Feb 2015 13:40:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45dcd00b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_info.png
172.67.4.41200 OK 1.5 kB URL HTTP/2 www.brandbucket.com/images6/icon_info.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 1ccab99f59c5b67e39a46b1df9ff0e60
9bbef30e63d3a3682c90d3e26fa12fa2466db9cb
e4e75c45fadf08c54284e1ea641a494ff531b87757751653e66dcd99eb1a5212
GET /images6/icon_info.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 1462
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1853
etag: "5a12dec0-73d"
last-modified: Mon, 20 Nov 2017 13:55:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45ecd60b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/menu_corner.png
172.67.4.41200 OK 326 B URL HTTP/2 www.brandbucket.com/images7/menu_corner.png
IP 172.67.4.41:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 46030a6b4d338aa9be62f50203c4ff5b
c88766c7af725f4519b8d26b1001b549bef17a60
a2207a26b24c6f4d985ad4f6da0ee829f6b7c29880ee0f025bdd7f2406133e59
GET /images7/menu_corner.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 326
cf-bgj: imgq:100,h2pri
cf-polished: origSize=415
etag: "5fdf0f81-19f"
last-modified: Sun, 20 Dec 2020 08:46:57 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d459c8b0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_heart.png
172.67.4.41200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images7/icon_heart.png
IP 172.67.4.41:0
File type PNG image data, 64 x 56, 8-bit gray+alpha, non-interlaced\012- data
Hash 8c10244caab110d2455d3952b47304af
ea695914fb21e4227c6ed482e84d70c8d145009d
626e178145fb4293ef5ff59a67451883d3c35d6048fab45c1e2f365f8b3a134f
GET /images7/icon_heart.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 1069
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1597
etag: "5ebbcbd2-63d"
last-modified: Wed, 13 May 2020 10:28:34 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45dccc0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/256295/large_eramai.png
172.67.4.41200 OK 5.4 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/256295/large_eramai.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 7803d84bf9a44b93fe886aa633677b4c
7a7ffe252e6e4266f6463c516a294aa09209ba55
60227ec1c2509e9aadd82e0c2f665372fad819295cda752e92b9c46c21b88d40
GET /sites/default/files/logo_uploads/256295/large_eramai.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 5445
last-modified: Sun, 01 Sep 2019 03:03:00 GMT
etag: "5d6b34e4-1545"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45fce10b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_paint.png
172.67.4.41200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_paint.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 738d11479c8f00bbf6becd4f1628484e
92a9972dc97422c334792e7ca593f1aa00d124bf
4f96956134964753a940fcafd693e72f9d153e7e0f02c4c9b29944ad40dfa3d4
GET /images6/icon_paint.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 1961
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2539
etag: "5a12dec1-9eb"
last-modified: Mon, 20 Nov 2017 13:55:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45ecd50b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bills.png
172.67.4.41200 OK 1.5 kB URL HTTP/2 www.brandbucket.com/images6/icon_bills.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 63b9477a8d4f573114ef3a8385e421c1
af618a395be518ed856135aae176cafa600c3766
1791cdebe64eb084b289ade2587c236382055b8a45b9f610ddd0b0a0a5b56d46
GET /images6/icon_bills.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 1464
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1809
etag: "5a12debb-711"
last-modified: Mon, 20 Nov 2017 13:55:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45ecd70b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_delivery.png
172.67.4.41200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_delivery.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash a3ecd77d0fb534a6077b4d9640e225f6
622ab1f4b324e7e9a5afe55d75d7033a59fcd4d3
39ba61ecabf031e71e239e634d36bb31583fdd9b2d6c69f1e12a81498b860006
GET /images6/icon_delivery.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 1955
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2491
etag: "5a12debe-9bb"
last-modified: Mon, 20 Nov 2017 13:55:10 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45ecd80b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/28145/xlarge_lenira.png
172.67.4.41200 OK 5.8 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/28145/xlarge_lenira.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 458dc1e1fbaf70be1188661930569870
508649f43a1cf102e7bca3e1eeb00668caee20e1
e0b74ee6d1f541be649c7d8cf2d18d4e098db5d9dda83861df1728f25da10c07
GET /sites/default/files/logo_uploads/28145/xlarge_lenira.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 5829
last-modified: Fri, 30 Jun 2017 13:10:21 GMT
etag: "59564dbd-16c5"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45fcdd0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bc_search_bigblk.png
172.67.4.41200 OK 2.3 kB URL HTTP/2 www.brandbucket.com/images6/icon_bc_search_bigblk.png
IP 172.67.4.41:0
File type PNG image data, 128 x 128, 8-bit gray+alpha, non-interlaced\012- data
Hash 5df8840f95ca2b57cb4c1a04a450bd18
7d97554537c3d55bcd2dc2525ebf8b6460b3aedf
30c2e6ee83ea286bef75e58172ea15e543b798ffa26154024f1a2a95d89971b9
GET /images6/icon_bc_search_bigblk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 2332
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2940
etag: "5a96c759-b7c"
last-modified: Wed, 28 Feb 2018 15:14:33 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45ac8e0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/262230/large_ioke.png
172.67.4.41200 OK 5.8 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/262230/large_ioke.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 2f817c1a90fa8e3a1b210921de359f7c
e36af3af3aee1bfda71aae32b2a02c598f42d3c0
078eee4bf43f508b9c499003df09d1c93ca8685619c56d734196ebcf785910bd
GET /sites/default/files/logo_uploads/262230/large_ioke.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 5833
last-modified: Fri, 11 Oct 2019 13:02:34 GMT
etag: "5da07d6a-16c9"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45fcde0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_chat.png
172.67.4.41200 OK 374 B URL HTTP/2 www.brandbucket.com/images7/icon_chat.png
IP 172.67.4.41:0
File type PNG image data, 56 x 56, 8-bit gray+alpha, non-interlaced\012- data
Hash 8bd1e7f1a5f9e05fd61373b746e73baa
d8483c30258d4e33a96755dec31b65e892c5c3a8
867f0673ce919e3987de03d8ccb8d26f50721b64624e4ba2fdbd6772c1b5e9a8
GET /images7/icon_chat.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 374
cf-bgj: imgq:100,h2pri
cf-polished: origSize=691
etag: "5ebbcbd0-2b3"
last-modified: Wed, 13 May 2020 10:28:32 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45cca80b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_gift.png
172.67.4.41200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_gift.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash aa034845cd6345549655fd9b8d156ba4
832f87b3f83f315dcd0a86943c63d41a283635a0
56ee437c47ad090ba5204c9583adbbbf933b3f11a9dd64e5aa856bb01ff30b6e
GET /images6/icon_gift.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 1956
cf-bgj: imgq:100,h2pri
cf-polished: origSize=3038
etag: "5a12debf-bde"
last-modified: Mon, 20 Nov 2017 13:55:11 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45dcd20b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/180199/large_augia.png
172.67.4.41200 OK 4.6 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/180199/large_augia.png
IP 172.67.4.41:0
File type PNG image data, 360 x 199, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d33d2ae1d1b84344d16bdc3190d68ed
e3b54eba5bf0411ad5fdfba8fcf7914f4be17773
44a8d963c6deef5fd6b443cca5be76fe1db87d4bb578ed82afab69c1533d3382
GET /sites/default/files/logo_uploads/180199/large_augia.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 4640
last-modified: Thu, 19 Apr 2018 12:58:51 GMT
etag: "5ad8928b-1220"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45ecd90b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/417676/large_hema.io.png
172.67.4.41200 OK 5.2 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/417676/large_hema.io.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 3d00bbfa146fe6dfc5aceff86f9113f1
3a174d26a4dfd9df9f88740eeac478f91a076abf
3bd5d15238170bfe9d0761a2bb2a65b4b6ca3b63d174140cb3895eb7d5b2a71f
GET /sites/default/files/logo_uploads/417676/large_hema.io.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 5195
last-modified: Sun, 06 Mar 2022 06:08:59 GMT
etag: "62244ffb-144b"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45fcdf0b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/218838/large_fifz.png
172.67.4.41200 OK 4.9 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/218838/large_fifz.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash bece1c058977f6f177a5b0c692152b32
2a795557a546dbf6a663c0bb37defe2a610bbbb5
e74396acc604dd1b547b79070da915f2be0e93a423449545d175120e8438eb92
GET /sites/default/files/logo_uploads/218838/large_fifz.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 4861
cf-bgj: imgq:100,h2pri
cf-polished: origSize=5281
etag: "5d263d32-14a1"
last-modified: Wed, 10 Jul 2019 19:32:02 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45fce50b3d-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/253238/large_splinix.png
172.67.4.41200 OK 19 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/253238/large_splinix.png
IP 172.67.4.41:0
File type PNG image data, 359 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a35407c2727e6aec56ef9934db14c34
a4ddf2168246ec6a8f20d4f481a0e9fad0a284ee
c55eddce529701b6dd7ab33171f5645319c1b17a37b3477bbc2202e0b473da64
GET /sites/default/files/logo_uploads/253238/large_splinix.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/png
content-length: 18772
last-modified: Thu, 15 Aug 2019 01:34:02 GMT
etag: "5d54b68a-4954"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d45fce40b3d-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3b816941816ca5fed922c0604e9da8dc
94c14ea6c512c6c262479b4299f1cd4dd99ea5cd
