Overview

URL www.primacosta.com/gu5d/
IP13.56.33.8
ASNAMAZON-02
Location United States
Report completed2022-10-04 10:10:13 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-04 2 www.primacosta.com/gu5d/ Malware
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-10-04 2 primacosta.com Sinkholed


Files

No files detected



Passive DNS (75)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS gem.gbc.criteo.com (1) 6039 2019-02-06 06:21:41 UTC 2022-10-04 05:34:33 UTC 178.250.6.240
mnemonic passive DNS exchange.mediavine.com (1) 2109 2020-11-23 01:20:19 UTC 2022-10-04 04:43:47 UTC 35.158.179.233
mnemonic passive DNS eb2.3lift.com (1) 402 2014-09-24 15:03:42 UTC 2022-10-04 04:22:56 UTC 13.248.245.213
mnemonic passive DNS www.brandbucket.com (36) 749965 2012-10-26 02:22:52 UTC 2022-10-04 07:17:36 UTC 172.67.4.41
mnemonic passive DNS c.statcounter.com (1) 7772 2016-04-06 11:04:27 UTC 2022-10-04 04:47:38 UTC 104.20.229.67
mnemonic passive DNS d.adroll.com (2) 1530 2015-03-06 22:06:59 UTC 2022-10-04 05:59:35 UTC 52.214.200.155
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-10-04 05:06:06 UTC 74.125.131.154
mnemonic passive DNS alb.reddit.com (1) 1521 2017-06-15 05:33:56 UTC 2022-10-04 05:37:11 UTC 151.101.85.140
mnemonic passive DNS js.hs-analytics.net (1) 2411 2013-09-26 02:22:44 UTC 2022-10-04 04:35:12 UTC 104.17.71.176
mnemonic passive DNS x.bidswitch.net (2) 286 2017-08-28 15:21:00 UTC 2022-10-04 04:36:47 UTC 3.120.13.175
mnemonic passive DNS gum.criteo.com (3) 381 2015-01-22 10:58:57 UTC 2022-10-04 07:10:32 UTC 178.250.2.146
mnemonic passive DNS ocsp.entrust.net (1) 1208 2013-07-24 12:09:14 UTC 2022-10-04 04:16:44 UTC 104.110.10.32
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-04 04:45:06 UTC 35.161.136.21
mnemonic passive DNS ocsp.sca1b.amazontrust.com (7) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.156
mnemonic passive DNS www.bizographics.com (1) 7410 2015-03-04 19:17:22 UTC 2022-10-04 06:07:29 UTC 144.2.15.25
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-10-04 04:25:35 UTC 142.250.74.164
mnemonic passive DNS rtb-csync.smartadserver.com (1) 583 2012-12-17 16:38:47 UTC 2022-10-04 04:43:47 UTC 185.86.138.145
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-10-04 09:09:40 UTC 104.18.32.68
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-04 09:13:54 UTC 143.204.55.36
mnemonic passive DNS www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-10-04 05:10:46 UTC 142.250.74.174
mnemonic passive DNS cm.g.doubleclick.net (2) 202 2013-05-30 23:19:45 UTC 2022-10-04 06:51:07 UTC 142.250.74.34
mnemonic passive DNS pixel.rubiconproject.com (1) 314 2012-10-09 03:17:38 UTC 2022-10-04 04:27:06 UTC 213.19.162.80
mnemonic passive DNS sync-t1.taboola.com (1) 1269 2020-06-29 11:52:33 UTC 2022-10-04 04:43:47 UTC 141.226.228.48
mnemonic passive DNS www.primacosta.com (1) 0 2020-04-24 00:56:41 UTC 2022-10-03 17:53:10 UTC 13.56.33.8 Unknown ranking
mnemonic passive DNS px.ads.linkedin.com (3) 522 2017-08-08 16:28:50 UTC 2022-10-04 04:31:36 UTC 13.107.42.14
mnemonic passive DNS ad.yieldlab.net (1) 3515 2014-05-07 00:17:56 UTC 2022-10-04 04:43:47 UTC 23.13.245.180
mnemonic passive DNS match.sharethrough.com (1) 604 2015-12-22 22:55:59 UTC 2022-10-04 04:43:47 UTC 18.157.255.89
mnemonic passive DNS js.hs-banner.com (1) 2426 2020-03-26 17:45:21 UTC 2022-10-04 04:35:12 UTC 104.18.33.171
mnemonic passive DNS ocsp.digicert.com (18) 86 2012-05-21 07:02:23 UTC 2022-10-04 07:51:20 UTC 93.184.220.29
mnemonic passive DNS sync-criteo.ads.yieldmo.com (1) 2354 2019-12-10 21:28:48 UTC 2022-10-04 05:13:28 UTC 54.220.128.66
mnemonic passive DNS dynamic.criteo.com (1) 4826 2018-04-12 10:04:05 UTC 2022-10-04 00:35:37 UTC 178.250.0.147
mnemonic passive DNS criteo-sync.teads.tv (1) 1786 2017-02-17 10:06:41 UTC 2022-10-04 05:16:25 UTC 23.195.255.234
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-10-04 04:17:22 UTC 23.36.77.32
mnemonic passive DNS www.redditstatic.com (1) 1440 2012-06-30 12:33:28 UTC 2022-10-04 04:30:15 UTC 151.101.85.140
mnemonic passive DNS bat.bing.com (3) 387 2014-04-08 09:23:16 UTC 2022-10-04 04:17:36 UTC 204.79.197.200
mnemonic passive DNS js.usemessages.com (1) 5634 2017-10-05 18:55:58 UTC 2022-10-04 04:31:36 UTC 104.17.239.204
mnemonic passive DNS ocsp.pki.goog (11) 175 2017-06-14 07:23:31 UTC 2022-10-04 04:17:09 UTC 142.250.74.3
mnemonic passive DNS cdn.ampproject.org (13) 329 2016-09-09 16:33:03 UTC 2022-10-04 04:41:17 UTC 216.58.211.1
mnemonic passive DNS contextual.media.net (1) 513 2019-04-30 08:49:36 UTC 2022-10-04 04:43:47 UTC 23.38.200.22
mnemonic passive DNS www.dwin1.com (1) 4572 2019-09-28 13:55:19 UTC 2022-10-04 05:12:23 UTC 143.204.55.56
mnemonic passive DNS ib.adnxs.com (2) 241 2012-05-23 22:36:14 UTC 2022-10-04 04:17:45 UTC 37.252.173.27
mnemonic passive DNS sync.outbrain.com (1) 757 2016-08-02 06:37:14 UTC 2022-10-04 04:36:47 UTC 70.42.32.159
mnemonic passive DNS s.thebrighttag.com (1) 1487 2014-11-26 15:16:07 UTC 2022-10-04 04:28:58 UTC 3.134.126.197
mnemonic passive DNS www.googletagmanager.com (2) 75 2012-12-25 14:52:06 UTC 2022-10-04 09:37:43 UTC 142.250.74.168
mnemonic passive DNS sslwidget.criteo.com (1) 1723 2012-05-31 02:43:28 UTC 2022-10-04 07:33:54 UTC 178.250.0.163
mnemonic passive DNS cm.adform.net (1) 1667 2015-03-30 07:47:01 UTC 2022-10-04 04:43:47 UTC 37.157.2.234
mnemonic passive DNS visitor.omnitagjs.com (1) 1722 2017-01-30 04:58:42 UTC 2022-10-04 04:43:47 UTC 185.255.84.152
mnemonic passive DNS r.casalemedia.com (2) 1896 2012-06-24 01:17:14 UTC 2022-10-04 04:43:47 UTC 104.18.18.126
mnemonic passive DNS simage2.pubmatic.com (1) 578 2012-07-21 03:13:48 UTC 2022-10-04 04:43:47 UTC 185.64.189.110
mnemonic passive DNS dis.criteo.com (2) 660 2012-06-02 15:38:12 UTC 2022-10-04 04:43:47 UTC 178.250.0.163
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-04 04:16:51 UTC 34.117.237.239
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-10-04 08:34:20 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS ct.pinterest.com (1) 852 2015-03-12 08:12:48 UTC 2022-10-04 04:17:20 UTC 151.101.84.84
mnemonic passive DNS s.adroll.com (5) 2553 2012-06-27 18:27:26 UTC 2022-10-04 05:03:50 UTC 143.204.55.84
mnemonic passive DNS ad.360yield.com (2) 657 2012-11-28 11:30:25 UTC 2022-10-04 04:43:47 UTC 18.159.40.100
mnemonic passive DNS www.facebook.com (2) 99 No data No data 31.13.72.36
mnemonic passive DNS t.co (1) 569 2012-07-25 19:09:44 UTC 2022-10-04 04:43:29 UTC 104.244.42.5
mnemonic passive DNS analytics.twitter.com (1) 526 2013-04-10 19:53:18 UTC 2022-10-04 04:41:33 UTC 104.244.42.131
mnemonic passive DNS ups.analytics.yahoo.com (2) 287 2019-05-09 15:57:40 UTC 2022-10-04 04:36:47 UTC 18.156.0.31
mnemonic passive DNS q.quora.com (1) 3239 2017-05-08 19:06:57 UTC 2022-10-04 05:06:26 UTC 34.234.135.87
mnemonic passive DNS js.hs-scripts.com (1) 2571 2016-08-09 10:18:36 UTC 2022-10-04 07:16:01 UTC 104.17.210.204
mnemonic passive DNS static.ads-twitter.com (1) 614 2017-01-30 05:00:15 UTC 2022-10-04 04:41:32 UTC 151.101.84.157
mnemonic passive DNS static.hsappstatic.net (5) 8199 2013-09-26 02:22:42 UTC 2022-10-04 04:31:37 UTC 104.17.5.210
mnemonic passive DNS dnacdn.net (1) 3760 2019-09-02 15:07:45 UTC 2022-10-04 04:41:32 UTC 178.250.2.146
mnemonic passive DNS ag.gbc.criteo.com (1) 5925 2018-12-17 13:17:41 UTC 2022-10-04 05:34:33 UTC 185.235.84.125
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-04 04:29:41 UTC 143.204.55.110
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-04 04:18:32 UTC 34.120.237.76
mnemonic passive DNS status.thawte.com (1) 5123 2017-11-27 12:33:51 UTC 2022-10-04 04:53:20 UTC 93.184.220.29
mnemonic passive DNS beacon.krxd.net (1) 408 2012-05-22 04:25:40 UTC 2022-10-04 04:19:37 UTC 108.128.241.23
mnemonic passive DNS dpm.demdex.net (2) 204 2017-01-30 04:59:39 UTC 2022-10-04 04:17:45 UTC 54.216.133.37
mnemonic passive DNS criteo-partners.tremorhub.com (1) 2360 2017-11-20 17:11:05 UTC 2022-10-04 07:33:55 UTC 107.21.155.240
mnemonic passive DNS www.linkedin.com (2) 608 2014-04-09 13:16:08 UTC 2022-10-04 04:38:48 UTC 13.107.42.14
mnemonic passive DNS amp.brandbucket.com (1) 0 2021-01-05 08:12:10 UTC 2022-10-02 15:13:36 UTC 172.67.4.41 Domain (brandbucket.com) ranked at: 316249
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-10-04 08:54:14 UTC 142.250.74.3
mnemonic passive DNS api.hubspot.com (2) 5214 2017-02-28 03:01:42 UTC 2022-10-04 04:44:31 UTC 104.19.154.83


