r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5582
Expires: Thu, 06 Oct 2022 20:15:02 GMT
Date: Thu, 06 Oct 2022 18:42:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MRhqy7FTi7tgKYSXLiKgSN2J1Czq4Xtz9-Hu6K9GmbI1HD3omO6-4Q==
Age: 96882
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6004
Expires: Thu, 06 Oct 2022 20:22:04 GMT
Date: Thu, 06 Oct 2022 18:42:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pcWvgEhXSwi5XiLtO6LrG6hwoX88/g3FxtIthhRBTWEGglIPxqDJ5loeTnFz40wMAEUYuT0DrGs=
x-amz-request-id: D19XZXCDGDV10HV4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 18:30:53 GMT
age: 667
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 18:42:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.usertrust.com/
200 OK 2.2 kB IP
Hash 647c6b5238d64a8b3a339ce8ebdf0403
db4217a65b564dc1a7f99bf02ca5db253b9eeb51
a4fb6b198c1b2aa2b8e386a2c6d1c6079c4254bd9e1b15d270558672893b33bf
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:00 GMT
Content-Type: application/ocsp-response
Content-Length: 2236
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 10:12:16 GMT
Expires: Wed, 12 Oct 2022 10:12:15 GMT
Etag: "db4217a65b564dc1a7f99bf02ca5db253b9eeb51"
Cache-Control: max-age=603250,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 740
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 756088d14d8eb509-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash d9b5e32a58bd2eab6da1f85852042e7e
e2b63a67a294a8ba09004fdbcdde9342382df289
ad0bf6cfeee2b18fa5b02ad16cbfceba58117c462bec2dfe9602ddba8fafd082
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:00 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 21:57:49 GMT
Expires: Mon, 10 Oct 2022 21:57:48 GMT
Etag: "e2b63a67a294a8ba09004fdbcdde9342382df289"
Cache-Control: max-age=356747,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 756088d16eb41c0e-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 18:29:41 GMT
Expires: Thu, 06 Oct 2022 19:07:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2e43Pe8JnRNya1gERa6Hg7kJiMP-B3alK3PpJrbwUy44le_7JDrQYQ==
Age: 739
ocsp.digicert.com/
200 OK 471 B IP
Hash 8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1957
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:00 GMT
Last-Modified: Thu, 06 Oct 2022 18:09:23 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.usertrust.com/
200 OK 2.2 kB IP
Hash 647c6b5238d64a8b3a339ce8ebdf0403
db4217a65b564dc1a7f99bf02ca5db253b9eeb51
a4fb6b198c1b2aa2b8e386a2c6d1c6079c4254bd9e1b15d270558672893b33bf
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:01 GMT
Content-Type: application/ocsp-response
Content-Length: 2236
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 10:12:16 GMT
Expires: Wed, 12 Oct 2022 10:12:15 GMT
Etag: "db4217a65b564dc1a7f99bf02ca5db253b9eeb51"
Cache-Control: max-age=603250,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 741
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 756088d4ab0ab509-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 18805475822f44c1f4a2afd4918a7345
678950e19a2721756def69e3f1ebebccb4c6a060
d1e6deba2eaaf5d0c43fe761563cfc1ffe60ba6a76e68cb965242cee4821282d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:01 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 17:23:27 GMT
Expires: Tue, 11 Oct 2022 17:23:26 GMT
Etag: "678950e19a2721756def69e3f1ebebccb4c6a060"
Cache-Control: max-age=426684,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 756088d4ba0d1c0e-OSL
www.regionsmortgage.com/ronaldgettridge
302 Found : Moved Temporarily 0 B URL HTTP/1.1 www.regionsmortgage.com/ronaldgettridge
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ronaldgettridge HTTP/1.1
Host: www.regionsmortgage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found : Moved Temporarily
Location: https://www.regions.com/MLO/ronaldgettridge
Connection: close
Cache-Control: no-cache
Pragma: no-cache
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3raSn4H4EiyPCy7laFKjLg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZUMk1Ff9X6GVQA2vUPSxZ4Ue+gU=
www.regions.com/locator/mlo/mortgage-loan-officer-Ronald-Gettridge-Birmingham
302 Found 201 B URL HTTP/1.1 www.regions.com/locator/mlo/mortgage-loan-officer-Ronald-Gettridge-Birmingham
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 16211600d8afc1c58fb4ebe40afca300
69a33489c9be4a0dc2bd6813d0ca0f0961d9c3ae
912f8a3925b1ec947ec3ffe1b166a040df9de539c42f4939169b35f999adcc0a
GET /locator/mlo/mortgage-loan-officer-Ronald-Gettridge-Birmingham HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Location: http://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Date: Thu, 06 Oct 2022 18:42:00 GMT
Content-Length: 201
Strict-Transport-Security: max-age=157680000
www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
200 OK 18 kB URL HTTP/1.1 www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (415), with CRLF line terminators
Hash 914688a37cbd02d856f3bc34596d1aa0
a24d1931af9451a1e8dfcbe3a69c02baeb0e64c6
ab8081f6a7fe95e68fac985e4288e8f24312074677d04241a1cec6fec7624348
GET /locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: br
Vary: Accept-Encoding
Set-Cookie: ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; path=/; HttpOnly; SameSite=Lax
SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False; expires=Sun, 03-Oct-2032 18:42:01 GMT; path=/; HttpOnly
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Date: Thu, 06 Oct 2022 18:42:01 GMT
Content-Length: 18021
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/fonts/source-sans-pro-300-webfont.woff2
200 OK 13 kB URL HTTP/1.1 www.regions.com/rdcresources/content/fonts/source-sans-pro-300-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12936, version 1.0\012- data
Hash 6d4b2348a4f8f255a2bfd1ab35e30618
72a7e20b49379ccab237d004a3506e22b3b7934b
0d14a3a656216743eb1e133b5af93d6eaa98c6260b411a01894323e62166f80f
GET /rdcresources/content/fonts/source-sans-pro-300-webfont.woff2 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1816371
Date: Thu, 15 Sep 2022 18:09:05 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "9015e5609ab8d81:0"
Content-Type: font/woff2
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 12936
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/fonts/source-sans-pro-regular-webfont.woff2
200 OK 13 kB URL HTTP/1.1 www.regions.com/rdcresources/content/fonts/source-sans-pro-regular-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 13080, version 1.0\012- data
Hash 834648c5f6f2f73c3df33def9348d879
7385e4868c41fb1e4ba48503a16235ddb8cd8a6c
428f1eb7935944229430ac0fdce0033f05d9b8c1c020b87c681dd7a78ab4dd19
GET /rdcresources/content/fonts/source-sans-pro-regular-webfont.woff2 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1816371
Date: Thu, 15 Sep 2022 18:09:05 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "30d1f2609ab8d81:0"
Content-Type: font/woff2
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 13080
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/fonts/source-sans-pro-600-webfont.woff2
200 OK 13 kB URL HTTP/1.1 www.regions.com/rdcresources/content/fonts/source-sans-pro-600-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 13072, version 1.0\012- data
Hash 595d5c1e2d877c3a50a77158e977ede4
0564953f05d57246c240796c5ba2bbec8c8ba93c
72dbd696f7961daf9049faacc868865d959f3d126f40d5271f48d5d9a0ccc652
GET /rdcresources/content/fonts/source-sans-pro-600-webfont.woff2 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1816371
Date: Thu, 15 Sep 2022 18:09:05 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "805fe7609ab8d81:0"
Content-Type: font/woff2
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 13072
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/fonts/source-sans-pro-300italic-webfont.woff2
200 OK 13 kB URL HTTP/1.1 www.regions.com/rdcresources/content/fonts/source-sans-pro-300italic-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12592, version 1.0\012- data
Hash 48e38952d86d1b849b4e7e79c109a116
d8c9466e811876438d3e1d900943e3fa3d9625c1
0007bd27c6755494aa1b4fdebf9f019db02b59e5f02222148e136c75ccef026e
GET /rdcresources/content/fonts/source-sans-pro-300italic-webfont.woff2 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1791344
Date: Fri, 16 Sep 2022 01:06:13 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "307eeb609ab8d81:0"
Content-Type: font/woff2
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 12592
Strict-Transport-Security: max-age=157680000
www.regions.com/RDCResources/Content/rdc-ui.min.css?v=1.0.0.30012
200 OK 127 kB URL HTTP/1.1 www.regions.com/RDCResources/Content/rdc-ui.min.css?v=1.0.0.30012
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 127 kB (126702 bytes)
Hash da3cd2f86ca8b7d05327fafd460aced4
ec18661d3be7932a10391760a81b5fbab6e160a7
e371192f0e3e490d2154ae5ea94f4fd2d8223779d7356944933f1d49cd652482
GET /RDCResources/Content/rdc-ui.min.css?v=1.0.0.30012 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1822198
Date: Thu, 15 Sep 2022 16:31:58 GMT
Cache-Control: max-age= 31536000,public
Content-Length: 126702
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "60c4675f9ab8d81:0"
Content-Type: text/css
Content-Encoding: br
Last-Modified: Thu, 25 Aug 2022 15:50:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/fonts/source-sans-pro-italic-webfont.woff2
200 OK 13 kB URL HTTP/1.1 www.regions.com/rdcresources/content/fonts/source-sans-pro-italic-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12580, version 1.0\012- data
Hash 0408305af8e45ff50aa09d3d3732fc01
3ff33e34998c68f480305e1d91adcd1ed8a2a7ee
6b49f18370ab654be0367fb969d5015649fdf5406bcbec33e5b0644f4bb7fe0a
GET /rdcresources/content/fonts/source-sans-pro-italic-webfont.woff2 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1816371
Date: Thu, 15 Sep 2022 18:09:05 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "508e2609ab8d81:0"
Content-Type: font/woff2
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 12580
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/fonts/droidserif-regular-webfont.woff2
200 OK 25 kB URL HTTP/1.1 www.regions.com/rdcresources/content/fonts/droidserif-regular-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 25180, version 1.0\012- data
Hash ed97ad0179a7e320488aabe236a03029
4d605ccfe533eb243f6c3ca403785960d8b5cff9
3913c00225825b9de4b6f6f292d6222b4328c5e8ae85bbe7c8929660ab0f8dee
GET /rdcresources/content/fonts/droidserif-regular-webfont.woff2 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1791344
Date: Fri, 16 Sep 2022 01:06:13 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "309ce6609ab8d81:0"
Content-Type: font/woff2
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 25180
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/fonts/droidserif-bold-webfont.woff2
200 OK 28 kB URL HTTP/1.1 www.regions.com/rdcresources/content/fonts/droidserif-bold-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 28520, version 1.0\012- data
Hash 4a80ddcba4cef2129dec8753762ac8f1
44f352414c76a8f84c27d6240fa3634fd248f4fa
1fa9dc815c95ac07bd2badeacc086f16ea92051db9818ca26c2f7bf048ae8b40
GET /rdcresources/content/fonts/droidserif-bold-webfont.woff2 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1791344
Date: Fri, 16 Sep 2022 01:06:13 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "c0fbe7609ab8d81:0"
Content-Type: font/woff2
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 28520
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/fonts/droidserif-italic-webfont.woff2
200 OK 23 kB URL HTTP/1.1 www.regions.com/rdcresources/content/fonts/droidserif-italic-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 22988, version 1.0\012- data
Hash fe84712f81388dfad5f48e4de801ec44
1c3e195be8306df1edc70d4abfa9270876093640
98213150300a378382c71ad9eff1538120dd8f9f29780c475feead2add55d80d
GET /rdcresources/content/fonts/droidserif-italic-webfont.woff2 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1797135
Date: Thu, 15 Sep 2022 23:29:42 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "b098f1609ab8d81:0"
Content-Type: font/woff2
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 22988
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/media/img/regions-logo-no-r.svg
200 OK 2.2 kB URL HTTP/1.1 www.regions.com/rdcresources/content/media/img/regions-logo-no-r.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1024)
Hash a1f74587948b0dd3ba17bc85e8e17cf8
73c00bb48f58bc146754ff1e38e82367e62b623c
54d76bbd9a1b94ddf025374da0c8f6072f47c4b83305fa54773b348d99f2b184
GET /rdcresources/content/media/img/regions-logo-no-r.svg HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1822221
Date: Thu, 15 Sep 2022 16:31:35 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "70af715f9ab8d81:0"
Content-Type: image/svg+xml
Content-Encoding: br
Last-Modified: Thu, 25 Aug 2022 15:50:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 2183
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/Logo/Desktop/header-logo-desktop-regions-standard.svg?revision=5073573a-233c-4471-a6dc-112e6b2cc767
200 OK 2.8 kB URL HTTP/1.1 www.regions.com/-/media/Images/Logo/Desktop/header-logo-desktop-regions-standard.svg?revision=5073573a-233c-4471-a6dc-112e6b2cc767
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1307)
Hash d58bee0aa7945d823a1107e530c1b91c
9030ba67d5b1bfbee85569b75f72e6a6c8de52af
7f9fe1eefa9793fa369be97036bb01cc78d3fad97d30579ac51d5a98d60cd36f
GET /-/media/Images/Logo/Desktop/header-logo-desktop-regions-standard.svg?revision=5073573a-233c-4471-a6dc-112e6b2cc767 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8722
Date: Thu, 06 Oct 2022 16:16:40 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: 2587ba95fc7a4fcfacd83d243f8c881d
Content-Type: image/svg+xml
Content-Encoding: br
Last-Modified: Fri, 03 Apr 2020 23:05:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Disposition: inline; filename="header-logo-desktop-regions-standard.svg"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 2771
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/DotCom/Locator/MLOs/mortgage-loan-officer-Ronald-Gettridge-Birmingham.ashx?revision=49b4c943-8046-4b58-9821-df999c4fe46d
200 OK 27 kB URL HTTP/1.1 www.regions.com/-/media/Images/DotCom/Locator/MLOs/mortgage-loan-officer-Ronald-Gettridge-Birmingham.ashx?revision=49b4c943-8046-4b58-9821-df999c4fe46d
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 175x175, components 3\012- data
Hash 0c0b4c8453aa76466c015b7972e8a6a4
3b487413dec873feba7696a53261d5158e55ddd3
89c2a54559abae91f0e3999f08dcbf7e4b9fbda0a3d1e9ce7c84c95abd3e36cd
GET /-/media/Images/DotCom/Locator/MLOs/mortgage-loan-officer-Ronald-Gettridge-Birmingham.ashx?revision=49b4c943-8046-4b58-9821-df999c4fe46d HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 565493
Date: Fri, 30 Sep 2022 05:37:07 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: 76e270d5a75b462d98c1ae3c27e6da5d
Content-Length: 26815
Content-Type: application/octet-stream
Last-Modified: Tue, 04 May 2021 18:07:21 GMT
Accept-Ranges: bytes
Content-Disposition: attachment; filename="mortgage-loan-officer-Ronald-Gettridge-Birmingham"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/media/img/icon-header-chevron-down.svg
200 OK 517 B URL HTTP/1.1 www.regions.com/rdcresources/content/media/img/icon-header-chevron-down.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 6fe592877f7dfdf762e54c6897eb7b82
e938188ad794631774fc4f3c9164c00007d50efd
879055122ad0f1083f2205e4e45871dfdbba85a5d1015fd62caef18ff002cd17
GET /rdcresources/content/media/img/icon-header-chevron-down.svg HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/RDCResources/Content/rdc-ui.min.css?v=1.0.0.30012
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1822221
Date: Thu, 15 Sep 2022 16:31:35 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "90464b609ab8d81:0"
Content-Type: image/svg+xml
Content-Encoding: br
Last-Modified: Thu, 25 Aug 2022 15:50:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 517
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/1px.gif
200 OK 119 B URL HTTP/1.1 www.regions.com/-/media/Images/1px.gif
IP
File type PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data
Hash ce21cbdd9b894e6af794813eb3fdaf60
d324efa2b5648eaca4a376c87a01808eb63cc18f
603506996b902b8797cbc1dc4bf350440caad5c59feb97c39344fd7648403b5d
GET /-/media/Images/1px.gif HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8620
Date: Thu, 06 Oct 2022 16:18:23 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: abb54fb4cab64b92b52e12f5fa9df56a
Content-Length: 119
Content-Type: image/png
Last-Modified: Fri, 11 Feb 2022 18:54:06 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="1px.png"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/WebSiteImages/avatar-branch.png?revision=04722475-1946-4ca4-8a8b-d8ca60b1b2e4
200 OK 32 kB URL HTTP/1.1 www.regions.com/-/media/Images/WebSiteImages/avatar-branch.png?revision=04722475-1946-4ca4-8a8b-d8ca60b1b2e4
IP
File type PNG image data, 300 x 300, 8-bit/color RGB, non-interlaced\012- data
Hash 6fc369a602a8d0b803844cb324804c7d
415c94e7e9528cfcf2706ff599a72d148283384d
ae0ed41222aa8d4f4203f7734202032e84de9df5807b92ae3cc0fd26953e9b9e
GET /-/media/Images/WebSiteImages/avatar-branch.png?revision=04722475-1946-4ca4-8a8b-d8ca60b1b2e4 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8552
Date: Thu, 06 Oct 2022 16:19:31 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: f785d9fe41924d3d829e9becc9f49ec4
Content-Type: image/png
Last-Modified: Wed, 29 Jun 2016 16:37:41 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="avatar-branch.png"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 32529
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/media/img/icon-help.svg
200 OK 1.6 kB URL HTTP/1.1 www.regions.com/rdcresources/content/media/img/icon-help.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (2810)
Hash 1e87abefd0a276764c34a02b603b55db
726453b4422b74ff47e7219c823e809bc2dc0763
f00319af3c6c500e1707cb37995e13782710bc08ec0e2bc68a4e6ea28053c25b
GET /rdcresources/content/media/img/icon-help.svg HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/RDCResources/Content/rdc-ui.min.css?v=1.0.0.30012
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1822221
Date: Thu, 15 Sep 2022 16:31:35 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "0e82609ab8d81:0"
Content-Type: image/svg+xml
Content-Encoding: br
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 1604
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/media/images/websiteimages/icon-diploma.svg
200 OK 999 B URL HTTP/1.1 www.regions.com/rdcresources/content/media/images/websiteimages/icon-diploma.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2436)
Hash 3f7ebf0a903242cf3f25bc1bc160577a
93687981f9912dbb442c5ff91757ef2794457f7b
1ffe8b84b0938826970ed87dd87578870553bf2e21b56d91cfba29a269bfd335
GET /rdcresources/content/media/images/websiteimages/icon-diploma.svg HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/RDCResources/Content/rdc-ui.min.css?v=1.0.0.30012
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1822131
Date: Thu, 15 Sep 2022 16:33:07 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "20bce609ab8d81:0"
Content-Type: image/svg+xml
Content-Encoding: br
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 999
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/WebSiteImages/loader.gif
200 OK 8.4 kB URL HTTP/1.1 www.regions.com/-/media/Images/WebSiteImages/loader.gif
IP
File type GIF image data, version 89a, 80 x 80\012- data
Hash 0eb0c1bdfdc4a4bd352121f51fec9149
d19adfb29240f0e08accaa483fc00c83c795f369
94a9405de974c3a6ea53616c60777c091e1330fb1b07549d5bdba4168cd19e70
GET /-/media/Images/WebSiteImages/loader.gif HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/RDCResources/Content/rdc-ui.min.css?v=1.0.0.30012
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8620
Date: Thu, 06 Oct 2022 16:18:23 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: 7cfa43f033c942d7a4dbec8b73001e6b
Content-Type: image/gif
Last-Modified: Fri, 03 Apr 2020 23:05:54 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="loader.gif"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 8369
Strict-Transport-Security: max-age=157680000
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4800
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 18:42:02 GMT
Connection: keep-alive
www.regions.com/rdcresources/content/media/images/websiteimages/icon-search.svg
200 OK 383 B URL HTTP/1.1 www.regions.com/rdcresources/content/media/images/websiteimages/icon-search.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (885)
Hash 5a496f703b488debeff9e2a3ffb15431
45c6bcfbba5d287d4ab934f1be58936ce02b07f1
cccd3510527cc3dba2e9549bfafc7d5adcc841c85ac5adc3ece5e929e5110521
GET /rdcresources/content/media/images/websiteimages/icon-search.svg HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/RDCResources/Content/rdc-ui.min.css?v=1.0.0.30012
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1822141
Date: Thu, 15 Sep 2022 16:32:56 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "f095cd609ab8d81:0"
Content-Type: image/svg+xml
Content-Encoding: br
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 383
Strict-Transport-Security: max-age=157680000
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4800
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 18:42:02 GMT
Connection: keep-alive
www.regions.com/rdcresources/content/media/images/websiteimages/icon-arrow-left.svg
200 OK 182 B URL HTTP/1.1 www.regions.com/rdcresources/content/media/images/websiteimages/icon-arrow-left.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 3d6e93f26cbed5c0aa513bf999390324
2eba3877db3b6e7628432bac0ddaa87bb15e0964
16bf21ce7515f635f6001facdc834a464e4f33ee66f8107a6d9c591b652d8945
GET /rdcresources/content/media/images/websiteimages/icon-arrow-left.svg HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/RDCResources/Content/rdc-ui.min.css?v=1.0.0.30012
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1822212
Date: Thu, 15 Sep 2022 16:31:45 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "c020cd609ab8d81:0"
Content-Type: image/svg+xml
Content-Encoding: br
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 182
Strict-Transport-Security: max-age=157680000
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4800
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 18:42:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4800
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 18:42:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4800
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 18:42:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: e5d0bb7a-b9d5-49b1-b51c-8db019da641f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQOGEQloAMFjgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa5a-519d91fb0b83920960da479d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: l1HGT5ycH36vVojsOPFptRSU1YJFvLbBsgiWJqzRlRIGgm2o5vf6jg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:58:56 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 74586
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: LySueW1si-yWLwecUILV1s57IEV2FdcQ9_pH1Aoe4AYISi7QXXfd3A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:39:28 GMT
age: 75754
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5958f828ccc16a41b22d9ae812bccfc
f350f295dd70152712162d4be5b3b5f0d12cde57