a05000788114487ba8b8c661ba1370b29c96a93a16275b3fab497cf75722b51d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Foaq.io%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
142.250.74.72200 OK 1.2 kB URL HTTP/2 www.googletagmanager.com/amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Foaq.io%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 142.250.74.72:0
File type JSON data\012- , ASCII text, with very long lines (10081)
Hash f46b1464b255b6f864a3f770b5312ea1
44dde129a47948b86041df4a20e294b1ec5360b7
690fde62e8a344c6bfc4c94c1c526ef4c1a7461754767fa344fe97d52f5eda26
GET /amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Foaq.io%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Origin: https://www.brandbucket.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.brandbucket.com
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
amp-access-control-allow-source-origin: https://www.brandbucket.com
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
content-disposition: attachment; filename="GTM-NMCQSSJ.json"
content-encoding: br
vary: *
date: Fri, 16 Sep 2022 02:29:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 1156
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=321417
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=321417
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=321417 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1738594753739282
date: Fri, 16 Sep 2022 02:29:52 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZqUXFRUWlXWUI2ZUtTOEh3ZGkxNUF6QVNIblRzSGN1bXluTnNyN2FjSmdzcHU4dEtaajdkRkhxMmZaUHZXSHdJWi9KTC9KSTFjbzVxM1c4NUtreFFUeGpqd2cxQzFvYXFoTGxUb0JHZjk4UT0mejNTcDNyenV2TXM3eTJESzBEMVZWWk4rQVFzPQ=="; Expires=Sat, 16 Sep 2023 02:29:52 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1663295392.7b72329
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
142.250.74.72200 OK 262 B URL HTTP/2 www.googletagmanager.com/gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 142.250.74.72:0
File type JSON data\012- , ASCII text, with very long lines (497), with no line terminators
Hash e2d9a6191d8c718a71ced1d8865928aa
f6e0df35194027da97abe0a08f39411eaea2b679
0c907755f6f201383f6842b97e55c409c8b62676bc62321c291b6c4bc9677886
POST /gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Content-Type: text/plain;charset=utf-8
Origin: https://www.brandbucket.com
Content-Length: 379
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.brandbucket.com
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
amp-access-control-allow-source-origin: https://www.brandbucket.com
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
content-disposition: attachment; filename="amp.json"
content-encoding: br
vary: *
date: Fri, 16 Sep 2022 02:29:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 262
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3b816941816ca5fed922c0604e9da8dc
94c14ea6c512c6c262479b4299f1cd4dd99ea5cd
a05000788114487ba8b8c661ba1370b29c96a93a16275b3fab497cf75722b51d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
px.ads.linkedin.com/collect/?pid=271730&fmt=gif
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect/?pid=271730&fmt=gif
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/?pid=271730&fmt=gif HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKezSVa5sL3fQAAAYNEIYu3fiW06Ere7fWDHetvzx6z6ti0hUQZcqngjUhJwgb0kvZoT4C1Gf4dug; Max-Age=2592000; Expires=Sun, 16 Oct 2022 02:29:52 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQL2DYDoHDAXvAAAAYNEIYu3dd-vUTca3zT3JB58JmiGm9iv7XAJKxpSp9XXw0N8KnP4Igb_EVPDhCpje2E0-A; Max-Age=2592000; Expires=Sun, 16 Oct 2022 02:29:52 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&154a56ff-5f0c-4195-8204-9f85c4fcbdc8"; domain=.linkedin.com; Path=/; Secure; Expires=Sat, 16-Sep-2023 02:29:52 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2383:u=1:x=1:i=1663295392:t=1663381792:v=2:sig=AQEiiI-IjjkUICO2abi-M5VBmWsUGuqE"; Expires=Sat, 17 Sep 2022 02:29:52 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXowiMJoeoZSankEKdScA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 8BAE7C1F9A0F4336917ED4A71C3CB5E9 Ref B: OSL30EDGE0411 Ref C: 2022-09-16T02:29:52Z
date: Fri, 16 Sep 2022 02:29:52 GMT
content-length: 0
X-Firefox-Spdy: h2
c.statcounter.com/12450752/0/6281df70/1/
104.20.228.67200 OK 49 B URL HTTP/2 c.statcounter.com/12450752/0/6281df70/1/
IP 104.20.228.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /12450752/0/6281df70/1/ HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: image/gif
content-length: 49
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc12450752.1663295392.0; SameSite=None; Secure; Expires=Tuesday, 14-Sep-2027 22:29:52 EDT; Path=/; Domain=.statcounter.com
is_visitor_unique=1663295392366777957; SameSite=None; Secure; Expires=Saturday, 14-Sep-2024 22:29:52 EDT; Path=/; Domain=.statcounter.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74b62d4bd941b515-OSL
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&604c7446-d15a-44a0-8d83-010c4916a10b"; Domain=.linkedin.com; Expires=Sat, 16-Sep-2023 02:29:52 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202209160229529e77ddbf-e7cd-44b8-8293-822f81f33a5bAQGhZ8QDQPV95T7JSOtic1mzfbiVf4e-"; Domain=.www.linkedin.com; Expires=Sat, 16-Sep-2023 02:29:52 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjMyOTUzOTI7MjswMjEwX09CND7pAfPtLcGVW3QI36PaJZW8znUJwNlcZZOmDg==; Domain=.linkedin.com; Expires=Wed, 15 Mar 2023 02:29:52 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2387:u=1:x=1:i=1663295392:t=1663381792:v=2:sig=AQHq_ttTxGk1KEZbWH_4DJRje3Lg_M-Q"; Expires=Sat, 17 Sep 2022 02:29:52 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXowiMM9W/BHWWSUNhFKA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A57CAEC6E1584FA29DFE9DBB2B21168B Ref B: OSL30EDGE0411 Ref C: 2022-09-16T02:29:52Z
date: Fri, 16 Sep 2022 02:29:52 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash b3c13dd120a811138204b8766f3d6dc2
9855dcc19b8fc86249ce77b308265edc1734975a
a0ed2592bbe9a4058c4f1500e218e602a041d898cf73ab1870128c9b483a04ca
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 02:29:53 GMT
Last-Modified: Fri, 16 Sep 2022 01:47:05 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: a3WEGiLXm7CvFw_4Ks-P0cxOFEPmFaHL2ZxJYFVNQh1tJXdhTE-TzA==
Age: 2568
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 37e29e8dc98a0606c1818f1020a5bcca
a21f86afeb4a057a2aba299aeebdbd592a4a9cf1
d449e84ea243a664ef5e8659aa2a4060b050917427575efcd288d8768b523315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4305
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:53 GMT
Last-Modified: Fri, 16 Sep 2022 01:18:08 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
d.adroll.com/ipixel/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N?name=c49e73cf
34.249.178.117200 OK 42 B URL HTTP/2 d.adroll.com/ipixel/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N?name=c49e73cf
IP 34.249.178.117:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ipixel/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N?name=c49e73cf HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: image/gif
content-length: 42
server: nginx/1.20.0
cache-control: no-transform,public,max-age=300,s-maxage=900
vary: Cookie
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
13.107.42.14200 OK 65 B URL HTTP/2 px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 8b0d5b18476ae12e2476f3621d54c4a5
2ad669e9d207fbb37e84dda25766dbaeb66d792c
2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
GET /collect?pid=271730&fmt=gif&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 65
content-type: image/gif
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&76c6947b-5b77-4b97-8bce-7cbcc546599f"; domain=.linkedin.com; Path=/; Secure; Expires=Sat, 16-Sep-2023 02:29:53 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2345:u=1:x=1:i=1663295393:t=1663381793:v=2:sig=AQEEUGbeyNMAcd23-kEWBPgoV6YnZwgG"; Expires=Sat, 17 Sep 2022 02:29:53 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXowiMPrDhjahmtzfq31Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: AFBA851B605F45D380179837849627D5 Ref B: OSL30EDGE0411 Ref C: 2022-09-16T02:29:52Z
date: Fri, 16 Sep 2022 02:29:52 GMT
X-Firefox-Spdy: h2
www.bizographics.com/collect/?fmt=gif&pid=271730
144.2.12.25301 Moved Permanently 0 B URL HTTP/1.1 www.bizographics.com/collect/?fmt=gif&pid=271730
IP 144.2.12.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/?fmt=gif&pid=271730 HTTP/1.1
Host: www.bizographics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: Play
Location: https://px.ads.linkedin.com/collect?fmt=gif&pid=271730
content-length: 0
Date: Fri, 16 Sep 2022 02:29:53 GMT
Connection: keep-alive
X-Li-Fabric: prod-lva1
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAXowiMQjKrRzeb37iAibA==
Set-Cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=bizographics.com; Secure
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2387:u=1:x=1:i=1663295393:t=1663381793:v=2:sig=AQGE1Oh0YdoLxH--gh25QkadSEXKexWW"; Expires=Sat, 17 Sep 2022 02:29:53 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
px.ads.linkedin.com/collect?fmt=gif&pid=271730
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?fmt=gif&pid=271730
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?fmt=gif&pid=271730 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKtzaiSLUWG6AAAAYNEIY4DYbNDd0PnFLO-5Vn_IaZXXWYHOL357UK-TeTBpovVhUW2aYZ1-grGQQ; Max-Age=2592000; Expires=Sun, 16 Oct 2022 02:29:53 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKht-_qTI-6LgAAAYNEIY4D3s2UkhnxFa26asY4f5sfYO0KDO7SzbE2HXBZ1--vxZ7z-O42F74iVFHSvKHwBg; Max-Age=2592000; Expires=Sun, 16 Oct 2022 02:29:53 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&f46e76fd-1e2d-45c9-8366-631d1694228b"; domain=.linkedin.com; Path=/; Secure; Expires=Sat, 16-Sep-2023 02:29:53 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2383:u=1:x=1:i=1663295393:t=1663381793:v=2:sig=AQHAdfZ0Bk6xnd7FL9rfFh0Dveb8FzzX"; Expires=Sat, 17 Sep 2022 02:29:53 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXowiMSnZAwqoFecVDsKg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 643CF40C4F09480080B8D3D75C7F0336 Ref B: OSL30EDGE0411 Ref C: 2022-09-16T02:29:53Z
date: Fri, 16 Sep 2022 02:29:53 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7dff4bc87dbee6fd33e0d7a3dc5ed3bd
59878d4dd98e60b39dcf7ac288e77bb262afab5d