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 13.56.33.8

Date UQ / IDS / BL URL IP
2022-11-26 01:35:10 +0000
0 - 0 - 1 essentialquest.com/ 13.56.33.8
2022-11-20 19:05:51 +0000
0 - 0 - 1 www.zuddah.com/ 13.56.33.8
2022-11-16 01:42:00 +0000
0 - 0 - 1 oaq.io/Trials/login/auth.php 13.56.33.8
2022-11-15 03:12:35 +0000
0 - 0 - 1 sisolo.com/cb2.zip 13.56.33.8
2022-11-15 03:10:08 +0000
0 - 0 - 1 vinecup.com/secure.zip 13.56.33.8

Last 5 reports on ASN: AMAZON-02

Date UQ / IDS / BL URL IP
2022-12-01 13:16:32 +0000
0 - 0 - 2 www.e-serviceparts.info/landingpages/16a43a3d (...) 34.254.114.55
2022-12-01 13:14:45 +0000
0 - 0 - 1 ww38.hotelsantabarabara.co/ 13.248.148.254
2022-12-01 13:11:18 +0000
0 - 0 - 0 6388706501ecb.site123.me 75.2.96.54
2022-12-01 13:06:37 +0000
0 - 0 - 25 chasebkkk.com/ 143.204.55.56
2022-12-01 13:04:56 +0000
0 - 0 - 8 bmcadvisors.in/images/afcu/login 3.109.173.173

Last 1 reports on domain: primacosta.com

Date UQ / IDS / BL URL IP
2022-10-04 10:10:13 +0000
0 - 0 - 2 www.primacosta.com/gu5d/ 13.56.33.8

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-05 23:57:33 +0000
0 - 0 - 1 panaforte.com/ 13.56.33.8
2022-09-25 23:14:29 +0000
0 - 0 - 1 altostima.com/ 13.56.33.8
2022-11-02 05:18:23 +0000
0 - 0 - 1 vitalpledge.com/ 13.56.33.8
2022-10-07 12:51:36 +0000
0 - 0 - 1 www.sharedbonus.com/ 13.56.33.8
2022-10-05 18:56:33 +0000
0 - 0 - 1 sassandgrit.com/ 13.56.33.8


JavaScript

Executed Scripts (49)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 5162, repeated: 1) - SHA256: 4bbc7bfd90cb3003f72f2b13b8a9ba904093bc1718f85b19db871452395a0a6e