230d7d8e570e433d18ec53b6ca114e2a206e8c265c0c66d73388c49db5c91c64
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9338
x-amzn-requestid: 4ca2eb3c-eba4-43a4-b79a-89546da3d660
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQBfG7soAMF9cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa09-1b5bd53052718f620b920a00;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6pHftE0vUMqrH2NR_7DzrWlnD0yal7BkAfee7UeVG7DKZNEAYRa9HQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:03:23 GMT
age: 74319
etag: "f350f295dd70152712162d4be5b3b5f0d12cde57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e520f87cae411cfc2ed1c8a14184385
69ad212cb7ae309d4f02019552887135bfae67da
723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: BddSUzh-PKiFmfw2p9gPW-B0qtrXWxCXfee29Pk-wLqN7RO21Yic6g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 75896
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 03:50:38 GMT
age: 53484
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbba56f647bf5989ca51863632bbebfc
26694f34166345ee5693653e0101db6b910e68ba
ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: f3cb33c4-26b6-4fd8-9293-dfb42be34600
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZiEZ4IAMFvLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-424459547db8b3d721d75e54;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: q70sezhl0h-lASzUDh5_WQ6KraRa3fWYl_tO0iuE0CpbJ5GeiihgMw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
age: 75896
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.regions.com/RDCResources/Scripts/rdc-ui.min.js?v=1.0.0.30012
200 OK 152 kB URL HTTP/1.1 www.regions.com/RDCResources/Scripts/rdc-ui.min.js?v=1.0.0.30012
IP
File type Unicode text, UTF-8 text, with very long lines (60936)
Size 152 kB (152472 bytes)
Hash 2a9f15958185b4f994c972abc957498f
2cb3a68eeadd9ccd669ca37bb19d2c71fe9fde21
6d293278c7819ea252248629add5e0b13684b5ca1750e8eca66aaf3ef0696d34
GET /RDCResources/Scripts/rdc-ui.min.js?v=1.0.0.30012 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1822198
Date: Thu, 15 Sep 2022 16:31:58 GMT
Cache-Control: max-age= 31536000,public
Content-Length: 152472
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "0733619ab8d81:0"
Content-Type: application/javascript
Content-Encoding: br
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Strict-Transport-Security: max-age=157680000
www.regions.com/rdcresources/content/media/images/websiteimages/icon-arrow-right.svg
200 OK 178 B URL HTTP/1.1 www.regions.com/rdcresources/content/media/images/websiteimages/icon-arrow-right.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 3fdfa195b0c473d29f63646ffc634e37
1269b3601af214b36e1215d781c1042b192333ad
14bd0be8cfd82397404fec404f48f9994b2dd47fceb8a4f6b004d59803cade17
GET /rdcresources/content/media/images/websiteimages/icon-arrow-right.svg HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/RDCResources/Content/rdc-ui.min.css?v=1.0.0.30012
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 1822212
Date: Thu, 15 Sep 2022 16:31:45 GMT
Cache-Control: max-age= 31536000,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: "c020cd609ab8d81:0"
Content-Type: image/svg+xml
Content-Encoding: br
Last-Modified: Thu, 25 Aug 2022 15:50:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 178
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FH-Save-Money-Refinancing-Your-Mortgage.jpg?revision=d3ad0902-be59-443c-a8a8-980c0ba397cd
200 OK 16 kB URL HTTP/1.1 www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FH-Save-Money-Refinancing-Your-Mortgage.jpg?revision=d3ad0902-be59-443c-a8a8-980c0ba397cd
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 216x228, components 3\012- data
Hash 51dd85ef382069ec38904173a12e9812
e821e922c3f7a622b4d032032d8c13eaaa71013a
e0863c1bfa4b1cc0e2068765f09fc77f543a4caa33fdc6b41da08d3f28b9b6b0
GET /-/media/Images/Insights/Thumbnail/Personal/P-H-FH-Save-Money-Refinancing-Your-Mortgage.jpg?revision=d3ad0902-be59-443c-a8a8-980c0ba397cd HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8603
Date: Thu, 06 Oct 2022 16:18:40 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: ecc44ec6c3da494498bf2e82b723f903
Content-Length: 16468
Content-Type: image/jpeg
Last-Modified: Fri, 11 Sep 2020 15:58:15 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="P-H-FH-Save-Money-Refinancing-Your-Mortgage.jpg"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FH-Questions_to_Ask_When_Considering_a_Home_Equity-Thumb.jpg?revision=bef24dc0-fea4-4d81-999e-3fcb5fc79dd3
200 OK 34 kB URL HTTP/1.1 www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FH-Questions_to_Ask_When_Considering_a_Home_Equity-Thumb.jpg?revision=bef24dc0-fea4-4d81-999e-3fcb5fc79dd3
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 432x456, components 3\012- data
Hash cddff7f07661de94582305c4455e96d7
e61aba41b7d7cc1b05560a1387824f82092cfd05
e6ddaffbc4e3f08ebe842ed529a3aaccbd23d6a140e5cc10db89b056f11e7105
GET /-/media/Images/Insights/Thumbnail/Personal/P-H-FH-Questions_to_Ask_When_Considering_a_Home_Equity-Thumb.jpg?revision=bef24dc0-fea4-4d81-999e-3fcb5fc79dd3 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8603
Date: Thu, 06 Oct 2022 16:18:40 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: 73176d8e641740558ec2903100565b1b
Content-Type: image/jpeg
Last-Modified: Fri, 11 Sep 2020 15:58:15 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="P-H-FH-Questions_to_Ask_When_Considering_a_Home_Equity-Thumb.jpg"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 33665
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/WebSiteImages/video-component-background.jpg
200 OK 86 kB URL HTTP/1.1 www.regions.com/-/media/Images/WebSiteImages/video-component-background.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2800x900, components 3\012- data
Hash 714ec83101dd539af3adda51008a05d1
e2532bb228b37f019f4c7e50a850cc10d3dc5d3a
7caee0314b38dbf2499e877aaf6fc68cc34521d63d55a08d8b8ea4cecb7f7990
GET /-/media/Images/WebSiteImages/video-component-background.jpg HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/RDCResources/Content/rdc-ui.min.css?v=1.0.0.30012
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8558
Date: Thu, 06 Oct 2022 16:19:25 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: 9d7b5cdd37ac4196bc046f22d89a7d60
Content-Type: image/jpeg
Last-Modified: Fri, 03 Apr 2020 23:05:56 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="video-component-background.jpg"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 85802
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FYH-Checklist_Closing_Costs_vs_Prepaid_Items-Thumb.jpg?revision=fd9cddf8-1e36-4d44-a1ee-5aeef8da81e8
200 OK 22 kB URL HTTP/1.1 www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FYH-Checklist_Closing_Costs_vs_Prepaid_Items-Thumb.jpg?revision=fd9cddf8-1e36-4d44-a1ee-5aeef8da81e8
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 432x456, components 3\012- data
Hash 43c3979dfaa872bee3d5ecd678b41551
efb2b3011959b7e59fdf8a0242fc69190eb85e4b
852995c5e7bd28d42e0086cac3de58ddbd9ef0161ade5267f3d16b09579dd6d4
GET /-/media/Images/Insights/Thumbnail/Personal/P-H-FYH-Checklist_Closing_Costs_vs_Prepaid_Items-Thumb.jpg?revision=fd9cddf8-1e36-4d44-a1ee-5aeef8da81e8 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8087
Date: Thu, 06 Oct 2022 16:27:16 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: 0bad9f02bd23408ba9830e28065b7798
Content-Type: image/jpeg
Last-Modified: Fri, 11 Sep 2020 15:58:16 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="P-H-FYH-Checklist_Closing_Costs_vs_Prepaid_Items-Thumb.jpg"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 21773
Strict-Transport-Security: max-age=157680000
www.regions.com/locator/mlo/-/media/Images/Icon/icon-calendar/icon-calendar.svg
200 OK 940 B URL HTTP/1.1 www.regions.com/locator/mlo/-/media/Images/Icon/icon-calendar/icon-calendar.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2699), with no line terminators
Hash c83395d617c81d10166217b9351ddd3d
cc2faff006102f6fffddc4ad5455391471459233
e9c2910517c5105adba61d2001a7ab4ad1f36b90e059fdc8464c6f851310f899
GET /locator/mlo/-/media/Images/Icon/icon-calendar/icon-calendar.svg HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8552
Date: Thu, 06 Oct 2022 16:19:31 GMT
Cache-Control: max-age= 602738,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: 280096ce24584f08ae4f82ec6e1611c5
Content-Type: image/svg+xml
Content-Encoding: br
Last-Modified: Wed, 03 Mar 2021 23:16:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Disposition: inline; filename="icon-calendar.svg"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 940
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FAH-ThingsToKnowAboutAnAdjustableRateMortgage-Thumb.jpg?revision=7359873d-ce42-45c7-bef6-35604caaf84b
200 OK 33 kB URL HTTP/1.1 www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FAH-ThingsToKnowAboutAnAdjustableRateMortgage-Thumb.jpg?revision=7359873d-ce42-45c7-bef6-35604caaf84b
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 432x456, components 3\012- data
Hash a0fdb87f17a0891d20b4c7c7dd489ae3
e64540d9a8a47e946531663c1939a7595ac0da41
673948f25b84f697a6098cdb3880ed34ad8675ffd4b3c5b7c7c984a4a091a551
GET /-/media/Images/Insights/Thumbnail/Personal/P-H-FAH-ThingsToKnowAboutAnAdjustableRateMortgage-Thumb.jpg?revision=7359873d-ce42-45c7-bef6-35604caaf84b HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8087
Date: Thu, 06 Oct 2022 16:27:16 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: 8058e759fc414eed969f8bd2f43e85a0
Content-Type: image/jpeg
Last-Modified: Fri, 11 Sep 2020 15:58:16 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="P-H-FAH-ThingsToKnowAboutAnAdjustableRateMortgage-Thumb.jpg"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 33076
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-UYHE-Is_a_Home_Equity_Loan_or_Line_of_Credit_Right_for_you-Thumb.jpg?revision=015fa817-5dd3-4991-852e-0e106801180a
200 OK 21 kB URL HTTP/1.1 www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-UYHE-Is_a_Home_Equity_Loan_or_Line_of_Credit_Right_for_you-Thumb.jpg?revision=015fa817-5dd3-4991-852e-0e106801180a
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 432x456, components 3\012- data
Hash de1166a7dea4821e653419386f30ef80
849da63131c1f7333e790c7b8470beea90797a3d
73f81791ec41abc9a738979de0f83bd6c2efc70908e86047ff2b2aa5cdb62a60
GET /-/media/Images/Insights/Thumbnail/Personal/P-H-UYHE-Is_a_Home_Equity_Loan_or_Line_of_Credit_Right_for_you-Thumb.jpg?revision=015fa817-5dd3-4991-852e-0e106801180a HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8603
Date: Thu, 06 Oct 2022 16:18:40 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: 8ca54c4c0b8e477093a82d2796b8587b
Content-Type: image/jpeg
Last-Modified: Fri, 11 Sep 2020 15:58:11 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="P-H-UYHE-Is_a_Home_Equity_Loan_or_Line_of_Credit_Right_for_you-Thumb.jpg"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 20600
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FAH-understanding-adjustable-rate-mortgages-podcast-Thumb.jpg?revision=123ce605-bb6a-45a2-bee4-cfab482b5041
200 OK 89 kB URL HTTP/1.1 www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FAH-understanding-adjustable-rate-mortgages-podcast-Thumb.jpg?revision=123ce605-bb6a-45a2-bee4-cfab482b5041
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.0 (Macintosh), datetime=2020:01:16 13:59:30 DIY-Thermocam raw data\012- (Lepton 2.x), scale 21870-29766, spot sensor temperature 74893065746301681918931676168192.000000, unit celsius, color scheme 0, calibration: offset 0.000000, slope 137438953472.000000], baseline, precision 8, 432x456, components 3\012- data
Hash 6f07089f352bd05fa11d90f30e6cc5e4
0cb2658df6969bd6b8be226965eb2c259f0ea20b
1d0f2941a7e38e37c07ab51df9d709e4711faee18fdba5382811abb70e061fa3
GET /-/media/Images/Insights/Thumbnail/Personal/P-H-FAH-understanding-adjustable-rate-mortgages-podcast-Thumb.jpg?revision=123ce605-bb6a-45a2-bee4-cfab482b5041 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8087
Date: Thu, 06 Oct 2022 16:27:16 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: fbff9ae4cc204417b09fbc41995b15f9
Content-Type: image/jpeg
Last-Modified: Fri, 11 Sep 2020 15:58:05 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="P-H-FAH-understanding-adjustable-rate-mortgages-podcast-Thumb.jpg"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 88747
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FAH-applying-for-a-home-loan-podcast-Thumb.jpg?revision=69f08e28-6916-4f57-a2ed-a1f0ed32dc22
200 OK 88 kB URL HTTP/1.1 www.regions.com/-/media/Images/Insights/Thumbnail/Personal/P-H-FAH-applying-for-a-home-loan-podcast-Thumb.jpg?revision=69f08e28-6916-4f57-a2ed-a1f0ed32dc22
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.0 (Macintosh), datetime=2020:01:16 13:19:44], baseline, precision 8, 432x456, components 3\012- data
Hash c8841785cd39c7400eb055f52f4fd395
dcb5859dc36c50ab2727e2a9366d5c59551a4b28
1d47fb60ed8a9217554a061f114f98265f0241adeec6b7ecfe58b98a9ca9f137
GET /-/media/Images/Insights/Thumbnail/Personal/P-H-FAH-applying-for-a-home-loan-podcast-Thumb.jpg?revision=69f08e28-6916-4f57-a2ed-a1f0ed32dc22 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8087
Date: Thu, 06 Oct 2022 16:27:16 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: db4a6978e622401bbde4a35d3c2b7841
Content-Type: image/jpeg
Last-Modified: Fri, 11 Sep 2020 15:58:05 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="P-H-FAH-applying-for-a-home-loan-podcast-Thumb.jpg"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 88363
Strict-Transport-Security: max-age=157680000
www.regions.com/-/media/Images/Insights/Thumbnail/Personal/H-FAH-preparing-for-a-major-home-remodel-thumb.jpg?revision=cea5c952-835f-4735-af18-4850d9b0646f
200 OK 98 kB URL HTTP/1.1 www.regions.com/-/media/Images/Insights/Thumbnail/Personal/H-FAH-preparing-for-a-major-home-remodel-thumb.jpg?revision=cea5c952-835f-4735-af18-4850d9b0646f
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 432x456, components 3\012- data
Hash 372bd7f2ff8ecf74e939d7d7e2ad94af
320244fbc60864b6662f3ae720817099bfaf3add
80d2097213a26f3ae12d5deae29efca6864f9cd0e7886a03812f0da841667207
GET /-/media/Images/Insights/Thumbnail/Personal/H-FAH-preparing-for-a-major-home-remodel-thumb.jpg?revision=cea5c952-835f-4735-af18-4850d9b0646f HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8603
Date: Thu, 06 Oct 2022 16:18:40 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: f78551ee84504eef883b8b40efb13011
Content-Type: image/jpeg
Last-Modified: Mon, 01 Mar 2021 14:39:24 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="H-FAH-preparing-for-a-major-home-remodel-thumb.jpg"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 98074
Strict-Transport-Security: max-age=157680000
nexus.ensighten.com/regions/regions-prod/Bootstrap.js
200 OK 76 kB URL HTTP/2 nexus.ensighten.com/regions/regions-prod/Bootstrap.js
IP
File type ASCII text, with very long lines (1435)
Hash 6ce424c7e209ecf704066d4ff4773631
c492246772e6a8636feb1d7cc420cdc80b6ff14c
1f97527b27f5ebbe1396a75ad024a56231222b8919f039e4cfe4a8679bb8aed9
GET /regions/regions-prod/Bootstrap.js HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Mon, 19 Sep 2022 16:09:11 GMT
x-amz-replication-status: COMPLETED
last-modified: Mon, 19 Sep 2022 16:07:06 GMT
etag: W/"bd4cc1f165d8268b3ef42410d5eef180"
x-amz-server-side-encryption: AES256
cache-control: max-age=300
x-amz-version-id: pkWvcHky0GFZCd50wglhuUODckz_uh37
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G0_uGg72RgHYHHCA2KrUzz4DHOHXhANvuimmEtJPTYVhIDFy6VCNqQ==
age: 1477973
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?v=3.exp&libraries=places&client=gme-regionsbank&callback=REGIONS.maps.afterInit&_=1665081722672
200 OK 56 kB URL HTTP/2 maps.googleapis.com/maps/api/js?v=3.exp&libraries=places&client=gme-regionsbank&callback=REGIONS.maps.afterInit&_=1665081722672
IP
File type ASCII text, with very long lines (2490)
Hash 2086469307a19da4fed664169a09d72d
b6ae95a17b1c85dc3609de5e92d6cd757300d13d
3de7e1d720df1a810a33c619efc73d07c11cd806a93ff74f7da1c3ea55020a24
GET /maps/api/js?v=3.exp&libraries=places&client=gme-regionsbank&callback=REGIONS.maps.afterInit&_=1665081722672 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 06 Oct 2022 18:42:03 GMT
expires: Thu, 06 Oct 2022 19:12:03 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 55881
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=21
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.regions.com/-/media/Images/WebSiteImages/favicon.ico
200 OK 9.7 kB URL HTTP/1.1 www.regions.com/-/media/Images/WebSiteImages/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data
Hash 770326a3949eeac3b1b32f636a435b24
34e947c7883865ed4982b1108ff1d8d3225edaaf
d40069d6602b8db241d15a18513f0d26f783b9b012a46b7fca2bd4a23ccb5be1
GET /-/media/Images/WebSiteImages/favicon.ico HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False; Regions_SessionId=966d1b6e-4615-4fb4-87a0-73c73d8e5198
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 14370
Date: Thu, 06 Oct 2022 14:42:33 GMT
Cache-Control: max-age= 603484,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: c8a67602af18477991e64598d71384a6
Content-Type: image/x-icon
Last-Modified: Wed, 26 Jan 2022 21:49:47 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="favicon.ico"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 9662
Strict-Transport-Security: max-age=157680000
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nexus.ensighten.com/regions/regions-prod/serverComponent.php?namespace=Bootstrapper&staticJsPath=nexus.ensighten.com/regions/regions-prod/code/&publishedOn=Mon%20Sep%2019%2016:07:04%20GMT%202022&ClientID=1202&PageID=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham
200 OK 398 B URL HTTP/2 nexus.ensighten.com/regions/regions-prod/serverComponent.php?namespace=Bootstrapper&staticJsPath=nexus.ensighten.com/regions/regions-prod/code/&publishedOn=Mon%20Sep%2019%2016:07:04%20GMT%202022&ClientID=1202&PageID=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham
IP
File type ASCII text, with very long lines (397)
Hash d00609ff4343e4f09577d290d88538df
65389cc2213c8bce25b46faf2bc57446d0712d67
076685c3394e49f9cbf6b3e4427f0957e110ddebf8daafed7725498c4bbf554a
GET /regions/regions-prod/serverComponent.php?namespace=Bootstrapper&staticJsPath=nexus.ensighten.com/regions/regions-prod/code/&publishedOn=Mon%20Sep%2019%2016:07:04%20GMT%202022&ClientID=1202&PageID=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 398
server: nginx
date: Thu, 06 Oct 2022 18:42:03 GMT
expires: Thu, 06 Oct 2022 18:42:02 GMT
cache-control: no-cache, no-store
x-cache: Miss from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XINqX0s_6hrN-PV15DKUxkrAeiRwSBasVS_NU_DsrT3kIPrT0bG-sg==
X-Firefox-Spdy: h2
www.regions.com/-/media/Images/DotCom/Generic/video-component-background.jpg?revision=bd3405f8-01e8-4334-ab30-0fa6d90ca353
200 OK 926 kB URL HTTP/1.1 www.regions.com/-/media/Images/DotCom/Generic/video-component-background.jpg?revision=bd3405f8-01e8-4334-ab30-0fa6d90ca353
IP
File type PNG image data, 1400 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size 926 kB (926480 bytes)
Hash 869f6fce3cc41447159b757d89bc8ba7
e9e34caba119cb5727bf3324c4d897edd22ea1e6
8e8dcd035a49dabbf01d255019d0fca12bace4c39bbb8b3aa7373a1dadae49a5
GET /-/media/Images/DotCom/Generic/video-component-background.jpg?revision=bd3405f8-01e8-4334-ab30-0fa6d90ca353 HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False; Regions_SessionId=966d1b6e-4615-4fb4-87a0-73c73d8e5198
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 8552
Date: Thu, 06 Oct 2022 16:19:32 GMT
Cache-Control: max-age= 604800,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: f294c5922dab4c0da74893f259ffb939
Content-Type: image/png
Last-Modified: Tue, 04 Aug 2020 19:24:35 GMT
Accept-Ranges: bytes
Content-Disposition: inline; filename="video-component-background.png"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 926480
Strict-Transport-Security: max-age=157680000
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nexus.ensighten.com/regions/regions-prod/code/d0926462b4b934495d1ca90e04ce7977.js?conditionId0=423026
200 OK 105 kB URL HTTP/2 nexus.ensighten.com/regions/regions-prod/code/d0926462b4b934495d1ca90e04ce7977.js?conditionId0=423026
IP
File type ASCII text, with very long lines (586)
Size 105 kB (105408 bytes)
Hash 40d7c560a24dcd12bb0918b0cd1ada11
178e19e95a2c409ce7187a3e58c844e87936a75d
27bcf1d8ed99486eee47c1fbe8386b1df55572695cf28b2c5c76c1dc86201c4d
GET /regions/regions-prod/code/d0926462b4b934495d1ca90e04ce7977.js?conditionId0=423026 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Mon, 19 Sep 2022 16:09:12 GMT
x-amz-replication-status: PENDING
last-modified: Mon, 19 Sep 2022 16:07:06 GMT
etag: W/"8c4fd186b8e2c9bda992a34762b4986c"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: HqfDr7Q1rE4L0B5sGZ_NUDheybZt4G84
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c5W7OsxZLvzWLjCeveBmIgxe_APEzJp73Zv6Kn2pLGO-BaVCWEKvjA==
age: 1477972
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 7065fbf8d63d2ecd8879362fd907ec32
321677349d53a38d7f786c0bc60778ebbf5b115e
17db658b429ff9d8ad5f06672ca0929a328af27af7e5a054848d676a455d585f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4272
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:03 GMT
Last-Modified: Thu, 06 Oct 2022 17:30:51 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
t.co/i/adsct?p_id=Twitter&p_user_id=0&txn_id=o1rxt&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0
200 OK 43 B URL HTTP/2 t.co/i/adsct?p_id=Twitter&p_user_id=0&txn_id=o1rxt&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?p_id=Twitter&p_user_id=0&txn_id=o1rxt&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:02 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=4eb38a3a-bb32-4263-a401-550a9a5cb50a; Max-Age=63072000; Expires=Sat, 05 Oct 2024 18:42:03 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 3c13ee3962ea8e45
strict-transport-security: max-age=0
x-response-time: 110
x-connection-hash: 7e0721f3ef9dd7d9ddfdd4023af5b8a216554afa03fca6cc3da01e6afb36dec6
X-Firefox-Spdy: h2
nexus.ensighten.com/error/e.gif?msg=Invalid%20data%20definition%20used%3A%2059857&lnn=54&fn=https%3A%2F%2Fnexus.ensighten.com%2Fregions%2Fregions-prod%2FBootstrap.js&cid=1202&client=regions&publishPath=regions-prod&rid=-1&did=-1&errorName=DataDefinitionException
204 No Content 0 B URL HTTP/2 nexus.ensighten.com/error/e.gif?msg=Invalid%20data%20definition%20used%3A%2059857&lnn=54&fn=https%3A%2F%2Fnexus.ensighten.com%2Fregions%2Fregions-prod%2FBootstrap.js&cid=1202&client=regions&publishPath=regions-prod&rid=-1&did=-1&errorName=DataDefinitionException
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /error/e.gif?msg=Invalid%20data%20definition%20used%3A%2059857&lnn=54&fn=https%3A%2F%2Fnexus.ensighten.com%2Fregions%2Fregions-prod%2FBootstrap.js&cid=1202&client=regions&publishPath=regions-prod&rid=-1&did=-1&errorName=DataDefinitionException HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: CloudFront
date: Thu, 06 Oct 2022 01:05:18 GMT
cache-control: no-cache, no-store
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IXYI_cxUwiW9jz2LH4UH2zW9ipN1Oq2M9Ih4X6tKHidt_h6lP5EHIQ==
age: 63405