8c3a027cee1f48144eb0504deff1f2b9aa98c9fc3f4e3057ece6caac9f604315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6155
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:53 GMT
Last-Modified: Fri, 16 Sep 2022 00:47:18 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7dff4bc87dbee6fd33e0d7a3dc5ed3bd
59878d4dd98e60b39dcf7ac288e77bb262afab5d
8c3a027cee1f48144eb0504deff1f2b9aa98c9fc3f4e3057ece6caac9f604315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6155
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:53 GMT
Last-Modified: Fri, 16 Sep 2022 00:47:18 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
www.brandbucket.com/amp/ga?promo&p=321417&ext&dp=30565.26784.261263.417176.253465.222291.217951.416571.350253.335569.207629.415847.323963.116373.113225.413951.145765.433636.293916.398290&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
172.67.4.41200 OK 1.8 kB URL HTTP/2 www.brandbucket.com/amp/ga?promo&p=321417&ext&dp=30565.26784.261263.417176.253465.222291.217951.416571.350253.335569.207629.415847.323963.116373.113225.413951.145765.433636.293916.398290&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 172.67.4.41:0
File type JSON data\012- , ASCII text, with very long lines (14593), with no line terminators
Hash fa04d98bcac6bdbbdf03505c798ba0bb
854a5cc44e62033849323d7f9ddef9bec7e89878
6a71ebb40f33a1add23d00dbd13d3813869eccde3cd774581054609a20492cee
GET /amp/ga?promo&p=321417&ext&dp=30565.26784.261263.417176.253465.222291.217951.416571.350253.335569.207629.415847.323963.116373.113225.413951.145765.433636.293916.398290&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
AMP-Same-Origin: true
Connection: keep-alive
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: application/json
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
amp_run_time: 0.014218s
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74b62d4bff470b3d-OSL
X-Firefox-Spdy: h2
www.facebook.com/tr?noscript=1&ev=ViewContent&id=1690817644503013&cd[value]=17995&cd[currency]=USD&cd[content_name]=oaq.io&cd[content_type]=product&cd[content_ids]=321417
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr?noscript=1&ev=ViewContent&id=1690817644503013&cd[value]=17995&cd[currency]=USD&cd[content_name]=oaq.io&cd[content_type]=product&cd[content_ids]=321417
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /tr?noscript=1&ev=ViewContent&id=1690817644503013&cd[value]=17995&cd[currency]=USD&cd[content_name]=oaq.io&cd[content_type]=product&cd[content_ids]=321417 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Fri, 16 Sep 2022 02:29:53 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7dff4bc87dbee6fd33e0d7a3dc5ed3bd
59878d4dd98e60b39dcf7ac288e77bb262afab5d
8c3a027cee1f48144eb0504deff1f2b9aa98c9fc3f4e3057ece6caac9f604315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6092
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:53 GMT
Last-Modified: Fri, 16 Sep 2022 00:48:21 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?fmt=gif&pid=271730&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&82a82ca1-995d-4a24-8115-619cbc334024"; Domain=.linkedin.com; Expires=Sat, 16-Sep-2023 02:29:53 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022091602295303dfea39-782b-4aaf-8fc3-09aba1c79419AQFkfqURngwj3YMBUYkMxcPc7n6yuvVi"; Domain=.www.linkedin.com; Expires=Sat, 16-Sep-2023 02:29:53 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjMyOTUzOTM7MjswMjEya5JP382IQQ5rhlAw0yuBHLyYO+veXcAVT14szjkoXQ==; Domain=.linkedin.com; Expires=Wed, 15 Mar 2023 02:29:53 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2383:u=1:x=1:i=1663295393:t=1663381793:v=2:sig=AQHAdfZ0Bk6xnd7FL9rfFh0Dveb8FzzX"; Expires=Sat, 17 Sep 2022 02:29:53 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXowiMVG5RVgsdOpU8ZNA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 71D08CE5DEFC412BAF20E7CF86C94DDC Ref B: OSL30EDGE0411 Ref C: 2022-09-16T02:29:53Z
date: Fri, 16 Sep 2022 02:29:53 GMT
content-length: 0
X-Firefox-Spdy: h2
www.google-analytics.com/r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Oaq.io%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1663295377306&cid=amp-3ouMtUsNtQy6z-jDomxevg&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Foaq.io%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.3539697345388857&_r=1&a=7402&z=0.3009581267010222>m=2oubu0
142.250.74.174302 Found 388 B URL HTTP/2 www.google-analytics.com/r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Oaq.io%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1663295377306&cid=amp-3ouMtUsNtQy6z-jDomxevg&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Foaq.io%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.3539697345388857&_r=1&a=7402&z=0.3009581267010222>m=2oubu0
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 8b897f52e30e9d1fa924b986208510f0
27c5d77513aa408abf1f840cd5f52d7753dd6b2c
7f609224c8eea3fe896c317b4385a3d5b3bf0eecd33ee708ce91745a2440d41c
POST /r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Oaq.io%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1663295377306&cid=amp-3ouMtUsNtQy6z-jDomxevg&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Foaq.io%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.3539697345388857&_r=1&a=7402&z=0.3009581267010222>m=2oubu0 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222
access-control-allow-origin: https://www.brandbucket.com
date: Fri, 16 Sep 2022 02:29:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 388
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=a1&ds=AMP&aip&_s=2&dt=Oaq.io%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1663295377315&cid=amp-3ouMtUsNtQy6z-jDomxevg&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Foaq.io%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=event&jid=&ec=&ea=&el=&ev=0&a=7402&z=0.2299644002281358>m=2oubu0&ec=engagement&ea=view_item&ni=1&pr1id=321417&pr1nm=oaq.io&pr1pr=17995&pr1va=Io&pr1br=Invented&pr1qt=1&pr1ps=1
142.250.74.174200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=a1&ds=AMP&aip&_s=2&dt=Oaq.io%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1663295377315&cid=amp-3ouMtUsNtQy6z-jDomxevg&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Foaq.io%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=event&jid=&ec=&ea=&el=&ev=0&a=7402&z=0.2299644002281358>m=2oubu0&ec=engagement&ea=view_item&ni=1&pr1id=321417&pr1nm=oaq.io&pr1pr=17995&pr1va=Io&pr1br=Invented&pr1qt=1&pr1ps=1
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /collect?v=1&_v=a1&ds=AMP&aip&_s=2&dt=Oaq.io%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1663295377315&cid=amp-3ouMtUsNtQy6z-jDomxevg&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Foaq.io%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=event&jid=&ec=&ea=&el=&ev=0&a=7402&z=0.2299644002281358>m=2oubu0&ec=engagement&ea=view_item&ni=1&pr1id=321417&pr1nm=oaq.io&pr1pr=17995&pr1va=Io&pr1br=Invented&pr1qt=1&pr1ps=1 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.brandbucket.com
date: Fri, 16 Sep 2022 02:29:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.redditstatic.com/ads/pixel.js
151.101.85.140200 OK 7.7 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.85.140:0
File type ASCII text, with very long lines (25224)
Hash 95212d33cfff78ad59f5af5b20c48c53
9b99a4091a6eb716bc68f1428e3c86eca068b25b
bd69f250efa08cb2c0a06c35d91fda762779820d87779019c25211f4559ebb1d
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 19 Jul 2022 22:48:09 GMT
etag: "95212d33cfff78ad59f5af5b20c48c53"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 16 Sep 2022 02:29:53 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?fmt=gif&pid=271730&liSync=true
13.107.42.14200 OK 65 B URL HTTP/2 px.ads.linkedin.com/collect?fmt=gif&pid=271730&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 8b0d5b18476ae12e2476f3621d54c4a5
2ad669e9d207fbb37e84dda25766dbaeb66d792c
2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
GET /collect?fmt=gif&pid=271730&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 65
content-type: image/gif
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&376f17e7-4d1a-4b15-83de-c3605b709206"; domain=.linkedin.com; Path=/; Secure; Expires=Sat, 16-Sep-2023 02:29:53 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2383:u=1:x=1:i=1663295393:t=1663381793:v=2:sig=AQHAdfZ0Bk6xnd7FL9rfFh0Dveb8FzzX"; Expires=Sat, 17 Sep 2022 02:29:53 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXowiMXuMlKZDWruvn80g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 9B4B3357FDEC41F0B803C23F2D5981A0 Ref B: OSL30EDGE0411 Ref C: 2022-09-16T02:29:53Z
date: Fri, 16 Sep 2022 02:29:53 GMT
X-Firefox-Spdy: h2
js.usemessages.com/conversations-embed.js
104.17.239.204200 OK 21 kB URL HTTP/2 js.usemessages.com/conversations-embed.js
IP 104.17.239.204:0
File type C source, ASCII text, with very long lines (65536), with no line terminators
Hash 2e787b71d50c4277ab6acd8e4d6b6b82
10d1098845c3ffec7f3a4b459952ba857690e0ca
da0532581dfd9d98dcb26471cd641b39ea481dffdfb15c254fe82ff847022954
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 22 Aug 2022 02:10:32 UTC
etag: W/"be054c0d1ce8e9f928e051e15475d755"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3C1npQH0ys7YIJipkKSW0mB3OJD1A1US
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0ed062928320c9569a09db8a928795e4.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P3
x-amz-cf-id: CCaIeFlcY3FKQHuvMW_xkmPK_IXi4cIu8ufdKJtOzoD_KwKhhipDpQ==
age: 191
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.10632/bundles/project.js&cfRay=745bcef5de010afe-IAD
x-hs-target-asset: conversations-embed/static-1.10632/bundles/project.js
x-hs-cache-status: EXPIRED
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 74b62d52bf120b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222
142.251.1.155302 Found 386 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222
IP 142.251.1.155:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 49ee7d9b88d09f2c100acedd3c487a27
d5b85d0ae5041499dc1b48c0ca8b4ccf13dc0e28
a31ec152c24844172755dbb166ca7a44e05390438fa68808ef4d6e5ab7c56a53
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 16 Sep 2022 02:29:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 386