                                        < html > < head > < title > Dising < /title><script type="text/javascript
">rD = false;function edcTimeout() {rD = true; }function cto_AI(u,n) { if (rD) {return;} var cto_ifr=document.getElementById('cto_sub_ifr_px');var cto_ifr_doc=null;if(typeof(cto_ifr)==='undefined'||cto_ifr==null)cto_ifr_doc=document;else if(cto_ifr.contentDocument)cto_ifr_doc=cto_ifr.contentDocument;else if(cto_ifr.contentWindow)cto_ifr_doc=cto_ifr.contentWindow.document;else if(cto_ifr.document)cto_ifr_doc=cto_ifr.document;else cto_ifr_doc=document;if(cto_ifr_doc.createElement){var im=cto_ifr_doc.createElement('IMG');if(im){var d=document.getElementById('cto_pc');if(d!==null && d.appendChild){d.appendChild(im)}if(n){im.onload=n;im.onerror=n;im.onabort=n}im.src=u}} }function cto_l(){if(typeof(cto_loaded)==='undefined')cto_loaded=1;else cto_loaded++;}function cto_run() {function l_i1_1(){cto_AI('https://gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40', l_i1_2);}function l_i1_2(){cto_AI('https://gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40', l_i1_3);}function l_i1_3(){cto_AI('https://gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40', cto_l);}function l_i2_1(){cto_AI('https://x.bidswitch.net/sync?dsp_id=46&user_id=k-6RDYkvZ7JCeMDRS4T1MjTjV_SXJ4X0NFRYQsNg&expires=30', cto_l);}function l_i3_1(){cto_AI('https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_cm&google_hm=ay1GeWRPUWZaN0pDZU1EUlM0VDFNalRqVl9TWEx3UTByRG92MGgzZw', cto_l);}function l_i4_1(){cto_AI('https://ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID', cto_l);}function l_i5_1(){cto_AI('https://r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-c0VWf_Z7JCeMDRS4T1MjTjV_SXLGvtNlu2SoMQ', cto_l);}function l_i6_1(){cto_AI('https://ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-P-yo9fZ7JCeMDRS4T1MjTjV_SXKu90nXOWEB3A', cto_l);}function l_i7_1(){cto_AI('https://contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-omlqdPZ7JCeMDRS4T1MjTjV_SXKUAKV3Lcboyg', cto_l);}function l_i8_1(){cto_AI('https://exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-CXc03fZ7JCeMDRS4T1MjTjV_SXKELsBCB36e4BmF8rFRnb5e', cto_l);}function l_i9_1(){cto_AI('https://sync.outbrain.com/cookie-sync?p=criteo&uid=k-oXf1-PZ7JCeMDRS4T1MjTjV_SXLSektisyTMrA', cto_l);}function l_i10_1(){cto_AI('https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-EwWUBfZ7JCeMDRS4T1MjTjV_SXL8LffAWGwjqQ', cto_l);}function l_i11_1(){cto_AI('https://pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-HcXVRPZ7JCeMDRS4T1MjTjV_SXJRj0uI3ZD3IQ&expires=30', cto_l);}function l_i12_1(){cto_AI('https://match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-biOOgfZ7JCeMDRS4T1MjTjV_SXIA1sdVj63hFg', cto_l);}function l_i13_1(){cto_AI('https://rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-mE1djPZ7JCeMDRS4T1MjTjV_SXI9fd6quMKyUw', cto_l);}function l_i14_1(){cto_AI('https://sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-BPDAHfZ7JCeMDRS4T1MjTjV_SXLolzX8BfP-ow', cto_l);}function l_i15_1(){cto_AI('https://criteo-sync.teads.tv/um?eid=80&uid=k-1ArqwvZ7JCeMDRS4T1MjTjV_SXJDiR9yaYkZtw', cto_l);}function l_i16_1(){cto_AI('https://eb2.3lift.com/xuid?mid=2711&xuid=k-4IFfVvZ7JCeMDRS4T1MjTjV_SXI0-tdH1DaXcg&dongle=013b', cto_l);}function l_i17_1(){cto_AI('https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-29rLKvZ7JCeMDRS4T1MjTjV_SXLqKL3gxNH6Ag', cto_l);}function l_i18_1(){cto_AI('https://cm.adform.net/pixel?adform_pid=15&adform_pc=k-9duvmfZ7JCeMDRS4T1MjTjV_SXLfgu9pr5e9-A', cto_l);}function l_i19_1(){cto_AI('https://visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-pRp1OPZ7JCeMDRS4T1MjTjV_SXIYxPnHPwfbjQ', cto_l);}function l_i20_1(){cto_AI('https://criteo-partners.tremorhub.com/sync?UICR=k-M6jT_PZ7JCeMDRS4T1MjTjV_SXJcW33Kyz9nuQ', cto_l);}function l_i21_1(){cto_AI('https://ad.yieldlab.net/m?dt_id=8664&ext_id=k-rYX_C_Z7JCeMDRS4T1MjTjV_SXJze1jwQWuQbA', cto_l);}function l_i22_1(){cto_AI('https://sync-criteo.ads.yieldmo.com/sync?id=k-DLCgkPZ7JCeMDRS4T1MjTjV_SXLTa3ITeEHR3A&pn_id=criteo&ext=1', cto_l);}cto_tot = 22;l_i1_1();l_i2_1();l_i3_1();l_i4_1();l_i5_1();l_i6_1();l_i7_1();l_i8_1();l_i9_1();l_i10_1();l_i11_1();l_i12_1();l_i13_1();l_i14_1();l_i15_1();l_i16_1();l_i17_1();l_i18_1();l_i19_1();l_i20_1();l_i21_1();l_i22_1();}</script></head><body><iframe id="
cto_sub_ifr_px " src="
javascript: false " style="
width: 1 px;
height: 1 px;
display: none;
"><div id='cto_pc' style='display:none'></div></iframe><script type="
text / javascript ">document.body.onload = function(){ if(window.cto_run) cto_run(); };window.setTimeout(function(){ if(typeof(cto_loaded)==='undefined' || cto_loaded<cto_tot) {edcTimeout();var redirectLocation=location.protocol+'//static.criteo.net/empty.html'; location.replace(redirectLocation);}}, 5000);</script></body></html>
                                    


HTTP Transactions (196)


Request Response
                                        
                                            GET /gu5d/ HTTP/1.1 
Host: www.primacosta.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         13.56.33.8
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: openresty/1.15.8.2
Date: Tue, 04 Oct 2022 10:10:03 GMT
Content-Length: 175
Connection: keep-alive
Referrer-Policy: no-referrer
Location: https://www.brandbucket.com/names/primacosta?source=ext
Expires: Fri, 14 Oct 2022 10:10:03 GMT
Pragma: public
Cache-Control: max-age=864000, public


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   175
Md5:    00b1749e7f34b8de5bde2b4abd5cefef
Sha1:   da5846fe6898511ed9dcf79f12d78042fb649e01
Sha256: b5aa18241aa2adbec8f48b308a46a386e31040f6bb85ca381e427b399679b56e

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6791
Expires: Tue, 04 Oct 2022 12:03:14 GMT
Date: Tue, 04 Oct 2022 10:10:03 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 09:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2oN_-NPIQ2nkhDz-W1aPlLGK2xB4aqqLDCkR9dNTcIaWRtGTZsnVTw==
Age: 1379


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RGfp8WkZPDIMCeP82zfU_muJhK5qvlc3AEDtCm1T_YsfhpKMXOjlBw==
age: 16896
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 04 Oct 2022 10:10:03 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 10:27:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XAJqnkj1A_2MwEKz6cvMNRDNeaSU2oaW1VSpIWeX2OGaOXf933s_8w==
Age: 2430