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8014ea74946aee77ef2f3b9a264be553
fda85fc27ac2f811e543c11436cf5623cbd46bb2
271b1db0f8cff912a931b78cedb32fd59adeb60025dbcbd7cc5add7d03c82f7c
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 06 Oct 2022 02:56:59 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: sz2rmYuyFEUedgzarw46o0DSe4_YCuTFh8Kg4XiaWgi__dwKZhM3kQ==
Age: 56707
ocsp.digicert.com/
200 OK 471 B IP
Hash ecc594c8ad8a58175abca6f74592cad0
bc3eb5409877f214ca5d45c39d39754fd80997ae
4376e30946f541ed958cbbff449d18b6acb24608aa48fa078440cb99291dc7d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6459
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Last-Modified: Thu, 06 Oct 2022 16:54:25 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
p.teads.tv/teads-fellow.js
200 OK 6.3 kB URL HTTP/1.1 p.teads.tv/teads-fellow.js
IP
File type ASCII text, with very long lines (19598), with no line terminators
Hash 65909cfa3fc242b7837908d24b5bb157
2377258402cb0a48ccbf406f431424507e5a3377
2f90cf98a41d0fb1948580daf2bfeb454dfad9613996777ce564bb29fce0e6d9
GET /teads-fellow.js HTTP/1.1
Host: p.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: tJh1uOoOKARrE3los7hnCRNqovJYi+GChiBYK1rEy134oPKwQCBBOJTIwUeRuXV9nlXV//5cPmk=
x-amz-request-id: NY2RF03F6CNMZF1R
Last-Modified: Tue, 04 Oct 2022 08:31:39 GMT
ETag: "f8ed702fe4b64d3d502b435a44b31118"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Encoding: gzip
Content-Length: 6340
Cache-Control: max-age=226
Date: Thu, 06 Oct 2022 18:42:04 GMT
Connection: keep-alive
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 87465c15992fe10c24c62a185f8c171d
fa938b624d06d1e2927c8eda6a44b2a32d930f59
239ef7fe5df8c396d96a928c20d66c842a5ec3e9ff71a3cd7c0068906fc3e537
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.bttrack.com/js/44911/analytics/1.0/analytics.min.js
200 OK 369 B URL HTTP/1.1 cdn.bttrack.com/js/44911/analytics/1.0/analytics.min.js
IP
File type ASCII text, with very long lines (599), with no line terminators
Hash ad0eb0570078f9251ad5b5f6bde73010
c8787129ce4b915314a5c05be6812f74fb148945
80a9e2602c17d221fe8d16a24af2a9a7b477d0ce22e3e5e124575cea35953026
GET /js/44911/analytics/1.0/analytics.min.js HTTP/1.1
Host: cdn.bttrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:04 GMT
Connection: Keep-Alive
Cache-Control: max-age=3426
Content-Encoding: gzip
Content-Length: 369
Content-Type: text/javascript; charset=utf-8
Accept-Ranges: bytes
X-HW: 1665081724.dop065.sk1.t,1665081724.cds223.sk1.shn,1665081724.dop065.sk1.t,1665081724.cds229.sk1.c
bat.bing.com/bat.js
200 OK 11 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=1D27575C61BA61FA246A4569604F60CB; domain=.bing.com; expires=Tue, 31-Oct-2023 18:42:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D7781D5C667B4D8CA012B03191794B29 Ref B: OSL30EDGE0116 Ref C: 2022-10-06T18:42:04Z
date: Thu, 06 Oct 2022 18:42:03 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash acdde1be7e4cb1ee14f3b3a4036480d8
6dfe9de9acbf047a55d18003375b2a413a9c3dd5
463978a0b2043c31f1aa1a794a4ff4ba6d7ccd40f464b790ee68889fa29dddfb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5547
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Last-Modified: Thu, 06 Oct 2022 17:09:37 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: aYokXqo8uebeDQOCUMM5kVLFFvHXyE/bGNq9iQ35xICCgAvXQ4wSSTi/W4U9Ca52/8ipdFZdPG3eXB2B+wP/Aw==
priority: u=3,i
content-length: 26840
x-fb-trip-id: 1904183273
date: Thu, 06 Oct 2022 18:42:04 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f24f49dce99bf22d6f1834c2f702f1f4
5c683d0f6be8cd1a60d95a0cb892007f4363005a
3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 40a4de06678d96242b71d5318f2fd4ef
546a7d1d92df81916f14155943427b5453ae3924
aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 313 B IP
Hash 09ca26eaf86cfbfac28b54cac6d42d5f
e3272c4faf239c1792aeae0e6fcf5b4eb9ab2d8c
f3ac85d3475c24a00784d37e006fbdc7b393326417f736c4a774c299697a95fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1294
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Last-Modified: Thu, 06 Oct 2022 18:20:30 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
ib.adnxs.com/pixie?pi=8d5f389a-2c0c-4c6f-bc78-444ec3a0890e=PageView&script=0
400 Bad Request 200 B URL HTTP/1.1 ib.adnxs.com/pixie?pi=8d5f389a-2c0c-4c6f-bc78-444ec3a0890e=PageView&script=0
IP
Hash fefdd5c33b3c8085f2c5b9293595122f
cdd78b96794eab7b50a4c41553a79b00dbe9da58
f918345e81bc13de00d6fa8ec2c395a454340493c9fc84c479648aebb23443eb
GET /pixie?pi=8d5f389a-2c0c-4c6f-bc78-444ec3a0890e=PageView&script=0 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 400 Bad Request
Server: nginx/1.21.3
Date: Thu, 06 Oct 2022 18:42:04 GMT
Content-Type: text/plain
Content-Length: 200
Connection: keep-alive
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 534.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
pubads.g.doubleclick.net/activity;xsp=4958803;ord=2094494258125607?
200 OK 42 B URL HTTP/2 pubads.g.doubleclick.net/activity;xsp=4958803;ord=2094494258125607?
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /activity;xsp=4958803;ord=2094494258125607? HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 18:42:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 18:57:04 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ecc594c8ad8a58175abca6f74592cad0
bc3eb5409877f214ca5d45c39d39754fd80997ae
4376e30946f541ed958cbbff449d18b6acb24608aa48fa078440cb99291dc7d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6459
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Last-Modified: Thu, 06 Oct 2022 16:54:25 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ad.doubleclick.net/ddm/activity/src=9100576;type=pv;cat=regio0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?4662789956980.73
302 Found 0 B URL HTTP/2 ad.doubleclick.net/ddm/activity/src=9100576;type=pv;cat=regio0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?4662789956980.73
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/activity/src=9100576;type=pv;cat=regio0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?4662789956980.73 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 18:42:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=9100576;type=pv;cat=regio0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?4662789956980.73&~oref=https://www.regions.com/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 18:57:04 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
200 OK 15 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP
File type ASCII text, with very long lines (1654)
Hash 8766c5a801f08afceca9b66ff9097e6a
ce7640d1d166eddeb9d40be642ec34652f790713
f448f99b4ad9a9b50daa9c38054cf16ab2b9fcb5d83ddad60571fb6a8a432a99
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 06 Oct 2022 18:42:04 GMT
expires: Thu, 06 Oct 2022 18:42:04 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 17557423932572341828
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
200 OK 958 B URL HTTP/2 www.youtube.com/iframe_api
IP
File type ASCII text, with very long lines (509)
Hash def651611bc33a35cd2f236a318ce113
c6d4a2387ece09e8dc1f7e761f039663815df070
024b44e883ee72fcc5c98e17bac161be32f3ae907ede2406d5a12c9af1b08a35
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 06 Oct 2022 18:42:04 GMT
date: Thu, 06 Oct 2022 18:42:04 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=DVTIKqD4MH8; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=R-RPcwa5icg; Domain=.youtube.com; Expires=Tue, 04-Apr-2023 18:42:04 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+713; expires=Sat, 05-Oct-2024 18:42:04 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dc.ads.linkedin.com/collect/?pid=681506&fmt=gif
302 Found 0 B URL HTTP/2 dc.ads.linkedin.com/collect/?pid=681506&fmt=gif
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/?pid=681506&fmt=gif HTTP/1.1
Host: dc.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D681506%26fmt%3Dgif%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJlq6zi125hewAAAYOumszYeZgBcUzMZ2TsBt4rhCJvwS9Fo4HzHygjGgJCZ1f5xQmMV8AUawlDXw; Max-Age=2592000; Expires=Sat, 05 Nov 2022 18:42:04 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJau3fkmO5D8AAAAYOumszY_I2yybk96Ior6Mvu9x6LxH8doQcBHylT7KRmjLmYRfrWvSV44shQ0qLRDuzX_g; Max-Age=2592000; Expires=Sat, 05 Nov 2022 18:42:04 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&b1daea02-d875-4d78-8448-6f9941a89e3a"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 06-Oct-2023 18:42:04 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2403:u=1:x=1:i=1665081724:t=1665168124:v=2:sig=AQEdYvJbxglUxe7xh2zLQKQncrf0gM20"; Expires=Fri, 07 Oct 2022 18:42:04 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXqYgyv9LJPzuKlaSVCyA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: CE8E1194ABB045EDAFFDD11EE9934593 Ref B: OSL30EDGE0409 Ref C: 2022-10-06T18:42:04Z
date: Thu, 06 Oct 2022 18:42:03 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ct.pinterest.com/v3/?tid=2613483917557&noscript=1
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613483917557&noscript=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613483917557&noscript=1 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 8704156069418091
date: Thu, 06 Oct 2022 18:42:04 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZTZHVUNnlTcDg2UTJiYXY3VkdnZ1phVFpRMXlxT09pZm5lK0tZTFZraUR3SVFsYTd1UnorcHVCblVuSWdNUTVLUXJ2M0J6RE5oanF0bTVaUFF0dXgxZ1BqS2U1WjkvZmcybWxwbEVGVzViST0mWXg1WlowK3U4Y255aUM4d0JyUnJ0VUp3b09nPQ=="; Expires=Fri, 06 Oct 2023 18:42:04 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1665081724.68b43615
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 05cdf02bcbbeed0122679c1118a350ce
b5311d6866b69206bec8f67a19cfeeefed233ef1
4b7235ec2ca2295957e75e79fdc718fbacc13bfd5674d1aeb7cbe5bed9fe9ead
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&buyer_pixel_id=5995
200 OK 134 B URL HTTP/1.1 cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&buyer_pixel_id=5995
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ba6d422568426c0f6534e6eecc61c0d
41abd3739f551724107cacae360902ca3f054377
bb4e7759ee8eca9c1f12e54a77974767aadfb0dd7eaed95075274f3dfe60fc8b
GET /v2/advertiser?referer=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&buyer_pixel_id=5995 HTTP/1.1
Host: cm.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.regions.com/
Origin: https://www.regions.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 134
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.regions.com
Expires: Thu, 06 Oct 2022 18:42:04 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 06 Oct 2022 18:42:04 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f24f49dce99bf22d6f1834c2f702f1f4
5c683d0f6be8cd1a60d95a0cb892007f4363005a
3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sp.analytics.yahoo.com/spp.pl?a=10000&.yp=10175658&he=start&auid=regio0
200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/spp.pl?a=10000&.yp=10175658&he=start&auid=regio0
IP
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /spp.pl?a=10000&.yp=10175658&he=start&auid=regio0 HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:04 GMT
expires: Thu, 06 Oct 2022 18:42:04 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBHwhP2MCEKpun3ytPbLheZyMcLFotxEFEgEBAQFyQGNJYwAAAAAA_eMAAA&S=AQAAApt9n8_ZOYDZ0MKKaR4nyc0; Expires=Sat, 7 Oct 2023 00:42:04 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&d_nsid=0&ts=1665081723632
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&d_nsid=0&ts=1665081723632
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /id?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&d_nsid=0&ts=1665081723632 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.regions.com
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.regions.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v044-0965afbdc.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/id/rd?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&d_nsid=0&ts=1665081723632
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=00626867140684863923136065870511844956; Max-Age=15552000; Expires=Tue, 04 Apr 2023 18:42:04 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: lcmfsAHkTDM=
Content-Length: 0
Connection: keep-alive
analytics.twitter.com/i/adsct?p_id=Twitter&p_user_id=0&txn_id=o1rxt&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0
200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?p_id=Twitter&p_user_id=0&txn_id=o1rxt&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?p_id=Twitter&p_user_id=0&txn_id=o1rxt&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:03 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_/LKDHMpwj1KPW1oaVaCnAg=="; Max-Age=63072000; Expires=Sat, 05 Oct 2024 18:42:04 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 8bb719eba6576adc
strict-transport-security: max-age=631138519
x-response-time: 109
x-connection-hash: 05635d1a243a13db1cb6bc0293dd67c77242503c04c10b326ab9c845c835fdd0
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=21011282&Ver=2&mid=25a96e2f-ae74-4837-af51-3ee813873240&sid=925f752045a611ed8b6ab3d340fbf8c2&vid=925f758045a611eda2e90569fc42da5a&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&kw=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&p=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&r=<=2785&evt=pageLoad&sv=1&rn=968928
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=21011282&Ver=2&mid=25a96e2f-ae74-4837-af51-3ee813873240&sid=925f752045a611ed8b6ab3d340fbf8c2&vid=925f758045a611eda2e90569fc42da5a&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&kw=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&p=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&r=<=2785&evt=pageLoad&sv=1&rn=968928
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=21011282&Ver=2&mid=25a96e2f-ae74-4837-af51-3ee813873240&sid=925f752045a611ed8b6ab3d340fbf8c2&vid=925f758045a611eda2e90569fc42da5a&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&kw=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&p=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&r=<=2785&evt=pageLoad&sv=1&rn=968928 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2DD1BA91134E6ED23E40A8A412BB6F1E; domain=.bing.com; expires=Tue, 31-Oct-2023 18:42:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A1A863B6CFF940FBAE8D33D8561B1679 Ref B: OSL30EDGE0116 Ref C: 2022-10-06T18:42:04Z
date: Thu, 06 Oct 2022 18:42:03 GMT
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=185848352;labels=_fp.event.PageView;rf=3;a=p-AMy7w2y7nzRg3;url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham;uht=2;fpan=1;fpa=P0-1982318451-1665081724154;pbc=;ns=0;ce=1;qjs=1;qv=39016d63-20220929161725;cm=;gdpr=0;ref=;d=regions.com;dst=0;et=1665081724154;tzo=0;ogl=locale.en_US%2Csite_name.RegionsBank%2Ctype.article%2CTitle.Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions%2Cdescription.Looking%20for%20a%20mortgage%20lender%20in%20Birmingham%3F%20Ronald%20Gettridge%20at%20Regions%20Bank%20ca%2Curl.https%3A%2F%2Fwww%252Eregions%252Ecom%2Flocator%2Fmlo%2Fmortgage-loan-officer-Ronald-Gettridge-Birmi%2Cimage.https%3A%2F%2Fwww%252Eregions%252Ecom%2F-%2Fmedia%2FImages%2FWebSiteImages%2Fregions-logo%252Epng%3Frevision%3D0;ses=a4da5f3b-358c-4317-9a9a-3d451b3f7477
200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=185848352;labels=_fp.event.PageView;rf=3;a=p-AMy7w2y7nzRg3;url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham;uht=2;fpan=1;fpa=P0-1982318451-1665081724154;pbc=;ns=0;ce=1;qjs=1;qv=39016d63-20220929161725;cm=;gdpr=0;ref=;d=regions.com;dst=0;et=1665081724154;tzo=0;ogl=locale.en_US%2Csite_name.RegionsBank%2Ctype.article%2CTitle.Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions%2Cdescription.Looking%20for%20a%20mortgage%20lender%20in%20Birmingham%3F%20Ronald%20Gettridge%20at%20Regions%20Bank%20ca%2Curl.https%3A%2F%2Fwww%252Eregions%252Ecom%2Flocator%2Fmlo%2Fmortgage-loan-officer-Ronald-Gettridge-Birmi%2Cimage.https%3A%2F%2Fwww%252Eregions%252Ecom%2F-%2Fmedia%2FImages%2FWebSiteImages%2Fregions-logo%252Epng%3Frevision%3D0;ses=a4da5f3b-358c-4317-9a9a-3d451b3f7477
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=185848352;labels=_fp.event.PageView;rf=3;a=p-AMy7w2y7nzRg3;url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham;uht=2;fpan=1;fpa=P0-1982318451-1665081724154;pbc=;ns=0;ce=1;qjs=1;qv=39016d63-20220929161725;cm=;gdpr=0;ref=;d=regions.com;dst=0;et=1665081724154;tzo=0;ogl=locale.en_US%2Csite_name.RegionsBank%2Ctype.article%2CTitle.Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions%2Cdescription.Looking%20for%20a%20mortgage%20lender%20in%20Birmingham%3F%20Ronald%20Gettridge%20at%20Regions%20Bank%20ca%2Curl.https%3A%2F%2Fwww%252Eregions%252Ecom%2Flocator%2Fmlo%2Fmortgage-loan-officer-Ronald-Gettridge-Birmi%2Cimage.https%3A%2F%2Fwww%252Eregions%252Ecom%2F-%2Fmedia%2FImages%2FWebSiteImages%2Fregions-logo%252Epng%3Frevision%3D0;ses=a4da5f3b-358c-4317-9a9a-3d451b3f7477 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:04 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=633f217c-58165-663c6-35af9; expires=Mon, 06-Nov-2023 18:42:04 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
dpm.demdex.net/id/rd?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&d_nsid=0&ts=1665081723632
200 OK 124 B URL HTTP/1.1 dpm.demdex.net/id/rd?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&d_nsid=0&ts=1665081723632
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 1f6783349ac4177ec3b3845fd520dca6
d84e7a43a8c8ff6f1a568ad6cb4162767f5b32b7
64bc30aa6a9d9e5396bb67c6af32c31f5ca6610641f0bdea10d759281df6adca
GET /id/rd?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&d_nsid=0&ts=1665081723632 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.regions.com
Content-Type: application/x-www-form-urlencoded
Referer: https://www.regions.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.regions.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v044-030456c97.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 172
X-TID: c5n1t5eEQrc=
Content-Length: 124
Connection: keep-alive
rules.quantcount.com/rules-p-AMy7w2y7nzRg3.js
200 OK 271 B URL HTTP/2 rules.quantcount.com/rules-p-AMy7w2y7nzRg3.js
IP
Hash c3aea86cfb633cfbbc5016b7c212fbc1
89934f12847b20c8d992007ab07494977f56ce84
b6d7b217464fd3d4447c18b0c1df4bb42e458c41841e9d2a5ab780f853943884
GET /rules-p-AMy7w2y7nzRg3.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 271
last-modified: Fri, 26 Aug 2022 12:05:44 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Thu, 06 Oct 2022 17:55:27 GMT
cache-control: max-age=3600
etag: "c3aea86cfb633cfbbc5016b7c212fbc1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6V3wZmgRbvQZtXavQlfWdHVwEQwLdESp80L5jHjpQHoAyIEgi6VFJw==
age: 2798
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/p/src=9100576;type=pv;cat=regio0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?4662789956980.73&~oref=https://www.regions.com/
302 Found 0 B URL HTTP/2 adservice.google.com/ddm/fls/p/src=9100576;type=pv;cat=regio0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?4662789956980.73&~oref=https://www.regions.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/p/src=9100576;type=pv;cat=regio0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?4662789956980.73&~oref=https://www.regions.com/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.regions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 18:42:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.no/ddm/fls/p/src=9100576;type=pv;cat=regio0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?4662789956980.73&~oref=https://www.regions.com/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/959581806/?random=1665081724176&cv=9&fst=1665081724176&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724&hn=www.google.com&async=1&rfmt=3&fmt=4
200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/959581806/?random=1665081724176&cv=9&fst=1665081724176&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2472), with no line terminators
Hash e4b0e9cda48f97868c2787e1f5f3a79d
9cf952df521c2c4ef8da48eb76fbeeed7f6aca4e
5aa3d4c686975ff32d98366f3c40ccff15a78c52c67bcd0a1ed2da78257a3061
GET /pagead/viewthroughconversion/959581806/?random=1665081724176&cv=9&fst=1665081724176&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 18:42:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1093
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 18:57:04 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1013536406/?random=1665081724163&cv=9&fst=1665081724163&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724&hn=www.google.com&async=1&rfmt=3&fmt=4
200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1013536406/?random=1665081724163&cv=9&fst=1665081724163&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2474), with no line terminators
Hash 61762bb070ca28cea1c8744bfcb73faa
4aaa00447390145d14632a056066ccb7b030a681
a59e23aaee75015ae3b5c12d8b3c63a5ecbc6f32fa555321e8639e1dec96939e
GET /pagead/viewthroughconversion/1013536406/?random=1665081724163&cv=9&fst=1665081724163&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 18:42:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1094
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 18:57:04 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1013536406/?random=1665081724166&cv=9&fst=1665081724166&num=1&fmt=3&label=F0kQCIWIgqYBEJatpeMD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724>m_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1
200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1013536406/?random=1665081724166&cv=9&fst=1665081724166&num=1&fmt=3&label=F0kQCIWIgqYBEJatpeMD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724>m_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/1013536406/?random=1665081724166&cv=9&fst=1665081724166&num=1&fmt=3&label=F0kQCIWIgqYBEJatpeMD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724>m_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 18:42:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 18:57:04 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t.teads.tv/track?action=pageView&env=js-web&tag_version=6.4.0_59e74cb&buyer_pixel_id=5995&referer=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&user_session_id=5b007cbf-5e0f-40fe-8ee5-0a65ac02710b
200 OK 23 B URL HTTP/2 t.teads.tv/track?action=pageView&env=js-web&tag_version=6.4.0_59e74cb&buyer_pixel_id=5995&referer=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&user_session_id=5b007cbf-5e0f-40fe-8ee5-0a65ac02710b
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /track?action=pageView&env=js-web&tag_version=6.4.0_59e74cb&buyer_pixel_id=5995&referer=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&user_session_id=5b007cbf-5e0f-40fe-8ee5-0a65ac02710b HTTP/1.1
Host: t.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 23
cache-control: max-age=0, no-cache, no-store
expires: Sat, 26 Jul 1997 05:00:00 GMT
date: Thu, 06 Oct 2022 18:42:04 GMT
X-Firefox-Spdy: h2
pxl.qccerttest.com/pixel?r=1949070012;fpan=0;fpa=P0-1982318451-1665081724154;pbc=;ns=0;ce=1;qjs=1;qv=39016d63-20220929161725;ref=;cm=;gdpr=0;d=regions.com;dst=0;et=1665081724416;tzo=0;url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham;ogl=locale.en_US%2Csite_name.RegionsBank%2Ctype.article%2CTitle.Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions%2Cdescription.Looking%20for%20a%20mortgage%20lender%20in%20Birmingham%3F%20Ronald%20Gettridge%20at%20Regions%20Bank%20ca%2Curl.https%3A%2F%2Fwww%252Eregions%252Ecom%2Flocator%2Fmlo%2Fmortgage-loan-officer-Ronald-Gettridge-Birmi%2Cimage.https%3A%2F%2Fwww%252Eregions%252Ecom%2F-%2Fmedia%2FImages%2FWebSiteImages%2Fregions-logo%252Epng%3Frevision%3D0