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=2E3D50F87A3668CE1D4A42D97BC369A3; domain=.bing.com; expires=Wed, 11-Oct-2023 02:29:53 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AD4C6DA1E7924D88B5DEB2BF897644CB Ref B: OSL30EDGE0512 Ref C: 2022-09-16T02:29:53Z
date: Fri, 16 Sep 2022 02:29:52 GMT
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57443), with no line terminators
Hash 1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Fri, 16 Sep 2022 02:29:53 GMT
x-served-by: cache-iad-kjyo7100141-IAD, cache-bma1624-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash bb5011a32469d04a8c6eef616480093e
10d67597f4d964e4b7ac3356cd07f75f70af0189
a14a68abd9f16becedc20dabd6921592f1d50a141475635d7412afe1157619fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3965
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:53 GMT
Last-Modified: Fri, 16 Sep 2022 01:23:48 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 312
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 91dad4479f7dcb623266cf0dcfef5875
9fcf1f0e16c17a43021ab8fb01089d2d9c9f1d3a
0dc4f9c3ecdccb7e1b7a651c72ee63acc06482b362f060547534c3196e561412
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 848674a3bc6b0d4d6cba22b140c574bc
ec95f08f3a5b022c3753f78e30f71d03e2895d78
069aaae82ec20e5bbcc694f9603bded464798891e5e2abc27baadeace22f6a05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 02:29:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222&slf_rd=1&random=559079136
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash db503d6c6780cb1b8dfeffa10a50eada
51a459bdc02f20576031f526be6788f653095d94
b7a653d3c381c6cea5b6838aea01a7de8ea5c2d8bdf5ff92c4cd5c22829c8e8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=10d474ef38e845cfa04a077a51427ebb&traceId=10d474ef38e845cfa04a077a51427ebb&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
104.19.154.83200 OK 18 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=10d474ef38e845cfa04a077a51427ebb&traceId=10d474ef38e845cfa04a077a51427ebb&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
IP 104.19.154.83:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=10d474ef38e845cfa04a077a51427ebb&traceId=10d474ef38e845cfa04a077a51427ebb&referrer=https%3A%2F%2Fwww.brandbucket.com%2F HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.brandbucket.com/
Origin: https://www.brandbucket.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: text/plain; charset=utf-8
content-length: 18
cf-ray: 74b62d5349a51c02-OSL
access-control-allow-origin: https://www.brandbucket.com
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 88584cdd-9b34-4e6d-877c-4ec6a2b0398d
x-trace: 2B57FBD54E07419F74EE0A523654B5099328EFC92A000000000000000000
set-cookie: __cf_bm=sfvZG4.fSPhAJ5hMXHUCIHcJnS4fj1EN..sVdDkfC5E-1663295393-0-AbV8see5zES735M/hPO2RHAKDoAdU/SZgaiEavewzNlAcFdNH/5YhkQ5fOt4qGqKzT3DrxGM5kHHrrwZxvQVr58=; path=/; expires=Fri, 16-Sep-22 02:59:53 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LGDKdy3Su0OBaCrM7y1d5DV%2FkSc20SeoTE%2Bv8LcaZyrrLVXh%2BJECu9Q4b3Y6ZIUAq6jc1HZFWQyph7F9Gg3z%2BOhekzPj0rxmy4nFaeR9K%2Bn7lRVlsdv3EAgQWV99SWpwEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8ff1c0d8a380ce4a561609526d995bf5
135ecd7e71ea2823d39f8c1efcb2121618ed8167
f7228281af8d6de222aa47b3a78a627f85315244e65a8956fa2c0c7dff1bb7ad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash d65179ce47e72cdd9eacc2b5dd2e4c6e
15bd0c73ce0a61fc468874add1eee92fce4eb22a
247927221931ccab159a5b532507eaee21304ec51154de7303166df9ac7dfc12
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2323
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:53 GMT
Etag: "6323046c-13a"
Last-Modified: Fri, 16 Sep 2022 01:51:10 GMT
Server: ECS (amb/6BC1)
X-Cache: HIT
Content-Length: 314
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222&slf_rd=1&random=559079136
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222&slf_rd=1&random=559079136
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-3ouMtUsNtQy6z-jDomxevg&jid=0.3539697345388857&_v=a1&z=0.3009581267010222&slf_rd=1&random=559079136 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 02:29:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash db503d6c6780cb1b8dfeffa10a50eada
51a459bdc02f20576031f526be6788f653095d94
b7a653d3c381c6cea5b6838aea01a7de8ea5c2d8bdf5ff92c4cd5c22829c8e8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 06d7f091b313eeae7cf92d084cca0f87
8a49468bb5a8ca3eb68feafa6b2c0d577c2070d3
6c68b47e36681eb87aacb193a7b19aa815645ded156f2c65dd3dab05a7f37c58
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3765
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:54 GMT
Last-Modified: Fri, 16 Sep 2022 01:27:09 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 312
js.hs-analytics.net/analytics/1663295100000/20882931.js
104.17.68.176200 OK 20 kB URL HTTP/2 js.hs-analytics.net/analytics/1663295100000/20882931.js
IP 104.17.68.176:0
File type ASCII text, with very long lines (63804)
Hash 5a63824f0d04e21174e56668e44c8c5a
120284809e8adf6442b8fac329c3407e0c57cafc
73092ceca766f3f6a47e332a1eeb5b294147692976ac89d8fba545a88e6b49d0
GET /analytics/1663295100000/20882931.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: text/javascript
x-amz-id-2: D+gGVE3LHS7TJqfdyYBSz5U4ORKLhYcR1nhU/Z/+b2bSpztPHrw6YuBUl9G+pp9iYXLubT8vCVA=
x-amz-request-id: E2G1WTG4ATNTGHV9
last-modified: Wed, 31 Aug 2022 14:06:50 GMT
etag: W/"ae2f524bc295017dee70bb69092256ec"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
expires: Fri, 16 Sep 2022 02:30:40 GMT
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d531da3b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=f0c9d65d-fb1c-4961-854f-307b5d76a78d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=96bc716a-bd81-4629-8767-7f9811c9b751&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Foaq.io%3Fsource%3Dext%26ext%3D321417%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
104.244.42.69200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=f0c9d65d-fb1c-4961-854f-307b5d76a78d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=96bc716a-bd81-4629-8767-7f9811c9b751&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Foaq.io%3Fsource%3Dext%26ext%3D321417%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=f0c9d65d-fb1c-4961-854f-307b5d76a78d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=96bc716a-bd81-4629-8767-7f9811c9b751&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Foaq.io%3Fsource%3Dext%26ext%3D321417%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
server: tsa_o
set-cookie: muc_ads=cee5d420-570c-463a-a699-ea9145b9b5c2; Max-Age=63072000; Expires=Sun, 15 Sep 2024 02:29:54 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=0
x-response-time: 109
x-connection-hash: 5c0280d1c4d026123b1f429e0713583a82b111483923fc8b2131e65fe79a7dff
X-Firefox-Spdy: h2
api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=10d474ef38e845cfa04a077a51427ebb&traceId=10d474ef38e845cfa04a077a51427ebb&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
104.19.154.83200 OK 186 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=10d474ef38e845cfa04a077a51427ebb&traceId=10d474ef38e845cfa04a077a51427ebb&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
IP 104.19.154.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 66bf77dd031ebfc350b4b4e8a934e6fc
333f3ea9dd153ade95ea6967005f8385b2aeff97
d4d5981f0ca362dd1e2a095d58b8c7298f01e15327d671cf3eaf21499c7b1e4b
GET /livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=10d474ef38e845cfa04a077a51427ebb&traceId=10d474ef38e845cfa04a077a51427ebb&referrer=https%3A%2F%2Fwww.brandbucket.com%2F HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.brandbucket.com/amp/tracking/names/oaq.io?source=ext&ext=321417&source=ext#amp=1
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:54 GMT
content-type: application/json;charset=utf-8
content-length: 186
cf-ray: 74b62d542a191c02-OSL
access-control-allow-origin: https://www.brandbucket.com
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 33353d8a-e527-4847-9b06-a8cc770b2feb
x-trace: 2B4632F5A8D8B0A7519022DAB4E1E79786DFF8860C000000000000000000
set-cookie: __cf_bm=Ofi5O.hiq0OuLOAgZqAKI2FDYdG.RfSc9G0Z2MH2lYo-1663295394-0-ATfeDjqldWdOxDO2mbrYKs47y/iZn2VW2Gv6kzcSTgsAfyggrZFEBcgp81F9ntPgLwvjMTn77223vhk3bqqNVh4=; path=/; expires=Fri, 16-Sep-22 02:59:54 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1hqx6R6Yn7h%2BguFuLT90l8GCQO4pjVI7aejvE6fe9t5vb9ghSmFu%2Ffdwi44g9EXazY%2BneYdBr6WGc%2FxNEgMTJicwcs1%2FjiOasEZSWFSpqvktGMQNKriGKjWFnbqbZppHpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=www.brandbucket.com&origin=onetag
178.250.2.146200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=www.brandbucket.com&origin=onetag
IP 178.250.2.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 7fe09fffbae323bb578c165545dfa33e
82056392ded41ef038f062955fa22b9fd1706ce3
91ff748f23ee294fef966423b4d7b2a0e8ec123770f8997fd92f6ae363463363
GET /syncframe?topUrl=www.brandbucket.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=d89ee642-8b16-4769-8bc0-9d739f43f10b; expires=Wed, 11 Oct 2023 02:29:53 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 568377
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash ee17efbaf7c9da4ca246347df57071c8
24be383dd1c6ba60f8e1e3b6786e856a5e63f74c
f5472faa1677166fa058047802761d3f224b0f858d75280a3993f73efb9c6aed
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6486
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:54 GMT
Last-Modified: Fri, 16 Sep 2022 00:41:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
alb.reddit.com/rp.gif?ts=1663295378012&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=4e9a801a-fdc6-4252-9665-24dd40d1e9ea&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
151.101.85.140200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1663295378012&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=4e9a801a-fdc6-4252-9665-24dd40d1e9ea&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
IP 151.101.85.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1663295378012&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=4e9a801a-fdc6-4252-9665-24dd40d1e9ea&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Fri, 16 Sep 2022 02:29:54 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash d0852031f85168a1315bc790e0834e1f
470d9889b9b35cc9b1d50acdc6c9e572d88e5f06