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /images2/nice_bk1_thumb.jpg HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 5793
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16185
etag: "5ee1f38e-3f39"
last-modified: Thu, 11 Jun 2020 09:04:14 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d2027b94cb50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 150x98, components 3\012- data
Size:   5793
Md5:    b4dad318d2eef70faeb94c1de940b8e9
Sha1:   fd7b8e6d33dfdb9514f59ba26b855ec61f2b21ce
Sha256: d4f3a8ecf34eb859108c375c36cca14e484d752a87763c58a80e20220e866004
                                        
                                            GET /images2/nice_bk2_thumb.jpg HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 6565
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16629
etag: "5ee1f391-40f5"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d2027b94fb50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 150x96, components 3\012- data
Size:   6565
Md5:    87c01ad06c8f0f82f63762112b62c261
Sha1:   4c58266d4e8d2d205fbfe88af39d47e96e353733
Sha256: 96d5437cff72a446bada499ea347636473a33dc3f6a09a5bcce71e794bb7b8dd
                                        
                                            GET /images2/nice_bk3_thumb.jpg HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 6202
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16805
etag: "5ee1f392-41a5"
last-modified: Thu, 11 Jun 2020 09:04:18 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d2027b950b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Size:   6202
Md5:    7c72d58b1656eb337865be3d7945019a
Sha1:   70f88fa2fa40ec3b8e7c98b033f5f48e07dfcf07
Sha256: 81684900b1c4f2f5d1b3e6d9917a02e11cf87160152e784ccece4ee159f9ccbe
                                        
                                            GET /images7/icon_plus.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 604
cf-bgj: imgq:100,h2pri
cf-polished: origSize=743
etag: "5ede24b6-2e7"
last-modified: Mon, 08 Jun 2020 11:44:54 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d2027b958b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Size:   604
Md5:    94865622c5c9f42d952bbea159d15dd6
Sha1:   217ad71873550f450b555bdc83805a1969a2a4b7
Sha256: 70a3df33b31f08827510b14236a8c6320ea413b2b4210b4232416c20bcc751cc
                                        
                                            GET /images2/nice_bk5_thumb.jpg HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 5617
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16068
etag: "5ee1f391-3ec4"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d2027b957b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Size:   5617
Md5:    bca3c9b14d1a37b805e41f8cbe61be7e
Sha1:   5a3849459df95c9ac261840c9efe5cd265cd755a
Sha256: f730c29ffb9ba16b6e0bcb09ded50ef3076f7125fc133103ed7d26843f3e57b0
                                        
                                            GET /images2/nice_bk4_thumb.jpg HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 6091
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16406
etag: "5ee1f391-4016"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d2027b951b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Size:   6091
Md5:    57aee6ca35013ad9b91ae2583c1831f7
Sha1:   73616462427ff5288ac0e19e54eac477270a7b59
Sha256: 0514463b5d215bf6e91ed3a61d6189e34e89e5921249add1e0f9bbd2e9b41294
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3042
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:04 GMT
Last-Modified: Tue, 04 Oct 2022 09:19:22 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 10:10:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 10:10:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 10:10:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 10:10:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:03 GMT
expires: Thu, 28 Sep 2023 19:34:03 GMT
cache-control: public, max-age=31536000
age: 484561
last-modified: Wed, 11 May 2022 19:24:53 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11072, version 1.0\012- data
Size:   11072
Md5:    e7df3d0942815909add8f9d0c40d00d9
Sha1:   cf5032eea3399a58870e8a05e629b006a8c7c3c7
Sha256: bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 17:24:34 GMT
expires: Fri, 29 Sep 2023 17:24:34 GMT
cache-control: public, max-age=31536000
age: 405930
last-modified: Wed, 11 May 2022 19:24:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Size:   11028
Md5:    1f6d3cf6d38f25d83d95f5a800b8cac3
Sha1:   279f300ca2cbbdf9f5036ef2f438607fbf377daa
Sha256: 796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
                                        
                                            GET /v0/amp-list-0.1.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12916
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "8b5482649e87a1e1"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (42775)
Size:   12916
Md5:    ea1262a7de183e2ac7915421cf6b2142
Sha1:   010772853ab22be7624aa0ccf8e98d4372f774b2
Sha256: aafd09196046aa029bb1ae1c87e2ecfd0f7cdc223c58325e1a41b4884afa6868
                                        
                                            GET /v0/amp-accordion-0.1.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5859
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "69fb31f6d65e8437"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17551)
Size:   5859
Md5:    73af6e224d1abd34e60678a28bce1547
Sha1:   52ef6c24d3ab62d7dcfffb011a31aca4d216799f
Sha256: 06a478c0bde49a937f54fed3ff5553a6a1ba660a787e7317180263198421d134
                                        
                                            GET /v0/amp-iframe-0.1.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8933
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "54c74bdafa174c95"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25639)
Size:   8933
Md5:    cf49937db8fb54ba35d1b54f1ae6576e
Sha1:   24ff5df067b508254fd8c49eb129c2f3d335db4a
Sha256: fce4d0eda9cbb2e937e3779f2c2e814e1b340f37fb3ad89304a75df302d2ab56
                                        
                                            GET /v0/amp-action-macro-0.1.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1465
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "4e56ca6e246e19c3"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3580)
Size:   1465
Md5:    eb59200d88c7b7642f08e4f9bc271e64
Sha1:   47a581c9a194690341c50f424863102987bdf605
Sha256: 37657866636cd58441b6996972c72e2b84104ce8e879d7ed6311c067cfc786cc
                                        
                                            GET /v0/amp-recaptcha-input-0.1.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9201
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "85c529c6628e0599"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25181)
Size:   9201
Md5:    2e06ef302e9c52dfac4e9d6aedcad2b6
Sha1:   9e8d64b16dcbd11b96e2d8ab9883dffe40f64dcd
Sha256: d5ddb58c2f53cadbe23b6c421d156e96b067e8845841dfecb33a3d330152c60e
                                        
                                            GET /v0/amp-animation-0.1.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 18998
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "a7ca7ca780c0b602"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65532)
Size:   18998
Md5:    5302a46408ac363b717df6a6080d981f
Sha1:   43761df48733a61a8aad0f2256e4ffa01c0d88c8
Sha256: d1e2ec6691f591ba03548e645eae8602ee805d5d3d0070a1632a3cbefc4a5709
                                        
                                            GET /v0/amp-lightbox-0.1.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8467
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "9a554f914c0d1795"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26320)
Size:   8467
Md5:    66e9d5125eedf5a626cf989fac81dea7
Sha1:   902cae066626e85ff78e45113a970181a80e3a94
Sha256: 5b5eefc1dfb473ec19013a8c4155bfba63c1a045afb90c9117225718dc15d882
                                        
                                            GET /v0/amp-analytics-0.1.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 31967
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "dfda97fe2a1b5ffc"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65534)
Size:   31967
Md5:    3c3c0b10ff8c4da1f62b3edcc57a28a9
Sha1:   f8c7a0ff5027f5f167bb46511ba8a244f0268c4b
Sha256: f04c675f874371b02e59e7d05cb8a1d6badcf7288be90a13fbb1d4f5ea4e536b
                                        