200 OK 35 B URL HTTP/2 pxl.qccerttest.com/pixel?r=1949070012;fpan=0;fpa=P0-1982318451-1665081724154;pbc=;ns=0;ce=1;qjs=1;qv=39016d63-20220929161725;ref=;cm=;gdpr=0;d=regions.com;dst=0;et=1665081724416;tzo=0;url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham;ogl=locale.en_US%2Csite_name.RegionsBank%2Ctype.article%2CTitle.Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions%2Cdescription.Looking%20for%20a%20mortgage%20lender%20in%20Birmingham%3F%20Ronald%20Gettridge%20at%20Regions%20Bank%20ca%2Curl.https%3A%2F%2Fwww%252Eregions%252Ecom%2Flocator%2Fmlo%2Fmortgage-loan-officer-Ronald-Gettridge-Birmi%2Cimage.https%3A%2F%2Fwww%252Eregions%252Ecom%2F-%2Fmedia%2FImages%2FWebSiteImages%2Fregions-logo%252Epng%3Frevision%3D0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel?r=1949070012;fpan=0;fpa=P0-1982318451-1665081724154;pbc=;ns=0;ce=1;qjs=1;qv=39016d63-20220929161725;ref=;cm=;gdpr=0;d=regions.com;dst=0;et=1665081724416;tzo=0;url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham;ogl=locale.en_US%2Csite_name.RegionsBank%2Ctype.article%2CTitle.Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions%2Cdescription.Looking%20for%20a%20mortgage%20lender%20in%20Birmingham%3F%20Ronald%20Gettridge%20at%20Regions%20Bank%20ca%2Curl.https%3A%2F%2Fwww%252Eregions%252Ecom%2Flocator%2Fmlo%2Fmortgage-loan-officer-Ronald-Gettridge-Birmi%2Cimage.https%3A%2F%2Fwww%252Eregions%252Ecom%2F-%2Fmedia%2FImages%2FWebSiteImages%2Fregions-logo%252Epng%3Frevision%3D0 HTTP/1.1
Host: pxl.qccerttest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 35
last-modified: Thu, 04 Aug 2022 16:01:04 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Thu, 06 Oct 2022 02:01:58 GMT
etag: "55d25e9dc950d5db4d53a3b195c046c6"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eiKQiKIoIx5SFyYkUR8AZZ79RNv9l_obwoV-IoIT2dzgVzAF-ImYyA==
age: 60008
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1d4c3917173bd92c4b3208cdf2c7c345
726a9aa16eef5844afde825f9faf1b505d31e69b
572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D681506%26fmt%3Dgif%26liSync%3Dtrue
302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D681506%26fmt%3Dgif%26liSync%3Dtrue
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D681506%26fmt%3Dgif%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.regions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?pid=681506&fmt=gif&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&63aba58b-8dbb-4143-8949-c24abf4972a8"; Domain=.linkedin.com; Expires=Fri, 06-Oct-2023 18:42:04 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20221006184204682aa21d-e4a0-4217-88df-8d4531cb9d01AQG3iO1VWhLDyVBm4AXu21ipZFGabUZE"; Domain=.www.linkedin.com; Expires=Fri, 06-Oct-2023 18:42:04 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjUwODE3MjQ7MjswMjG1Ew3qMCSM20yooaSyokNdEETrjVxaf/JeeSWfawsI0w==; Domain=.linkedin.com; Expires=Tue, 04 Apr 2023 18:42:04 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2403:u=1:x=1:i=1665081724:t=1665168124:v=2:sig=AQEdYvJbxglUxe7xh2zLQKQncrf0gM20"; Expires=Fri, 07 Oct 2022 18:42:04 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXqYgy0iAML9b3ICw9fQg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 171DDF0AED794BB98F7F5D5A4F3F086C Ref B: OSL30EDGE0409 Ref C: 2022-10-06T18:42:04Z
date: Thu, 06 Oct 2022 18:42:04 GMT
content-length: 0
X-Firefox-Spdy: h2
bat.bing.com/p/action/21011282.js
204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/21011282.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/21011282.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=126241B08EEA6D222B7F53858F1F6C22; domain=.bing.com; expires=Tue, 31-Oct-2023 18:42:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DF677F22219E4E0E9C3576F07A83D3DB Ref B: OSL30EDGE0116 Ref C: 2022-10-06T18:42:04Z
date: Thu, 06 Oct 2022 18:42:03 GMT
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/1013536406/?random=1665081724166&cv=9&fst=1665081724166&num=1&label=F0kQCIWIgqYBEJatpeMD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724>m_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0
200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/1013536406/?random=1665081724166&cv=9&fst=1665081724166&num=1&label=F0kQCIWIgqYBEJatpeMD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724>m_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/1013536406/?random=1665081724166&cv=9&fst=1665081724166&num=1&label=F0kQCIWIgqYBEJatpeMD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oaa50&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&tiba=Birmingham%20Mortgage%20Lender%20%7C%20Ronald%20Gettridge%20%7C%20Regions&auid=1742283562.1665081724>m_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.regions.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 18:42:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1d4c3917173bd92c4b3208cdf2c7c345
726a9aa16eef5844afde825f9faf1b505d31e69b
572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=499108531775714&ev=PageView&dl=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&rl=&if=false&ts=1665081724544&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1665081724542.1249662787&it=1665081724132&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=499108531775714&ev=PageView&dl=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&rl=&if=false&ts=1665081724544&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1665081724542.1249662787&it=1665081724132&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=499108531775714&ev=PageView&dl=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&rl=&if=false&ts=1665081724544&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1665081724542.1249662787&it=1665081724132&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Thu, 06 Oct 2022 18:42:04 GMT
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/p/src=9100576;type=pv;cat=regio0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?4662789956980.73&~oref=https://www.regions.com/
200 OK 86 kB URL HTTP/2 adservice.google.no/ddm/fls/p/src=9100576;type=pv;cat=regio0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?4662789956980.73&~oref=https://www.regions.com/
IP
File type gzip compressed data, from Unix\012- data
Hash dfbec8f88b7da5e824ecacda4851e73c
8130097c3f765db5945fd9b8475909469b7ad6c3
5d6976955570c62bb903a08f1da726f1ca054bf6e68d028dbddaac753f3ee022
GET /ddm/fls/p/src=9100576;type=pv;cat=regio0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?4662789956980.73&~oref=https://www.regions.com/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.regions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 18:42:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 684d821dad8d6978694d8a3cfdaf24c2
cd71744db8a4280ff082f0eb7bbc36b4c9661186
fe64c7d2b140046e64650615172bd95f678957dceffdbc202b54bc76e7318787
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:04 GMT
Server: ECS (amb/6B87)
Content-Length: 471
px.ads.linkedin.com/collect?pid=681506&fmt=gif&liSync=true
200 OK 65 B URL HTTP/2 px.ads.linkedin.com/collect?pid=681506&fmt=gif&liSync=true
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 8b0d5b18476ae12e2476f3621d54c4a5
2ad669e9d207fbb37e84dda25766dbaeb66d792c
2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
GET /collect?pid=681506&fmt=gif&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.regions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 65
content-type: image/gif
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&4999b833-f13e-4f47-8076-f5b12167c591"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 06-Oct-2023 18:42:04 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2355:u=1:x=1:i=1665081724:t=1665168124:v=2:sig=AQGA6jry0iAvIXoabEZ4ksHimxEloTUX"; Expires=Fri, 07 Oct 2022 18:42:04 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXqYgy50+YdyTlyeCY1WA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5B45C2F3985247C791B830E2B2B2355E Ref B: OSL30EDGE0409 Ref C: 2022-10-06T18:42:04Z
date: Thu, 06 Oct 2022 18:42:04 GMT
X-Firefox-Spdy: h2
smetrics.regions.com/id?d_visid_ver=4.4.0&d_fieldgroup=MC&mcorgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&ts=1665081724444
200 OK 48 B URL HTTP/2 smetrics.regions.com/id?d_visid_ver=4.4.0&d_fieldgroup=MC&mcorgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&ts=1665081724444
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 778c197e330edc8037cb1cd11c965db4
1a65245a850159360dd2d3e4a2ecb3d80c2a914a
03a84a199704c998a3d50515e00e482b07a89b8807b89ca42d7245dfff7dec70
GET /id?d_visid_ver=4.4.0&d_fieldgroup=MC&mcorgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&ts=1665081724444 HTTP/1.1
Host: smetrics.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.regions.com
Connection: keep-alive
Referer: https://www.regions.com/
Cookie: _gcl_au=1.1.1742283562.1665081724; _uetsid=925f752045a611ed8b6ab3d340fbf8c2; _uetvid=925f758045a611eda2e90569fc42da5a; tfpsi=5b007cbf-5e0f-40fe-8ee5-0a65ac02710b; __qca=P0-1982318451-1665081724154; _fbp=fb.1.1665081724542.1249662787
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://www.regions.com
access-control-allow-credentials: true
date: Thu, 06 Oct 2022 18:42:04 GMT
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: AMCV_DB9639725BD2FC5B0A495C65%40AdobeOrg=0%7CMCMID%7C31340588917459043412290151766313985668; Path=/; Domain=regions.com; Max-Age=63072000; Expires=Sat, 05 Oct 2024 18:42:42 GMT;
s_ecid=MCMID%7C31340588917459043412290151766313985668; Path=/; Domain=regions.com; Max-Age=63072000; Expires=Sat, 05 Oct 2024 18:42:42 GMT; SameSite=Lax;
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 48
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bttrack.com/engagement/js?goalId=44911&cb=1665081724077
200 OK 4.8 kB URL HTTP/2 bttrack.com/engagement/js?goalId=44911&cb=1665081724077
IP
File type ASCII text, with very long lines (13851), with no line terminators
Hash c444eaff1bf9dee3f3e847ee3f12404c
47a794e97081a5fdc6564a0e72aafc4b41a41f09
23fe303dc74c7cbbcfddaef636f3a6901c961d57ada79d6d0b1e2c1642f41a07
GET /engagement/js?goalId=44911&cb=1665081724077 HTTP/1.1
Host: bttrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,no-cache
pragma: no-cache
content-type: text/javascript; charset=utf-8
content-encoding: gzip
expires: -1
server: Microsoft-IIS/8.5
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
set-cookie: bt-es-44911=ab684248-ace9-4618-b41f-d7cf4ce47603; path=/
p3p: CP="CAO DSP COR ADMo DEVo PSAo PSDo HISo IVAo IVDo OUR IND OTC"
x-servername: Track002-iad
date: Thu, 06 Oct 2022 18:41:06 GMT
X-Firefox-Spdy: h2
smetrics.regions.com/b/ss/regionsbankprod/10/JS-2.22.3/s46651630698509?AQB=1&ndh=1&pf=1&callback=s_c_il[0].doPostbacks&et=1&t=6%2F9%2F2022%2018%3A42%3A4%204%200&d.&nsid=0&jsonv=1&.d&mid=31340588917459043412290151766313985668&aamlh=6&ce=UTF-8&ns=regions&cdp=2&pageName=rdc%7Clocator%7Cmortgage%20loan%20officer%20ronald%20gettridge%20birmingham&g=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&c.&apl=4.0&getPreviousValue=3.0&getPercentPageViewed=5.0&manageVars=3.0&.c&cc=USD&ch=locator&server=www.regions.com&events=event1&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c1=D%3Dv1&v1=rdc&h1=D%3Dv1&c2=D%3Dv2&v2=mlo&h2=D%3Dch&c3=D%3DpageName&v3=D%3DpageName&h3=mortgage%20loan%20officer%20ronald%20gettridge%20birmingham&c4=D%3Dg&v4=D%3Dg&c6=D%3Dv6&v6=en&c7=D%3Dv7&v7=desktop%20layout%7C1280x939&c8=D%3Dv8&c9=D%3Dv9&v9=%7C&v10=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&v12=D%3Dmid&v18=anonymous&c19=D%3DpageName&c23=D%3Dv10&v68=22.3.2%7C2.22.3%7C4.4.0%7C20220801&c75=D%3Dv68&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&AQE=1
200 OK 3.7 kB URL HTTP/2 smetrics.regions.com/b/ss/regionsbankprod/10/JS-2.22.3/s46651630698509?AQB=1&ndh=1&pf=1&callback=s_c_il[0].doPostbacks&et=1&t=6%2F9%2F2022%2018%3A42%3A4%204%200&d.&nsid=0&jsonv=1&.d&mid=31340588917459043412290151766313985668&aamlh=6&ce=UTF-8&ns=regions&cdp=2&pageName=rdc%7Clocator%7Cmortgage%20loan%20officer%20ronald%20gettridge%20birmingham&g=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&c.&apl=4.0&getPreviousValue=3.0&getPercentPageViewed=5.0&manageVars=3.0&.c&cc=USD&ch=locator&server=www.regions.com&events=event1&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c1=D%3Dv1&v1=rdc&h1=D%3Dv1&c2=D%3Dv2&v2=mlo&h2=D%3Dch&c3=D%3DpageName&v3=D%3DpageName&h3=mortgage%20loan%20officer%20ronald%20gettridge%20birmingham&c4=D%3Dg&v4=D%3Dg&c6=D%3Dv6&v6=en&c7=D%3Dv7&v7=desktop%20layout%7C1280x939&c8=D%3Dv8&c9=D%3Dv9&v9=%7C&v10=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&v12=D%3Dmid&v18=anonymous&c19=D%3DpageName&c23=D%3Dv10&v68=22.3.2%7C2.22.3%7C4.4.0%7C20220801&c75=D%3Dv68&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&AQE=1
IP
File type ASCII text, with very long lines (3687)
Hash 4dd7fd2d3f894ac68ae8c6d72a1071a7
da977f970535c5f584caebffc83a581700717147
0e9b0cd3303dc6435a54360521c090dc8a0b4347259b02ef9be9c824533b3a86
GET /b/ss/regionsbankprod/10/JS-2.22.3/s46651630698509?AQB=1&ndh=1&pf=1&callback=s_c_il[0].doPostbacks&et=1&t=6%2F9%2F2022%2018%3A42%3A4%204%200&d.&nsid=0&jsonv=1&.d&mid=31340588917459043412290151766313985668&aamlh=6&ce=UTF-8&ns=regions&cdp=2&pageName=rdc%7Clocator%7Cmortgage%20loan%20officer%20ronald%20gettridge%20birmingham&g=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&c.&apl=4.0&getPreviousValue=3.0&getPercentPageViewed=5.0&manageVars=3.0&.c&cc=USD&ch=locator&server=www.regions.com&events=event1&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c1=D%3Dv1&v1=rdc&h1=D%3Dv1&c2=D%3Dv2&v2=mlo&h2=D%3Dch&c3=D%3DpageName&v3=D%3DpageName&h3=mortgage%20loan%20officer%20ronald%20gettridge%20birmingham&c4=D%3Dg&v4=D%3Dg&c6=D%3Dv6&v6=en&c7=D%3Dv7&v7=desktop%20layout%7C1280x939&c8=D%3Dv8&c9=D%3Dv9&v9=%7C&v10=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&v12=D%3Dmid&v18=anonymous&c19=D%3DpageName&c23=D%3Dv10&v68=22.3.2%7C2.22.3%7C4.4.0%7C20220801&c75=D%3Dv68&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=DB9639725BD2FC5B0A495C65%40AdobeOrg&AQE=1 HTTP/1.1
Host: smetrics.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Cookie: _gcl_au=1.1.1742283562.1665081724; _uetsid=925f752045a611ed8b6ab3d340fbf8c2; _uetvid=925f758045a611eda2e90569fc42da5a; tfpsi=5b007cbf-5e0f-40fe-8ee5-0a65ac02710b; __qca=P0-1982318451-1665081724154; _fbp=fb.1.1665081724542.1249662787; AMCV_DB9639725BD2FC5B0A495C65%40AdobeOrg=1585540135%7CMCMID%7C31340588917459043412290151766313985668%7CMCAID%7CNONE%7CMCOPTOUT-1665088924s%7CNONE%7CMCAAMLH-1665686524%7C6%7CMCAAMB-1665686524%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C4.4.0; s_ecid=MCMID%7C31340588917459043412290151766313985668; AMCVS_DB9639725BD2FC5B0A495C65%40AdobeOrg=1; s_lang=en; gpv_pn=rdc%7Clocator%7Cmortgage%20loan%20officer%20ronald%20gettridge%20birmingham; s_ips=939; s_tp=2577; s_ppv=rdc%257Clocator%257Cmortgage%2520loan%2520officer%2520ronald%2520gettridge%2520birmingham%2C36%2C36%2C939%2C1%2C2; s_cc=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Thu, 06 Oct 2022 18:42:05 GMT
expires: Wed, 05 Oct 2022 18:42:05 GMT
last-modified: Fri, 07 Oct 2022 18:42:05 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_ecid=MCMID%7C31340588917459043412290151766313985668; Path=/; Domain=regions.com; Max-Age=63072000; Expires=Sat, 05 Oct 2024 18:42:42 GMT;
etag: 3575735777061666816-4619594558665790425
vary: *
dcs: dcs-prod-irl1-1-v044-06a78a427.edge-irl1.demdex.com 8 ms
x-aam-tid: 5rhrHDFBTHg=
content-type: application/x-javascript;charset=utf-8
content-length: 3688
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
regions.demdex.net/dest5.html?d_nsid=undefined
200 OK 2.8 kB URL HTTP/1.1 regions.demdex.net/dest5.html?d_nsid=undefined
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=undefined HTTP/1.1
Host: regions.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Thu, 6 Oct 2022 18:42:05 GMT
DCS: dcs-prod-irl1-2-v044-08a9bb06a.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Thu, 29 Sep 2022 16:47:44 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: s+ijqj1ORps=
Content-Length: 2791
Connection: keep-alive
bttrack.com/engagement/getpixels?gid=44911
200 OK 0 B URL HTTP/2 bttrack.com/engagement/getpixels?gid=44911
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /engagement/getpixels?gid=44911 HTTP/1.1
Host: bttrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.regions.com
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,no-cache
pragma: no-cache
content-type: text/html
content-encoding: gzip
expires: -1
server: Microsoft-IIS/8.5
x-aspnetmvc-version: 5.2
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
p3p: CP="CAO DSP COR ADMo DEVo PSAo PSDo HISo IVAo IVDo OUR IND OTC"
x-servername: Track003-iad
date: Thu, 06 Oct 2022 18:41:06 GMT
content-length: 0
X-Firefox-Spdy: h2
bttrack.com/engagement/event?input=%7B%22globalId%22%3A%2200000000-0000-0000-0000-000000000042%22%2C%22creativeId%22%3A%22%22%2C%22placementId%22%3A%22%22%2C%22goalId%22%3A%2244911%22%2C%22sessionId%22%3A%22ab684248-ace9-4618-b41f-d7cf4ce47603%22%2C%22parentPublisherId%22%3A%22%22%2C%22publisherId%22%3A%22%22%2C%22siteId%22%3A%22%22%2C%22commonId%22%3A%22%22%2C%22heartbeat%22%3A1%2C%22url%22%3A%22https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham%22%2C%22fingerprint%22%3A%22%22%2C%22fingerprintProvider%22%3A%22%22%7D
200 OK 0 B URL HTTP/2 bttrack.com/engagement/event?input=%7B%22globalId%22%3A%2200000000-0000-0000-0000-000000000042%22%2C%22creativeId%22%3A%22%22%2C%22placementId%22%3A%22%22%2C%22goalId%22%3A%2244911%22%2C%22sessionId%22%3A%22ab684248-ace9-4618-b41f-d7cf4ce47603%22%2C%22parentPublisherId%22%3A%22%22%2C%22publisherId%22%3A%22%22%2C%22siteId%22%3A%22%22%2C%22commonId%22%3A%22%22%2C%22heartbeat%22%3A1%2C%22url%22%3A%22https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham%22%2C%22fingerprint%22%3A%22%22%2C%22fingerprintProvider%22%3A%22%22%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /engagement/event?input=%7B%22globalId%22%3A%2200000000-0000-0000-0000-000000000042%22%2C%22creativeId%22%3A%22%22%2C%22placementId%22%3A%22%22%2C%22goalId%22%3A%2244911%22%2C%22sessionId%22%3A%22ab684248-ace9-4618-b41f-d7cf4ce47603%22%2C%22parentPublisherId%22%3A%22%22%2C%22publisherId%22%3A%22%22%2C%22siteId%22%3A%22%22%2C%22commonId%22%3A%22%22%2C%22heartbeat%22%3A1%2C%22url%22%3A%22https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham%22%2C%22fingerprint%22%3A%22%22%2C%22fingerprintProvider%22%3A%22%22%7D HTTP/1.1
Host: bttrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.regions.com
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,no-cache
pragma: no-cache
content-type: text/plain
content-encoding: gzip
expires: -1
server: Microsoft-IIS/8.5
x-aspnetmvc-version: 5.2
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
p3p: CP="CAO DSP COR ADMo DEVo PSAo PSDo HISo IVAo IVDo OUR IND OTC"
x-servername: Track002-iad
date: Thu, 06 Oct 2022 18:41:06 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 2078b90b8501f4bf9576079811eeace6
3beabb9a48b5e694f3721a8427ca6ca2a7279de7
0009eeca6ba983ae4b77d95d73b47090a9a9fef6097b8355002ecf577487dfdc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 18:42:05 GMT
Last-Modified: Thu, 06 Oct 2022 16:56:36 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ydAoAFjdjxzae-d35F97Q48qPwrj_wYhF9U-wIDDLn2ASTDeLj7UWQ==
Age: 6329
cm.everesttech.net/cm/dd?d_uuid=25546250315459150641713040209963525865
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=25546250315459150641713040209963525865
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=25546250315459150641713040209963525865 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 06 Oct 2022 18:42:05 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Yz8hfQAAAHJQugOY; Domain=.everesttech.net; Expires=Fri, 06-Oct-2023 18:42:05 GMT; Path=/
everest_session_v2=Yz8hfQAAAHJQuwOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Yz8hfQAAAHJQugOY
Server: AMO-cookiemap/1.1
dpm.demdex.net/ibs:dpid=411&dpuuid=Yz8hfQAAAHJQugOY
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Yz8hfQAAAHJQugOY
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Yz8hfQAAAHJQugOY HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.regions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v044-07188673d.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yz8hfQAAAHJQugOY
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=33763711826027643792570616234904019836; Max-Age=15552000; Expires=Tue, 04 Apr 2023 18:42:05 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: c9rF0zzfQRg=
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yz8hfQAAAHJQugOY
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yz8hfQAAAHJQugOY
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yz8hfQAAAHJQugOY HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.regions.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v044-063d3650f.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: Way2Y/+OT98=
Content-Length: 59
Connection: keep-alive