10f41644154a5f494346bd8abe41e460a476e310469b0b36a677d76db57c1eba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2142
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:54 GMT
Last-Modified: Fri, 16 Sep 2022 01:54:12 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash d0852031f85168a1315bc790e0834e1f
470d9889b9b35cc9b1d50acdc6c9e572d88e5f06
10f41644154a5f494346bd8abe41e460a476e310469b0b36a677d76db57c1eba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2199
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:54 GMT
Last-Modified: Fri, 16 Sep 2022 01:53:16 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 314
js.hs-banner.com/20882931.js
172.64.154.85200 OK 30 kB URL HTTP/2 js.hs-banner.com/20882931.js
IP 172.64.154.85:0
File type ASCII text, with very long lines (60657)
Hash 7277e221a1d620327346846495f70cde
b7d47744a7507d5d4a71901ffcfb041e2170017a
d00cf85ad2c2d67302c939ea6d5ea1dad32d8e1a34ce1025997cde578f379634
GET /20882931.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: LZQJEIUGZpimRU8u1RpHftmBzqWoKddSEimv1q4KRhb1GfuXfY0vgY9GfW6WrayKUY+ihlNMN4U=
x-amz-request-id: VFEXZ99DDVNKEYDB
last-modified: Tue, 30 Aug 2022 23:09:39 GMT
etag: W/"78ffb10a4b1a78e3dbb2fbc3833d979b"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: wVTF9d3ewW5rPbyGOXdwIXoxBD_CEo_I
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
expires: Fri, 16 Sep 2022 02:30:40 GMT
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b62d52bffdb50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=f0c9d65d-fb1c-4961-854f-307b5d76a78d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=96bc716a-bd81-4629-8767-7f9811c9b751&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Foaq.io%3Fsource%3Dext%26ext%3D321417%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
104.244.42.195200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=f0c9d65d-fb1c-4961-854f-307b5d76a78d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=96bc716a-bd81-4629-8767-7f9811c9b751&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Foaq.io%3Fsource%3Dext%26ext%3D321417%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
IP 104.244.42.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=f0c9d65d-fb1c-4961-854f-307b5d76a78d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=96bc716a-bd81-4629-8767-7f9811c9b751&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Foaq.io%3Fsource%3Dext%26ext%3D321417%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
server: tsa_o
set-cookie: personalization_id="v1_39OkOn0YhwaqZu0EORveEQ=="; Max-Age=63072000; Expires=Sun, 15 Sep 2024 02:29:54 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 103
x-connection-hash: 31e4996dfbc747bb7465c3853122ed61198320aa313c1c39d65d6df6c31970de
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-3ouMtUsNtQy6z-jDomxevg%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=PAli7V9Pa1llN2xBZXY0NURCY1lrYkRTJTJCb05mZ1g4M3lFS2tMSENmYk16YzZlUjNyJTJGUGw2OEMlMkZ1eCUyRk5qbDZGT3RZQlNQS1lCUnBWY2duYmNRVEElMkJVRVQlMkIyYWNuQnd6JTJCcFFQMnAzNXM4cjFmOUtBYXVzRmVYUGw5WXVZUlAweDJGb2sxeWclMkZaS0x0bTNuRTQyUE1FeXBCaE5RJTNEJTNE&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Foaq.io%253Fsource%253Dext&dtycbr=5768
178.250.2.151302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-3ouMtUsNtQy6z-jDomxevg%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=PAli7V9Pa1llN2xBZXY0NURCY1lrYkRTJTJCb05mZ1g4M3lFS2tMSENmYk16YzZlUjNyJTJGUGw2OEMlMkZ1eCUyRk5qbDZGT3RZQlNQS1lCUnBWY2duYmNRVEElMkJVRVQlMkIyYWNuQnd6JTJCcFFQMnAzNXM4cjFmOUtBYXVzRmVYUGw5WXVZUlAweDJGb2sxeWclMkZaS0x0bTNuRTQyUE1FeXBCaE5RJTNEJTNE&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Foaq.io%253Fsource%253Dext&dtycbr=5768
IP 178.250.2.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-3ouMtUsNtQy6z-jDomxevg%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=PAli7V9Pa1llN2xBZXY0NURCY1lrYkRTJTJCb05mZ1g4M3lFS2tMSENmYk16YzZlUjNyJTJGUGw2OEMlMkZ1eCUyRk5qbDZGT3RZQlNQS1lCUnBWY2duYmNRVEElMkJVRVQlMkIyYWNuQnd6JTJCcFFQMnAzNXM4cjFmOUtBYXVzRmVYUGw5WXVZUlAweDJGb2sxeWclMkZaS0x0bTNuRTQyUE1FeXBCaE5RJTNEJTNE&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Foaq.io%253Fsource%253Dext&dtycbr=5768 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 16 Sep 2022 02:29:53 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-3ouMtUsNtQy6z-jDomxevg%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=PAli7V9Pa1llN2xBZXY0NURCY1lrYkRTJTJCb05mZ1g4M3lFS2tMSENmYk16YzZlUjNyJTJGUGw2OEMlMkZ1eCUyRk5qbDZGT3RZQlNQS1lCUnBWY2duYmNRVEElMkJVRVQlMkIyYWNuQnd6JTJCcFFQMnAzNXM4cjFmOUtBYXVzRmVYUGw5WXVZUlAweDJGb2sxeWclMkZaS0x0bTNuRTQyUE1FeXBCaE5RJTNEJTNE&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Foaq.io%253Fsource%253Dext&dtycbr=5768
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 6338223
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 6f4d356edec4bb80ef0bb1f4fa502436
24d39b228225e5b3b8ff9dab590a70328717948d
8956cf09f930c47ded8150901b76a3228ba4205bb2ac250432c94c522f029f81
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6141
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:54 GMT
Last-Modified: Fri, 16 Sep 2022 00:47:34 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 313
widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-3ouMtUsNtQy6z-jDomxevg%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=PAli7V9Pa1llN2xBZXY0NURCY1lrYkRTJTJCb05mZ1g4M3lFS2tMSENmYk16YzZlUjNyJTJGUGw2OEMlMkZ1eCUyRk5qbDZGT3RZQlNQS1lCUnBWY2duYmNRVEElMkJVRVQlMkIyYWNuQnd6JTJCcFFQMnAzNXM4cjFmOUtBYXVzRmVYUGw5WXVZUlAweDJGb2sxeWclMkZaS0x0bTNuRTQyUE1FeXBCaE5RJTNEJTNE&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Foaq.io%253Fsource%253Dext&dtycbr=5768
74.119.119.150200 OK 21 kB URL HTTP/2 widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-3ouMtUsNtQy6z-jDomxevg%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=PAli7V9Pa1llN2xBZXY0NURCY1lrYkRTJTJCb05mZ1g4M3lFS2tMSENmYk16YzZlUjNyJTJGUGw2OEMlMkZ1eCUyRk5qbDZGT3RZQlNQS1lCUnBWY2duYmNRVEElMkJVRVQlMkIyYWNuQnd6JTJCcFFQMnAzNXM4cjFmOUtBYXVzRmVYUGw5WXVZUlAweDJGb2sxeWclMkZaS0x0bTNuRTQyUE1FeXBCaE5RJTNEJTNE&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Foaq.io%253Fsource%253Dext&dtycbr=5768
IP 74.119.119.150:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (5655)
Hash 6a27fc5bc5d1b2ccd75f3694dc325269
c08ec5521087334d62130d13ba40ff040254a6d3
f4b7cc5118fdcc9fd97b4881447de4847cb7e63f449baa073b7f6cfe438f5972
GET /event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-3ouMtUsNtQy6z-jDomxevg%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=PAli7V9Pa1llN2xBZXY0NURCY1lrYkRTJTJCb05mZ1g4M3lFS2tMSENmYk16YzZlUjNyJTJGUGw2OEMlMkZ1eCUyRk5qbDZGT3RZQlNQS1lCUnBWY2duYmNRVEElMkJVRVQlMkIyYWNuQnd6JTJCcFFQMnAzNXM4cjFmOUtBYXVzRmVYUGw5WXVZUlAweDJGb2sxeWclMkZaS0x0bTNuRTQyUE1FeXBCaE5RJTNEJTNE&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Foaq.io%253Fsource%253Dext&dtycbr=5768 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:54 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 24816879
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js
143.204.55.75200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js
IP 143.204.55.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Last-Modified: Mon, 12 Sep 2022 18:14:28 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: 6eXq1Vm.raboIzwleO8C2i0W83f9CRWd
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 16 Sep 2022 02:24:29 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
Age: 856
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: W_7wb1fx5YQXvIC2EbCwbM6oHJqleI8bbhkOROSF1BZ_-k3IH2IFyw==
s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js
143.204.55.75302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js
IP 143.204.55.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Thu, 15 Sep 2022 04:31:47 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/pre/index.js
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
Age: 79086
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Avu38p9d7OQ3nqL6unSdjF5OB4nVEfJCRKqchO2auw4eik-oknNjTQ==
s.adroll.com/j/pre/index.js
143.204.55.75200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/index.js
IP 143.204.55.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 15 Jan 2020 23:54:18 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: nQEe8wQ7h0ROt7P4GJfDfstto6x684Hy
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 16 Sep 2022 01:12:32 GMT
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
Age: 4645
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _MNLeEUpzI_Q6eiKYtDX6RtE1vAZ1XlcJiOviTWWFTEsec0ZAugKtA==
s.adroll.com/j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js
143.204.55.75302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js
IP 143.204.55.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Thu, 15 Sep 2022 22:13:09 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/exp/index.js
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
Age: 15405
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ukZm5oQ4hC_sBRVhkln0zVLF4e1aF1l5SlOxb7xY1jvSe6cT6-CZ3Q==
s.adroll.com/j/exp/index.js
143.204.55.75200 OK 28 B URL HTTP/1.1 s.adroll.com/j/exp/index.js
IP 143.204.55.75:0
File type ASCII text, with no line terminators
Hash 5816cced8568d223aa09d889f300692b
95cab5e474d7391762c3da5c7dc50fcf05df529f
f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52
GET /j/exp/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 28
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 17:25:28 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: VS8aSrwndm.MeiNnyJ10ruHH56v74CIF
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 16 Sep 2022 02:09:28 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
Age: 1232
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Srue8zjQAF0YpA-eDZd0iRX0aW1Avkry2WfWZH7s5FXyWZXqwRWBSg==
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 16 Sep 2022 02:29:54 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 498941
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-skjuyectXz-0zfg06OukVIUcV8bnagqPM8hhrA
23.38.200.22200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-skjuyectXz-0zfg06OukVIUcV8bnagqPM8hhrA
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-skjuyectXz-0zfg06OukVIUcV8bnagqPM8hhrA HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3062969953580248000V10; Expires=Sat, 16 Sep 2023 02:29:55 GMT; domain=.media.net; Path=/;