                                            GET /v0/amp-mustache-0.2.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14319
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "4b35e2dbbcca67c0"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (41887)
Size:   14319
Md5:    072e1e0ce30ed27c39cb4abc7b46729d
Sha1:   d00feed7e8f19e633e2769f94215a215c633ecb4
Sha256: 98d06b2f83c25622fc240e42b2bf2305980d71820e1945f77bcad04e5ee7beb5
                                        
                                            GET /v0/amp-form-0.1.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14973
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "0c6fa01c90d735ce"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (50557)
Size:   14973
Md5:    bf4c4fba5f9a2306a4c4d184c683d145
Sha1:   f3b5eff92ed45d70d6fced05ec7ada7659fab3ba
Sha256: b5fba7c444e34f392c9de87463f3a2328b8375ecf3212ac7487d30cabb20c005
                                        
                                            GET /v0/amp-sidebar-0.1.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9664
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "b2cba6000b3c8a65"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31286)
Size:   9664
Md5:    e6596c3b5fe63837c6e59b151a00a549
Sha1:   e7ca62e269709e6531f1e1b1b022d9370e117c8a
Sha256: 848836c5424a33425b09834e83d94cd12b4788f1b412c803e947467a1f17c4c3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 10:10:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 10:10:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +52Ooex2iMOOvJdzXwB0XA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.161.136.21
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MmnNnllpUaRRGnfIVtAha4ogSF4=

                                        
                                            GET /sites/default/files/logo_uploads/440366/large_primacosta.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 6143
last-modified: Mon, 27 Jun 2022 10:57:02 GMT
etag: "62b98cfe-17ff"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d2027a949b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size:   6143
Md5:    8147c1fe382dcd3ae0293051f09fb6dc
Sha1:   d1fb70e14e176515f0db34529831c6d36219c644
Sha256: 821aaf29aa7b6d025e55071567cf2a73702cab37fa61bc8b26cbb2a36a33f27b
                                        
                                            GET /images7/menu_corner.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 326
cf-bgj: imgq:100,h2pri
cf-polished: origSize=415
etag: "5fdf0f81-19f"
last-modified: Sun, 20 Dec 2020 08:46:57 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202c7fc1b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Size:   326
Md5:    46030a6b4d338aa9be62f50203c4ff5b
Sha1:   c88766c7af725f4519b8d26b1001b549bef17a60
Sha256: a2207a26b24c6f4d985ad4f6da0ee829f6b7c29880ee0f025bdd7f2406133e59
                                        
                                            GET /images6/icon_bc_search_bigblk.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 2332
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2940
etag: "5a96c759-b7c"
last-modified: Wed, 28 Feb 2018 15:14:33 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202c8fc4b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 128 x 128, 8-bit gray+alpha, non-interlaced\012- data
Size:   2332
Md5:    5df8840f95ca2b57cb4c1a04a450bd18
Sha1:   7d97554537c3d55bcd2dc2525ebf8b6460b3aedf
Sha256: 30c2e6ee83ea286bef75e58172ea15e543b798ffa26154024f1a2a95d89971b9
                                        
                                            GET /images6/icon_bc_refine_blk.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 1081
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2074
etag: "5fe9acd4-81a"
last-modified: Mon, 28 Dec 2020 10:00:52 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202c8fc6b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Size:   1081
Md5:    21fed69f80de4815a845b554523f1f0b
Sha1:   1f8f3562f2581619b0b12be06996eb7d2efef926
Sha256: eb56a89bd14ada5dc2498e27f8b074a3a889c47c07f06a73c04d212fb9f48016
                                        
                                            GET /v0/amp-bind-0.1.js HTTP/1.1 
Host: cdn.ampproject.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.1
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 16261
date: Tue, 04 Oct 2022 10:10:04 GMT
expires: Tue, 04 Oct 2022 10:10:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "9cf879b2a5f2c71c"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   5907
Md5:    fb4bff13a9b6f0b181ca99f55e1851bf
Sha1:   2969bbee6ce6f471d131c52ea806070eeb2f75be
Sha256: 372a7875b90613c3706d7bac0792679818354119b0d656e5ef16875ba701a585
                                        
                                            GET /images6/icon_cart_blk.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 594
cf-bgj: imgq:100,h2pri
cf-polished: origSize=693
etag: "5a12debd-2b5"
last-modified: Mon, 20 Nov 2017 13:55:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3058
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202c8fc9b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Size:   594
Md5:    0f4bfd7ce7e3cd0031e75eafb5ae5ced
Sha1:   975cf52ea1a8c5a75b1bedbead36161629aba05f
Sha256: 2e924b33b08af08800be44199679ee7f7e46012070bcd2dbf5b916bb99e684dc
                                        
                                            GET /images6/icon_heart.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 1095
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1405
etag: "5a12dec0-57d"
last-modified: Mon, 20 Nov 2017 13:55:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202c9fd9b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Size:   1095
Md5:    88e4464632078c7b6cbfbccffd95878a
Sha1:   68c907205dfcfaf600fb84c28c1363f029dc8e78
Sha256: 3051e31080b34dacf5378df68561065fb516b05594c5695b95905e32e8a551af
                                        
                                            GET /images7/icon_percent.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 771
cf-bgj: imgq:100,h2pri
cf-polished: origSize=875
etag: "6023e899-36b"
last-modified: Wed, 10 Feb 2021 14:07:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202cc805b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Size:   771
Md5:    20b4980f9d03b45ec7ec243f3a898d97
Sha1:   b09250a824c84a5f90862ccb93d155128d30d753
Sha256: 25e04c953669e488a0f727d11b858f19a67c2165d8232586fff448e16290d446
                                        
                                            GET /images7/icon_cart.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 488
cf-bgj: imgq:100,h2pri
cf-polished: origSize=851
etag: "5ebbcbcf-353"
last-modified: Wed, 13 May 2020 10:28:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202cc80ab50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Size:   488
Md5:    ecdbbc8258f81f5cc36944941eb381cd
Sha1:   6a7970f95e21da0a54211e49760bf2ac5738915a
Sha256: e7501a24075314198d656bed11723ea4beceddd08864f53a31a6eecabc000946
                                        
                                            GET /images7/icon_chat.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 374
cf-bgj: imgq:100,h2pri
cf-polished: origSize=691
etag: "5ebbcbd0-2b3"
last-modified: Wed, 13 May 2020 10:28:32 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202cc804b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 56 x 56, 8-bit gray+alpha, non-interlaced\012- data
Size:   374
Md5:    8bd1e7f1a5f9e05fd61373b746e73baa
Sha1:   d8483c30258d4e33a96755dec31b65e892c5c3a8
Sha256: 867f0673ce919e3987de03d8ccb8d26f50721b64624e4ba2fdbd6772c1b5e9a8
                                        
                                            GET /images7/icon_heart.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 1069
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1597
etag: "5ebbcbd2-63d"
last-modified: Wed, 13 May 2020 10:28:34 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202cc810b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 56, 8-bit gray+alpha, non-interlaced\012- data
Size:   1069
Md5:    8c10244caab110d2455d3952b47304af
Sha1:   ea695914fb21e4227c6ed482e84d70c8d145009d
Sha256: 626e178145fb4293ef5ff59a67451883d3c35d6048fab45c1e2f365f8b3a134f
                                        