data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=0&c=1202&i=8rui6w&p=regions-prod&s=15753&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTcUAPAmY2xpZW50SWQiOjEyMDIsInB1Ymxpc2hQYXRoIjoicmVnaW9ucy1wcm9kIiwiaW5zdGFuY2UvAPE0IjhydWk2dyIsInBhY2tldCI6MCwibW9kZSI6Im9ic2VydmUiLCJjb29raWVzIjp7fSwiZW52aXJvbm1lbnQiOiJSZVwAIiBQXADyBnJlcXVlc3RzIjpbeyJkZXN0aW5hdMAA8QxodHRwczovL21hcHMuZ29vZ2xlYXBpcy5jb20UAEEvYXBpCQDwCGpzL2dlbl8yMDQ_Y3NwX3Rlc3Q9dHJ1iQAwdHlwmgDwC3hociIsInN0YXJ0IjoxNjY1MDgxNzIzMjEynwAABgEKFABQc291cmM5ALJYSFJfTUFOQUdFUkEAwHR1cyI6ImFsbG93ZRwBYHJlYXNvbr8A1F0sImRhdGFQYXR0ZXISALJsaXN0IjpbXSwiaWYAzzQ2NTQ1MTk1MzB9LPEAYR8z8QAAPzMsIvEAUB8x8QAk9DxzdGF0aWNtYXA_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_bG9h8gQijzg1OTU1MDk1AQQID5EBFg_yAf8kHzbyAQwgbXVkBTJvbk_BByJyQTkCAuwDD_cBLR8y6QP_Zw7oBQrpAwz3AS9DTPgBOR8z-AEwAYAF8BoyNGRhNThiODk3YTgzYWM4ZGQ2MTIyMDkxYTYzODZjNy5qcz9jb25kaTgKr0lkMD0zNjUyODcNBREuMzUBCj80NjkNBUevNjY5MDA3NDEwNh4Bkh00OQQKHgEMQgIPOQQxBSMBHzgjAZIOTgcPIwELD2UDMgUkAR85JAEb8AtlcnJvci9lLmdpZj9tc2c9SW52YWxpZCUyMLsMAAcAQWVmaW5JA3ElMjB1c2Vkrwj7ATA1OTg1NyZsbm49NTQmZm7KCA--BwAzJTJGqgkGCgABtAk1JTJGmAlyLmpzJmNpZCQJApIOEz02AAR0CQGvCQMUAAFAAJImcmlkPS0xJmQHAAHRAKVOYW1lPURhdGFEvgBQRXhjZXAQBAYGBA8PCwQuNTHCAQEUAAUTDfECaW1nX0RPTUF0dHJNb2RpZmn5DQUXCQ8MDiiPMzUzODE3MTcjBwjxA3NwLmFuYWx5dGljcy55YWhvbw8L8RBzcHAucGw_YT0xMDAwMCYueXA9MTAxNzU2NTgmaGU96g5SJmF1aWRRAQDzDw8WDAs9NTIx7AMBFAAPBwFPjzMwNzkwNjI0IQoJ8B1hZC5kb3VibGVjbGljay5uZXQvZGRtL2FjdGl2aXR5L3NyYz05MTAwNTc2O-kAcz1wdjtjYXT-AIA7ZGNfbGF0PQgAEHI6AvAOO3RhZ19mb3JfY2hpbGRfZGlyZWN0ZWRfdHJlYXSpEP8UPTt0ZnVhPTtucGE9O29yZD0xPzQ2NjI3ODk5NTY5ODAuNzNaAg8PagsAEDUUAA9TAVF_Mzc1NjY5NiAECOJkYy5hZHMubGlua2VkaWYN_wxjb2xsZWN0Lz9waWQ9NjgxNTA2JmZtdD1naWbvABAOZwo4NTI3TAcPSQNFrzUwNjM1NTEyNDQPBQdQY3QucGlAEDFlc3RDA_IJdjMvP3RpZD0yNjEzNDgzOTE3NTU3Jm5vOw0vPTHxABAfODMDAAhJDw86BEafNjM2NjcxNDc3RwgIBjcEMHR3aZQSAfYA4mkvYWRzY3Q_cF9pZD1UGQBwJnBfdXNlchIAUDAmdHhuCQDwAW8xcnh0JmV2ZW50cz0lNUIDAPAcMjJwYWdldmlldyUyMiUyQ251bGwlNUQlNUQmdHdfc2FsZV9hbW91bnQ9MBEA_wBvcmRlcl9xdWFudGl0eT2EBBAuMzBRAQAUAA8xA0-fNTU2NjY0Nzk2lxAIADcCHy9AAYsPxAUALzMxggNRnzMzMDIxOTcwOcsGCDBwdWJxBB1nygUExgXBO3hzcD00OTU4ODAzdQX_AjIwOTQ0OTQyNTgxMjU2MDc_lAMPHjPhFBA1FAAPQwJPMDQ4NJcDLzY2hQQIcmliLmFkbnjEFvAZcGl4aWU_cGk9OGQ1ZjM4OWEtMmMwYy00YzZmLWJjNzgtNDQ0ZWMzYdgUIGU9RBJTVmlldyagBA9PAxEPkQUAHzORBVKfMzgxODk3MzY45hYIDzYKAATeEwQIAAHyCREvBQ7-EGQwOTI2NDYyYjRiOTM0NDk1ZDFjYTkwZTA0Y2U3OTcFDmY0MjMwMjYxAgI3AQLhDgoSEy8zNTcDACg1MDcDDxITPI82NTAxMzYxNuIMNg8eAUoOBQ4ZNR4BDAUOD-IMMhM0JAEfNzYUCA8ZGgoAoAsPNxj_PB45nQcYOe4IDAgCDw0QMQUvGB832gkHoWRwbS5kZW1kZXgYDPIiaWQ_ZF92aXNpZF92ZXI9NC40LjAmZF9maWVsZGdyb3VwPU1DJmRfcnRiZD1qc29uJigAEjIIAPApaWZ5PTEmZF9vcmdpZD1EQjk2Mzk3MjVCRDJGQzVCMEE0OTVDNjUlNDBBZG9iZU9yZyZkX25zaWTzCCZzPVscNjYzMnwED38cBC42M34SGTatBh9Yfxw9nzY0MTQ3NTYyM-gICA9QAagO_QcPUAFVD4kLCADpGQK_HqF0YWdtYW5hZ2VyjAvyC2d0YWcvanM_aWQ9QVctMTAxMzUzNjQwNiZsuA4gbnPVEEBMYXllvh4A1w4_IjoiyAYHLjUy_wA_NzQ2yAZHnzM5OTA2MDQxOcgGCA_9AFYfNP0ADQyfBA-nBjIDAwEvMjEDAS9_OTU5NTgxOP8BAkcmY3g92h0PBAIHLjcz9AkvODHRFkifNTEwNDY2NjIy-QsIDwQCFA8BATMeNM8TCgEBDwgCQgQHAR8zrwgID0AOkA6QBhA4pAYFPQ0ATB8wbmRDNRMCSgsPIxwqBTUODysaCA81AY8eNCALCjUBD3ECQgM8AS8xMMkHCA9iDQEBMRcPAhj8HjQADig5NTQFDMIBCdoKAVIBPyIsIgomHgP-Fw8-BwkganOkFbBydnIub3JnL3VwX40fUGVyLjEu3ScmanNjCg8TBgcQNcIDImVufyYC-SZPNDA2NBcISI8xMjM2MDI5NdcDCA_ZADIA3AgP2QAKDLgBD_MHMwPfAB82kwwID98AMh0zXxY_NDA2zwlJA9kALzU5bA0HD9kAMh00mSAL2QAPuAFLD6sJCEBwLnRlpBQxdHYvCQAwLWZl6ikfLmoDFQ0jDzg0MDdeKQ9bJT2PNDU2MDEwOTTTAEcPrAEBCdMAD6wBQhM02QAfNVcNCCZjba0B-wZ2Mi9hZHZlcnRpc2VyP3JlZmVyZXKmHgCGCgNKHgB-DQ9wJzHAJmJ1eWVyX3BpeGVsNRlGNTk5NZMFUmZldGNoJwkJcRQ9NDA3Mwg4NDA3gydfRkVUQ0h5LDufMzg3MTQyNDc0twQIsGNkbi5idHRyYWNrIwGlL2pzLzQ0OTExL0waRi8xLjAOAE8ubWluHAMVHTTcGTg0MDc_Eg8cAz1ANTUwMZUYD5ILCA_wAEoPvgUACfAADzkDQwT2AA_EBQiBYmF0LmJpbmfjAQB8GfAJb24vMD90aT0yMTAxMTI4MiZWZXI9MiZtHR3wEzVhOTZlMmYtYWU3NC00ODM3LWFmNTEtM2VlODEzODczMjS7LPQWZD05MjVmNzUyMDQ1YTYxMWVkOGI2YWIzZDM0MGZiZjhjMiZ2aSUAFTglAPABYTJlOTA1NjlmYzQyZGE1YSUA9SdzPTEmbXNjbGtpZD1OJnBpPTAmbGc9ZW4tVVMmc3c9MTI4MCZzaD0xMDI0JnNjPTI0JnRsPUIDK0MlMjBNNyvxBCUyMExlbmRlciUyMCU3QyUyMFI7KwCqKwQ9KwYbAALzMD8ma3dNADgfcIMEUPAAcj0mbHQ9Mjc4NSZldnQ9oh32BExvYWQmc3Y9MSZybj05Njg5MjiWBA8HIwMgNDDLFQxNCQAUAAX8DQ8WLkmfMzI2NTc1NjE4rQMICbcCAA0AD5UHFB4xiQMvMTDeGUl_OTI4MzY2NfwaCQC_AAWDAwANAA_MABQdNKEPGjTMAA9VBEMC0gAvNjDaHAgAXgdxeW91dHViZVgEpmlmcmFtZV9hcGl7Ag-kDAgdMb4TIDQxkiQFfgIPehA8jzE0NTkzNTkyDQcID9IALQ7kBw_SAFIPCwoID9IALA4nDwukAQ99AkITM6sBHzXpEAgPVx9cDr8MNzEyMlAPD6wCBA8pECUFTR8PHQUIDwIBWw8VDAAKAgEPCgILDwkBLR85CQEI8gBjb25uZWN0LmZhY2Vib28rKIJlbl9VUy9mYs8kD7IKFR4ysgooMTOmCw-yCjyPMzIwNzY1MDIPKgkP3wA4D0wGAQnfAAzFAQn2EgCJEg_1EiAE5AAfOUsGCA_kADkPVwYAD-QACg8iEjMDyQEP5DYJDw0lUw-EBgAYNNkUD6oEBA_dASQFAiUPqwUID_gAUg8ZFAAZMfgADNsCD_cBMtA0ODQ2MzY2Njc3fV19
204 No Content 0 B URL HTTP/2 data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=0&c=1202&i=8rui6w&p=regions-prod&s=15753&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTcUAPAmY2xpZW50SWQiOjEyMDIsInB1Ymxpc2hQYXRoIjoicmVnaW9ucy1wcm9kIiwiaW5zdGFuY2UvAPE0IjhydWk2dyIsInBhY2tldCI6MCwibW9kZSI6Im9ic2VydmUiLCJjb29raWVzIjp7fSwiZW52aXJvbm1lbnQiOiJSZVwAIiBQXADyBnJlcXVlc3RzIjpbeyJkZXN0aW5hdMAA8QxodHRwczovL21hcHMuZ29vZ2xlYXBpcy5jb20UAEEvYXBpCQDwCGpzL2dlbl8yMDQ_Y3NwX3Rlc3Q9dHJ1iQAwdHlwmgDwC3hociIsInN0YXJ0IjoxNjY1MDgxNzIzMjEynwAABgEKFABQc291cmM5ALJYSFJfTUFOQUdFUkEAwHR1cyI6ImFsbG93ZRwBYHJlYXNvbr8A1F0sImRhdGFQYXR0ZXISALJsaXN0IjpbXSwiaWYAzzQ2NTQ1MTk1MzB9LPEAYR8z8QAAPzMsIvEAUB8x8QAk9DxzdGF0aWNtYXA_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_bG9h8gQijzg1OTU1MDk1AQQID5EBFg_yAf8kHzbyAQwgbXVkBTJvbk_BByJyQTkCAuwDD_cBLR8y6QP_Zw7oBQrpAwz3AS9DTPgBOR8z-AEwAYAF8BoyNGRhNThiODk3YTgzYWM4ZGQ2MTIyMDkxYTYzODZjNy5qcz9jb25kaTgKr0lkMD0zNjUyODcNBREuMzUBCj80NjkNBUevNjY5MDA3NDEwNh4Bkh00OQQKHgEMQgIPOQQxBSMBHzgjAZIOTgcPIwELD2UDMgUkAR85JAEb8AtlcnJvci9lLmdpZj9tc2c9SW52YWxpZCUyMLsMAAcAQWVmaW5JA3ElMjB1c2Vkrwj7ATA1OTg1NyZsbm49NTQmZm7KCA--BwAzJTJGqgkGCgABtAk1JTJGmAlyLmpzJmNpZCQJApIOEz02AAR0CQGvCQMUAAFAAJImcmlkPS0xJmQHAAHRAKVOYW1lPURhdGFEvgBQRXhjZXAQBAYGBA8PCwQuNTHCAQEUAAUTDfECaW1nX0RPTUF0dHJNb2RpZmn5DQUXCQ8MDiiPMzUzODE3MTcjBwjxA3NwLmFuYWx5dGljcy55YWhvbw8L8RBzcHAucGw_YT0xMDAwMCYueXA9MTAxNzU2NTgmaGU96g5SJmF1aWRRAQDzDw8WDAs9NTIx7AMBFAAPBwFPjzMwNzkwNjI0IQoJ8B1hZC5kb3VibGVjbGljay5uZXQvZGRtL2FjdGl2aXR5L3NyYz05MTAwNTc2O-kAcz1wdjtjYXT-AIA7ZGNfbGF0PQgAEHI6AvAOO3RhZ19mb3JfY2hpbGRfZGlyZWN0ZWRfdHJlYXSpEP8UPTt0ZnVhPTtucGE9O29yZD0xPzQ2NjI3ODk5NTY5ODAuNzNaAg8PagsAEDUUAA9TAVF_Mzc1NjY5NiAECOJkYy5hZHMubGlua2VkaWYN_wxjb2xsZWN0Lz9waWQ9NjgxNTA2JmZtdD1naWbvABAOZwo4NTI3TAcPSQNFrzUwNjM1NTEyNDQPBQdQY3QucGlAEDFlc3RDA_IJdjMvP3RpZD0yNjEzNDgzOTE3NTU3Jm5vOw0vPTHxABAfODMDAAhJDw86BEafNjM2NjcxNDc3RwgIBjcEMHR3aZQSAfYA4mkvYWRzY3Q_cF9pZD1UGQBwJnBfdXNlchIAUDAmdHhuCQDwAW8xcnh0JmV2ZW50cz0lNUIDAPAcMjJwYWdldmlldyUyMiUyQ251bGwlNUQlNUQmdHdfc2FsZV9hbW91bnQ9MBEA_wBvcmRlcl9xdWFudGl0eT2EBBAuMzBRAQAUAA8xA0-fNTU2NjY0Nzk2lxAIADcCHy9AAYsPxAUALzMxggNRnzMzMDIxOTcwOcsGCDBwdWJxBB1nygUExgXBO3hzcD00OTU4ODAzdQX_AjIwOTQ0OTQyNTgxMjU2MDc_lAMPHjPhFBA1FAAPQwJPMDQ4NJcDLzY2hQQIcmliLmFkbnjEFvAZcGl4aWU_cGk9OGQ1ZjM4OWEtMmMwYy00YzZmLWJjNzgtNDQ0ZWMzYdgUIGU9RBJTVmlldyagBA9PAxEPkQUAHzORBVKfMzgxODk3MzY45hYIDzYKAATeEwQIAAHyCREvBQ7-EGQwOTI2NDYyYjRiOTM0NDk1ZDFjYTkwZTA0Y2U3OTcFDmY0MjMwMjYxAgI3AQLhDgoSEy8zNTcDACg1MDcDDxITPI82NTAxMzYxNuIMNg8eAUoOBQ4ZNR4BDAUOD-IMMhM0JAEfNzYUCA8ZGgoAoAsPNxj_PB45nQcYOe4IDAgCDw0QMQUvGB832gkHoWRwbS5kZW1kZXgYDPIiaWQ_ZF92aXNpZF92ZXI9NC40LjAmZF9maWVsZGdyb3VwPU1DJmRfcnRiZD1qc29uJigAEjIIAPApaWZ5PTEmZF9vcmdpZD1EQjk2Mzk3MjVCRDJGQzVCMEE0OTVDNjUlNDBBZG9iZU9yZyZkX25zaWTzCCZzPVscNjYzMnwED38cBC42M34SGTatBh9Yfxw9nzY0MTQ3NTYyM-gICA9QAagO_QcPUAFVD4kLCADpGQK_HqF0YWdtYW5hZ2VyjAvyC2d0YWcvanM_aWQ9QVctMTAxMzUzNjQwNiZsuA4gbnPVEEBMYXllvh4A1w4_IjoiyAYHLjUy_wA_NzQ2yAZHnzM5OTA2MDQxOcgGCA_9AFYfNP0ADQyfBA-nBjIDAwEvMjEDAS9_OTU5NTgxOP8BAkcmY3g92h0PBAIHLjcz9AkvODHRFkifNTEwNDY2NjIy-QsIDwQCFA8BATMeNM8TCgEBDwgCQgQHAR8zrwgID0AOkA6QBhA4pAYFPQ0ATB8wbmRDNRMCSgsPIxwqBTUODysaCA81AY8eNCALCjUBD3ECQgM8AS8xMMkHCA9iDQEBMRcPAhj8HjQADig5NTQFDMIBCdoKAVIBPyIsIgomHgP-Fw8-BwkganOkFbBydnIub3JnL3VwX40fUGVyLjEu3ScmanNjCg8TBgcQNcIDImVufyYC-SZPNDA2NBcISI8xMjM2MDI5NdcDCA_ZADIA3AgP2QAKDLgBD_MHMwPfAB82kwwID98AMh0zXxY_NDA2zwlJA9kALzU5bA0HD9kAMh00mSAL2QAPuAFLD6sJCEBwLnRlpBQxdHYvCQAwLWZl6ikfLmoDFQ0jDzg0MDdeKQ9bJT2PNDU2MDEwOTTTAEcPrAEBCdMAD6wBQhM02QAfNVcNCCZjba0B-wZ2Mi9hZHZlcnRpc2VyP3JlZmVyZXKmHgCGCgNKHgB-DQ9wJzHAJmJ1eWVyX3BpeGVsNRlGNTk5NZMFUmZldGNoJwkJcRQ9NDA3Mwg4NDA3gydfRkVUQ0h5LDufMzg3MTQyNDc0twQIsGNkbi5idHRyYWNrIwGlL2pzLzQ0OTExL0waRi8xLjAOAE8ubWluHAMVHTTcGTg0MDc_Eg8cAz1ANTUwMZUYD5ILCA_wAEoPvgUACfAADzkDQwT2AA_EBQiBYmF0LmJpbmfjAQB8GfAJb24vMD90aT0yMTAxMTI4MiZWZXI9MiZtHR3wEzVhOTZlMmYtYWU3NC00ODM3LWFmNTEtM2VlODEzODczMjS7LPQWZD05MjVmNzUyMDQ1YTYxMWVkOGI2YWIzZDM0MGZiZjhjMiZ2aSUAFTglAPABYTJlOTA1NjlmYzQyZGE1YSUA9SdzPTEmbXNjbGtpZD1OJnBpPTAmbGc9ZW4tVVMmc3c9MTI4MCZzaD0xMDI0JnNjPTI0JnRsPUIDK0MlMjBNNyvxBCUyMExlbmRlciUyMCU3QyUyMFI7KwCqKwQ9KwYbAALzMD8ma3dNADgfcIMEUPAAcj0mbHQ9Mjc4NSZldnQ9oh32BExvYWQmc3Y9MSZybj05Njg5MjiWBA8HIwMgNDDLFQxNCQAUAAX8DQ8WLkmfMzI2NTc1NjE4rQMICbcCAA0AD5UHFB4xiQMvMTDeGUl_OTI4MzY2NfwaCQC_AAWDAwANAA_MABQdNKEPGjTMAA9VBEMC0gAvNjDaHAgAXgdxeW91dHViZVgEpmlmcmFtZV9hcGl7Ag-kDAgdMb4TIDQxkiQFfgIPehA8jzE0NTkzNTkyDQcID9IALQ7kBw_SAFIPCwoID9IALA4nDwukAQ99AkITM6sBHzXpEAgPVx9cDr8MNzEyMlAPD6wCBA8pECUFTR8PHQUIDwIBWw8VDAAKAgEPCgILDwkBLR85CQEI8gBjb25uZWN0LmZhY2Vib28rKIJlbl9VUy9mYs8kD7IKFR4ysgooMTOmCw-yCjyPMzIwNzY1MDIPKgkP3wA4D0wGAQnfAAzFAQn2EgCJEg_1EiAE5AAfOUsGCA_kADkPVwYAD-QACg8iEjMDyQEP5DYJDw0lUw-EBgAYNNkUD6oEBA_dASQFAiUPqwUID_gAUg8ZFAAZMfgADNsCD_cBMtA0ODQ2MzY2Njc3fV19
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=0&c=1202&i=8rui6w&p=regions-prod&s=15753&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTcUAPAmY2xpZW50SWQiOjEyMDIsInB1Ymxpc2hQYXRoIjoicmVnaW9ucy1wcm9kIiwiaW5zdGFuY2UvAPE0IjhydWk2dyIsInBhY2tldCI6MCwibW9kZSI6Im9ic2VydmUiLCJjb29raWVzIjp7fSwiZW52aXJvbm1lbnQiOiJSZVwAIiBQXADyBnJlcXVlc3RzIjpbeyJkZXN0aW5hdMAA8QxodHRwczovL21hcHMuZ29vZ2xlYXBpcy5jb20UAEEvYXBpCQDwCGpzL2dlbl8yMDQ_Y3NwX3Rlc3Q9dHJ1iQAwdHlwmgDwC3hociIsInN0YXJ0IjoxNjY1MDgxNzIzMjEynwAABgEKFABQc291cmM5ALJYSFJfTUFOQUdFUkEAwHR1cyI6ImFsbG93ZRwBYHJlYXNvbr8A1F0sImRhdGFQYXR0ZXISALJsaXN0IjpbXSwiaWYAzzQ2NTQ1MTk1MzB9LPEAYR8z8QAAPzMsIvEAUB8x8QAk9DxzdGF0aWNtYXA_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_bG9h8gQijzg1OTU1MDk1AQQID5EBFg_yAf8kHzbyAQwgbXVkBTJvbk_BByJyQTkCAuwDD_cBLR8y6QP_Zw7oBQrpAwz3AS9DTPgBOR8z-AEwAYAF8BoyNGRhNThiODk3YTgzYWM4ZGQ2MTIyMDkxYTYzODZjNy5qcz9jb25kaTgKr0lkMD0zNjUyODcNBREuMzUBCj80NjkNBUevNjY5MDA3NDEwNh4Bkh00OQQKHgEMQgIPOQQxBSMBHzgjAZIOTgcPIwELD2UDMgUkAR85JAEb8AtlcnJvci9lLmdpZj9tc2c9SW52YWxpZCUyMLsMAAcAQWVmaW5JA3ElMjB1c2Vkrwj7ATA1OTg1NyZsbm49NTQmZm7KCA--BwAzJTJGqgkGCgABtAk1JTJGmAlyLmpzJmNpZCQJApIOEz02AAR0CQGvCQMUAAFAAJImcmlkPS0xJmQHAAHRAKVOYW1lPURhdGFEvgBQRXhjZXAQBAYGBA8PCwQuNTHCAQEUAAUTDfECaW1nX0RPTUF0dHJNb2RpZmn5DQUXCQ8MDiiPMzUzODE3MTcjBwjxA3NwLmFuYWx5dGljcy55YWhvbw8L8RBzcHAucGw_YT0xMDAwMCYueXA9MTAxNzU2NTgmaGU96g5SJmF1aWRRAQDzDw8WDAs9NTIx7AMBFAAPBwFPjzMwNzkwNjI0IQoJ8B1hZC5kb3VibGVjbGljay5uZXQvZGRtL2FjdGl2aXR5L3NyYz05MTAwNTc2O-kAcz1wdjtjYXT-AIA7ZGNfbGF0PQgAEHI6AvAOO3RhZ19mb3JfY2hpbGRfZGlyZWN0ZWRfdHJlYXSpEP8UPTt0ZnVhPTtucGE9O29yZD0xPzQ2NjI3ODk5NTY5ODAuNzNaAg8PagsAEDUUAA9TAVF_Mzc1NjY5NiAECOJkYy5hZHMubGlua2VkaWYN_wxjb2xsZWN0Lz9waWQ9NjgxNTA2JmZtdD1naWbvABAOZwo4NTI3TAcPSQNFrzUwNjM1NTEyNDQPBQdQY3QucGlAEDFlc3RDA_IJdjMvP3RpZD0yNjEzNDgzOTE3NTU3Jm5vOw0vPTHxABAfODMDAAhJDw86BEafNjM2NjcxNDc3RwgIBjcEMHR3aZQSAfYA4mkvYWRzY3Q_cF9pZD1UGQBwJnBfdXNlchIAUDAmdHhuCQDwAW8xcnh0JmV2ZW50cz0lNUIDAPAcMjJwYWdldmlldyUyMiUyQ251bGwlNUQlNUQmdHdfc2FsZV9hbW91bnQ9MBEA_wBvcmRlcl9xdWFudGl0eT2EBBAuMzBRAQAUAA8xA0-fNTU2NjY0Nzk2lxAIADcCHy9AAYsPxAUALzMxggNRnzMzMDIxOTcwOcsGCDBwdWJxBB1nygUExgXBO3hzcD00OTU4ODAzdQX_AjIwOTQ0OTQyNTgxMjU2MDc_lAMPHjPhFBA1FAAPQwJPMDQ4NJcDLzY2hQQIcmliLmFkbnjEFvAZcGl4aWU_cGk9OGQ1ZjM4OWEtMmMwYy00YzZmLWJjNzgtNDQ0ZWMzYdgUIGU9RBJTVmlldyagBA9PAxEPkQUAHzORBVKfMzgxODk3MzY45hYIDzYKAATeEwQIAAHyCREvBQ7-EGQwOTI2NDYyYjRiOTM0NDk1ZDFjYTkwZTA0Y2U3OTcFDmY0MjMwMjYxAgI3AQLhDgoSEy8zNTcDACg1MDcDDxITPI82NTAxMzYxNuIMNg8eAUoOBQ4ZNR4BDAUOD-IMMhM0JAEfNzYUCA8ZGgoAoAsPNxj_PB45nQcYOe4IDAgCDw0QMQUvGB832gkHoWRwbS5kZW1kZXgYDPIiaWQ_ZF92aXNpZF92ZXI9NC40LjAmZF9maWVsZGdyb3VwPU1DJmRfcnRiZD1qc29uJigAEjIIAPApaWZ5PTEmZF9vcmdpZD1EQjk2Mzk3MjVCRDJGQzVCMEE0OTVDNjUlNDBBZG9iZU9yZyZkX25zaWTzCCZzPVscNjYzMnwED38cBC42M34SGTatBh9Yfxw9nzY0MTQ3NTYyM-gICA9QAagO_QcPUAFVD4kLCADpGQK_HqF0YWdtYW5hZ2VyjAvyC2d0YWcvanM_aWQ9QVctMTAxMzUzNjQwNiZsuA4gbnPVEEBMYXllvh4A1w4_IjoiyAYHLjUy_wA_NzQ2yAZHnzM5OTA2MDQxOcgGCA_9AFYfNP0ADQyfBA-nBjIDAwEvMjEDAS9_OTU5NTgxOP8BAkcmY3g92h0PBAIHLjcz9AkvODHRFkifNTEwNDY2NjIy-QsIDwQCFA8BATMeNM8TCgEBDwgCQgQHAR8zrwgID0AOkA6QBhA4pAYFPQ0ATB8wbmRDNRMCSgsPIxwqBTUODysaCA81AY8eNCALCjUBD3ECQgM8AS8xMMkHCA9iDQEBMRcPAhj8HjQADig5NTQFDMIBCdoKAVIBPyIsIgomHgP-Fw8-BwkganOkFbBydnIub3JnL3VwX40fUGVyLjEu3ScmanNjCg8TBgcQNcIDImVufyYC-SZPNDA2NBcISI8xMjM2MDI5NdcDCA_ZADIA3AgP2QAKDLgBD_MHMwPfAB82kwwID98AMh0zXxY_NDA2zwlJA9kALzU5bA0HD9kAMh00mSAL2QAPuAFLD6sJCEBwLnRlpBQxdHYvCQAwLWZl6ikfLmoDFQ0jDzg0MDdeKQ9bJT2PNDU2MDEwOTTTAEcPrAEBCdMAD6wBQhM02QAfNVcNCCZjba0B-wZ2Mi9hZHZlcnRpc2VyP3JlZmVyZXKmHgCGCgNKHgB-DQ9wJzHAJmJ1eWVyX3BpeGVsNRlGNTk5NZMFUmZldGNoJwkJcRQ9NDA3Mwg4NDA3gydfRkVUQ0h5LDufMzg3MTQyNDc0twQIsGNkbi5idHRyYWNrIwGlL2pzLzQ0OTExL0waRi8xLjAOAE8ubWluHAMVHTTcGTg0MDc_Eg8cAz1ANTUwMZUYD5ILCA_wAEoPvgUACfAADzkDQwT2AA_EBQiBYmF0LmJpbmfjAQB8GfAJb24vMD90aT0yMTAxMTI4MiZWZXI9MiZtHR3wEzVhOTZlMmYtYWU3NC00ODM3LWFmNTEtM2VlODEzODczMjS7LPQWZD05MjVmNzUyMDQ1YTYxMWVkOGI2YWIzZDM0MGZiZjhjMiZ2aSUAFTglAPABYTJlOTA1NjlmYzQyZGE1YSUA9SdzPTEmbXNjbGtpZD1OJnBpPTAmbGc9ZW4tVVMmc3c9MTI4MCZzaD0xMDI0JnNjPTI0JnRsPUIDK0MlMjBNNyvxBCUyMExlbmRlciUyMCU3QyUyMFI7KwCqKwQ9KwYbAALzMD8ma3dNADgfcIMEUPAAcj0mbHQ9Mjc4NSZldnQ9oh32BExvYWQmc3Y9MSZybj05Njg5MjiWBA8HIwMgNDDLFQxNCQAUAAX8DQ8WLkmfMzI2NTc1NjE4rQMICbcCAA0AD5UHFB4xiQMvMTDeGUl_OTI4MzY2NfwaCQC_AAWDAwANAA_MABQdNKEPGjTMAA9VBEMC0gAvNjDaHAgAXgdxeW91dHViZVgEpmlmcmFtZV9hcGl7Ag-kDAgdMb4TIDQxkiQFfgIPehA8jzE0NTkzNTkyDQcID9IALQ7kBw_SAFIPCwoID9IALA4nDwukAQ99AkITM6sBHzXpEAgPVx9cDr8MNzEyMlAPD6wCBA8pECUFTR8PHQUIDwIBWw8VDAAKAgEPCgILDwkBLR85CQEI8gBjb25uZWN0LmZhY2Vib28rKIJlbl9VUy9mYs8kD7IKFR4ysgooMTOmCw-yCjyPMzIwNzY1MDIPKgkP3wA4D0wGAQnfAAzFAQn2EgCJEg_1EiAE5AAfOUsGCA_kADkPVwYAD-QACg8iEjMDyQEP5DYJDw0lUw-EBgAYNNkUD6oEBA_dASQFAiUPqwUID_gAUg8ZFAAZMfgADNsCD_cBMtA0ODQ2MzY2Njc3fV19 HTTP/1.1
Host: data.privacy.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 06 Oct 2022 18:42:05 GMT
expires: Thu, 06 Oct 2022 18:42:04 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=2&c=1202&i=8rui6w&p=regions-prod&s=15737&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTcUAPAmY2xpZW50SWQiOjEyMDIsInB1Ymxpc2hQYXRoIjoicmVnaW9ucy1wcm9kIiwiaW5zdGFuY2UvAPE0IjhydWk2dyIsInBhY2tldCI6MCwibW9kZSI6Im9ic2VydmUiLCJjb29raWVzIjp7fSwiZW52aXJvbm1lbnQiOiJSZVwAIiBQXADyBnJlcXVlc3RzIjpbeyJkZXN0aW5hdMAA8ypodHRwczovL2dvb2dsZWFkcy5nLmRvdWJsZWNsaWNrLm5ldC9wYWdlYWQvdmlld3Rocm91Z2hjb24DAfsbLzEwMTM1MzY0MDYvP3JhbmRvbT0xNjY1MDgxNzI0MTY2JmN2PTkmZnN0FwDxHG51bT0xJmZtdD0zJmxhYmVsPUYwa1FDSVdJZ3FZQkVKYXRwZU1EJmJnPWYBAPEAJmd1aWQ9T04mcmVzcD1HrwDwEW1LVHliUWhDc08mdV9oPTEwMjQmdV93PTEyODAmdV9hEwAgMDIKAAUUADFjZD0lALBoaXM9MSZ1X3R6PSsA8QNqYXZhPWZhbHNlJnVfbnBsdWcXAPANbm1pbWU9MCZndG09Mm9hYTUwJnNlbmRiPTEmaSIA1mRhdGE9ZXZlbnQlM0QVAUAmZnJtQAAxcmw9YAHTJTNBJTJGJTJGd3d3LvgB8AUuY29tJTJGbG9jYXRvciUyRm1sbwYA9ShvcnRnYWdlLWxvYW4tb2ZmaWNlci1yb25hbGQtZ2V0dHJpZGdlLWJpcm1pbmdoYW0mdGliYT1CEABDJTIwTUQA8QQlMjBMZW5kZXIlMjAlN0MlMjBSSABEJTIwR0oABhsAAo8CICZhZwG2MTc0MjI4MzU2Mi7NAQAGAZBfZWU9MSZobj3KAAI0AgDJAKImZ2NwPTEmY3RflQLwCV9wcmVzZW50PTEmYXN5bmM9MSIsInR5cMEC1mltZyIsInN0YXJ0IjpeADAxNzLGAgAtAwU_AqA0NDMsInNvdXJjOQAxbXV0tgISTwIDInJBRwCQdHVzIjoibG9hRgNgcmVhc29u6QIwXSwingFkUGF0dGVyEgC0bGlzdCI6W10sImlpAK8zNzA0NzkwMH0sGwMFMXQudBkDsHR2L3RyYWNrP2FjPQMQPRcD8wVWaWV3JmVudj1qcy13ZWImdGFnXxoD_xs9Ni40LjBfNTllNzRjYiZidXllcl9waXhlbF9pZD01OTk1JnJlZmVyZXIlAlCAdXNlcl9zZXO2BAF_AP8UYjAwN2NiZi01ZTBmLTQwZmUtOGVlNS0wYTY1YWMwMjcxMGKzAQ4vMjOzAQ2waW5zZXJ0QmVmb3KyBD9zdGGuASqvNjI1Njg4MzYxOa4B_yMfM2EDYASzAR8yYQP_JB80swEcL0NMFQUwBbQBHzFnAweIc21ldHJpY3PPBrAvaWQ_ZF92aXNpZAUFID00AQX3MCZkX2ZpZWxkZ3JvdXA9TUMmbWNvcmdpZD1EQjk2Mzk3MjVCRDJGQzVCMEE0OTVDNjUlNDBBZG9iZU9yZyZ0czYINjQ0NJMEMnhocuoACkYGLzQ0MgEBFzRGBrJYSFJfTUFOQUdFUkEAApIEb2FsbG93ZUMGIZ80MDQ1NDI0OTjiAggPLgH_HOBweGwucWNjZXJ0dGVzdGAIES84B_AFP3I9MTk0OTA3MDAxMjtmcGFuPTAHAPcAPVAwLTE5ODIzMTg0NTEtVAjwBjU0O3BiYz07bnM9MDtjZT0xO3FqcwYA9x12PTM5MDE2ZDYzLTIwMjIwOTI5MTYxNzI1O3JlZj07Y209O2dkcHI9MDtkPbEJiDtkc3Q9MDtlzQq_NDE2O3R6bz0wO3XwCVFQO29nbD02CvMGbGUuZW5fVVMlMkNzaXRlX25hbWUu-QtwQmFuayUyQ3IJ_wIuYXJ0aWNsZSUyQ1RpdGxlLisKNqAlMkNkZXNjcmlwDwkgLkyPDGBuZyUyMGbQCmYwYSUyMG2KChRsigpXaW4lMjCFAC8zRpkKBSBhdBoAApgKADQAAdUArTBjYSUyQ3VybC5bC1MlMjUyRa4BAQwAD2MLGQIbCxUtGQsRLaMAjyUyQ2ltYWdlbQAWEC3EC4BlZGlhJTJGSToAtXMlMkZXZWJTaXRlEAADpABRLWxvZ2-pAIBwbmclM0ZyZTwFUG9uJTNEPw4AvgE_IjoiMAsEPzQxNxwGABc56gQPMAtBrzM5ODg4NDI5MTcbBgeCYmF0LmJpbme5AxIvLgvGLzIxMDExMjgyLmpzxgUCPgICiAUKyQUvMDlcCgAYN8kFoGFwcGVuZENoaWy2BQ9bCi2fNzIyNTM2MDg1xgUID9kANB45uAEJ2QAPuAFBBd8AD7gBTT8xMDDfABwPswgyBeAAHziYAgcKsw4E1hA2MXAtuQ8PzhAsD8gQ_7ZAc3NjdOgQD9AQCCImcrsSAAYAB5cKD9EEBy8xNvgDACc5MLAFD9EEO581NjM2MDc5NjYSA___iQ_yEwEJEgMMCgcPKwYyBBkDHzfeDggAKwaBZmFjZWJvb2vHCPEPdHIvP2lkPTQ5OTEwODUzMTc3NTcxNCZldj1QYWdlBhQfZO0VUWNybD0maWaqFgkeD1M1NDQmc-cWEHP5FvcYMjQmdj0yLjkuODQmcj1zdGFibGUmZWM9MCZvPTMwJmZicD1mYi4x4RX4ATU0Mi4xMjQ5NjYyNzg3JmnmDHMxMzImY29vegB2cnFtPUdFVMkJD6UKBB81jw8AARQABdUV8QJpbWdfRE9NQXR0ck1vZGlmaYQPBc4JD5cPJ58zMjYxNzAxNjjyCAiFY29ubmVjdC7rAQDuGPsAc2lnbmFscy9jb25maWcv8wEdP1QBBgUBD_0FCA8qFQA3NTQ1_QUPKhU8rzcxMzY2MDIwOTQQCQcP_gBYHTUUCgr-AA_pA0IFBAEPAgIIAOkDBscYBxQKADEXEC0vGI8vOTU5NTgxOOAaAxw34BpANzkyMAEAEibgGg6_Gg-pGl4ABhkFpBowZ3RhmA0A2gIPpRqqAlUaAz8clWlzX3Z0Yz0xJoAcjzg2MTk2ODUwLRwE9gBybXRfdGxkPTAmaXByPXnCAw_HBAQuNDPBAig2N78DDMECD5waMZ8zMjQ4OTQ2NDipBgwDwAIvbm-_Av_eHzG_AioXOH4GD78CQZ81NTIyMzc1ODZSEQgHfwUPvwIED18gDBszXyAfN38F_3KfMTM3NzIzMjQzfwUMD8ACFw47Dy82N8ACTZ80MzE1MjcxNzA_CCsPwQL_yg9ACBcPwQIALzgygQVMnzM0MTM3NDQzNAISDAX-DE9jb20v6Q7_Jw8iCgAfOY4ZFkBlcnJv0B4PvyQdBeUOD-MBCC1hZNEnMWRkbZcZ8AJ2aXR5L3NyYz05MTAwNTc2O3Macj1wdjtjYXT3HJAwO2RjX2xhdD0IAGByZGlkPTvjJFBmb3JfY3oZ8ABfZGlyZWN0ZWRfdHJlYXR_KPEFPTt0ZnVhPTtucGE9O29yZD0xPzRSEK85OTU2OTgwLjczcQsNPjM1Mk8BLzcyLRVHrzMwMzc1NjY5NjkvDwcPSAGjHTZ6Dw9IAVEfN_QJCA9IAaIAiSgkZW40KAHcKgpIAQxCCw-rFDIElwIPxBIJIWJ0lSgBphQgZW47KgCFAxEvlSrxCT9pbnB1dD0lN0IlMjJnbG9iYWxJZCUyMpAqAqgQQDAwMC2wEAsFAAATAEAwMDQyLQBgMkMlMjJj3wM3aXZlQAAFHABQcGxhY2V2AA8dAAEpZ291AFU0NDkxMToAA5IoBzgA9RVhYjY4NDI0OC1hY2U5LTQ2MTgtYjQxZi1kN2NmNGNlNDc2MDM_AHJwYXJlbnRQVy0nZXJHAAYjAA8dAAkAOCEPNQABb2NvbW1vbhoAAXBoZWFydGJlmiAARgEhMSUdATB1cmxxAADmKx0yliAIIiUP8SsxAGoAAXYAsGZpbmdlcnByaW50FAABfgAACQAMHQBRUHJvdmkGLACzAAEiAEYyJTdEhQUPTCUELzc5PQQAABQABb0VD0wlPp81OTg4NjI2NjV0CwgP8QL__0seOC4HGDloDg_xAkcPeQgID_ECBEBnZXRwTi4gcz9OKQFYBQ_TAxAP4gBenzQ5NzY0OTA0OaMKCA_iADoOaw0ZN4kLD8QBPgXiAA_EAR8yanM_IAcRPcABNyZjYvAqNjA3N9EBD1waBy4wNwkmCvIAD1waPJ8zOTQ0Mjk1NDPwAGUPxAIBD2sNCQ-MCTMD9gAfNNsKCDBkYy5CNYFsaW5rZWRpbpQJ8QRjb2xsZWN0Lz9waWQ9NjgxNTA2txg2Z2lm3gEPeBgDPjM1MtsBGTg3HA80IjyfMDYzNTUxMjQ1Bw0HD-QAPg8jHgAK5AAPWwtCEzXrAC82MusACJFwbS5kZW1kZXgHNw_eLg_yAUFBTSZkX3J0YmQ9anNvbiYHL08yJmRf8y4XUGRfbnNpmxr5HmRfbWlkPTMxMzQwNTg4OTE3NDU5MDQzNDEyMjkwMTUxNzY2MzEzOTg1NjY4JgsgJzkxOQQP3QkEHzk_KgABFAAP3QlHjzQ5NTI1NzI5vjMJH2RzAf9gAIQZomNsb3VkZmxhcmW0BGFkbi1jZ2nvNgC4NRJ0ujcPSwIFHjlZNBA5FAAPSwJHnzcyMjY4Mzk0NakECA_YADAOTDIoOTmDLA9LCD4F2AAfNpYEBwM9LgiaBADTO3M1Lmh0bWw_PwSvdW5kZWZpbmVkI5AOCgeCBkBmcmFt7AEMmTk9NTAwhQYCFAAF3wERaTwAD8cjRMAzNjYxMTM5MzV9XX0
204 No Content 0 B URL HTTP/2 data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=2&c=1202&i=8rui6w&p=regions-prod&s=15737&d=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_AqA0NDMsInNvdXJjOQAxbXV0tgISTwIDInJBRwCQdHVzIjoibG9hRgNgcmVhc29u6QIwXSwingFkUGF0dGVyEgC0bGlzdCI6W10sImlpAK8zNzA0NzkwMH0sGwMFMXQudBkDsHR2L3RyYWNrP2FjPQMQPRcD8wVWaWV3JmVudj1qcy13ZWImdGFnXxoD_xs9Ni40LjBfNTllNzRjYiZidXllcl9waXhlbF9pZD01OTk1JnJlZmVyZXIlAlCAdXNlcl9zZXO2BAF_AP8UYjAwN2NiZi01ZTBmLTQwZmUtOGVlNS0wYTY1YWMwMjcxMGKzAQ4vMjOzAQ2waW5zZXJ0QmVmb3KyBD9zdGGuASqvNjI1Njg4MzYxOa4B_yMfM2EDYASzAR8yYQP_JB80swEcL0NMFQUwBbQBHzFnAweIc21ldHJpY3PPBrAvaWQ_ZF92aXNpZAUFID00AQX3MCZkX2ZpZWxkZ3JvdXA9TUMmbWNvcmdpZD1EQjk2Mzk3MjVCRDJGQzVCMEE0OTVDNjUlNDBBZG9iZU9yZyZ0czYINjQ0NJMEMnhocuoACkYGLzQ0MgEBFzRGBrJYSFJfTUFOQUdFUkEAApIEb2FsbG93ZUMGIZ80MDQ1NDI0OTjiAggPLgH_HOBweGwucWNjZXJ0dGVzdGAIES84B_AFP3I9MTk0OTA3MDAxMjtmcGFuPTAHAPcAPVAwLTE5ODIzMTg0NTEtVAjwBjU0O3BiYz07bnM9MDtjZT0xO3FqcwYA9x12PTM5MDE2ZDYzLTIwMjIwOTI5MTYxNzI1O3JlZj07Y209O2dkcHI9MDtkPbEJiDtkc3Q9MDtlzQq_NDE2O3R6bz0wO3XwCVFQO29nbD02CvMGbGUuZW5fVVMlMkNzaXRlX25hbWUu-QtwQmFuayUyQ3IJ_wIuYXJ0aWNsZSUyQ1RpdGxlLisKNqAlMkNkZXNjcmlwDwkgLkyPDGBuZyUyMGbQCmYwYSUyMG2KChRsigpXaW4lMjCFAC8zRpkKBSBhdBoAApgKADQAAdUArTBjYSUyQ3VybC5bC1MlMjUyRa4BAQwAD2MLGQIbCxUtGQsRLaMAjyUyQ2ltYWdlbQAWEC3EC4BlZGlhJTJGSToAtXMlMkZXZWJTaXRlEAADpABRLWxvZ2-pAIBwbmclM0ZyZTwFUG9uJTNEPw4AvgE_IjoiMAsEPzQxNxwGABc56gQPMAtBrzM5ODg4NDI5MTcbBgeCYmF0LmJpbme5AxIvLgvGLzIxMDExMjgyLmpzxgUCPgICiAUKyQUvMDlcCgAYN8kFoGFwcGVuZENoaWy2BQ9bCi2fNzIyNTM2MDg1xgUID9kANB45uAEJ2QAPuAFBBd8AD7gBTT8xMDDfABwPswgyBeAAHziYAgcKsw4E1hA2MXAtuQ8PzhAsD8gQ_7ZAc3NjdOgQD9AQCCImcrsSAAYAB5cKD9EEBy8xNvgDACc5MLAFD9EEO581NjM2MDc5NjYSA___iQ_yEwEJEgMMCgcPKwYyBBkDHzfeDggAKwaBZmFjZWJvb2vHCPEPdHIvP2lkPTQ5OTEwODUzMTc3NTcxNCZldj1QYWdlBhQfZO0VUWNybD0maWaqFgkeD1M1NDQmc-cWEHP5FvcYMjQmdj0yLjkuODQmcj1zdGFibGUmZWM9MCZvPTMwJmZicD1mYi4x4RX4ATU0Mi4xMjQ5NjYyNzg3JmnmDHMxMzImY29vegB2cnFtPUdFVMkJD6UKBB81jw8AARQABdUV8QJpbWdfRE9NQXR0ck1vZGlmaYQPBc4JD5cPJ58zMjYxNzAxNjjyCAiFY29ubmVjdC7rAQDuGPsAc2lnbmFscy9jb25maWcv8wEdP1QBBgUBD_0FCA8qFQA3NTQ1_QUPKhU8rzcxMzY2MDIwOTQQCQcP_gBYHTUUCgr-AA_pA0IFBAEPAgIIAOkDBscYBxQKADEXEC0vGI8vOTU5NTgxOOAaAxw34BpANzkyMAEAEibgGg6_Gg-pGl4ABhkFpBowZ3RhmA0A2gIPpRqqAlUaAz8clWlzX3Z0Yz0xJoAcjzg2MTk2ODUwLRwE9gBybXRfdGxkPTAmaXByPXnCAw_HBAQuNDPBAig2N78DDMECD5waMZ8zMjQ4OTQ2NDipBgwDwAIvbm-_Av_eHzG_AioXOH4GD78CQZ81NTIyMzc1ODZSEQgHfwUPvwIED18gDBszXyAfN38F_3KfMTM3NzIzMjQzfwUMD8ACFw47Dy82N8ACTZ80MzE1MjcxNzA_CCsPwQL_yg9ACBcPwQIALzgygQVMnzM0MTM3NDQzNAISDAX-DE9jb20v6Q7_Jw8iCgAfOY4ZFkBlcnJv0B4PvyQdBeUOD-MBCC1hZNEnMWRkbZcZ8AJ2aXR5L3NyYz05MTAwNTc2O3Macj1wdjtjYXT3HJAwO2RjX2xhdD0IAGByZGlkPTvjJFBmb3JfY3oZ8ABfZGlyZWN0ZWRfdHJlYXR_KPEFPTt0ZnVhPTtucGE9O29yZD0xPzRSEK85OTU2OTgwLjczcQsNPjM1Mk8BLzcyLRVHrzMwMzc1NjY5NjkvDwcPSAGjHTZ6Dw9IAVEfN_QJCA9IAaIAiSgkZW40KAHcKgpIAQxCCw-rFDIElwIPxBIJIWJ0lSgBphQgZW47KgCFAxEvlSrxCT9pbnB1dD0lN0IlMjJnbG9iYWxJZCUyMpAqAqgQQDAwMC2wEAsFAAATAEAwMDQyLQBgMkMlMjJj3wM3aXZlQAAFHABQcGxhY2V2AA8dAAEpZ291AFU0NDkxMToAA5IoBzgA9RVhYjY4NDI0OC1hY2U5LTQ2MTgtYjQxZi1kN2NmNGNlNDc2MDM_AHJwYXJlbnRQVy0nZXJHAAYjAA8dAAkAOCEPNQABb2NvbW1vbhoAAXBoZWFydGJlmiAARgEhMSUdATB1cmxxAADmKx0yliAIIiUP8SsxAGoAAXYAsGZpbmdlcnByaW50FAABfgAACQAMHQBRUHJvdmkGLACzAAEiAEYyJTdEhQUPTCUELzc5PQQAABQABb0VD0wlPp81OTg4NjI2NjV0CwgP8QL__0seOC4HGDloDg_xAkcPeQgID_ECBEBnZXRwTi4gcz9OKQFYBQ_TAxAP4gBenzQ5NzY0OTA0OaMKCA_iADoOaw0ZN4kLD8QBPgXiAA_EAR8yanM_IAcRPcABNyZjYvAqNjA3N9EBD1waBy4wNwkmCvIAD1waPJ8zOTQ0Mjk1NDPwAGUPxAIBD2sNCQ-MCTMD9gAfNNsKCDBkYy5CNYFsaW5rZWRpbpQJ8QRjb2xsZWN0Lz9waWQ9NjgxNTA2txg2Z2lm3gEPeBgDPjM1MtsBGTg3HA80IjyfMDYzNTUxMjQ1Bw0HD-QAPg8jHgAK5AAPWwtCEzXrAC82MusACJFwbS5kZW1kZXgHNw_eLg_yAUFBTSZkX3J0YmQ9anNvbiYHL08yJmRf8y4XUGRfbnNpmxr5HmRfbWlkPTMxMzQwNTg4OTE3NDU5MDQzNDEyMjkwMTUxNzY2MzEzOTg1NjY4JgsgJzkxOQQP3QkEHzk_KgABFAAP3QlHjzQ5NTI1NzI5vjMJH2RzAf9gAIQZomNsb3VkZmxhcmW0BGFkbi1jZ2nvNgC4NRJ0ujcPSwIFHjlZNBA5FAAPSwJHnzcyMjY4Mzk0NakECA_YADAOTDIoOTmDLA9LCD4F2AAfNpYEBwM9LgiaBADTO3M1Lmh0bWw_PwSvdW5kZWZpbmVkI5AOCgeCBkBmcmFt7AEMmTk9NTAwhQYCFAAF3wERaTwAD8cjRMAzNjYxMTM5MzV9XX0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=2&c=1202&i=8rui6w&p=regions-prod&s=15737&d=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_AqA0NDMsInNvdXJjOQAxbXV0tgISTwIDInJBRwCQdHVzIjoibG9hRgNgcmVhc29u6QIwXSwingFkUGF0dGVyEgC0bGlzdCI6W10sImlpAK8zNzA0NzkwMH0sGwMFMXQudBkDsHR2L3RyYWNrP2FjPQMQPRcD8wVWaWV3JmVudj1qcy13ZWImdGFnXxoD_xs9Ni40LjBfNTllNzRjYiZidXllcl9waXhlbF9pZD01OTk1JnJlZmVyZXIlAlCAdXNlcl9zZXO2BAF_AP8UYjAwN2NiZi01ZTBmLTQwZmUtOGVlNS0wYTY1YWMwMjcxMGKzAQ4vMjOzAQ2waW5zZXJ0QmVmb3KyBD9zdGGuASqvNjI1Njg4MzYxOa4B_yMfM2EDYASzAR8yYQP_JB80swEcL0NMFQUwBbQBHzFnAweIc21ldHJpY3PPBrAvaWQ_ZF92aXNpZAUFID00AQX3MCZkX2ZpZWxkZ3JvdXA9TUMmbWNvcmdpZD1EQjk2Mzk3MjVCRDJGQzVCMEE0OTVDNjUlNDBBZG9iZU9yZyZ0czYINjQ0NJMEMnhocuoACkYGLzQ0MgEBFzRGBrJYSFJfTUFOQUdFUkEAApIEb2FsbG93ZUMGIZ80MDQ1NDI0OTjiAggPLgH_HOBweGwucWNjZXJ0dGVzdGAIES84B_AFP3I9MTk0OTA3MDAxMjtmcGFuPTAHAPcAPVAwLTE5ODIzMTg0NTEtVAjwBjU0O3BiYz07bnM9MDtjZT0xO3FqcwYA9x12PTM5MDE2ZDYzLTIwMjIwOTI5MTYxNzI1O3JlZj07Y209O2dkcHI9MDtkPbEJiDtkc3Q9MDtlzQq_NDE2O3R6bz0wO3XwCVFQO29nbD02CvMGbGUuZW5fVVMlMkNzaXRlX25hbWUu-QtwQmFuayUyQ3IJ_wIuYXJ0aWNsZSUyQ1RpdGxlLisKNqAlMkNkZXNjcmlwDwkgLkyPDGBuZyUyMGbQCmYwYSUyMG2KChRsigpXaW4lMjCFAC8zRpkKBSBhdBoAApgKADQAAdUArTBjYSUyQ3VybC5bC1MlMjUyRa4BAQwAD2MLGQIbCxUtGQsRLaMAjyUyQ2ltYWdlbQAWEC3EC4BlZGlhJTJGSToAtXMlMkZXZWJTaXRlEAADpABRLWxvZ2-pAIBwbmclM0ZyZTwFUG9uJTNEPw4AvgE_IjoiMAsEPzQxNxwGABc56gQPMAtBrzM5ODg4NDI5MTcbBgeCYmF0LmJpbme5AxIvLgvGLzIxMDExMjgyLmpzxgUCPgICiAUKyQUvMDlcCgAYN8kFoGFwcGVuZENoaWy2BQ9bCi2fNzIyNTM2MDg1xgUID9kANB45uAEJ2QAPuAFBBd8AD7gBTT8xMDDfABwPswgyBeAAHziYAgcKsw4E1hA2MXAtuQ8PzhAsD8gQ_7ZAc3NjdOgQD9AQCCImcrsSAAYAB5cKD9EEBy8xNvgDACc5MLAFD9EEO581NjM2MDc5NjYSA___iQ_yEwEJEgMMCgcPKwYyBBkDHzfeDggAKwaBZmFjZWJvb2vHCPEPdHIvP2lkPTQ5OTEwODUzMTc3NTcxNCZldj1QYWdlBhQfZO0VUWNybD0maWaqFgkeD1M1NDQmc-cWEHP5FvcYMjQmdj0yLjkuODQmcj1zdGFibGUmZWM9MCZvPTMwJmZicD1mYi4x4RX4ATU0Mi4xMjQ5NjYyNzg3JmnmDHMxMzImY29vegB2cnFtPUdFVMkJD6UKBB81jw8AARQABdUV8QJpbWdfRE9NQXR0ck1vZGlmaYQPBc4JD5cPJ58zMjYxNzAxNjjyCAiFY29ubmVjdC7rAQDuGPsAc2lnbmFscy9jb25maWcv8wEdP1QBBgUBD_0FCA8qFQA3NTQ1_QUPKhU8rzcxMzY2MDIwOTQQCQcP_gBYHTUUCgr-AA_pA0IFBAEPAgIIAOkDBscYBxQKADEXEC0vGI8vOTU5NTgxOOAaAxw34BpANzkyMAEAEibgGg6_Gg-pGl4ABhkFpBowZ3RhmA0A2gIPpRqqAlUaAz8clWlzX3Z0Yz0xJoAcjzg2MTk2ODUwLRwE9gBybXRfdGxkPTAmaXByPXnCAw_HBAQuNDPBAig2N78DDMECD5waMZ8zMjQ4OTQ2NDipBgwDwAIvbm-_Av_eHzG_AioXOH4GD78CQZ81NTIyMzc1ODZSEQgHfwUPvwIED18gDBszXyAfN38F_3KfMTM3NzIzMjQzfwUMD8ACFw47Dy82N8ACTZ80MzE1MjcxNzA_CCsPwQL_yg9ACBcPwQIALzgygQVMnzM0MTM3NDQzNAISDAX-DE9jb20v6Q7_Jw8iCgAfOY4ZFkBlcnJv0B4PvyQdBeUOD-MBCC1hZNEnMWRkbZcZ8AJ2aXR5L3NyYz05MTAwNTc2O3Macj1wdjtjYXT3HJAwO2RjX2xhdD0IAGByZGlkPTvjJFBmb3JfY3oZ8ABfZGlyZWN0ZWRfdHJlYXR_KPEFPTt0ZnVhPTtucGE9O29yZD0xPzRSEK85OTU2OTgwLjczcQsNPjM1Mk8BLzcyLRVHrzMwMzc1NjY5NjkvDwcPSAGjHTZ6Dw9IAVEfN_QJCA9IAaIAiSgkZW40KAHcKgpIAQxCCw-rFDIElwIPxBIJIWJ0lSgBphQgZW47KgCFAxEvlSrxCT9pbnB1dD0lN0IlMjJnbG9iYWxJZCUyMpAqAqgQQDAwMC2wEAsFAAATAEAwMDQyLQBgMkMlMjJj3wM3aXZlQAAFHABQcGxhY2V2AA8dAAEpZ291AFU0NDkxMToAA5IoBzgA9RVhYjY4NDI0OC1hY2U5LTQ2MTgtYjQxZi1kN2NmNGNlNDc2MDM_AHJwYXJlbnRQVy0nZXJHAAYjAA8dAAkAOCEPNQABb2NvbW1vbhoAAXBoZWFydGJlmiAARgEhMSUdATB1cmxxAADmKx0yliAIIiUP8SsxAGoAAXYAsGZpbmdlcnByaW50FAABfgAACQAMHQBRUHJvdmkGLACzAAEiAEYyJTdEhQUPTCUELzc5PQQAABQABb0VD0wlPp81OTg4NjI2NjV0CwgP8QL__0seOC4HGDloDg_xAkcPeQgID_ECBEBnZXRwTi4gcz9OKQFYBQ_TAxAP4gBenzQ5NzY0OTA0OaMKCA_iADoOaw0ZN4kLD8QBPgXiAA_EAR8yanM_IAcRPcABNyZjYvAqNjA3N9EBD1waBy4wNwkmCvIAD1waPJ8zOTQ0Mjk1NDPwAGUPxAIBD2sNCQ-MCTMD9gAfNNsKCDBkYy5CNYFsaW5rZWRpbpQJ8QRjb2xsZWN0Lz9waWQ9NjgxNTA2txg2Z2lm3gEPeBgDPjM1MtsBGTg3HA80IjyfMDYzNTUxMjQ1Bw0HD-QAPg8jHgAK5AAPWwtCEzXrAC82MusACJFwbS5kZW1kZXgHNw_eLg_yAUFBTSZkX3J0YmQ9anNvbiYHL08yJmRf8y4XUGRfbnNpmxr5HmRfbWlkPTMxMzQwNTg4OTE3NDU5MDQzNDEyMjkwMTUxNzY2MzEzOTg1NjY4JgsgJzkxOQQP3QkEHzk_KgABFAAP3QlHjzQ5NTI1NzI5vjMJH2RzAf9gAIQZomNsb3VkZmxhcmW0BGFkbi1jZ2nvNgC4NRJ0ujcPSwIFHjlZNBA5FAAPSwJHnzcyMjY4Mzk0NakECA_YADAOTDIoOTmDLA9LCD4F2AAfNpYEBwM9LgiaBADTO3M1Lmh0bWw_PwSvdW5kZWZpbmVkI5AOCgeCBkBmcmFt7AEMmTk9NTAwhQYCFAAF3wERaTwAD8cjRMAzNjYxMTM5MzV9XX0 HTTP/1.1