data-c-ts=1663295395;Expires=Sun, 16 Oct 2022 02:29:55 GMT;path=/;domain=.media.net;
data-c=k-skjuyectXz-0zfg06OukVIUcV8bnagqPM8hhrA~~3;Expires=Sun, 16 Oct 2022 02:29:55 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Fri, 16 Sep 2022 02:29:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 16 Sep 2022 02:29:55 GMT
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-H6wO0uctXz-0zfg06OukVIUcV8YeE-NRGeHhFw
104.18.19.126302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-H6wO0uctXz-0zfg06OukVIUcV8YeE-NRGeHhFw
IP 104.18.19.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-H6wO0uctXz-0zfg06OukVIUcV8YeE-NRGeHhFw HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 16 Sep 2022 02:29:55 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-H6wO0uctXz-0zfg06OukVIUcV8YeE-NRGeHhFw&C=1
cf-ray: 74b62d5b193bb4f9-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YyPfozUZBVzGbPvzB0rK9gAA; Path=/; Domain=casalemedia.com; Expires=Sat, 16 Sep 2023 02:29:55 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4438; Path=/; Domain=casalemedia.com; Expires=Thu, 15 Dec 2022 02:29:55 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4438; Path=/; Domain=casalemedia.com; Expires=Thu, 15 Dec 2022 02:29:55 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MfzL%2Fei%2BSKhDYtNbBJpNtiAz%2BfaV%2Bh1qh782tQPI8AGM8l3Jn8dD1SGjTQSlfcsrTx55eNxlNyyiH1M1iSm5Lotc9dkR78eil9jTKzJcnUKYxA4BFd5%2Bx1ByR4HqADQ4Zajs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d.adroll.com/consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Foaq.io%3Fsource%3Dext%26ext%3D321417%26source%3Dext%23amp%3D1&_s=1458dfe21568c7d6117d67dd13524e31&_b=2
34.249.178.117200 OK 447 B URL HTTP/2 d.adroll.com/consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Foaq.io%3Fsource%3Dext%26ext%3D321417%26source%3Dext%23amp%3D1&_s=1458dfe21568c7d6117d67dd13524e31&_b=2
IP 34.249.178.117:0
File type ASCII text, with very long lines (447), with no line terminators
Hash 71b11b582fcf24f1f98ee6007834ff6c
226fa2ad983872de39c984cd60df9b846dac2fd5
52e897d11c41f5a3fd15dc86f58f230de01f8f14da3978922963934d3ef5fc74
GET /consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Foaq.io%3Fsource%3Dext%26ext%3D321417%26source%3Dext%23amp%3D1&_s=1458dfe21568c7d6117d67dd13524e31&_b=2 HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:55 GMT
content-type: application/javascript
content-length: 447
server: nginx/1.20.0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 9eba4ed1f0257a949963590336a61f56
37d492bd6698bd554bc76fd833ca0be76875457b
843ef924858e3eb6524ad39b6b90e8e377446707f7d07a4635b6f261b414fc14
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 00:51:47 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qDCeE9V9BsJUxsYWhwFaqKR2htrb31IZVAs9fMgwwTJ3zNEqUZuk1Q==
Age: 5888
gem.gbc.criteo.com/newidsd
185.235.84.235200 OK 480 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.235:0
Hash 5d634fe0bfc9bb1061f422ad813e21c0
29f6865f391da5ae97de1002a538e26a67c2a430
584fce80f754d23bf3f72e48cf8da176bba642163cecd63c1b69c0c733f4f06e
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 113035
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-H6wO0uctXz-0zfg06OukVIUcV8YeE-NRGeHhFw&C=1
104.18.19.126200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-H6wO0uctXz-0zfg06OukVIUcV8YeE-NRGeHhFw&C=1
IP 104.18.19.126:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-H6wO0uctXz-0zfg06OukVIUcV8YeE-NRGeHhFw&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:55 GMT
content-type: image/gif
content-length: 43
cf-ray: 74b62d5b698db4f9-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Jyq9HrKVlKDfqP8aN7qnY7hRAfCwX6IxDhWPRk4TG0ZIQrtPualXpnwP2fFrNlIfuNjuzSG6NxHLdTtl8Rx92wUZ8vCsCH%2FsLfQtKQHJgGzWiwwOnxoR6LLb5F3LX1bRHVo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-0GfnOOctXz-0zfg06OukVIUcV8byoLaDxtPISA&google_cm=&google_hm=ay0wR2ZuT09jdFh6LTB6ZmcwNk91a1ZJVWNWOGJ5b0xhRHh0UElTQQ&google_tc=
142.250.74.162302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-0GfnOOctXz-0zfg06OukVIUcV8byoLaDxtPISA&google_cm=&google_hm=ay0wR2ZuT09jdFh6LTB6ZmcwNk91a1ZJVWNWOGJ5b0xhRHh0UElTQQ&google_tc=
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 9a077c493d63d98442fe53adf86b0b5f
ef2f283cc42dda13e7a28dcc13ffd2bfd714e23b
bcaee7c9ecc9cda9ce4bed1d0fd5105c13ef6b6d8c20ff003e2b98354e6cb897
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-0GfnOOctXz-0zfg06OukVIUcV8byoLaDxtPISA&google_cm=&google_hm=ay0wR2ZuT09jdFh6LTB6ZmcwNk91a1ZJVWNWOGJ5b0xhRHh0UElTQQ&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-0GfnOOctXz-0zfg06OukVIUcV8byoLaDxtPISA&google_error=3
date: Fri, 16 Sep 2022 02:29:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
37.252.173.215307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 16 Sep 2022 02:29:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: fe6daddb-f58d-44d4-9cca-5643c26228ac
Set-Cookie: uuid2=712684015962556879; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 15-Dec-2022 02:29:55 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
criteo-sync.teads.tv/um?eid=80&uid=k-x1vRUOctXz-0zfg06OukVIUcV8aG2U92VbcSZQ
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-x1vRUOctXz-0zfg06OukVIUcV8aG2U92VbcSZQ
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-x1vRUOctXz-0zfg06OukVIUcV8aG2U92VbcSZQ HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Fri, 16 Sep 2022 02:29:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 16 Sep 2022 02:29:55 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f392891364085cfda5bf32943cb7ce6
b6a8daa68a5520f4fb5849afb60b53638751cca1
8d32c6e4a79694f967188f1e9e59502030464a5c30fd3a5fa6ee1bee34070fd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6279
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 00:45:16 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash d883529bbcfa22eecc8ceb90814d4f8f
8efca9e943128c84096d0988c6de6e5455d09423
46f109a6cb518f3f542faa0a2ddae28a458b59096053b533c3d28f94aaac2fbc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 01:43:51 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZaxvAuvqWq_afHqXCY-gsniVt9rITe1hSv3VpeOJFBf5fzOGyyNnGg==
Age: 2764
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b67863c1cabe70d4cbf441ab4b0578be
c922ce900344fb2edb8663038cbb97f339f89bb5
4a11b194914b22e3599d442a4215b84d3c75a74211cbed1fe81c3ee3b27997cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4763
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 01:10:32 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-0kzcrectXz-0zfg06OukVIUcV8ZsvVm95dKh2Q
185.64.190.80200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-0kzcrectXz-0zfg06OukVIUcV8ZsvVm95dKh2Q
IP 185.64.190.80:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-0kzcrectXz-0zfg06OukVIUcV8ZsvVm95dKh2Q HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 02:29:54 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-0kzcrectXz-0zfg06OukVIUcV8ZsvVm95dKh2Q&KRTB&23144-uid:k-0kzcrectXz-0zfg06OukVIUcV8ZsvVm95dKh2Q&KRTB&23286-uid:k-0kzcrectXz-0zfg06OukVIUcV8ZsvVm95dKh2Q&KRTB&23287-uid:k-0kzcrectXz-0zfg06OukVIUcV8ZsvVm95dKh2Q; domain=pubmatic.com; secure; expires=Sun, 16-Oct-2022 02:29:54 GMT; path=/
PugT=1663295394; domain=pubmatic.com; secure; expires=Sun, 16-Oct-2022 02:29:54 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-5N0wG-ctXz-0zfg06OukVIUcV8Yp9HPXwBonBA
54.93.152.24302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-5N0wG-ctXz-0zfg06OukVIUcV8Yp9HPXwBonBA
IP 54.93.152.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-5N0wG-ctXz-0zfg06OukVIUcV8Yp9HPXwBonBA HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 16 Sep 2022 02:29:55 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-5N0wG-ctXz-0zfg06OukVIUcV8Yp9HPXwBonBA
set-cookie: tuuid=32d27d6f-1053-40d3-aec9-0788ea2ad9eb; Expires=Thu, 15 Dec 2022 02:29:55 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1663295395; Expires=Thu, 15 Dec 2022 02:29:55 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e86352f38e64e6711b7054fbdc437704
b9da42c924cd5e90b33fe4563ea9e11d4d09e9a0
8181b67e1ebd19d073a2a15a8b5fe1be0bcde6a26a6486f5253876d0f7a0e105
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4310
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 01:18:05 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 313
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-b-5cKuctXz-0zfg06OukVIUcV8az42yMaTo2Rg&expires=30
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-b-5cKuctXz-0zfg06OukVIUcV8az42yMaTo2Rg&expires=30
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-b-5cKuctXz-0zfg06OukVIUcV8az42yMaTo2Rg&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 1da0c96602e9a1076eae4f5554c05cf3
Content-Type: image/gif
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
37.252.173.215302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Fri, 16 Sep 2022 02:29:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: d8852c01-77d0-4ae6-b0df-b04c38be32be
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ad.yieldlab.net/m?dm_id=8666&ext_id=k-nrXDoectXz-0zfg06OukVIUcV8ZxIbSigJwR2w
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dm_id=8666&ext_id=k-nrXDoectXz-0zfg06OukVIUcV8ZxIbSigJwR2w
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dm_id=8666&ext_id=k-nrXDoectXz-0zfg06OukVIUcV8ZxIbSigJwR2w HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Thu, 15 Sep 2022 02:29:55 GMT
Date: Fri, 16 Sep 2022 02:29:55 GMT
Connection: keep-alive
Set-Cookie: id=4df36bec-49f2-4e47-ac47-9cf5000e1106; Path=/; Domain=yieldlab.net; Expires=Sat, 16-Sep-2023 02:29:55 GMT; Max-Age=31536000; Secure; SameSite=None
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e54f9597f04b82a26bad08882e91bdf7
3cde63d75bf41426ca5761d1aef248be5f37741a
7bc46ed3668d3abbd02d49eaacf0f0ac947bf63ec51a06b65069d05deb219f2c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5084
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 01:05:11 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-5N0wG-ctXz-0zfg06OukVIUcV8Yp9HPXwBonBA
54.93.152.24200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-5N0wG-ctXz-0zfg06OukVIUcV8Yp9HPXwBonBA
IP 54.93.152.24:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-5N0wG-ctXz-0zfg06OukVIUcV8Yp9HPXwBonBA HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:55 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6fc636923e1f6e94d0c369b35d67edc0