                                            GET /images2/nice_bk1_.jpg HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 184078
cf-bgj: imgq:100,h2pri
cf-polished: origSize=202326
etag: "5fdbcc77-31656"
last-modified: Thu, 17 Dec 2020 21:24:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202cd81ab50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 1600x1024, components 3\012- data
Size:   184078
Md5:    a16d81686e7139d223f7abbe22f781e8
Sha1:   bc8d96b0698f2cb7fa9202e77d184eeb861ae9f7
Sha256: 3d4b4be3f8b7b79f2b5ba988c6e4ca6f993db5b87bb7a157f91c0d46276f9cff
                                        
                                            GET /images6/icon_paint.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 1961
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2539
etag: "5a12dec1-9eb"
last-modified: Mon, 20 Nov 2017 13:55:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202cd82ab50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Size:   1961
Md5:    738d11479c8f00bbf6becd4f1628484e
Sha1:   92a9972dc97422c334792e7ca593f1aa00d124bf
Sha256: 4f96956134964753a940fcafd693e72f9d153e7e0f02c4c9b29944ad40dfa3d4
                                        
                                            GET /images6/icon_info.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 1462
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1853
etag: "5a12dec0-73d"
last-modified: Mon, 20 Nov 2017 13:55:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202cd82db50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Size:   1462
Md5:    1ccab99f59c5b67e39a46b1df9ff0e60
Sha1:   9bbef30e63d3a3682c90d3e26fa12fa2466db9cb
Sha256: e4e75c45fadf08c54284e1ea641a494ff531b87757751653e66dcd99eb1a5212
                                        
                                            GET /images6/icon_gift.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 1956
cf-bgj: imgq:100,h2pri
cf-polished: origSize=3038
etag: "5a12debf-bde"
last-modified: Mon, 20 Nov 2017 13:55:11 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202cd81fb50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size:   1956
Md5:    aa034845cd6345549655fd9b8d156ba4
Sha1:   832f87b3f83f315dcd0a86943c63d41a283635a0
Sha256: 56ee437c47ad090ba5204c9583adbbbf933b3f11a9dd64e5aa856bb01ff30b6e
                                        
                                            GET /images6/icon_delivery.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 1955
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2491
etag: "5a12debe-9bb"
last-modified: Mon, 20 Nov 2017 13:55:10 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202ce838b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Size:   1955
Md5:    a3ecd77d0fb534a6077b4d9640e225f6
Sha1:   622ab1f4b324e7e9a5afe55d75d7033a59fcd4d3
Sha256: 39ba61ecabf031e71e239e634d36bb31583fdd9b2d6c69f1e12a81498b860006
                                        
                                            GET /images2/nice_bk2.jpg HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 153149
cf-bgj: imgq:100,h2pri
cf-polished: origSize=158414
etag: "54d4c43d-26ace"
last-modified: Fri, 06 Feb 2015 13:40:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1604
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202cd81eb50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 1600x1024, components 3\012- data
Size:   153149
Md5:    2b609e5c7b90f4aa31c19ad4dbb9888b
Sha1:   95d70cc4b3896f11079f94cf2851235551b17281
Sha256: 6730326e166c0ba1f3b8d128d62da81d7578c6beb946139e64d5833fa014de0e
                                        
                                            GET /images6/icon_bills.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
content-length: 1464
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1809
etag: "5a12debb-711"
last-modified: Mon, 20 Nov 2017 13:55:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3059
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202ce834b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Size:   1464
Md5:    63b9477a8d4f573114ef3a8385e421c1
Sha1:   af618a395be518ed856135aae176cafa600c3766
Sha256: 1791cdebe64eb084b289ade2587c236382055b8a45b9f610ddd0b0a0a5b56d46
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "15676AE928874247B119E80C3122B551365AB3AA27C441B404D97EC5885B59B3"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7021
Expires: Tue, 04 Oct 2022 12:07:06 GMT
Date: Tue, 04 Oct 2022 10:10:05 GMT
Connection: keep-alive

                                        
                                            GET /_/ad/b81fc17866594cbbb3efebdd1241e062/pixel?tag=ViewContent HTTP/1.1 
Host: q.quora.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.234.135.87
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Tue, 04 Oct 2022 10:10:05 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,86fdeabe1523950dbbfdde41c40098bd,10.0.0.129,37126,91.90.42.154,,66096451680,1,1664878205.266,0.002,,.,0,0,0.000,0.000,-,0,0,197,258,129,10,35796,,,,,,-,
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /sites/default/files/logo_uploads/408738/large_medoka.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:05 GMT
content-length: 12151
cf-bgj: imgq:100,h2pri
cf-polished: origSize=15476
etag: "61ef3f65-3c74"
last-modified: Tue, 25 Jan 2022 00:08:05 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202ce83ab50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size:   12151
Md5:    fbffdd92dbe7b3029e3893c0d42e5239
Sha1:   82a597f684a69f229149a785eb1a0e83f42ce178
Sha256: 5716f207b677325f83576ed74df4e342e59dc9341c16b4f52f7080998d147253
                                        
                                            GET /sites/default/files/logo_uploads/189933/large_sopreso.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:05 GMT
content-length: 11636
last-modified: Sat, 18 Aug 2018 06:25:02 GMT
etag: "5b77bbbe-2d74"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202ce84db50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size:   11636
Md5:    bddfe7434a5871a715a0b4f8e895fa78
Sha1:   980255cc760bbf59690d47bff774c80a238e39ba
Sha256: e5a384ed984e4e423add8e04ecaa699830bf64ace787a1e6244579c21a64c5eb
                                        
                                            GET /sites/default/files/logo_uploads/418022/large_ovelli.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:05 GMT
content-length: 10155
last-modified: Wed, 09 Mar 2022 10:39:03 GMT
etag: "622883c7-27ab"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202ce842b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size:   10155
Md5:    55e0827106ea223b3ebadc46330e59b1
Sha1:   9b68d500539cf394c43304f098e6c8c566cc8a3c
Sha256: 192dcce2c882cde158854e17bcd0dcbf27d4791c4c0a3a9000f08453ab442d46
                                        
                                            GET /sites/default/files/logo_uploads/263544/large_elastatic.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:05 GMT
content-length: 5456
last-modified: Wed, 16 Oct 2019 06:52:55 GMT
etag: "5da6be47-1550"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202cf85bb50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size:   5456
Md5:    c17cf92cd6d9a2990b0190bc4c9bf829
Sha1:   d466a8796562e5605a88513926fe6e531aa411e2
Sha256: 91813b5a25adfceee8416bbc1aba7fe78b2b6b130e61bd447ccf1850b6657250
                                        
                                            GET /sites/default/files/logo_uploads/284053/large_claravera.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:05 GMT
content-length: 3446
last-modified: Sat, 21 Mar 2020 08:11:06 GMT
etag: "5e75cc1a-d76"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202cf85db50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size:   3446
Md5:    1b3c02ea866c61622f09963c8ae44c76
Sha1:   e5e0c7829a5a08347f53951cf60b6f4d6e63185e
Sha256: 85c0a79ad655c6759e547810a6e691c5b8a8069dada2c27b07835ae6491e6742
                                        