Host: data.privacy.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 06 Oct 2022 18:42:05 GMT
expires: Thu, 06 Oct 2022 18:42:04 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=1&c=1202&i=8rui6w&p=regions-prod&s=15683&d=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_AKo7ZHN0PTA7ZXQ9ZQCgdHpvPTA7b2dsPd4A8wZsZS5lbl9VUyUyQ3NpdGVfbmFtZS6lAfUOQmFuayUyQ3R5cGUuYXJ0aWNsZSUyQ1RpdGxlLkLjAEMlMjBNFwHxBCUyMExlbmRlciUyMCU3QyUyMFIbAUQlMjBHHQEGGwACZgKgJTJDZGVzY3JpcPgBIC5MOwJgbmclMjBmeAFmMGElMjBtXwAUbF8AV2luJTIwhQAvM0ZuAAUgYXQaAARtABIw1QChMGNhJTJDdXJsLmcCCAMCUyUyNTJFSAEBDAA_Y29tCwIWAvAAFS3uABEtowCPJTJDaW1hZ2VtABYQLWwCgGVkaWElMkZJOgC1cyUyRldlYlNpdGUQAAOkAFEtbG9nb6kAoHBuZyUzRnJldmkDBPAhJTNEMDtzZXM9YTRkYTVmM2ItMzU4Yy00MzE3LTlhOWEtM2Q0NTFiM2Y3NDc3Iiwi5wH5ASI6ImltZyIsInN0YXJ0Ijo6AgDLAwAyBAizAnAsInNvdXJj_wPwA2ltZ19ET01BdHRyTW9kaWZpZT0E4XN0YXR1cyI6ImFsbG93EwBgcmVhc29u8wPUXSwiZGF0YVBhdHRlchIAsmxpc3QiOltdLCJpbgDPNjE1NjY5MTk2NH0sJQQFbHNlY3VyZSYEATUENi5qc94AAmkCD-EAAE8zNTM14QAAGDfhAKBuc2VydEJlZm9y5QQF2gAwbG9h6gAP1wAenzIyOTQ4NTg5OdcASi80NtcADDFtdXRzBRJPvwUickEeAQK2AQ_cACs_OTEw3ABLHzfcABwvQ0zdADkfMd0AB_MiZ29vZ2xlYWRzLmcuZG91YmxlY2xpY2submV0L3BhZ2VhZC92aWV3dGhyb3VnaGNvbrgH-AQvMTAxMzUzNjQwNi8_cmFuZG9tvwWpNjYmY3Y9OSZmc9YF8QA2NiZudW09MSZmbXQ9MyYLB_ELPUYwa1FDSVdJZ3FZQkVKYXRwZU1EJmJnPWYBAPEAJmd1aWQ9T04mcmVzcD1HrwDwEW1LVHliUWhDc08mdV9oPTEwMjQmdV93PTEyODAmdV9hEwAgMDIKAAUUADFjZD0lALBoaXM9MSZ1X3R6PSsA8QNqYXZhPWZhbHNlJnVfbnBsdWcXAPANbm1pbWU9MCZndG09Mm9hYTUwJnNlbmRiPTEmaSIAAA0EET2-BzYlM0QVAUAmZnJtQAAPsQdRYSZ0aWJhPbYFAcEHD94GLCAmYWcBtjE3NDIyODM1NjIuUgUABgGQX2VlPTEmaG49ewgCNAIAegiiJmdjcD0xJmN0X0oJ9gNfcHJlc2VudD0xJmFzeW5jPTHSBA-wBQUuNzEcAwAUAA-wBU9_NTAzNzA0N9kECgrwAAQTAwbzARFf6AAPuwUUPzczOewAAB8yuwVHrzQwMjQ0ODk1NjcCBAcP4gA7HzSdBgAYN-IADMYFD-oEMgToAC83M-gAVD84MTLKAQAfOMoBTi82NKkGCA_KATovODGsAgEI4gAPygFJLzY0sgIIwGN0LnBpbnRlcmVzdIYE8govdjMvP3RpZD0yNjEzNDgzOTE3NTU3Jm5vRQkPhQQPTjM1MjjPASc4M88BoGFwcGVuZENoaWxDCQ9TCS6fMzY2NzE0Nzc2sAIHD-YAQC80NOYADA_TAUITNu0ALzky7QAH8QNzcC5hbmFseXRpY3MueWFob2_ZAfEQc3BwLnBsP2E9MTAwMDAmLnlwPTEwMTc1NjU4JmhlPf0LAroGAWQMADIQDx4MCj8zNTK4AwAfOekBR58zMDc5MDYyNDX8AHIeM_8BD_wAUQ-VBQgP-AFWHzT8AA0P-wJCBP8BD5gGCTF0LnSAC7B0di90cmFjaz9hY2EQED1-CwAXEvMBJmVudj1qcy13ZWImdGFnX4EL8QY9Ni40LjBfNTllNzRjYiZidXllcl-DEv8BX2lkPTU5OTUmcmVmZXJlcj0ST5AmdXNlcl9zZXPPDwF_AP8UYjAwN2NiZi01ZTBmLTQwZmUtOGVlNS0wYTY1YWMwMjcxMGIaCg4uMjKCBjcyMzCVBQ_KD0ePMjU2ODgzNjGgBQgGsAQwdHdpGBABsgSQaS9hZHNjdD9wBwESVBkAMSZwXyEBgGlkPTAmdHhuGwBhbzFyeHQmQwxQcz0lNUIDACAyMvQBAG8N8BAlMjIlMkNudWxsJTVEJTVEJnR3X3NhbGVfYW1vdW50RwCBd19vcmRlcl87EE9pdHk9_QQQAD0BImVurRADzhMoMjfTBw_mBjuvNTU2NjY0Nzk2NfkFBw9GAaAPRgcACkYBD0sEQgRNAR83hhEIgWJhdC5iaW5nigICRwTwBy8wP3RpPTIxMDExMjgyJlZlcj0yJm0sCfQ8NWE5NmUyZi1hZTc0LTQ4MzctYWY1MS0zZWU4MTM4NzMyNDAmc2lkPTkyNWY3NTIwNDVhNjExZWQ4YjZhYjNkMzQwZmJmOGMyJnZpJQAVOCUA8AVhMmU5MDU2OWZjNDJkYTVhJnZpZHkP8wptc2Nsa2lkPU4mcGk9MCZsZz1lbi1VUyZzqQ8Qc7sPUDI0JnNjrw8vdGzhDjgva3dNADgfcFUFUOFyPSZsdD0yNzg1JmV2dBAG_wRMb2FkJnN2PTEmcm49OTY4OTI4RwUOPTEwMPcHNzM3OUcFDLACCVkTj2Vycm9yIiwiNhQdnzMyNjU3NTYxOP4HCAGvBgwMFQEVAB87Mhn___9dDnoXGTP9Dg8hBAoPehclBC0ZD2MJCADREHF5b3V0dWJl0wbwCHMvcGxheWVyLzU1ZmRjNTE0L3d3dy13yxy7dGFwaS52ZmxzZXQVAA9WGRIvNDHvEAA_NDE1JgUVDwUBJK81Nzg1ODYyODQ4IgkHDwUBWR4yKwYPBQELD74TMgUGAQ_bCAi0cHhsLnFjY2VydHT2EQEpBsM_cj0xOTQ5MDcwMDG_Hh8wvx4-AbQeB8QeD78eDkI0MTY7vx4fdQwYUQ8lH__VD-sJDi40MWgcARQAD0wZT58zOTg4ODQyOTG4FQhScnVsZXPvCRBjxw4B1AUBFQAbLfQiD1AZEz40MTVuGCg0MdEOH2kLHzufMzg2MDAxNzkyhhcIAdEAD-YAOw6gBwrmAA-gB0EF6wAPPR4ID-sAQA_BAgEI0QEM6wAPgQYyBewAD6YVCACHBwb5HAQJHDAxcC3bERAtDCKPLzk1OTU4MTgSHwMcNxIfAEYCAdYWAhIfDvEeD9seXgnWHjBndGFIEE9uZmln1x6qAoceA3EgYGlzX3Z0Yz8PBLIgjzg2MTk2ODUwXyAEYHJtdF90bLgTX2lwcj15ggUPHjNgGBA0FAAPggVQjzI0ODk0NjQ3TAoMA8UCL25vxAL_3i8xJsQCFQ4nHDc0MzQLDQ94F0afNTUyMjM3NTg1CgwIAsACD7IkIA-fBRsC7CoUN7EkDp8FD5Akhg-6BbUPkSQHDogkAYYjANgFAlkmAAYAFjStBQIIIAJSJwsuKh83cQgAAGEpBbAFDxMZPCExOWIlD98gCQ_hAv__Pg7aIhk04QIPUgtCFDXoAg-NCBMBKjECbioJUgsPZSoMGzNlKjA3OTJSCxMwZSoOtAUPUwv_Up8xMzc3MjMyNDNTCzYPwgIBCBQOD48IRo8zNDEzNzQ0M64FCQcYDg9TCwQPxQL_yg9UCxcPxQJmnzQzMTUyNzE3MGkZCA9zCCYP3AIcAlULLzYzoQUGD1UL_7QfNrEUAAD7Lg9VC0RgNzEyNDQwmTgPRhsHD-IC__8-ANMwC0onGTTiAg9WC0LQNzEyNDQwNDE2MH1dfQ
204 No Content 0 B URL HTTP/2 data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=1&c=1202&i=8rui6w&p=regions-prod&s=15683&d=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_AKo7ZHN0PTA7ZXQ9ZQCgdHpvPTA7b2dsPd4A8wZsZS5lbl9VUyUyQ3NpdGVfbmFtZS6lAfUOQmFuayUyQ3R5cGUuYXJ0aWNsZSUyQ1RpdGxlLkLjAEMlMjBNFwHxBCUyMExlbmRlciUyMCU3QyUyMFIbAUQlMjBHHQEGGwACZgKgJTJDZGVzY3JpcPgBIC5MOwJgbmclMjBmeAFmMGElMjBtXwAUbF8AV2luJTIwhQAvM0ZuAAUgYXQaAARtABIw1QChMGNhJTJDdXJsLmcCCAMCUyUyNTJFSAEBDAA_Y29tCwIWAvAAFS3uABEtowCPJTJDaW1hZ2VtABYQLWwCgGVkaWElMkZJOgC1cyUyRldlYlNpdGUQAAOkAFEtbG9nb6kAoHBuZyUzRnJldmkDBPAhJTNEMDtzZXM9YTRkYTVmM2ItMzU4Yy00MzE3LTlhOWEtM2Q0NTFiM2Y3NDc3Iiwi5wH5ASI6ImltZyIsInN0YXJ0Ijo6AgDLAwAyBAizAnAsInNvdXJj_wPwA2ltZ19ET01BdHRyTW9kaWZpZT0E4XN0YXR1cyI6ImFsbG93EwBgcmVhc29u8wPUXSwiZGF0YVBhdHRlchIAsmxpc3QiOltdLCJpbgDPNjE1NjY5MTk2NH0sJQQFbHNlY3VyZSYEATUENi5qc94AAmkCD-EAAE8zNTM14QAAGDfhAKBuc2VydEJlZm9y5QQF2gAwbG9h6gAP1wAenzIyOTQ4NTg5OdcASi80NtcADDFtdXRzBRJPvwUickEeAQK2AQ_cACs_OTEw3ABLHzfcABwvQ0zdADkfMd0AB_MiZ29vZ2xlYWRzLmcuZG91YmxlY2xpY2submV0L3BhZ2VhZC92aWV3dGhyb3VnaGNvbrgH-AQvMTAxMzUzNjQwNi8_cmFuZG9tvwWpNjYmY3Y9OSZmc9YF8QA2NiZudW09MSZmbXQ9MyYLB_ELPUYwa1FDSVdJZ3FZQkVKYXRwZU1EJmJnPWYBAPEAJmd1aWQ9T04mcmVzcD1HrwDwEW1LVHliUWhDc08mdV9oPTEwMjQmdV93PTEyODAmdV9hEwAgMDIKAAUUADFjZD0lALBoaXM9MSZ1X3R6PSsA8QNqYXZhPWZhbHNlJnVfbnBsdWcXAPANbm1pbWU9MCZndG09Mm9hYTUwJnNlbmRiPTEmaSIAAA0EET2-BzYlM0QVAUAmZnJtQAAPsQdRYSZ0aWJhPbYFAcEHD94GLCAmYWcBtjE3NDIyODM1NjIuUgUABgGQX2VlPTEmaG49ewgCNAIAegiiJmdjcD0xJmN0X0oJ9gNfcHJlc2VudD0xJmFzeW5jPTHSBA-wBQUuNzEcAwAUAA-wBU9_NTAzNzA0N9kECgrwAAQTAwbzARFf6AAPuwUUPzczOewAAB8yuwVHrzQwMjQ0ODk1NjcCBAcP4gA7HzSdBgAYN-IADMYFD-oEMgToAC83M-gAVD84MTLKAQAfOMoBTi82NKkGCA_KATovODGsAgEI4gAPygFJLzY0sgIIwGN0LnBpbnRlcmVzdIYE8govdjMvP3RpZD0yNjEzNDgzOTE3NTU3Jm5vRQkPhQQPTjM1MjjPASc4M88BoGFwcGVuZENoaWxDCQ9TCS6fMzY2NzE0Nzc2sAIHD-YAQC80NOYADA_TAUITNu0ALzky7QAH8QNzcC5hbmFseXRpY3MueWFob2_ZAfEQc3BwLnBsP2E9MTAwMDAmLnlwPTEwMTc1NjU4JmhlPf0LAroGAWQMADIQDx4MCj8zNTK4AwAfOekBR58zMDc5MDYyNDX8AHIeM_8BD_wAUQ-VBQgP-AFWHzT8AA0P-wJCBP8BD5gGCTF0LnSAC7B0di90cmFjaz9hY2EQED1-CwAXEvMBJmVudj1qcy13ZWImdGFnX4EL8QY9Ni40LjBfNTllNzRjYiZidXllcl-DEv8BX2lkPTU5OTUmcmVmZXJlcj0ST5AmdXNlcl9zZXPPDwF_AP8UYjAwN2NiZi01ZTBmLTQwZmUtOGVlNS0wYTY1YWMwMjcxMGIaCg4uMjKCBjcyMzCVBQ_KD0ePMjU2ODgzNjGgBQgGsAQwdHdpGBABsgSQaS9hZHNjdD9wBwESVBkAMSZwXyEBgGlkPTAmdHhuGwBhbzFyeHQmQwxQcz0lNUIDACAyMvQBAG8N8BAlMjIlMkNudWxsJTVEJTVEJnR3X3NhbGVfYW1vdW50RwCBd19vcmRlcl87EE9pdHk9_QQQAD0BImVurRADzhMoMjfTBw_mBjuvNTU2NjY0Nzk2NfkFBw9GAaAPRgcACkYBD0sEQgRNAR83hhEIgWJhdC5iaW5nigICRwTwBy8wP3RpPTIxMDExMjgyJlZlcj0yJm0sCfQ8NWE5NmUyZi1hZTc0LTQ4MzctYWY1MS0zZWU4MTM4NzMyNDAmc2lkPTkyNWY3NTIwNDVhNjExZWQ4YjZhYjNkMzQwZmJmOGMyJnZpJQAVOCUA8AVhMmU5MDU2OWZjNDJkYTVhJnZpZHkP8wptc2Nsa2lkPU4mcGk9MCZsZz1lbi1VUyZzqQ8Qc7sPUDI0JnNjrw8vdGzhDjgva3dNADgfcFUFUOFyPSZsdD0yNzg1JmV2dBAG_wRMb2FkJnN2PTEmcm49OTY4OTI4RwUOPTEwMPcHNzM3OUcFDLACCVkTj2Vycm9yIiwiNhQdnzMyNjU3NTYxOP4HCAGvBgwMFQEVAB87Mhn___9dDnoXGTP9Dg8hBAoPehclBC0ZD2MJCADREHF5b3V0dWJl0wbwCHMvcGxheWVyLzU1ZmRjNTE0L3d3dy13yxy7dGFwaS52ZmxzZXQVAA9WGRIvNDHvEAA_NDE1JgUVDwUBJK81Nzg1ODYyODQ4IgkHDwUBWR4yKwYPBQELD74TMgUGAQ_bCAi0cHhsLnFjY2VydHT2EQEpBsM_cj0xOTQ5MDcwMDG_Hh8wvx4-AbQeB8QeD78eDkI0MTY7vx4fdQwYUQ8lH__VD-sJDi40MWgcARQAD0wZT58zOTg4ODQyOTG4FQhScnVsZXPvCRBjxw4B1AUBFQAbLfQiD1AZEz40MTVuGCg0MdEOH2kLHzufMzg2MDAxNzkyhhcIAdEAD-YAOw6gBwrmAA-gB0EF6wAPPR4ID-sAQA_BAgEI0QEM6wAPgQYyBewAD6YVCACHBwb5HAQJHDAxcC3bERAtDCKPLzk1OTU4MTgSHwMcNxIfAEYCAdYWAhIfDvEeD9seXgnWHjBndGFIEE9uZmln1x6qAoceA3EgYGlzX3Z0Yz8PBLIgjzg2MTk2ODUwXyAEYHJtdF90bLgTX2lwcj15ggUPHjNgGBA0FAAPggVQjzI0ODk0NjQ3TAoMA8UCL25vxAL_3i8xJsQCFQ4nHDc0MzQLDQ94F0afNTUyMjM3NTg1CgwIAsACD7IkIA-fBRsC7CoUN7EkDp8FD5Akhg-6BbUPkSQHDogkAYYjANgFAlkmAAYAFjStBQIIIAJSJwsuKh83cQgAAGEpBbAFDxMZPCExOWIlD98gCQ_hAv__Pg7aIhk04QIPUgtCFDXoAg-NCBMBKjECbioJUgsPZSoMGzNlKjA3OTJSCxMwZSoOtAUPUwv_Up8xMzc3MjMyNDNTCzYPwgIBCBQOD48IRo8zNDEzNzQ0M64FCQcYDg9TCwQPxQL_yg9UCxcPxQJmnzQzMTUyNzE3MGkZCA9zCCYP3AIcAlULLzYzoQUGD1UL_7QfNrEUAAD7Lg9VC0RgNzEyNDQwmTgPRhsHD-IC__8-ANMwC0onGTTiAg9WC0LQNzEyNDQwNDE2MH1dfQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=1&c=1202&i=8rui6w&p=regions-prod&s=15683&d=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_AKo7ZHN0PTA7ZXQ9ZQCgdHpvPTA7b2dsPd4A8wZsZS5lbl9VUyUyQ3NpdGVfbmFtZS6lAfUOQmFuayUyQ3R5cGUuYXJ0aWNsZSUyQ1RpdGxlLkLjAEMlMjBNFwHxBCUyMExlbmRlciUyMCU3QyUyMFIbAUQlMjBHHQEGGwACZgKgJTJDZGVzY3JpcPgBIC5MOwJgbmclMjBmeAFmMGElMjBtXwAUbF8AV2luJTIwhQAvM0ZuAAUgYXQaAARtABIw1QChMGNhJTJDdXJsLmcCCAMCUyUyNTJFSAEBDAA_Y29tCwIWAvAAFS3uABEtowCPJTJDaW1hZ2VtABYQLWwCgGVkaWElMkZJOgC1cyUyRldlYlNpdGUQAAOkAFEtbG9nb6kAoHBuZyUzRnJldmkDBPAhJTNEMDtzZXM9YTRkYTVmM2ItMzU4Yy00MzE3LTlhOWEtM2Q0NTFiM2Y3NDc3Iiwi5wH5ASI6ImltZyIsInN0YXJ0Ijo6AgDLAwAyBAizAnAsInNvdXJj_wPwA2ltZ19ET01BdHRyTW9kaWZpZT0E4XN0YXR1cyI6ImFsbG93EwBgcmVhc29u8wPUXSwiZGF0YVBhdHRlchIAsmxpc3QiOltdLCJpbgDPNjE1NjY5MTk2NH0sJQQFbHNlY3VyZSYEATUENi5qc94AAmkCD-EAAE8zNTM14QAAGDfhAKBuc2VydEJlZm9y5QQF2gAwbG9h6gAP1wAenzIyOTQ4NTg5OdcASi80NtcADDFtdXRzBRJPvwUickEeAQK2AQ_cACs_OTEw3ABLHzfcABwvQ0zdADkfMd0AB_MiZ29vZ2xlYWRzLmcuZG91YmxlY2xpY2submV0L3BhZ2VhZC92aWV3dGhyb3VnaGNvbrgH-AQvMTAxMzUzNjQwNi8_cmFuZG9tvwWpNjYmY3Y9OSZmc9YF8QA2NiZudW09MSZmbXQ9MyYLB_ELPUYwa1FDSVdJZ3FZQkVKYXRwZU1EJmJnPWYBAPEAJmd1aWQ9T04mcmVzcD1HrwDwEW1LVHliUWhDc08mdV9oPTEwMjQmdV93PTEyODAmdV9hEwAgMDIKAAUUADFjZD0lALBoaXM9MSZ1X3R6PSsA8QNqYXZhPWZhbHNlJnVfbnBsdWcXAPANbm1pbWU9MCZndG09Mm9hYTUwJnNlbmRiPTEmaSIAAA0EET2-BzYlM0QVAUAmZnJtQAAPsQdRYSZ0aWJhPbYFAcEHD94GLCAmYWcBtjE3NDIyODM1NjIuUgUABgGQX2VlPTEmaG49ewgCNAIAegiiJmdjcD0xJmN0X0oJ9gNfcHJlc2VudD0xJmFzeW5jPTHSBA-wBQUuNzEcAwAUAA-wBU9_NTAzNzA0N9kECgrwAAQTAwbzARFf6AAPuwUUPzczOewAAB8yuwVHrzQwMjQ0ODk1NjcCBAcP4gA7HzSdBgAYN-IADMYFD-oEMgToAC83M-gAVD84MTLKAQAfOMoBTi82NKkGCA_KATovODGsAgEI4gAPygFJLzY0sgIIwGN0LnBpbnRlcmVzdIYE8govdjMvP3RpZD0yNjEzNDgzOTE3NTU3Jm5vRQkPhQQPTjM1MjjPASc4M88BoGFwcGVuZENoaWxDCQ9TCS6fMzY2NzE0Nzc2sAIHD-YAQC80NOYADA_TAUITNu0ALzky7QAH8QNzcC5hbmFseXRpY3MueWFob2_ZAfEQc3BwLnBsP2E9MTAwMDAmLnlwPTEwMTc1NjU4JmhlPf0LAroGAWQMADIQDx4MCj8zNTK4AwAfOekBR58zMDc5MDYyNDX8AHIeM_8BD_wAUQ-VBQgP-AFWHzT8AA0P-wJCBP8BD5gGCTF0LnSAC7B0di90cmFjaz9hY2EQED1-CwAXEvMBJmVudj1qcy13ZWImdGFnX4EL8QY9Ni40LjBfNTllNzRjYiZidXllcl-DEv8BX2lkPTU5OTUmcmVmZXJlcj0ST5AmdXNlcl9zZXPPDwF_AP8UYjAwN2NiZi01ZTBmLTQwZmUtOGVlNS0wYTY1YWMwMjcxMGIaCg4uMjKCBjcyMzCVBQ_KD0ePMjU2ODgzNjGgBQgGsAQwdHdpGBABsgSQaS9hZHNjdD9wBwESVBkAMSZwXyEBgGlkPTAmdHhuGwBhbzFyeHQmQwxQcz0lNUIDACAyMvQBAG8N8BAlMjIlMkNudWxsJTVEJTVEJnR3X3NhbGVfYW1vdW50RwCBd19vcmRlcl87EE9pdHk9_QQQAD0BImVurRADzhMoMjfTBw_mBjuvNTU2NjY0Nzk2NfkFBw9GAaAPRgcACkYBD0sEQgRNAR83hhEIgWJhdC5iaW5nigICRwTwBy8wP3RpPTIxMDExMjgyJlZlcj0yJm0sCfQ8NWE5NmUyZi1hZTc0LTQ4MzctYWY1MS0zZWU4MTM4NzMyNDAmc2lkPTkyNWY3NTIwNDVhNjExZWQ4YjZhYjNkMzQwZmJmOGMyJnZpJQAVOCUA8AVhMmU5MDU2OWZjNDJkYTVhJnZpZHkP8wptc2Nsa2lkPU4mcGk9MCZsZz1lbi1VUyZzqQ8Qc7sPUDI0JnNjrw8vdGzhDjgva3dNADgfcFUFUOFyPSZsdD0yNzg1JmV2dBAG_wRMb2FkJnN2PTEmcm49OTY4OTI4RwUOPTEwMPcHNzM3OUcFDLACCVkTj2Vycm9yIiwiNhQdnzMyNjU3NTYxOP4HCAGvBgwMFQEVAB87Mhn___9dDnoXGTP9Dg8hBAoPehclBC0ZD2MJCADREHF5b3V0dWJl0wbwCHMvcGxheWVyLzU1ZmRjNTE0L3d3dy13yxy7dGFwaS52ZmxzZXQVAA9WGRIvNDHvEAA_NDE1JgUVDwUBJK81Nzg1ODYyODQ4IgkHDwUBWR4yKwYPBQELD74TMgUGAQ_bCAi0cHhsLnFjY2VydHT2EQEpBsM_cj0xOTQ5MDcwMDG_Hh8wvx4-AbQeB8QeD78eDkI0MTY7vx4fdQwYUQ8lH__VD-sJDi40MWgcARQAD0wZT58zOTg4ODQyOTG4FQhScnVsZXPvCRBjxw4B1AUBFQAbLfQiD1AZEz40MTVuGCg0MdEOH2kLHzufMzg2MDAxNzkyhhcIAdEAD-YAOw6gBwrmAA-gB0EF6wAPPR4ID-sAQA_BAgEI0QEM6wAPgQYyBewAD6YVCACHBwb5HAQJHDAxcC3bERAtDCKPLzk1OTU4MTgSHwMcNxIfAEYCAdYWAhIfDvEeD9seXgnWHjBndGFIEE9uZmln1x6qAoceA3EgYGlzX3Z0Yz8PBLIgjzg2MTk2ODUwXyAEYHJtdF90bLgTX2lwcj15ggUPHjNgGBA0FAAPggVQjzI0ODk0NjQ3TAoMA8UCL25vxAL_3i8xJsQCFQ4nHDc0MzQLDQ94F0afNTUyMjM3NTg1CgwIAsACD7IkIA-fBRsC7CoUN7EkDp8FD5Akhg-6BbUPkSQHDogkAYYjANgFAlkmAAYAFjStBQIIIAJSJwsuKh83cQgAAGEpBbAFDxMZPCExOWIlD98gCQ_hAv__Pg7aIhk04QIPUgtCFDXoAg-NCBMBKjECbioJUgsPZSoMGzNlKjA3OTJSCxMwZSoOtAUPUwv_Up8xMzc3MjMyNDNTCzYPwgIBCBQOD48IRo8zNDEzNzQ0M64FCQcYDg9TCwQPxQL_yg9UCxcPxQJmnzQzMTUyNzE3MGkZCA9zCCYP3AIcAlULLzYzoQUGD1UL_7QfNrEUAAD7Lg9VC0RgNzEyNDQwmTgPRhsHD-IC__8-ANMwC0onGTTiAg9WC0LQNzEyNDQwNDE2MH1dfQ HTTP/1.1
Host: data.privacy.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 06 Oct 2022 18:42:05 GMT
expires: Thu, 06 Oct 2022 18:42:04 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=2f522f2cbc0fecebadd20f961aabdb13&k=regions-bank-pixel-8219&zmpID=regions-bank&cache_buster=5475272037030051&PageUrl=https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
200 OK 1.9 kB URL HTTP/2 live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=2f522f2cbc0fecebadd20f961aabdb13&k=regions-bank-pixel-8219&zmpID=regions-bank&cache_buster=5475272037030051&PageUrl=https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
IP
File type HTML document, ASCII text, with very long lines (1202)
Hash 71b3f43ce51bc969d4eb4b7fd9bbf5b7
982c2b347f5a683a4fbd420c28cff6ebdff44dcb
a499bd2f2a526297b2fe55a4c564a73b026d526e23548d30d46f53eaf271cc8f
GET /sync?c=16b6410431b6374e780104abb0443ca8&p=2f522f2cbc0fecebadd20f961aabdb13&k=regions-bank-pixel-8219&zmpID=regions-bank&cache_buster=5475272037030051&PageUrl=https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 1876
date: Thu, 06 Oct 2022 18:42:07 GMT
set-cookie: zync-uuid=e047d879-ee23-4e79-b58f-9cb92bd7fbf5:1665081727.2039309; Domain=rezync.com; Expires=Tue, 04 Apr 2023 11:42:07 GMT; Path=/; SameSite=None; Secure
sd-session-id=eyJfcGVybWFuZW50Ijp0cnVlLCJzZXNzaW9uX2lkIjoiZTA0N2Q4NzktZWUyMy00ZTc5LWI1OGYtOWNiOTJiZDdmYmY1OjE2NjUwODE3MjcuMjAzOTMwOSJ9.Yz8hfw.uqkRpZ24OpVmFEBq9SwNOxmjdNs; Expires=Tue, 31 Oct 2023 18:42:07 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
server: lighttpd/1.4.59
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lgja8YJ9x-Jhpd2ZqGrP2kpYfVNHvxbybzBH7Oo4P3IxkHBowshX4A==
X-Firefox-Spdy: h2
c1.rfihub.net/js/tc.min.js
200 OK 6.2 kB URL HTTP/2 c1.rfihub.net/js/tc.min.js
IP
File type C source, ASCII text, with very long lines (19497)
Hash ab5a2e3f2414c0a2b622e48c0b6da2fd
1a894787bde6cbf9b58d47b8f4245607420112ad
a5ef19cf7ca85f760c462ed2f228430c8d0a6d9daf3aa34894a5c42113cfdb8f
GET /js/tc.min.js HTTP/1.1
Host: c1.rfihub.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6162
date: Thu, 06 Oct 2022 17:46:41 GMT
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
cache-control: public, max-age=3600
expires: Thu, 06 Oct 2022 18:46:41 GMT
last-modified: Thu, 06 Oct 2022 17:46:31 GMT
content-encoding: gzip
server: Jetty(9.3.29.v20201019)
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7xwYiG-a22VWvjIe-dj7VvOPIZuOgYyzdEjeWEKZi8dEZ4n83v-jAg==
age: 3326
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 807cea987a98db70dd4a71757e2ed00e
154eb12036f36d7b8fdf04d0a509b47fb3664b90
a1083cae1fb7c8ab25c7886a93edbd9b0b570ef5a1b0c4469b96c5a20490e83e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 18:42:07 GMT
Last-Modified: Thu, 06 Oct 2022 17:29:28 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EDTHQjFtPBAyXgicdg5AFFVSFVFPfb3xXQNUuYHVn6NiLHbOjQG3Sg==
Age: 4359
cdn.boomtrain.com/p13n/regions-bank/p13n.min.js
200 OK 25 kB URL HTTP/1.1 cdn.boomtrain.com/p13n/regions-bank/p13n.min.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash ec6032cea708811ed4009ed61ee666af
36b13e91e57002cb5101efc25423713ed6ab2e7d
e5e50de87ad28796341fbb1aede785d84493041be0a97437cfcaf8dd054b7346
GET /p13n/regions-bank/p13n.min.js HTTP/1.1
Host: cdn.boomtrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 07:57:20 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 3MvMBI4i9_qec28KbT.DnU7dKIK_ElnA
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 06 Oct 2022 18:16:02 GMT
Cache-Control: public, max-age=3600
ETag: W/"a7672995780f9b7f9dafc93e2c1491f7"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: O2ByCRkEE14QCgQg7XTxVQO5YR2nXeCIACwLIOkGnSjPIGbv2VDEQg==
Age: 1566
ocsp.sectigo.com/
200 OK 471 B IP
Hash 4a3537782727d0cd620456d32a8cfe81
3dcf889c6b528df6edbc76942729d6ee23d40bd6
dbeca37bb01f7549e346005a57f8887fe161c10ea813fbe54fffbe17c68a4994
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 02:15:46 GMT
Expires: Wed, 12 Oct 2022 02:15:45 GMT
Etag: "3dcf889c6b528df6edbc76942729d6ee23d40bd6"
Cache-Control: max-age=458617,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 756088fe8da81c0e-OSL
20839218p.rfihub.com/ca.html?ver=9&rb=46121&ca=20839218&cust1=https%3A%2F%2Fwww.regions.com%2F&pe=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&pf=&ra=4789911679743477
200 OK 2.7 kB URL HTTP/1.1 20839218p.rfihub.com/ca.html?ver=9&rb=46121&ca=20839218&cust1=https%3A%2F%2Fwww.regions.com%2F&pe=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&pf=&ra=4789911679743477
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (2676), with no line terminators
Hash 859fa5e2ecdcaca3b19f8bb02863ad1a
73e9d16412d7b81370ff73516a17bb96a5deb8a1
7ac6bb2a5e3f5fe85376ff84f67e0a11259011b5b6c3296e1bfd75df8cc563e7
GET /ca.html?ver=9&rb=46121&ca=20839218&cust1=https%3A%2F%2Fwww.regions.com%2F&pe=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&pf=&ra=4789911679743477 HTTP/1.1
Host: 20839218p.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:07 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: eud=H4sIAAAAAAAA_5vFyGtoZmZqYGFobmRuaWm4Co1_Co3_Co3_C40_iQmVPwuNvwiNvwqNvwmNvwtdPQsq_xYafxMrmn5uNPei8RcJo_IfofEBUZ50jSABAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 31 Oct 2023 18:42:07 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MjE2MjI2MjY2sjAyNjMyNRLiM9Q1CgwpzvELKLQMsfQAAES2x2QlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0MjE2MjI2MjY2sjAyNjMyNRLiM9Q1CgwpzvELKLQMsfQAAES2x2QlAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 31 Oct 2023 18:42:07 GMT; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: text/html;charset=utf-8
Content-Length: 2676
Server: Jetty(9.3.29.v20201019)
contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5124322323328236252
200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5124322323328236252
IP
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=rkt&ovsid=5124322323328236252 HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3080833283580263000V10; Expires=Fri, 06 Oct 2023 18:42:08 GMT; domain=.media.net; Path=/;
data-rk=5124322323328236252~~3;Expires=Thu, 05 Oct 2023 18:42:08 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Thu, 06 Oct 2022 18:42:08 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 06 Oct 2022 18:42:08 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash be0a607152d8dbed9470ee8e948099c3
5da093a69a447ff57b3a4faaf221d5f183a98dde
2b963e3d0ff869d7039198644c6db8e2b39c46767f4f1df4d701f41f906ffc27
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=87728
Date: Thu, 06 Oct 2022 18:42:08 GMT
Etag: "633dc4ff-1d7"
Expires: Fri, 07 Oct 2022 19:04:16 GMT
Last-Modified: Wed, 05 Oct 2022 17:55:11 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5tNOO0frmAtOHv29Fi5z_ASfN3tIRl7WJ13YigJiOjwTpnzYDYgIXw==
Age: 4145
www.regions.com/-/media/js/mp_linkcode.js
200 OK 681 B URL HTTP/1.1 www.regions.com/-/media/js/mp_linkcode.js
IP
File type exported SGML document, ASCII text, with CRLF line terminators
Hash 662fd21e25a8269185df8c993bfd251d
4da619e51fa6a54e5ffcdd7d826c1e5550a67840
f9465098d4cfa9edb9fed28c3eceb6bd3251c3fb011e86d1fa8f27bf1a680ceb
GET /-/media/js/mp_linkcode.js HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False; Regions_SessionId=966d1b6e-4615-4fb4-87a0-73c73d8e5198; _gcl_au=1.1.1742283562.1665081724; _uetsid=925f752045a611ed8b6ab3d340fbf8c2; _uetvid=925f758045a611eda2e90569fc42da5a; qcSxc=1665081724154; tfpsi=5b007cbf-5e0f-40fe-8ee5-0a65ac02710b; __qca=P0-1982318451-1665081724154; _fbp=fb.1.1665081724542.1249662787; AMCV_DB9639725BD2FC5B0A495C65%40AdobeOrg=1585540135%7CMCMID%7C31340588917459043412290151766313985668%7CMCAID%7CNONE%7CMCOPTOUT-1665088925s%7CNONE%7CMCAAMLH-1665686524%7C6%7CMCAAMB-1665686524%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19279%7CvVersion%7C4.4.0; s_ecid=MCMID%7C31340588917459043412290151766313985668; AMCVS_DB9639725BD2FC5B0A495C65%40AdobeOrg=1; s_lang=en; gpv_pn=rdc%7Clocator%7Cmortgage%20loan%20officer%20ronald%20gettridge%20birmingham; s_ips=939; s_tp=2577; s_ppv=rdc%257Clocator%257Cmortgage%2520loan%2520officer%2520ronald%2520gettridge%2520birmingham%2C36%2C36%2C939%2C1%2C2; s_cc=true; s_country=http%2F2; aam_uuid=25546250315459150641713040209963525865; btIdentify=dd76ef03-14db-4bf5-93b8-1d17e9379e3c; _bti=%7B%22bsin%22%3A%22%22%7D; _bts=d94fbf90-9f0a-4e76-ca36-7849142f3806
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 9068
Date: Thu, 06 Oct 2022 16:11:00 GMT
Cache-Control: max-age= 604382,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: 32fbff40b5ed4dcfb4de06b0179c338b
Content-Type: application/x-javascript
Content-Encoding: br
Last-Modified: Thu, 25 Aug 2016 21:09:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Disposition: inline; filename="mp_linkcode.js"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 681
Strict-Transport-Security: max-age=157680000
people.api.boomtrain.com/identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiZTA0N2Q4NzktZWUyMy00ZTc5LWI1OGYtOWNiOTJiZDdmYmY1OjE2NjUwODE3MjcuMjAzOTMwOSJ9fQ%3D%3D&site_id=regions-bank
200 OK 146 B URL HTTP/1.1 people.api.boomtrain.com/identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiZTA0N2Q4NzktZWUyMy00ZTc5LWI1OGYtOWNiOTJiZDdmYmY1OjE2NjUwODE3MjcuMjAzOTMwOSJ9fQ%3D%3D&site_id=regions-bank
IP
File type JSON data\012- , ASCII text
Hash caccb97da183430eedce890ad8658757
7ec0b13cb87655272238ca2aec9f7b5d94ab49a9
2ef80d4ae9f6467777387974812c2f46039b0d298fb2757f1969878b9172f339