681a0384179000b6568f5def15148c0f31123b7b
d0d0d97c816b94149a8853022b694d075dbef103c1b09c365086df0cc4a43e6e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4345
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 01:17:30 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-49nWtuctXz-0zfg06OukVIUcV8YVaDkDapGZ-A
185.86.139.113200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-49nWtuctXz-0zfg06OukVIUcV8YVaDkDapGZ-A
IP 185.86.139.113:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-49nWtuctXz-0zfg06OukVIUcV8YVaDkDapGZ-A HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Fri, 16 Sep 2022 02:29:55 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=6640736785418401085; expires=Mon, 16 Oct 2023 02:29:55 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Mon, 16 Oct 2023 02:29:55 GMT; domain=smartadserver.com; path=/
csync=79:k-49nWtuctXz-0zfg06OukVIUcV8YVaDkDapGZ-A; expires=Sat, 16 Sep 2023 02:29:55 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
cm.adform.net/pixel?adform_pid=15&adform_pc=k-UzFryectXz-0zfg06OukVIUcV8b5QmGJ_isTUA
37.157.4.39200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-UzFryectXz-0zfg06OukVIUcV8b5QmGJ_isTUA
IP 37.157.4.39:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-UzFryectXz-0zfg06OukVIUcV8b5QmGJ_isTUA HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 02:29:55 GMT
content-type: image/gif
content-length: 43
last-modified: Wed, 20 Jul 2016 08:18:17 GMT
etag: "578f33c9-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=28645&dpuuid=
3.248.73.132302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 3.248.73.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v040-0242709c2.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=80028954121668728391075374115894360912; Max-Age=15552000; Expires=Wed, 15 Mar 2023 02:29:55 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: gyi5yWcUSoo=
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c3e6c131178768ed3a6f62b2022a578f
c405af5948b92cdf7432495ffa2eff0b024060da
95f9d78f15be73e9be6ec171e094580e976735fae09e07327c7983ddc31a9a2e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4859
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 01:08:56 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1f2ff0fea7939e810ad4c60fe553b6f4
16aa6e7b8b16ae0d965c0e9f6422d75ae37674b0
9b46d70511b3a16eb5a682cd0acb13f185570ca55be11ccbcff285428e58e2e4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 02:29:55 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 17:09:30 GMT
Expires: Tue, 20 Sep 2022 17:09:29 GMT
Etag: "16aa6e7b8b16ae0d965c0e9f6422d75ae37674b0"
Cache-Control: max-age=397773,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74b62d5bdbb6b4e8-OSL
ad.yieldlab.net/m?dt_id=8664&ext_id=k-nrXDoectXz-0zfg06OukVIUcV8ZxIbSigJwR2w
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-nrXDoectXz-0zfg06OukVIUcV8ZxIbSigJwR2w
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-nrXDoectXz-0zfg06OukVIUcV8ZxIbSigJwR2w HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Thu, 15 Sep 2022 02:29:55 GMT
Date: Fri, 16 Sep 2022 02:29:55 GMT
Connection: keep-alive
Set-Cookie: id=8045fd56-009a-47b5-b57a-6b13bd4c959d; Path=/; Domain=yieldlab.net; Expires=Sat, 16-Sep-2023 02:29:55 GMT; Max-Age=31536000; Secure; SameSite=None
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash c66cb5b984a9bcd07a7921bb18e388a3
002fc5be7b8d9b8d9c56061287c96612c74a206f
6c5f55024e1a6aca3264c37bcdd5cdb701a8c151017191b82b448d9e1c9ae583
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 00:45:34 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -3UuArDUy5E2cWteAwGu4q2Y2Zkoi88VkOhtnw6uRxtgr5t4tOq5HQ==
Age: 6261
ag.gbc.criteo.com/newidsd
185.235.84.32200 OK 45 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.32:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e0d8e879ac7d7efc920d13cb8fea3557
2bd2d910f21aceaf22b852d4a7d675ab7c4e2213
3a6bcdf2bf5775f3e1cd019cb014112306602c0f1ce427673a46183fd9267307
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 127765
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-tzlxBectXz-0zfg06OukVIUcV8a8dlvx9Ld4Fg
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-tzlxBectXz-0zfg06OukVIUcV8a8dlvx9Ld4Fg
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-tzlxBectXz-0zfg06OukVIUcV8a8dlvx9Ld4Fg HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 16 Sep 2022 02:29:55 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-tzlxBectXz-0zfg06OukVIUcV8a8dlvx9Ld4Fg&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKPfI2MCENCT1P3xN_hJPASXBUXvLPEFEgEBAQExJWMtYwAAAAAA_eMAAA&S=AQAAAokq3xmd5oTL2lR05ygbPzs; Expires=Sat, 16 Sep 2023 08:29:55 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 812f14fed2dd6db2ac2f69ed686637d4
e88e629fc6025053e63ec43650d1a9c6df50db4f
73c50ee61c1b379b38824b71d013ac9855c17ccfb74e547231498c303987c074
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 02:29:55 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 14 Sep 2022 03:11:56 GMT
Expires: Wed, 21 Sep 2022 03:11:55 GMT
Etag: "e88e629fc6025053e63ec43650d1a9c6df50db4f"
Cache-Control: max-age=433919,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74b62d5d1c5db4e8-OSL
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
3.248.73.132200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 3.248.73.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v040-04be59397.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: iUlRybLvTo4=
Content-Length: 59
Connection: keep-alive
eb2.3lift.com/xuid?mid=2711&xuid=k-28kVRectXz-0zfg06OukVIUcV8ZupBIMtsRNpg&dongle=013b
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-28kVRectXz-0zfg06OukVIUcV8ZupBIMtsRNpg&dongle=013b
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-28kVRectXz-0zfg06OukVIUcV8ZupBIMtsRNpg&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:55 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
sync.outbrain.com/cookie-sync?p=criteo&uid=k-5F_X4ectXz-0zfg06OukVIUcV8bmNG9LlN4qgg
70.42.32.31200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-5F_X4ectXz-0zfg06OukVIUcV8bmNG9LlN4qgg
IP 70.42.32.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-5F_X4ectXz-0zfg06OukVIUcV8bmNG9LlN4qgg HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 02:29:55 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 12debadd635896df5aff487462206075
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-tzlxBectXz-0zfg06OukVIUcV8a8dlvx9Ld4Fg&verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-tzlxBectXz-0zfg06OukVIUcV8a8dlvx9Ld4Fg&verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-tzlxBectXz-0zfg06OukVIUcV8a8dlvx9Ld4Fg&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 16 Sep 2022 02:29:55 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKPfI2MCEOAgxMr8H2uZDuoslV02Om4FEgEBAQExJWMtYwAAAAAA_eMAAA&S=AQAAAofx45jUSpEMZYcBzQcldso; Expires=Sat, 16 Sep 2023 08:29:55 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=12438557&ext_id=k-nrXDoectXz-0zfg06OukVIUcV8ZxIbSigJwR2w
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=12438557&ext_id=k-nrXDoectXz-0zfg06OukVIUcV8ZxIbSigJwR2w
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=12438557&ext_id=k-nrXDoectXz-0zfg06OukVIUcV8ZxIbSigJwR2w HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Thu, 15 Sep 2022 02:29:55 GMT
Date: Fri, 16 Sep 2022 02:29:55 GMT
Connection: keep-alive
Set-Cookie: id=95de882a-cb4c-42be-a511-a65c39cb4c94; Path=/; Domain=yieldlab.net; Expires=Sat, 16-Sep-2023 02:29:55 GMT; Max-Age=31536000; Secure; SameSite=None
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-ihyZfuctXz-0zfg06OukVIUcV8aYqaND3e8VJA
185.255.84.152200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-ihyZfuctXz-0zfg06OukVIUcV8aYqaND3e8VJA
IP 185.255.84.152:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-ihyZfuctXz-0zfg06OukVIUcV8aYqaND3e8VJA HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=908395e63cf76529e202ad305df61bd8; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Fri, 16 Sep 2022 02:29:54 GMT
content-length: 49
x-envoy-upstream-service-time: 4
server: ayl-lb-fra02
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 16 Sep 2022 02:29:54 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 711079
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash f58e51840672fbb356602d8e31499eaa
e0e535dfc093237cf2821c8747cf0afc7b1df264
1e91c0fbb32e0b4115b0b3b5ec387ba94ff27b8b19ed0996d8dbdbd6f5717887
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 01:19:39 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fkWwdB4T5HhDbmxyek8H0esJDDtcxO1xFB7k2R7HlgqPg3HlJUOsWg==
Age: 4217
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-xe8AUOctXz-0zfg06OukVIUcV8YK4cxgQ2XXDw&expires=30
3.127.193.182200 OK 43 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-xe8AUOctXz-0zfg06OukVIUcV8YK4cxgQ2XXDw&expires=30
IP 3.127.193.182:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-xe8AUOctXz-0zfg06OukVIUcV8YK4cxgQ2XXDw&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Fri, 16 Sep 2022 02:29:55 GMT
Content-Length: 43
Connection: keep-alive
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-kXJuEuctXz-0zfg06OukVIUcV8Y7qILjHCVazg
35.159.6.67204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-kXJuEuctXz-0zfg06OukVIUcV8Y7qILjHCVazg
IP 35.159.6.67:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-kXJuEuctXz-0zfg06OukVIUcV8Y7qILjHCVazg HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 16 Sep 2022 02:29:55 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 2f31bb0a45c3885d9dd6717a9af2bcab
02039be7e6da4b9765d4294c6e7b226c4a1d4e51
74a479701c21ba942f5a51c85385c186b7feee28bf9263a5e4a4cb28e295e0fa
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 00:56:45 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ocFOKveCx_KLVWwgGu3hJyiNqQ1_3bLpTaOPeyRp32EfSvruscZMuQ==
Age: 5591
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 3a77d1bdb17c16e1a5637297d350161d
1d87a77a29f589f879019174afcfb107660d0096
14cbef8ac04af2db5374136ba686a8353d4c4f313483d9ed46e7d8ebd1669104
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 01:20:39 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xlvesDJlnEtzMcvuE85PnztwhUqkZDY-hmPS0F6Akw5fn7--k0VUIw==
Age: 4157