                                            GET /sites/default/files/logo_uploads/360787/large_hypeism_0.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:05 GMT
content-length: 5260
last-modified: Mon, 14 Jun 2021 01:40:02 GMT
etag: "60c6b372-148c"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202ce858b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 360 x 200, 8-bit/color RGBA, interlaced\012- data
Size:   5260
Md5:    10ac8743f200feead3c7422af3ada97e
Sha1:   35bd8bd8e480dbf38271a2c7457f4debfc3d8516
Sha256: 6310ca3ba4e951ff7a99aab001acd2de7c68b839f2ba6e6c5a58073047fae268
                                        
                                            GET /sites/default/files/logo_uploads/318551/large_quantixe.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:05 GMT
content-length: 17105
last-modified: Mon, 30 Nov 2020 23:09:03 GMT
etag: "5fc57b8f-42d1"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202ce83cb50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 360 x 200, 8-bit/color RGBA, interlaced\012- data
Size:   17105
Md5:    2999d3169c1b0a39765f26b3ae418272
Sha1:   b0f5960d504f89bce6b3fd3683b8358e5f62f05a
Sha256: 2f9266adf136f1a6de09726af558190f84c189db29e19b561fc2b5d4ffe70971
                                        
                                            GET /sites/default/files/logo_uploads/263331/large_neurodoor.png HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 10:10:05 GMT
content-length: 25015
last-modified: Mon, 14 Oct 2019 15:25:02 GMT
etag: "5da4934e-61b7"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d202ce854b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 359 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size:   25015
Md5:    8910867e8d873e63642c58d024556090
Sha1:   bdf9951a1e640caad6646d74441a4227e2b7abf8
Sha256: 2ca69e21a35896e2082b233521d34645a080ee9ebfe4259f8712df085032ce75
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 10:10:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /amp.json?id=GTM-NMCQSSJ&gtm.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fprimacosta%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Origin: https://www.brandbucket.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
access-control-allow-origin: https://www.brandbucket.com
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
amp-access-control-allow-source-origin: https://www.brandbucket.com
access-control-allow-credentials: true
content-disposition: attachment; filename="GTM-NMCQSSJ.json"
content-encoding: br
vary: *
date: Tue, 04 Oct 2022 10:10:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 1156
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (10081)
Size:   1156
Md5:    61d56ab302b78f61b171d679fccb0de0
Sha1:   22f07788d4fd05cfba242cc693582dc35fedf178
Sha256: c3a0f4c431ad42aeb023b74f47dd4f74d9dfa8dc385d609868996d5225a47fbc
                                        
                                            POST /gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Content-Type: text/plain;charset=utf-8
Origin: https://www.brandbucket.com
Content-Length: 379
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
access-control-allow-origin: https://www.brandbucket.com
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
amp-access-control-allow-source-origin: https://www.brandbucket.com
access-control-allow-credentials: true
content-disposition: attachment; filename="amp.json"
content-encoding: br
vary: *
date: Tue, 04 Oct 2022 10:10:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 262
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (497), with no line terminators
Size:   262
Md5:    e2d9a6191d8c718a71ced1d8865928aa
Sha1:   f6e0df35194027da97abe0a08f39411eaea2b679
Sha256: 0c907755f6f201383f6842b97e55c409c8b62676bc62321c291b6c4bc9677886
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13160
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 10:10:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13160
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 10:10:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13160
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 10:10:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13160
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 10:10:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13160
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 10:10:06 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3430
x-amzn-requestid: 22a0e400-1567-4c9c-aca9-782f3f81a8ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKLCrEn4IAMFZWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f210-11fa888c78719c44160accf8;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 69u2trVvquFefzPFeOg_AuyzqQ6EBpY_ok9d9RXv71NE3TB_qELdtg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 16:24:09 GMT
age: 63957
etag: "42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3430
Md5:    488ec5b4267ccb1cdc4e6e08556f7f3b
Sha1:   42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88
Sha256: d9b05fe92962a58b9a8e8dbd4757969aa361be12018107ae649ffcdb8a0f8d84
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8308
x-amzn-requestid: 3348b2e8-915a-492b-8241-89c13a21232c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqFlFyyoAMFz_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b56f0-2baf7ac2213c31fc384e8317;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y1H21zphqs9mIGVYHojfc-nvW35BS3nq4hunM_JmyT9mC100bXlgWw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:46 GMT
age: 44060
etag: "4ac6c5691df804078d5da54233cf4d8e7012f9ca"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8308
Md5:    de29d0d95d22e4e246a90feed644baf0
Sha1:   4ac6c5691df804078d5da54233cf4d8e7012f9ca
Sha256: 8e34ad07e098df14f7001d1ee538479de11afa4c255006cb6e8e2207c0e50a47
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11101
x-amzn-requestid: f98e84d9-1e66-4436-b793-219a777f2ba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqcvE8JoAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5784-25bd2b234c1093de70074c92;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: becOxfqUowywFrxzDSeK7F1lFdDVTSHIF1TLC5k5aSlLPpsR6F8gjw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:08:47 GMT
age: 43279
etag: "db07d58d8feff4ea01866d095e5264ee5c8e1ca3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11101
Md5:    ae824db4a95391149198a4b6b8556c70
Sha1:   db07d58d8feff4ea01866d095e5264ee5c8e1ca3
Sha256: 19e96d204813247697e1858daf9e07d6c4cafd9ab1175a3bf39a7f07f6991521
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 44000
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4858
Md5:    6779181f9c06975f2a662da743893939
Sha1:   585e7146fd24cdc2496b05baafea04091dc541e2
Sha256: 8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 42047
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5504
Md5:    6c6882c60d7ca6f918c77104e3ad1d52
Sha1:   20ef861be49c652a938e0145e4ca3a60159367e2
Sha256: 861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 10:10:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5083
x-amzn-requestid: ed99df03-5d15-4e09-9aea-bbf77a705323
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI0HT0IAMFxvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556b-422197147d76caac6e910664;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:35 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pddStyEpwVdYKSAUVcpupnWVPw6ALoYCouHQzixF_vTgXdpVF60ElA==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 43147
etag: "f5ce815082043a4efce28fc790ae7d8b3a8531f8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5083
Md5:    34f2dfb2faff276db1d4a57739db2450
Sha1:   f5ce815082043a4efce28fc790ae7d8b3a8531f8
Sha256: e02ea92f0be524ccfe26eee61a77e39a13d852d1ba3696f729e0f61812028667
                                        
                                            GET /v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=438673 HTTP/1.1 
Host: ct.pinterest.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.84.84
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: *
set-cookie: _pinterest_ct_ua="TWc9PSZzVTJjWjRDUlZQdmJRM3dUdkh5YXZRaWdITTE3a3FQT2Z5VjJ2Z2lPa3oycjhnZnZsVmsyYk10cDJobmF0eDRtMXdHdXZncXNTWGNSbzhRb3k3MjA3cmJTOGVlRTlSblZUaXoyczhadG40Yz0mRDJoQTJ5WDNpODRWd3A5Z1F2RnBMM1VXU1J3PQ=="; Expires=Wed, 04 Oct 2023 10:10:06 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 7552425719754442
date: Tue, 04 Oct 2022 10:10:06 GMT
x-cdn: fastly
content-length: 35
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    9b8d19f4310c758344e40bf17fbc7e85
Sha1:   2290ef058812d5f5e398736e2316cba8cf8093cf
Sha256: 37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
                                        