GET /identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiZTA0N2Q4NzktZWUyMy00ZTc5LWI1OGYtOWNiOTJiZDdmYmY1OjE2NjUwODE3MjcuMjAzOTMwOSJ9fQ%3D%3D&site_id=regions-bank HTTP/1.1
Host: people.api.boomtrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.regions.com
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Authorization,x-app-id
Access-Control-Allow-Methods: GET,PUT,POST,DELETE
Access-Control-Allow-Origin: *
Content-Type: application/json
Date: Thu, 06 Oct 2022 18:42:08 GMT
Server: nginx
Content-Length: 146
Connection: keep-alive
siteintercept.qualtrics.com/dxjsmodule/11.49f0b3e462d2d1363ad2.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=www.regions.com
200 OK 88 kB URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/11.49f0b3e462d2d1363ad2.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=www.regions.com
IP
File type ASCII text, with very long lines (62689), with no line terminators
Hash c228dfa628b4cce4375b54f4b2f47b68
15376f78ef22450075190c978b2955329f7e9a0e
993d3d7092aff10b40f5e2e2736f556488eb83da8d9caf6733103f816ba17723
GET /dxjsmodule/11.49f0b3e462d2d1363ad2.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=www.regions.com HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: application/javascript
cf-ray: 75608900ea99b4f3-OSL
access-control-allow-origin: *
age: 151204
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"f7f2-18381245af8"
last-modified: Tue, 27 Sep 2022 22:49:47 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=63474
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ib.adnxs.com/setuid?entity=18&code=5124322323328236252
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/setuid?entity=18&code=5124322323328236252
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=18&code=5124322323328236252 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5124322323328236252
AN-X-Request-Uuid: 945277b9-9006-4c98-acb4-7de1787440b0
Set-Cookie: uuid2=1473994622604446281; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 04-Jan-2023 18:42:08 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 534.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
dpm.demdex.net/ibs:dpid=1121&dpuuid=5124322323328236252&redir=
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=1121&dpuuid=5124322323328236252&redir=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=1121&dpuuid=5124322323328236252&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v044-0cba3cc62.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5124322323328236252&redir=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=32862382826111152221917331878458053965; Max-Age=15552000; Expires=Tue, 04 Apr 2023 18:42:08 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: TaBoy65kQ8g=
Content-Length: 0
Connection: keep-alive
cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyMzMyODIzNjI1Mg==&forward=
302 Found 369 B URL HTTP/2 cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyMzMyODIzNjI1Mg==&forward=
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 9595bf7148770a851565719a566d1954
f71b4264df570e8d39aff5b120b4cb525471f181
81fd1d623257d0f642bf529c3cba4f0575f2bafacee51c62bfe5a4279705cd38
GET /pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyMzMyODIzNjI1Mg==&forward= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyMzMyODIzNjI1Mg==&forward=&google_tc=
date: Thu, 06 Oct 2022 18:42:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 369
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 18:57:08 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 076b5545d3b172759d57ebf0bb3daca8
fe49d91a44447c25303899ede347896dff3b6358
3593de7b71551abfbfab02a91d0a57de438983dfeb4c035ff9b70e5101091d96
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3976
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:08 GMT
Last-Modified: Thu, 06 Oct 2022 17:35:52 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyMzMyODIzNjI1Mg==&forward=&google_tc=
302 Found 269 B URL HTTP/2 cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyMzMyODIzNjI1Mg==&forward=&google_tc=
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 2ac1f21e70e438c7e2193d02ee7e9be0
f9a11bb626bad146751fc166f96b91f6aeae7eab
de4a04a623ca095cd229a54edeb3120d9dc94d227198b75cb9a0a69677ed7c85
GET /pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyMzMyODIzNjI1Mg==&forward=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20839218p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
date: Thu, 06 Oct 2022 18:42:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 269
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5124322323328236252&redir=
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5124322323328236252&redir=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5124322323328236252&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20839218p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v044-0cba3cc62.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 8Xe3XqmiRoI=
Content-Length: 59
Connection: keep-alive
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5124322323328236252
200 OK 43 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5124322323328236252
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D18%26code%3D5124322323328236252 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20839218p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 2c3f2925-6c4e-4158-baa3-438d6d49945b
Set-Cookie: anj=dTM7k!M4/YErk#WF']wIg2HbWu5e%R!1yIE`Wq3dShskA5Hr@L3kGiF5HV3O_:s%q4KYl$FO8u(0G^0-!*0qZ(SUc*!$4Q-vzCbx; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 04-Jan-2023 18:42:08 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 534.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
zn2tbnxzsysy6zef7-regions.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_2tbnXZsYSY6ZeF7&Q_LOC=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&t=1665081728030
200 OK 3.2 kB URL HTTP/2 zn2tbnxzsysy6zef7-regions.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_2tbnXZsYSY6ZeF7&Q_LOC=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&t=1665081728030
IP
File type ASCII text, with very long lines (6801)
Hash a7663a024c4dbf0924a7d6a1afce7792
52c840bd88b80d0861d4787f74cea589cac6ef2b
2025d371442cc0ad0ddd0c759c445ae21aa6f91ad39aa5a9e535dffd87d4c306
GET /WRSiteInterceptEngine/?Q_ZID=ZN_2tbnXZsYSY6ZeF7&Q_LOC=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&t=1665081728030 HTTP/1.1
Host: zn2tbnxzsysy6zef7-regions.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 75608900aa3cb4f3-OSL
access-control-allow-origin: *
age: 477849
cache-control: public, max-age=3600, s-maxage=604800
etag: W/"2127-KN+v8PSL1fr1QuxABSPW064UHFo"
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=8487
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
status.geotrust.com/
200 OK 471 B IP
Hash 39e7b16da24149d9ce2b5d09fca4a3b2
7e60645e2f99ec2ea9d4254e64141177d03ac1be
1202e935f069e3309d347713a515bcf9cc2add0ad6cd307abcb833ff40c37002
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2971
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:08 GMT
Last-Modified: Thu, 06 Oct 2022 17:52:37 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
insight.adsrvr.org/track/up?adv=u4lrxod&ref=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&upid=3e7kzj5&upv=1.1.0
200 OK 471 B URL HTTP/2 insight.adsrvr.org/track/up?adv=u4lrxod&ref=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&upid=3e7kzj5&upv=1.1.0
IP
Hash b08ec771945076aea822eaa9a3820ee5
95788a5024669778c043a50f748fe4b96618a52c
2d0437fe948d4eeef98d0064d09282f341e36707326fb1a0b9c1d4aa071f42f7
GET /track/up?adv=u4lrxod&ref=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&upid=3e7kzj5&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 727 B IP
Hash d9c25976612c8732ce4f1bbc5dfd699f
aacb44566e1751f7ace4e0fd49427798da937074
244f1d9b1ef037c503cd9b0dbffb05e75da2e885033b7f6f6999a77200eff8ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5589
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:08 GMT
Last-Modified: Thu, 06 Oct 2022 17:08:59 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 727
sync.search.spotxchange.com/partner?adv_id=7180&uid=5124322323328236252&img=1
302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7180&uid=5124322323328236252&img=1
IP
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=7180&uid=5124322323328236252&img=1 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=94f5059d-45a6-11ed-8655-1ab0ad8d0506; expires=Thu, 03-Nov-2022 18:42:08 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7180&uid=5124322323328236252&img=1&__user_check__=1&sync_id=94f505d5-45a6-11ed-8655-1ab0ad8d0506
X-fe: 105
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
p.rfihub.com/cm?pub=24472&in=1
302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=24472&in=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=24472&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
Date: Thu, 06 Oct 2022 18:42:08 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: ruds=H4sIAAAAAAAA_-MSNjU0MTCwMLE0MjIwMzEyMjI1MxLiM9Qt9yvNDQsvCE8xj0wBADVSIn8lAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0MTCwMLE0MjIwMzEyMjI1MxLiM9Qt9yvNDQsvCE8xj0wBADVSIn8lAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 31 Oct 2023 18:42:08 GMT; Secure; SameSite=None
eud=H4sIAAAAAAAA_7vFwmtoZmZqYGFobmRhYmIBANiCku8QAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 31 Oct 2023 18:42:08 GMT; Secure; SameSite=None
Location: https://ps.eyeota.net/match?uid=5140084922064222562&bid=omt9pi0
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash c0cf0377dcaf217722a548f534796bf4
ce64e8df5799a8365aee99719de6a0e8d8378f99
1ecdb50ada5cd7147069336f6a586bafa13a3d81e15d1b26b3e56189a1778f3f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 06 Oct 2022 16:52:05 GMT
Expires: Fri, 07 Oct 2022 16:52:05 GMT
ETag: "ce64e8df5799a8365aee99719de6a0e8d8378f99"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
200 OK 471 B IP
Hash 7e7fb85add50d58e713440a8db2c9dc5
f5a5b920c709ea96eaf387f6393c731bf14834f4
62d968c285fa5b55f47b3b3413a7664ea392386ccb54b1e62dd0522622e3e06c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6403
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:08 GMT
Last-Modified: Thu, 06 Oct 2022 16:55:25 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5124322323328236252
200 OK 43 B URL HTTP/2 x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5124322323328236252
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /e/rocketfuel_sync?na_exid=5124322323328236252 HTTP/1.1
Host: x.dlx.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
expires: Thu, 06 Oct 2022 18:42:08 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 06 Oct 2022 18:42:08 GMT
strict-transport-security: max-age=2628000
X-Firefox-Spdy: h2
aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5124322323328236252
200 OK 43 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5124322323328236252
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /adscores/g.pixel?sid=9212192898&rf=5124322323328236252 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: image/gif
content-length: 43
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
X-Firefox-Spdy: h2
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5124322323328236252&forward=
302 Found 0 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5124322323328236252&forward=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=57&external_user_id=5124322323328236252&forward= HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 06 Oct 2022 18:42:08 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rum?cm_dsp_id=57&external_user_id=5124322323328236252&forward=&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=Yz8hgORwvg-dYEwggaq01QAA; Path=/; Domain=casalemedia.com; Expires=Fri, 06 Oct 2023 18:42:08 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=663; Path=/; Domain=casalemedia.com; Expires=Wed, 04 Jan 2023 18:42:08 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=663; Path=/; Domain=casalemedia.com; Expires=Wed, 04 Jan 2023 18:42:08 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
sync.search.spotxchange.com/partner?adv_id=7180&uid=5124322323328236252&img=1&__user_check__=1&sync_id=94f505d5-45a6-11ed-8655-1ab0ad8d0506
200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7180&uid=5124322323328236252&img=1&__user_check__=1&sync_id=94f505d5-45a6-11ed-8655-1ab0ad8d0506
IP
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=7180&uid=5124322323328236252&img=1&__user_check__=1&sync_id=94f505d5-45a6-11ed-8655-1ab0ad8d0506 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20839218p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=94fe697c-45a6-11ed-9b5e-19bfd3920406; expires=Thu, 03-Nov-2022 18:42:08 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 52
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5124322323328236252
204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5124322323328236252
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner_id=rfuel&partner_user_id=5124322323328236252 HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 06 Oct 2022 18:42:08 GMT
set-cookie: _kuid_=PH0kBHIU; Expires=Tue, 04-Apr-23 18:42:08 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n013-dub-prod.krxd.net
x-request-time: D=29 t=1665081728
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash b4af75b5240091ca8ea750c6c8f453be
43c89980a8320b2cd2f6f5bf4fa82d7bfe8bbce9
cb30acbab5fa38a7f85dff49a907c591b232ce2de9a4442f638987f53bab0ac0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 18:42:08 GMT
Last-Modified: Thu, 06 Oct 2022 17:44:00 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DUNFc9mUzoi9jRfhBo1NSfr5g_Bt0ZqiWR_o3eO0M9SBpHwInofVEw==
Age: 3488
data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=3&c=1202&i=8rui6w&p=regions-prod&s=340&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTcUAPAmY2xpZW50SWQiOjEyMDIsInB1Ymxpc2hQYXRoIjoicmVnaW9ucy1wcm9kIiwiaW5zdGFuY2UvAPE0IjhydWk2dyIsInBhY2tldCI6MywibW9kZSI6Im9ic2VydmUiLCJjb29raWVzIjp7fSwiZW52aXJvbm1lbnQiOiJSZVwAIiBQXADyBnJlcXVlc3RzIjpbeyJkZXN0aW5hdMAAYCIsInR5cFkA8A9iaWxsaW5nIiwic3RhcnQiOjE2NjUwODE3MjgwMjZiAMBkIjotMSwic291cmMyAAIrAPAAdHVzIjoiIiwicmVhc29uZQDUXSwiZGF0YVBhdHRlchIAsGxpc3QiOltdLCJpEgHwADY2NTA4MTcyODAyNn1dfQ
204 No Content 0 B URL HTTP/2 data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=3&c=1202&i=8rui6w&p=regions-prod&s=340&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTcUAPAmY2xpZW50SWQiOjEyMDIsInB1Ymxpc2hQYXRoIjoicmVnaW9ucy1wcm9kIiwiaW5zdGFuY2UvAPE0IjhydWk2dyIsInBhY2tldCI6MywibW9kZSI6Im9ic2VydmUiLCJjb29raWVzIjp7fSwiZW52aXJvbm1lbnQiOiJSZVwAIiBQXADyBnJlcXVlc3RzIjpbeyJkZXN0aW5hdMAAYCIsInR5cFkA8A9iaWxsaW5nIiwic3RhcnQiOjE2NjUwODE3MjgwMjZiAMBkIjotMSwic291cmMyAAIrAPAAdHVzIjoiIiwicmVhc29uZQDUXSwiZGF0YVBhdHRlchIAsGxpc3QiOltdLCJpEgHwADY2NTA4MTcyODAyNn1dfQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=3&c=1202&i=8rui6w&p=regions-prod&s=340&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTcUAPAmY2xpZW50SWQiOjEyMDIsInB1Ymxpc2hQYXRoIjoicmVnaW9ucy1wcm9kIiwiaW5zdGFuY2UvAPE0IjhydWk2dyIsInBhY2tldCI6MywibW9kZSI6Im9ic2VydmUiLCJjb29raWVzIjp7fSwiZW52aXJvbm1lbnQiOiJSZVwAIiBQXADyBnJlcXVlc3RzIjpbeyJkZXN0aW5hdMAAYCIsInR5cFkA8A9iaWxsaW5nIiwic3RhcnQiOjE2NjUwODE3MjgwMjZiAMBkIjotMSwic291cmMyAAIrAPAAdHVzIjoiIiwicmVhc29uZQDUXSwiZGF0YVBhdHRlchIAsGxpc3QiOltdLCJpEgHwADY2NTA4MTcyODAyNn1dfQ HTTP/1.1
Host: data.privacy.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 06 Oct 2022 18:42:08 GMT
expires: Thu, 06 Oct 2022 18:42:07 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=4&c=1202&i=8rui6w&p=regions-prod&s=3407&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTcUAPAmY2xpZW50SWQiOjEyMDIsInB1Ymxpc2hQYXRoIjoicmVnaW9ucy1wcm9kIiwiaW5zdGFuY2UvAPE0IjhydWk2dyIsInBhY2tldCI6MCwibW9kZSI6Im9ic2VydmUiLCJjb29raWVzIjp7fSwiZW52aXJvbm1lbnQiOiJSZVwAIiBQXADyBnJlcXVlc3RzIjpbeyJkZXN0aW5hdMAA_WhodHRwczovL2NtLmV2ZXJlc3R0ZWNoLm5ldC9jbS9kZD9kX3V1aWQ9MjU1NDYyNTAzMTU0NTkxNTA2NDE3MTMwNDAyMDk5NjM1MjU4NjUiLCJ0eXBlIjoiaW1nIiwic3RhcnQiOjE2NjUwODE3MjUwMDksImVuZBQAUHNvdXJj4ADwA2ltZ19ET01BdHRyTW9kaWZpZR4B4XN0YXR1cyI6ImFsbG93EwBgcmVhc29u1ADUXSwiZGF0YVBhdHRlchIAsGxpc3QiOltdLCJpgQHvNjY1ODcyMTE5NjY5fSwGAQX1Bnd3dy5mYWNlYm9vay5jb20vdHIvItQAr3NlbmRCZWFjb27bAAIfNNsAAAAUAAXbAPIDU0VOREJFQUNPTl9NQU5BR0VSSAAP2gAtrzYzNTU1OTc4MTjaAAeTc21ldHJpY3MudwIB3gBTYi9zcy8RAEBiYW5riwLzvS8xMC9KUy0yLjIyLjMvczQ2NjUxNjMwNjk4NTA5P0FRQj0xJm5kaD0xJnBmPTEmY2FsbGJhY2s9c19jX2lsWzBdLmRvUG9zdGJhY2tzJmV0PTEmdD02JTJGOSUyRjIwMjIlMjAxOCUzQTQyJTNBNCUyMDQlMjAwJmQuJm5zaWQ9MCZqc29udj0xJi5kJm1pZD0zMTM0MDU4ODkxNzQ1OTA0MzQxMjI5MDE1MTc2NjMxMzk4NTY2OCZhYW1saD02JmNlPVVURi04Jm5zPdsA8D4mY2RwPTImcGFnZU5hbWU9cmRjJTdDbG9jYXRvciU3Q21vcnRnYWdlJTIwbG9hbiUyMG9mZmljZXIlMjByb25hbGQlMjBnZXR0cmlkZyYA0WJpcm1pbmdoYW0mZz1CA5AlM0ElMkYlMkZCAgN3AABjATQlMkZoAIQyRm1sbyUyRm4AEC1sABMtagASLWgAFS1mABctZADzDmMuJmFwbD00LjAmZ2V0UHJldmlvdXNWYWx1ZT0zFQDwCWVyY2VudFBhZ2VWaWV3ZWQ9NS4wJm1hbhEAMWFycygA0y5jJmNjPVVTRCZjaD2XABEmTgQrcj24AIEmZXZlbnRzPQcAEDFdAfQ2Yj1qOE9kdjZMb25ONHIzYW43TGhEM1daclUxYlVwQWtGa2tpWTFuY0JSOTZ0MlBUSSZjMT1EJTNEdjEmdjE9cmRjJmgxEQAiYzIKAKIyJnYyPW1sbyZoEQBRY2gmYzMbAAStASsmdhAANGgzPUIBD7ABISFjNF8ANGcmdgkAIWM2EgCydjYmdjY9ZW4mYzcQAMA3JnY3PWRlc2t0b3BqAPIEYXlvdXQlN0MxMjgweDkzOSZjOCkAQjgmYzkKAM85JnY5PSU3QyZ2MTAYAlAidjE2AfIFbWlkJnYxOD1hbm9ueW1vdXMmYzGSAAVGASJjMkcBgHYxMCZ2Njg93QNSLjIlN0PoA4AlN0M0LjQuMBEAsjAyMjA4MDEmYzc11gBRNjgmcz32APELMTAyNCZjPTI0Jmo9MS42JnY9TiZrPVkmYncgAEAmYmg9GQH3Im1jb3JnaWQ9REI5NjM5NzI1QkQyRkM1QjBBNDk1QzY1JTQwQWRvYmVPcmcmQVFFPTFjBVJjcmlwdBcFDDoGEDHmBgPMBQNOBkU4MywiXwWwaW5zZXJ0QmVmb3IfBwUzBjBsb2FDBg8wBh2vMzgxODM5MjIxMlYF_____80fMVYFDTFtdXQsDBJPeAwyckNMngUCtQoPXAUlwDgxODM5MjIyMn1dfQ
204 No Content 0 B URL HTTP/2 data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=4&c=1202&i=8rui6w&p=regions-prod&s=3407&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTcUAPAmY2xpZW50SWQiOjEyMDIsInB1Ymxpc2hQYXRoIjoicmVnaW9ucy1wcm9kIiwiaW5zdGFuY2UvAPE0IjhydWk2dyIsInBhY2tldCI6MCwibW9kZSI6Im9ic2VydmUiLCJjb29raWVzIjp7fSwiZW52aXJvbm1lbnQiOiJSZVwAIiBQXADyBnJlcXVlc3RzIjpbeyJkZXN0aW5hdMAA_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_____80fMVYFDTFtdXQsDBJPeAwyckNMngUCtQoPXAUlwDgxODM5MjIyMn1dfQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=4&c=1202&i=8rui6w&p=regions-prod&s=3407&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTcUAPAmY2xpZW50SWQiOjEyMDIsInB1Ymxpc2hQYXRoIjoicmVnaW9ucy1wcm9kIiwiaW5zdGFuY2UvAPE0IjhydWk2dyIsInBhY2tldCI6MCwibW9kZSI6Im9ic2VydmUiLCJjb29raWVzIjp7fSwiZW52aXJvbm1lbnQiOiJSZVwAIiBQXADyBnJlcXVlc3RzIjpbeyJkZXN0aW5hdMAA_WhodHRwczovL2NtLmV2ZXJlc3R0ZWNoLm5ldC9jbS9kZD9kX3V1aWQ9MjU1NDYyNTAzMTU0NTkxNTA2NDE3MTMwNDAyMDk5NjM1MjU4NjUiLCJ0eXBlIjoiaW1nIiwic3RhcnQiOjE2NjUwODE3MjUwMDksImVuZBQAUHNvdXJj4ADwA2ltZ19ET01BdHRyTW9kaWZpZR4B4XN0YXR1cyI6ImFsbG93EwBgcmVhc29u1ADUXSwiZGF0YVBhdHRlchIAsGxpc3QiOltdLCJpgQHvNjY1ODcyMTE5NjY5fSwGAQX1Bnd3dy5mYWNlYm9vay5jb20vdHIvItQAr3NlbmRCZWFjb27bAAIfNNsAAAAUAAXbAPIDU0VOREJFQUNPTl9NQU5BR0VSSAAP2gAtrzYzNTU1OTc4MTjaAAeTc21ldHJpY3MudwIB3gBTYi9zcy8RAEBiYW5riwLzvS8xMC9KUy0yLjIyLjMvczQ2NjUxNjMwNjk4NTA5P0FRQj0xJm5kaD0xJnBmPTEmY2FsbGJhY2s9c19jX2lsWzBdLmRvUG9zdGJhY2tzJmV0PTEmdD02JTJGOSUyRjIwMjIlMjAxOCUzQTQyJTNBNCUyMDQlMjAwJmQuJm5zaWQ9MCZqc29udj0xJi5kJm1pZD0zMTM0MDU4ODkxNzQ1OTA0MzQxMjI5MDE1MTc2NjMxMzk4NTY2OCZhYW1saD02JmNlPVVURi04Jm5zPdsA8D4mY2RwPTImcGFnZU5hbWU9cmRjJTdDbG9jYXRvciU3Q21vcnRnYWdlJTIwbG9hbiUyMG9mZmljZXIlMjByb25hbGQlMjBnZXR0cmlkZyYA0WJpcm1pbmdoYW0mZz1CA5AlM0ElMkYlMkZCAgN3AABjATQlMkZoAIQyRm1sbyUyRm4AEC1sABMtagASLWgAFS1mABctZADzDmMuJmFwbD00LjAmZ2V0UHJldmlvdXNWYWx1ZT0zFQDwCWVyY2VudFBhZ2VWaWV3ZWQ9NS4wJm1hbhEAMWFycygA0y5jJmNjPVVTRCZjaD2XABEmTgQrcj24AIEmZXZlbnRzPQcAEDFdAfQ2Yj1qOE9kdjZMb25ONHIzYW43TGhEM1daclUxYlVwQWtGa2tpWTFuY0JSOTZ0MlBUSSZjMT1EJTNEdjEmdjE9cmRjJmgxEQAiYzIKAKIyJnYyPW1sbyZoEQBRY2gmYzMbAAStASsmdhAANGgzPUIBD7ABISFjNF8ANGcmdgkAIWM2EgCydjYmdjY9ZW4mYzcQAMA3JnY3PWRlc2t0b3BqAPIEYXlvdXQlN0MxMjgweDkzOSZjOCkAQjgmYzkKAM85JnY5PSU3QyZ2MTAYAlAidjE2AfIFbWlkJnYxOD1hbm9ueW1vdXMmYzGSAAVGASJjMkcBgHYxMCZ2Njg93QNSLjIlN0PoA4AlN0M0LjQuMBEAsjAyMjA4MDEmYzc11gBRNjgmcz32APELMTAyNCZjPTI0Jmo9MS42JnY9TiZrPVkmYncgAEAmYmg9GQH3Im1jb3JnaWQ9REI5NjM5NzI1QkQyRkM1QjBBNDk1QzY1JTQwQWRvYmVPcmcmQVFFPTFjBVJjcmlwdBcFDDoGEDHmBgPMBQNOBkU4MywiXwWwaW5zZXJ0QmVmb3IfBwUzBjBsb2FDBg8wBh2vMzgxODM5MjIxMlYF_____80fMVYFDTFtdXQsDBJPeAwyckNMngUCtQoPXAUlwDgxODM5MjIyMn1dfQ HTTP/1.1
Host: data.privacy.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 06 Oct 2022 18:42:08 GMT
expires: Thu, 06 Oct 2022 18:42:07 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=5&c=1202&i=8rui6w&p=regions-prod&s=6378&d=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_1AW9yQ0wiLCILATYfOQsBB-FjbS5ldmVyZXN0dGVjaA8C9yRjbS9kZD9kX3V1aWQ9MjU1NDYyNTAzMTU0NTkxNTA2NDE3MTMwNDAyMDk5NjM1MjU4NjUJAiJtZ7oACwYCDwIBADc1MjkGAgwCARJBRwAPDAIqrzU4NzIxMTk2NzEBAQfzTmxpdmUucmV6eW5jLmNvbS9zeW5jP2M9MTZiNjQxMDQzMWI2Mzc0ZTc4MDEwNGFiYjA0NDNjYTgmcD0yZjUyMmYyY2JjMGZlY2ViYWRkMjBmOTYxYWFiZGIxMyZrPSwD-AgtYmFuay1waXhlbC04MjE5JnptcElEPR4A8RgmY2FjaGVfYnVzdGVyPTU0NzUyNzIwMzcwMzAwNTEmUGFnZVVybD2PAzs6Ly-JA_cuL2xvY2F0b3IvbWxvL21vcnRnYWdlLWxvYW4tb2ZmaWNlci1yb25hbGQtZ2V0dHJpZGdlLWJpcm1pbmdoYccDYnNjcmlwdHoBCcEBTDM1MzXDAkc3NTM3wQEPxwM8nzkzMzQ5OTc1N7sB_zAdNIIFC7sBDHwDD34EMwPCAR82fgQI8QEyMDgzOTIxOHAucmZpaHViggMiY2GMBvQDdmVyPTkmcmI9NDYxMjEmY2E9LwBiJmN1c3QxDQMPnAYFbyUyRiZwZSQADgM5A2AlMkZtbG8GAA89Ax33CSZwZj0mcmE9NDc4OTkxMTY3OTc0MzQ3NxMFDxwHBU03NjYzVQMBFAAFHAcCWAfwAF9ET01BdHRyTW9kaWZpZRcHBRwGUWFsbG93EwAPKgcenzEzNzI5OTc0OGMDByRjMZoBACkIxmpzL3RjLm1pbi5qc-AADzUEBk83NTM24AAAFzU1BLNpbnNlcnRCZWZvcj4ID_EFK581MDA1MDQ4OTPTAEcOTQMoNjbTAA9NA0IUNdkAHzTZAAfxBXBlb3BsZS5hcGkuYm9vbXRyYWluUQPwAmlkZW50aWZ5L3Jlc29sdmU_Rwn5oj1leUpqYjI5cmFXVWlPbnNpWW5OcGJpSTZJaUo5TENKeGRXVnllWE4wY21sdVp5STZlMzBzSW1WNGRHVnlibUZzWDJsa2N5STZleUo2ZVc1aklqb2laVEEwTjJRNE56a3RaV1V5TXkwMFpUYzVMV0kxT0dZdE9XTmlPVEppWkRkbVltWTFPakUyTmpVd09ERTNNamN1TWpBek9UTXdPU0o5ZlElM0QlM0Qmc2l0ZV9pZC8HBn4CP3hocrAGACA3N5QBImVuFAoCiwoCFAAFWwOyWEhSX01BTkFHRVJBAAJ6Ag9QAyevNjUzNDk2MTQ2MqQB_6w7Y2RuQQNEcDEzbjkNAcwJEC8SAA8JBRodMgkFPzc2NgkFR58zOTYyNjAxMjiMAggP6ABCDh4FCugADx4FQgXuAA8tCggEPAgPawj3TzgwMTSCAkgPXggQD5QB7g1UDQuUAQ8uA0MDmgEvNTCoBgf_HGluc2lnaHQuYWRzcnZyLm9yZy90cmFjay91cD9hZHY9cGtranlhbCZyZWZjC1DxBXVwaWQ9eHp4bnkyOCZ1cHY9MS4xjRMPfhINPTgwM3kFAhQABQcI_whIVE1MSUZSQU1FX1NFVEFUVFJJQlVURRMIM680NTUzMDYyMzQ2awEnf3U0bHJ4b2RrAVl_M2U3a3pqNWsBHQ3NDDg4MDNiBA9rAUowNTczJAsvMjLsEQjzA3puMnRibnh6c3lzeTZ6ZWY3LYMR8Qkuc2l0ZWludGVyY2VwdC5xdWFsdHJpY3M_C3RXUlNpdGVJHgDwAkVuZ2luZS8_UV9aSUQ9Wk5fVAD_Alhac1lTWTZaZUY3JlFfTE9DFgNQJXQ9ZhUwODAziBYDDwMPkQ0GACcADIgIRzgxMjgGBg_GETuPMjkzNDYwMDgTCwkPlQHwDR4WC5UBDwcGQtAyOTM0NjAwODYzfV19