sync-criteo.ads.yieldmo.com/sync?id=k-wpAXY-ctXz-0zfg06OukVIUcV8YXKn7Nxf4ymw&pn_id=criteo&ext=1
54.77.57.168200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-wpAXY-ctXz-0zfg06OukVIUcV8YXKn7Nxf4ymw&pn_id=criteo&ext=1
IP 54.77.57.168:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-wpAXY-ctXz-0zfg06OukVIUcV8YXKn7Nxf4ymw&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:55 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=gcf0763d6b60fb569f05%7C1663295395520%7C0%7C; Domain=.yieldmo.com; Expires=Sat, 16-Sep-2023 02:29:55 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-wpAXY-ctXz-0zfg06OukVIUcV8YXKn7Nxf4ymw; Domain=ads.yieldmo.com; Expires=Sat, 16-Sep-2023 02:29:55 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ccbd0e7c620b42b0c2404b44d8707b2b
74e2bc72b674364f88786588fce970082a241d49
8f1e544d9175f7d9717874177ea31a236b9ba609ff4385154019ea4a4a7ee9c8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5822
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 02:29:55 GMT
Last-Modified: Fri, 16 Sep 2022 00:52:53 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
34.252.199.249204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 34.252.199.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 16 Sep 2022 02:29:55 GMT
set-cookie: _kuid_=PFOMpMYM; Expires=Wed, 15-Mar-23 02:29:55 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n023-dub-prod.krxd.net
x-request-time: D=24 t=1663295395
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 16 Sep 2022 02:29:54 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 478349
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 01580f3055a3b11fe4f7e549f0917847
86ab02d0575be817ac951f86988ac28396c1f43e
b68f79b2ce6a3f042b4bbcfec9a2674f2b6e865a1a5915da40d283a976c1c8d1
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "B68F79B2CE6A3F042B4BBCFEC9A2674F2B6E865A1A5915DA40D283A976C1C8D1"
Last-Modified: Thu, 15 Sep 2022 20:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=2023
Expires: Fri, 16 Sep 2022 03:03:38 GMT
Date: Fri, 16 Sep 2022 02:29:55 GMT
Connection: keep-alive
criteo-partners.tremorhub.com/sync?UICR=k-bj471ectXz-0zfg06OukVIUcV8aUnsqfmp9C0A
34.192.121.129200 OK 78 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-bj471ectXz-0zfg06OukVIUcV8aUnsqfmp9C0A
IP 34.192.121.129:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 0bb3d20bb12adc08814abfdc9efc1869
962039116ab1c6b138cad242bc145f13e7d44623
dd17af018ebe8643ee49386f655b135de3d76ff7e45ae46dfe264280b1654970
GET /sync?UICR=k-bj471ectXz-0zfg06OukVIUcV8aUnsqfmp9C0A HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:55 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
www.brandbucket.com/amp/tracking/names/oaq.io?source=ext&ext=321417&source=ext
172.67.4.41200 OK 0 B URL HTTP/2 www.brandbucket.com/amp/tracking/names/oaq.io?source=ext&ext=321417&source=ext
IP 172.67.4.41:0
GET /amp/tracking/names/oaq.io?source=ext&ext=321417&source=ext HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417; _ga=amp-3ouMtUsNtQy6z-jDomxevg
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: text/html
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
set-cookie: bb_recent=321417; expires=Thu, 06-Oct-2022 02:29:53 GMT; Max-Age=1728000; path=/
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74b62d50e8a50b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.0.163:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:55 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 434599
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=brandbucket.com&sn=FirefoxSyncframe&so=0&topUrl=www.brandbucket.com&info=2yaw6l80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3ptMFliUFdFJTJGU0YzMlhUSng3cmc2ZjdSdTJ6UEQ3T0I3dXElMkJlUlNMOG4w&idsd=-607238687,-1865456944&cw=1&lsw=1
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=brandbucket.com&sn=FirefoxSyncframe&so=0&topUrl=www.brandbucket.com&info=2yaw6l80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3ptMFliUFdFJTJGU0YzMlhUSng3cmc2ZjdSdTJ6UEQ3T0I3dXElMkJlUlNMOG4w&idsd=-607238687,-1865456944&cw=1&lsw=1
IP 178.250.2.146:0
GET /sid/json?origin=onetag&domain=brandbucket.com&sn=FirefoxSyncframe&so=0&topUrl=www.brandbucket.com&info=2yaw6l80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3ptMFliUFdFJTJGU0YzMlhUSng3cmc2ZjdSdTJ6UEQ3T0I3dXElMkJlUlNMOG4w&idsd=-607238687,-1865456944&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=www.brandbucket.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 773502
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-Zb8cKuctXz-0zfg06OukVIUcV8Y3a_CoLJHDuw
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-Zb8cKuctXz-0zfg06OukVIUcV8Y3a_CoLJHDuw
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-Zb8cKuctXz-0zfg06OukVIUcV8Y3a_CoLJHDuw HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 02:29:55 GMT
x-fastly-to-nlb-rtt: 22707
access-control-allow-credentials: true
X-Firefox-Spdy: h2
amp.brandbucket.com/amp/tracking/names/oaq.io?source=ext&ext=321417&source=ext
172.67.4.41302 Found 0 B URL HTTP/2 amp.brandbucket.com/amp/tracking/names/oaq.io?source=ext&ext=321417&source=ext
IP 172.67.4.41:0
GET /amp/tracking/names/oaq.io?source=ext&ext=321417&source=ext HTTP/1.1
Host: amp.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: text/html
location: https://www.brandbucket.com/amp/tracking/names/oaq.io?source=ext&ext=321417&source=ext
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74b62d4bef3f0b3d-OSL
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=3MBfQ180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3ptMFliUFdFJTJGU0YzMlhUSng3cmc2ZkhpN1FQV0NhMWdGcDdSWSUyRkVXUXRX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=2yaw6l80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3ptMFliUFdFJTJGU0YzMlhUSng3cmc2ZjdSdTJ6UEQ3T0I3dXElMkJlUlNMOG4w; expires=Wed, 11 Oct 2023 02:29:54 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 299127
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-0GfnOOctXz-0zfg06OukVIUcV8byoLaDxtPISA&google_error=3
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-0GfnOOctXz-0zfg06OukVIUcV8byoLaDxtPISA&google_error=3
IP 178.250.0.163:0
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-0GfnOOctXz-0zfg06OukVIUcV8byoLaDxtPISA&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:55 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 517325
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.brandbucket.com/names/oaq.io?source=ext
172.67.4.41200 OK 0 B URL HTTP/2 www.brandbucket.com/names/oaq.io?source=ext
IP 172.67.4.41:0
GET /names/oaq.io?source=ext HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:50 GMT
content-type: text/html
vary: Accept-Encoding
set-cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; path=/
land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; expires=Thu, 15-Dec-2022 02:29:50 GMT; Max-Age=7776000; path=/
land_referrer=1663295390%3B; expires=Thu, 15-Dec-2022 02:29:50 GMT; Max-Age=7776000; path=/
bb_recent=321417; expires=Thu, 06-Oct-2022 02:29:50 GMT; Max-Age=1728000; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-origin: https://js.stripe.com/, https://get.brandbucket.com/, //staging.brandbucket.com/
brandbucket-domain: oaq.io #321417
x-frame-options: DENY
access-control-allow-credentials: true
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74b62d37a87a0b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.brandbucket.com/favicon.ico
172.67.4.41200 OK 0 B URL HTTP/2 www.brandbucket.com/favicon.ico
IP 172.67.4.41:0
GET /favicon.ico HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/oaq.io?source=ext
Cookie: PHPSESSID=co8ljohi1e8ru41tnno1hhk1h4; land_URL=1663295390%3B%2Fnames%2Foaq.io%3Fsource%3Dext; land_referrer=1663295390%3B; bb_recent=321417
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:52 GMT
content-type: text/html
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: EXPIRED
last-modified: Thu, 15 Sep 2022 23:46:12 GMT
server: cloudflare
cf-ray: 74b62d4baf270b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.hs-scripts.com/20882931.js
104.17.213.204200 OK 0 B URL HTTP/2 js.hs-scripts.com/20882931.js
IP 104.17.213.204:0
GET /20882931.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:53 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://www.brandbucket.com
access-control-max-age: 3600
cache-control: public, max-age=60
cf-bgj: minify
cf-polished: origSize=1458
vary: Accept-Encoding
x-hubspot-correlation-id: b5ef7e32-0f36-4ef0-a830-8a67d72cb466
x-trace: 2BE2F635341C6F6BDD2D5CE31D26FE5CC2A0D0DD9F000000000000000000
last-modified: Fri, 16 Sep 2022 02:29:35 GMT
cf-cache-status: HIT
expires: Fri, 16 Sep 2022 02:30:53 GMT
server: cloudflare
cf-ray: 74b62d525b030b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.dwin1.com/19038.js
143.204.55.56200 OK 0 B IP 143.204.55.56:0
GET /19038.js HTTP/1.1
Host: www.dwin1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
x-amz-replication-status: COMPLETED
last-modified: Fri, 09 Sep 2022 08:45:25 GMT
x-amz-version-id: FgtK1jQV9x1OpHz1MeGrIV1mwGKVx0wv
server: AmazonS3
content-encoding: gzip
date: Fri, 16 Sep 2022 02:27:20 GMT
cache-control: max-age=600, s-maxage=600
etag: W/"d2563bca28261a57e5abbf1655472eaa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0pp62NW7Qd8ZMkQ-P66cymxMtiKFY5-KM8SyEGDuZ-xlZnaZZ1YWvQ==
age: 162
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-d2CCRuctXz-0zfg06OukVIUcV8b0ZqpgbnMAJcuZL-gM9HjK
3.125.132.50200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-d2CCRuctXz-0zfg06OukVIUcV8b0ZqpgbnMAJcuZL-gM9HjK
IP 3.125.132.50:0
GET /usersync/push?partner=criteo&partnerId=k-d2CCRuctXz-0zfg06OukVIUcV8b0ZqpgbnMAJcuZL-gM9HjK HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 02:29:55 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%227359ec10-3567-11ed-96a0-1b6de746e4c8%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Fri, 30 Sep 2022 02:29:55 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%227359ec10-3567-11ed-96a0-1b6de746e4c8%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Fri, 30 Sep 2022 02:29:55 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-d2CCRuctXz-0zfg06OukVIUcV8b0ZqpgbnMAJcuZL-gM9HjK%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Fri, 30 Sep 2022 02:29:55 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2