204 No Content 0 B URL HTTP/2 data.privacy.ensighten.com/privacy/v1/b/r.rnc?n=5&c=1202&i=8rui6w&p=regions-prod&s=6378&d=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_1AW9yQ0wiLCILATYfOQsBB-FjbS5ldmVyZXN0dGVjaA8C9yRjbS9kZD9kX3V1aWQ9MjU1NDYyNTAzMTU0NTkxNTA2NDE3MTMwNDAyMDk5NjM1MjU4NjUJAiJtZ7oACwYCDwIBADc1MjkGAgwCARJBRwAPDAIqrzU4NzIxMTk2NzEBAQfzTmxpdmUucmV6eW5jLmNvbS9zeW5jP2M9MTZiNjQxMDQzMWI2Mzc0ZTc4MDEwNGFiYjA0NDNjYTgmcD0yZjUyMmYyY2JjMGZlY2ViYWRkMjBmOTYxYWFiZGIxMyZrPSwD-AgtYmFuay1waXhlbC04MjE5JnptcElEPR4A8RgmY2FjaGVfYnVzdGVyPTU0NzUyNzIwMzcwMzAwNTEmUGFnZVVybD2PAzs6Ly-JA_cuL2xvY2F0b3IvbWxvL21vcnRnYWdlLWxvYW4tb2ZmaWNlci1yb25hbGQtZ2V0dHJpZGdlLWJpcm1pbmdoYccDYnNjcmlwdHoBCcEBTDM1MzXDAkc3NTM3wQEPxwM8nzkzMzQ5OTc1N7sB_zAdNIIFC7sBDHwDD34EMwPCAR82fgQI8QEyMDgzOTIxOHAucmZpaHViggMiY2GMBvQDdmVyPTkmcmI9NDYxMjEmY2E9LwBiJmN1c3QxDQMPnAYFbyUyRiZwZSQADgM5A2AlMkZtbG8GAA89Ax33CSZwZj0mcmE9NDc4OTkxMTY3OTc0MzQ3NxMFDxwHBU03NjYzVQMBFAAFHAcCWAfwAF9ET01BdHRyTW9kaWZpZRcHBRwGUWFsbG93EwAPKgcenzEzNzI5OTc0OGMDByRjMZoBACkIxmpzL3RjLm1pbi5qc-AADzUEBk83NTM24AAAFzU1BLNpbnNlcnRCZWZvcj4ID_EFK581MDA1MDQ4OTPTAEcOTQMoNjbTAA9NA0IUNdkAHzTZAAfxBXBlb3BsZS5hcGkuYm9vbXRyYWluUQPwAmlkZW50aWZ5L3Jlc29sdmU_Rwn5oj1leUpqYjI5cmFXVWlPbnNpWW5OcGJpSTZJaUo5TENKeGRXVnllWE4wY21sdVp5STZlMzBzSW1WNGRHVnlibUZzWDJsa2N5STZleUo2ZVc1aklqb2laVEEwTjJRNE56a3RaV1V5TXkwMFpUYzVMV0kxT0dZdE9XTmlPVEppWkRkbVltWTFPakUyTmpVd09ERTNNamN1TWpBek9UTXdPU0o5ZlElM0QlM0Qmc2l0ZV9pZC8HBn4CP3hocrAGACA3N5QBImVuFAoCiwoCFAAFWwOyWEhSX01BTkFHRVJBAAJ6Ag9QAyevNjUzNDk2MTQ2MqQB_6w7Y2RuQQNEcDEzbjkNAcwJEC8SAA8JBRodMgkFPzc2NgkFR58zOTYyNjAxMjiMAggP6ABCDh4FCugADx4FQgXuAA8tCggEPAgPawj3TzgwMTSCAkgPXggQD5QB7g1UDQuUAQ8uA0MDmgEvNTCoBgf_HGluc2lnaHQuYWRzcnZyLm9yZy90cmFjay91cD9hZHY9cGtranlhbCZyZWZjC1DxBXVwaWQ9eHp4bnkyOCZ1cHY9MS4xjRMPfhINPTgwM3kFAhQABQcI_whIVE1MSUZSQU1FX1NFVEFUVFJJQlVURRMIM680NTUzMDYyMzQ2awEnf3U0bHJ4b2RrAVl_M2U3a3pqNWsBHQ3NDDg4MDNiBA9rAUowNTczJAsvMjLsEQjzA3puMnRibnh6c3lzeTZ6ZWY3LYMR8Qkuc2l0ZWludGVyY2VwdC5xdWFsdHJpY3M_C3RXUlNpdGVJHgDwAkVuZ2luZS8_UV9aSUQ9Wk5fVAD_Alhac1lTWTZaZUY3JlFfTE9DFgNQJXQ9ZhUwODAziBYDDwMPkQ0GACcADIgIRzgxMjgGBg_GETuPMjkzNDYwMDgTCwkPlQHwDR4WC5UBDwcGQtAyOTM0NjAwODYzfV19
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=5&c=1202&i=8rui6w&p=regions-prod&s=6378&d=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_1AW9yQ0wiLCILATYfOQsBB-FjbS5ldmVyZXN0dGVjaA8C9yRjbS9kZD9kX3V1aWQ9MjU1NDYyNTAzMTU0NTkxNTA2NDE3MTMwNDAyMDk5NjM1MjU4NjUJAiJtZ7oACwYCDwIBADc1MjkGAgwCARJBRwAPDAIqrzU4NzIxMTk2NzEBAQfzTmxpdmUucmV6eW5jLmNvbS9zeW5jP2M9MTZiNjQxMDQzMWI2Mzc0ZTc4MDEwNGFiYjA0NDNjYTgmcD0yZjUyMmYyY2JjMGZlY2ViYWRkMjBmOTYxYWFiZGIxMyZrPSwD-AgtYmFuay1waXhlbC04MjE5JnptcElEPR4A8RgmY2FjaGVfYnVzdGVyPTU0NzUyNzIwMzcwMzAwNTEmUGFnZVVybD2PAzs6Ly-JA_cuL2xvY2F0b3IvbWxvL21vcnRnYWdlLWxvYW4tb2ZmaWNlci1yb25hbGQtZ2V0dHJpZGdlLWJpcm1pbmdoYccDYnNjcmlwdHoBCcEBTDM1MzXDAkc3NTM3wQEPxwM8nzkzMzQ5OTc1N7sB_zAdNIIFC7sBDHwDD34EMwPCAR82fgQI8QEyMDgzOTIxOHAucmZpaHViggMiY2GMBvQDdmVyPTkmcmI9NDYxMjEmY2E9LwBiJmN1c3QxDQMPnAYFbyUyRiZwZSQADgM5A2AlMkZtbG8GAA89Ax33CSZwZj0mcmE9NDc4OTkxMTY3OTc0MzQ3NxMFDxwHBU03NjYzVQMBFAAFHAcCWAfwAF9ET01BdHRyTW9kaWZpZRcHBRwGUWFsbG93EwAPKgcenzEzNzI5OTc0OGMDByRjMZoBACkIxmpzL3RjLm1pbi5qc-AADzUEBk83NTM24AAAFzU1BLNpbnNlcnRCZWZvcj4ID_EFK581MDA1MDQ4OTPTAEcOTQMoNjbTAA9NA0IUNdkAHzTZAAfxBXBlb3BsZS5hcGkuYm9vbXRyYWluUQPwAmlkZW50aWZ5L3Jlc29sdmU_Rwn5oj1leUpqYjI5cmFXVWlPbnNpWW5OcGJpSTZJaUo5TENKeGRXVnllWE4wY21sdVp5STZlMzBzSW1WNGRHVnlibUZzWDJsa2N5STZleUo2ZVc1aklqb2laVEEwTjJRNE56a3RaV1V5TXkwMFpUYzVMV0kxT0dZdE9XTmlPVEppWkRkbVltWTFPakUyTmpVd09ERTNNamN1TWpBek9UTXdPU0o5ZlElM0QlM0Qmc2l0ZV9pZC8HBn4CP3hocrAGACA3N5QBImVuFAoCiwoCFAAFWwOyWEhSX01BTkFHRVJBAAJ6Ag9QAyevNjUzNDk2MTQ2MqQB_6w7Y2RuQQNEcDEzbjkNAcwJEC8SAA8JBRodMgkFPzc2NgkFR58zOTYyNjAxMjiMAggP6ABCDh4FCugADx4FQgXuAA8tCggEPAgPawj3TzgwMTSCAkgPXggQD5QB7g1UDQuUAQ8uA0MDmgEvNTCoBgf_HGluc2lnaHQuYWRzcnZyLm9yZy90cmFjay91cD9hZHY9cGtranlhbCZyZWZjC1DxBXVwaWQ9eHp4bnkyOCZ1cHY9MS4xjRMPfhINPTgwM3kFAhQABQcI_whIVE1MSUZSQU1FX1NFVEFUVFJJQlVURRMIM680NTUzMDYyMzQ2awEnf3U0bHJ4b2RrAVl_M2U3a3pqNWsBHQ3NDDg4MDNiBA9rAUowNTczJAsvMjLsEQjzA3puMnRibnh6c3lzeTZ6ZWY3LYMR8Qkuc2l0ZWludGVyY2VwdC5xdWFsdHJpY3M_C3RXUlNpdGVJHgDwAkVuZ2luZS8_UV9aSUQ9Wk5fVAD_Alhac1lTWTZaZUY3JlFfTE9DFgNQJXQ9ZhUwODAziBYDDwMPkQ0GACcADIgIRzgxMjgGBg_GETuPMjkzNDYwMDgTCwkPlQHwDR4WC5UBDwcGQtAyOTM0NjAwODYzfV19 HTTP/1.1
Host: data.privacy.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 06 Oct 2022 18:42:08 GMT
expires: Thu, 06 Oct 2022 18:42:07 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash da760bd41ef8ff9370254bfa22f58538
d2913d670acf488ba2460758095e8238c1d47966
92af768a29358479e72788fbbb20cfd27aad26588b07a3218968710da11a2d37
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 13:42:54 GMT
Expires: Wed, 12 Oct 2022 13:42:53 GMT
Etag: "d2913d670acf488ba2460758095e8238c1d47966"
Cache-Control: max-age=499844,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7560890219171c0e-OSL
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5124322323328236252&forward=&C=1
200 OK 43 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5124322323328236252&forward=&C=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=57&external_user_id=5124322323328236252&forward=&C=1 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20839218p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:08 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
www.regions.com/-/media/js/oo_engine.js
200 OK 15 kB URL HTTP/1.1 www.regions.com/-/media/js/oo_engine.js
IP
Hash 54216df51ccc54b91647f46e6324a5d1
35cf90a9b3fe6579456b237653cd652dd86fc347
7e268465893e047076cb3331536cd5762cebc6f6e96a5d17a7c16165fda220d0
GET /-/media/js/oo_engine.js HTTP/1.1
Host: www.regions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/locator/mlo/mortgage-loan-officer-ronald-gettridge-birmingham
Cookie: NSC_SED-XXX.SFHJPOT.DPN-9.3-80_mc=ffffffff09ae128f45525d5f4f58455e445a4a423660; ASP.NET_SessionId=jetuqtz02z0tjixv1e315oa3; SC_ANALYTICS_GLOBAL_COOKIE=2268efbdff4c4a71b8ad6ed8c7cacead|False; Regions_SessionId=966d1b6e-4615-4fb4-87a0-73c73d8e5198; _gcl_au=1.1.1742283562.1665081724; _uetsid=925f752045a611ed8b6ab3d340fbf8c2; _uetvid=925f758045a611eda2e90569fc42da5a; qcSxc=1665081724154; tfpsi=5b007cbf-5e0f-40fe-8ee5-0a65ac02710b; __qca=P0-1982318451-1665081724154; _fbp=fb.1.1665081724542.1249662787; AMCV_DB9639725BD2FC5B0A495C65%40AdobeOrg=1585540135%7CMCMID%7C31340588917459043412290151766313985668%7CMCAID%7CNONE%7CMCOPTOUT-1665088925s%7CNONE%7CMCAAMLH-1665686524%7C6%7CMCAAMB-1665686524%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19279%7CvVersion%7C4.4.0; s_ecid=MCMID%7C31340588917459043412290151766313985668; AMCVS_DB9639725BD2FC5B0A495C65%40AdobeOrg=1; s_lang=en; gpv_pn=rdc%7Clocator%7Cmortgage%20loan%20officer%20ronald%20gettridge%20birmingham; s_ips=939; s_tp=2577; s_ppv=rdc%257Clocator%257Cmortgage%2520loan%2520officer%2520ronald%2520gettridge%2520birmingham%2C36%2C36%2C939%2C1%2C2; s_cc=true; s_country=http%2F2; aam_uuid=25546250315459150641713040209963525865; btIdentify=dd76ef03-14db-4bf5-93b8-1d17e9379e3c; _bti=%7B%22bsin%22%3A%22%22%7D; _bts=d94fbf90-9f0a-4e76-ca36-7849142f3806
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Age: 47248
Date: Thu, 06 Oct 2022 05:34:40 GMT
Cache-Control: max-age= 603931,public
Connection: Keep-Alive
Via: NS-CACHE:
ETag: 6bf959c8100849ea8da66ecf3fc7ab49
Content-Type: application/x-javascript
Content-Encoding: br
Last-Modified: Thu, 25 Aug 2016 21:09:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Disposition: inline; filename="oo_engine.js"
X-Frame-Options: SAMEORIGIN
X-UA-Compatible: IE=Edge
Content-Length: 15048
Strict-Transport-Security: max-age=157680000
sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
302 Found 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: CP="NOI DSP COR LAW PSAo PSDo IVAo IVDo OUR BUS UNI DEM"
access-control-allow-origin: *
set-cookie: everest_g_v2=g_surferid~Yz8hgAAAHi0PsAAr; Path=/; Domain=.everesttech.net; Expires=Fri, 06-Oct-2023 18:42:08 GMT; Max-Age=31536000
location: https://sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Yz8hgAAAHi0PsAAr
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Thu, 06 Oct 2022 18:42:08 GMT
via: 1.1 varnish
x-served-by: cache-bma1662-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1665081728.435136,VS0,VE106
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
bs.serving-sys.com/serving?cn=um&dpid=12&rtu=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D17945%26userid%3D%5B%25tp_UserID%25%5D
200 OK 0 B URL HTTP/2 bs.serving-sys.com/serving?cn=um&dpid=12&rtu=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D17945%26userid%3D%5B%25tp_UserID%25%5D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /serving?cn=um&dpid=12&rtu=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D17945%26userid%3D%5B%25tp_UserID%25%5D HTTP/1.1
Host: bs.serving-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-length: 0
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="NOI DEVa OUR BUS UNI"
X-Firefox-Spdy: h2
ocsp.usertrust.com/
200 OK 472 B IP
Hash 2fdf0517f04b32a6aafe6c2e7336bd1e
6ab3aded2fe3a7fbd481e5adfda971a332e75f07
0f8a3b840e92ba306c3d73db8a228f71e6089221f3c170cfdd51ff91df2c8629
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 09:01:03 GMT
Expires: Wed, 12 Oct 2022 09:01:02 GMT
Etag: "6ab3aded2fe3a7fbd481e5adfda971a332e75f07"
Cache-Control: max-age=603962,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 346
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 756089037b49b509-OSL
bpi.rtactivate.com/tag/?id=11017&user_id=5124322323328236252
200 OK 43 B URL HTTP/2 bpi.rtactivate.com/tag/?id=11017&user_id=5124322323328236252
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /tag/?id=11017&user_id=5124322323328236252 HTTP/1.1
Host: bpi.rtactivate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: awselb/2.0
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: image/gif
content-length: 43
X-Firefox-Spdy: h2
idsync.rlcdn.com/360947.gif?partner_uid=5124322323328236252
200 OK 42 B URL HTTP/2 idsync.rlcdn.com/360947.gif?partner_uid=5124322323328236252
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /360947.gif?partner_uid=5124322323328236252 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: image/gif
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: rlas3=DdKFgjIPjCTn15hbcOr9rPe8NoZ+6OR8uQKqzYR3eag=; Path=/; Domain=rlcdn.com; Expires=Fri, 06 Oct 2023 18:42:08 GMT; Secure; SameSite=None
pxrc=CAA=; Path=/; Domain=rlcdn.com; Expires=Mon, 05 Dec 2022 18:42:08 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Thu, 06 Oct 2022 18:42:08 GMT
content-length: 42
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Yz8hgAAAHi0PsAAr
200 OK 85 B URL HTTP/2 sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Yz8hgAAAHi0PsAAr
IP
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 5bec6606b8392065f9da9898ca6f7b14
73ac5b01b5e3293fb792179626e7f8369cdb944d
acccc501aa6afa3cfac15e8ddccf1561deed2ed08c2f7d652abbdbe9aa71609a
GET /ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Yz8hgAAAHi0PsAAr HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20839218p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Thu, 06 Oct 2022 18:42:08 GMT
via: 1.1 varnish
age: 686
x-served-by: cache-bma1662-BMA
x-cache: HIT
x-cache-hits: 937
x-timer: S1665081729.564798,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 85
X-Firefox-Spdy: h2
ps.eyeota.net/match?uid=5140084922064222562&bid=omt9pi0
200 OK 0 B URL HTTP/1.1 ps.eyeota.net/match?uid=5140084922064222562&bid=omt9pi0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?uid=5140084922064222562&bid=omt9pi0 HTTP/1.1
Host: ps.eyeota.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20839218p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Set-Cookie: SERVERID=17912~DM; Domain=eyeota.net; Path=/; Expires=Thu, 06 Oct 2022 18:52:08 GMT; Secure; SameSite=None;
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR SAMo BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", policyref="http://ps.eyeota.net/w3c/p3p.xml"
Content-Length: 0
Date: Thu, 06 Oct 2022 18:42:08 GMT
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ea853ab09aedfe6ded5bc65a1052caf6
210ee52940d8cade31a61a81bac59b17a6dbd1cf
c091f607d0642679bbeba4521b6a01099be9436b9f381cdfb1786dbe42cb9e80
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 18:42:08 GMT
Last-Modified: Thu, 06 Oct 2022 18:17:41 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VVq1l786lK_oy8xRFqLuIrAPYOIuLenUkqKzymFlsusB_brIXTo_kg==
Age: 1467
ocsp.sectigo.com/
200 OK 471 B IP
Hash bca92f383af2d5d4e8b51cc93c18ddd3
52c8028617577ddacc03741af2d98b0032d8ed61
5293690a525e66a5e5cc246e7a947e4d97b0f610bb5f4a9a605862d5ac1a9b53
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 13:56:49 GMT
Expires: Tue, 11 Oct 2022 13:56:48 GMT
Etag: "52c8028617577ddacc03741af2d98b0032d8ed61"
Cache-Control: max-age=414279,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75608902c890b512-OSL
x.bidswitch.net/sync?dsp_id=119&user_id=5124322323328236252&expires=30
302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?dsp_id=119&user_id=5124322323328236252&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=119&user_id=5124322323328236252&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 06 Oct 2022 18:42:08 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5124322323328236252&expires=30
Set-Cookie: tuuid=1068666a-d164-4bb1-ac4b-10c6fb9cc9b2; path=/; expires=Fri, 06-Oct-2023 18:42:08 GMT; domain=.bidswitch.net; samesite=none; secure
c=1665081728; path=/; expires=Fri, 06-Oct-2023 18:42:08 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1665081728; path=/; expires=Fri, 06-Oct-2023 18:42:08 GMT; domain=.bidswitch.net; samesite=none; secure
c=1665081728; path=/; expires=Fri, 06-Oct-2023 18:42:08 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash d022ad76779a6fc341ed230a4c3c3ed3
05dd00eb2aa67b82139f5657b88fd087c45271f8
80e98a0396a44e7f6a130827bc354aea319b4b7193039f9fd9063c8b778d0461
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 18:42:08 GMT
Server: ECS (amb/6BA6)
Content-Length: 471
ocsp.sectigo.com/
200 OK 472 B IP
Hash b89e5cf58ff847eab0671e58a905de19
8937fd3137a49f56736fc916c38163a1226a45b4
0f537c91210bc2e9a469f295b7ab662f48be2a0a3bae0c69acc148afd237db57
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 03:43:23 GMT
Expires: Wed, 12 Oct 2022 03:43:22 GMT
Etag: "8937fd3137a49f56736fc916c38163a1226a45b4"
Cache-Control: max-age=463873,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75608903bab11c0e-OSL
regionsbank.mpeasylink.com/mpel/mpel.js
200 1.7 kB URL HTTP/1.1 regionsbank.mpeasylink.com/mpel/mpel.js
IP
File type ASCII text, with very long lines (515)
Hash 6fdd7985388a9a91f458c96ece692409
c655f98e175824e81802934d717e0607b25d906f
17936884b849d8d2f051fa0b88d5cb58466d78931b687900b1b90aecde32d977
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel.js HTTP/1.1
Host: regionsbank.mpeasylink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: nginx
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ETag: W/"5096-1664222686000"
Last-Modified: Mon, 26 Sep 2022 20:04:46 GMT
Cache-Control: max-age=86400
Expires: Fri, 07 Oct 2022 18:42:08 GMT
vary: accept-encoding
Content-Encoding: gzip
siteintercept.qualtrics.com/dxjsmodule/CoreModule.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions
200 OK 32 kB URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/CoreModule.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9982e7e7d9ff28bc7debfe0b0fcf1bd2
7c32aa7f37e9070a2eb0036cc18669ede90d6a1a
5b4fcf60fbb9fa9464a1a4c069ea6bd292ae238769f9d43a2f1a0759a970f58c
GET /dxjsmodule/CoreModule.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: application/javascript
cf-ray: 75608904a895b4f3-OSL
access-control-allow-origin: *
age: 151203
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"19adf-18381245af8"
last-modified: Tue, 27 Sep 2022 22:49:47 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=105183
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash da760bd41ef8ff9370254bfa22f58538
d2913d670acf488ba2460758095e8238c1d47966
92af768a29358479e72788fbbb20cfd27aad26588b07a3218968710da11a2d37
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 13:42:54 GMT
Expires: Wed, 12 Oct 2022 13:42:53 GMT
Etag: "d2913d670acf488ba2460758095e8238c1d47966"
Cache-Control: max-age=499844,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75608903ef1f0b49-OSL
lptag.liveperson.net/tag/tag.js?site=60208595
200 OK 7.6 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=60208595
IP
File type ASCII text, with very long lines (21652), with no line terminators
Hash 6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd
GET /tag/tag.js?site=60208595 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2
events.api.boomtrain.com/event/track
200 OK 2 B URL HTTP/2 events.api.boomtrain.com/event/track
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /event/track HTTP/1.1
Host: events.api.boomtrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 569
Origin: https://www.regions.com
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-length: 2
server: nginx
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type, Authorization, x-app-id
access-control-allow-methods: GET, PUT, POST, DELETE
X-Firefox-Spdy: h2
regionsbank.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham
200 1.2 kB URL HTTP/1.1 regionsbank.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (650)
Hash 4e15b50697a74d423a6d9933b24a00a3
56185b17a5a18f75c8269f522a6f6e65dfd5a0f2
daccffddc4a2db0ebc4a2461a23cd60cabf64c5f60c9c099fc157ba2278f9dc7
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham HTTP/1.1
Host: regionsbank.mpeasylink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: nginx
Date: Thu, 06 Oct 2022 18:42:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ETag: W/"2762-1664222686000"
Last-Modified: Mon, 26 Sep 2022 20:04:46 GMT
vary: accept-encoding
Content-Encoding: gzip
a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
200 OK 42 B URL HTTP/1.1 a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /cm?pub=445&in=0&forward=&google_error=3 HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20839218p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 18:42:09 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: euds=H4sIAAAAAAAA_-NicjUGAEAxo38EAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_-NicjUO4jU0MzM1sDA0N7I0sDAHACQ6E58TAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 31 Oct 2023 18:42:09 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MDcxNrYwMjE3MzY0MzE3NhbiM9QNsCzxTg2JjPJ2zkoHAG8-UBYlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0MDcxNrYwMjE3MzY0MzE3NhbiM9QNsCzxTg2JjPJ2zkoHAG8-UBYlAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 31 Oct 2023 18:42:09 GMT; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: image/gif
Content-Length: 42
Server: Jetty(9.3.29.v20201019)
siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_2tbnXZsYSY6ZeF7&Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web
200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_2tbnXZsYSY6ZeF7&Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web
IP
POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_2tbnXZsYSY6ZeF7&Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 142
Origin: https://www.regions.com
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: application/json
cf-ray: 756089031dfab4f3-OSL
access-control-allow-origin: https://www.regions.com
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: 2b085f277973ba0c
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/FeedbackLinkModule.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions
200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/FeedbackLinkModule.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions
IP
GET /dxjsmodule/FeedbackLinkModule.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: application/javascript
cf-ray: 756089053996b4f3-OSL
access-control-allow-origin: *
age: 135551
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"de0-18381245af8"
last-modified: Tue, 27 Sep 2022 22:49:47 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=3552
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.regionsmortgage.com/ronaldgettridge
301 Moved permanently 0 B URL HTTP/1.1 www.regionsmortgage.com/ronaldgettridge
IP
GET /ronaldgettridge HTTP/1.1
Host: www.regionsmortgage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved permanently
Location: https://www.regionsmortgage.com/ronaldgettridge
Connection: close
Cache-Control: no-cache
Pragma: no-cache
www.cloudflare.com/cdn-cgi/trace
200 OK 0 B URL HTTP/2 www.cloudflare.com/cdn-cgi/trace
IP
GET /cdn-cgi/trace HTTP/1.1
Host: www.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.regions.com
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:05 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 756088ed8edbb521-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:04 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "+b0B6ncQDCugPb96DWf2QA=="
expires: Thu, 13 Oct 2022 18:42:04 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=pkkjyal&ref=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&upid=xzxny28&upv=1.1.0
200 OK 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=pkkjyal&ref=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&upid=xzxny28&upv=1.1.0
IP
GET /track/up?adv=pkkjyal&ref=https%3A%2F%2Fwww.regions.com%2Flocator%2Fmlo%2Fmortgage-loan-officer-ronald-gettridge-birmingham&upid=xzxny28&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/1.835255fa57a989ccfebe.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions
200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/1.835255fa57a989ccfebe.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions
IP
GET /dxjsmodule/1.835255fa57a989ccfebe.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: application/javascript
cf-ray: 756089052989b4f3-OSL
access-control-allow-origin: *
age: 151203
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"7380-18381245af8"
last-modified: Tue, 27 Sep 2022 22:49:47 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=29568
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
nexus.ensighten.com/regions/regions-prod/code/24da58b897a83ac8dd6122091a6386c7.js?conditionId0=365287
200 OK 0 B URL HTTP/2 nexus.ensighten.com/regions/regions-prod/code/24da58b897a83ac8dd6122091a6386c7.js?conditionId0=365287
IP
GET /regions/regions-prod/code/24da58b897a83ac8dd6122091a6386c7.js?conditionId0=365287 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 16 Sep 2022 01:12:48 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 29 Jul 2021 14:26:53 GMT
etag: W/"9ed4a4cfac4d3c7c1bfeb172d00660a5"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: BEVKDIy25SUFzQ.PZ9GYTiV2LlHnMgZ9
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1JHur0Q9h1QVfxIvDqzWbgsvw-qdsFIFaJt3sfW45qSp7In888j1eA==
age: 1790956
X-Firefox-Spdy: h2
partners.tremorhub.com/sync?UIRF=5124322323328236252&r=_XGLvNQtqvOq
200 OK 0 B URL HTTP/2 partners.tremorhub.com/sync?UIRF=5124322323328236252&r=_XGLvNQtqvOq
IP
GET /sync?UIRF=5124322323328236252&r=_XGLvNQtqvOq HTTP/1.1
Host: partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20839218p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/4.089a920b5f7cd88395b8.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions
200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/4.089a920b5f7cd88395b8.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions
IP
GET /dxjsmodule/4.089a920b5f7cd88395b8.chunk.js?Q_CLIENTVERSION=1.78.1&Q_CLIENTTYPE=web&Q_BRANDID=regions HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.regions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 18:42:08 GMT
content-type: application/javascript
cf-ray: 756089052981b4f3-OSL
access-control-allow-origin: *
age: 151203
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"9eb-18381245af8"
last-modified: Tue, 27 Sep 2022 22:49:47 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=2539
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
205.255.102.40
31.13.72.12
52.19.27.104
23.38.200.22
104.16.124.96
18.185.150.148
185.94.180.126
93.184.220.29
185.80.36.245
15.188.95.229