                                            GET /amp/ga?promo&p=438673&ext&dp=408285.318315.417360.189814.259917.357022.263528.283899.311234.89118.228443.273900.281877.448792.224307.259352.345010.353829.348045.254334&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/names/primacosta?source=ext
AMP-Same-Origin: true
Connection: keep-alive
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 04 Oct 2022 10:10:06 GMT
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
amp_run_time: 0.016379s
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 754d203318c0b50b-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (14763), with no line terminators
Size:   1856
Md5:    6c527664698dafd4d07c1f3826c9089d
Sha1:   1593b5a5539d51bbc27b158cf95081d700c3fad1
Sha256: 3022c32d24593d222d9582ff41adbd361d5a04d3c5f3c5eaa91bbd3e8008b526
                                        
                                            GET /12769037/0/56f9249f/1/ HTTP/1.1 
Host: c.statcounter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.20.229.67
HTTP/2 200 OK
content-type: image/gif
                                        
date: Tue, 04 Oct 2022 10:10:06 GMT
content-length: 49
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc12769037.1664878206.0; SameSite=None; Secure; Expires=Sunday, 03-Oct-2027 06:10:06 EDT; Path=/; Domain=.statcounter.com is_visitor_unique=1664878206205703007; SameSite=None; Secure; Expires=Thursday, 03-Oct-2024 06:10:06 EDT; Path=/; Domain=.statcounter.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 754d2034c9a4b505-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   49
Md5:    56398e76be6355ad5999b262208a17c9
Sha1:   a1fdee122b95748d81cee426d717c05b5174fe96
Sha256: 2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:18:13 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2kXaFdnwgI34q97GrN8SvKUmFAdMpOqLqbvxKX0cbBWkfgyjYX7YCw==
Age: 3113

                                        
                                            GET /ipixel/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N?name=c49e73cf HTTP/1.1 
Host: d.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.214.200.155
HTTP/2 200 OK
content-type: image/gif
                                        
date: Tue, 04 Oct 2022 10:10:06 GMT
content-length: 42
server: nginx/1.20.0
cache-control: no-transform,public,max-age=300,s-maxage=900
vary: Cookie
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4864
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:06 GMT
Last-Modified: Tue, 04 Oct 2022 08:49:02 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue HTTP/1.1 
Host: www.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None bcookie="v=2&af2408c9-4e30-4233-82a1-277b3fcb19ab"; Domain=.linkedin.com; Expires=Wed, 04-Oct-2023 10:10:06 GMT; Path=/; Secure; SameSite=None bscookie="v=1&202210041010061e4a46cf-f753-4504-8808-02beea87004bAQHqtEyYLO4LP2lAm-CRimHYOe1TmgKf"; Domain=.www.linkedin.com; Expires=Wed, 04-Oct-2023 10:10:06 GMT; Path=/; HttpOnly; Secure; SameSite=None li_gc=MTswOzE2NjQ4NzgyMDY7MjswMjHsL3huwsxn0NeJ+72ieAuGhpBlwPxIL+fHdGDVQU7O7Q==; Domain=.linkedin.com; Expires=Sun, 02 Apr 2023 10:10:06 GMT; Path=/; Secure; SameSite=None lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2401:u=1:x=1:i=1664878206:t=1664964606:v=2:sig=AQEzNK4SQ5dp3I--J2ML0j-8wtYrQNaG"; Expires=Wed, 05 Oct 2022 10:10:06 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXqMqoWRJV97Wx7t8ockQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 995C18B0B11147B7B9A27A180139B81E Ref B: OSL30EDGE0113 Ref C: 2022-10-04T10:10:06Z
date: Tue, 04 Oct 2022 10:10:05 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /collect/?fmt=gif&pid=271730 HTTP/1.1 
Host: www.bizographics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         144.2.15.25
HTTP/1.1 301 Moved Permanently
                                        
Server: Play
Location: https://px.ads.linkedin.com/collect?fmt=gif&pid=271730
content-length: 0
Date: Tue, 04 Oct 2022 10:10:06 GMT
Connection: keep-alive
X-Li-Fabric: prod-ltx1
Report-To: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
NEL: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
X-Li-Pop: prod-ltx1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAXqMqoX4Td+qnYmZkTaxg==
Set-Cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=bizographics.com; Secure lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2397:u=1:x=1:i=1664878206:t=1664964606:v=2:sig=AQF359je6ok7YfNIyPYr4EJMo4YCaKCF"; Expires=Wed, 05 Oct 2022 10:10:06 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure

                                        
                                            GET /collect?pid=271730&fmt=gif&liSync=true HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 65
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&87409c25-9381-43ed-82e7-f0c27a0e182e"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 04-Oct-2023 10:10:06 GMT; SameSite=None lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2401:u=1:x=1:i=1664878206:t=1664964606:v=2:sig=AQEzNK4SQ5dp3I--J2ML0j-8wtYrQNaG"; Expires=Wed, 05 Oct 2022 10:10:06 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXqMqoYapGMGdvdvChJpQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 95075F66E6CE44C2ABB85D5364FF1742 Ref B: OSL30EDGE0113 Ref C: 2022-10-04T10:10:06Z
date: Tue, 04 Oct 2022 10:10:06 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   65
Md5:    8b0d5b18476ae12e2476f3621d54c4a5
Sha1:   2ad669e9d207fbb37e84dda25766dbaeb66d792c
Sha256: 2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2293
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:31:54 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /amp/tracking/names/primacosta?source=ext&ext=438673&source=ext HTTP/1.1 
Host: amp.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 302 Found
content-type: text/html
                                        
date: Tue, 04 Oct 2022 10:10:06 GMT
location: https://www.brandbucket.com/amp/tracking/names/primacosta?source=ext&ext=438673&source=ext
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 754d2032d87db50b-OSL
X-Firefox-Spdy: h2

                                        
                                            POST /tr?noscript=1&ev=PageView&id=1690817644503013 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Tue, 04 Oct 2022 10:10:06 GMT
X-Firefox-Spdy: h2

                                        
                                            POST /tr?noscript=1&ev=ViewContent&id=1690817644503013&cd[value]=6995&cd[currency]=USD&cd[content_name]=primacosta.com&cd[content_type]=product&cd[content_ids]=438673 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Tue, 04 Oct 2022 10:10:06 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2293
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:31:54 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /collect?fmt=gif&pid=271730 HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQK2Q5bChw4GBQAAAYOieV7ePS4HGUoRFBu1SLlGD4xNpLlyFDYSNeisbsLnzZd3S30HkAisTAslHw; Max-Age=2592000; Expires=Thu, 03 Nov 2022 10:10:06 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure AnalyticsSyncHistory=AQIuE2jJi_C5NAAAAYOieV7foIltdHUD7ei-ayMiYth9jeex1j9kmzdNu5IqDKthHszjzI3ycblxoaEmKqRFAg; Max-Age=2592000; Expires=Thu, 03 Nov 2022 10:10:06 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&0eced381-3e8b-4450-8cd8-34aa2c704ecd"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 04-Oct-2023 10:10:06 GMT; SameSite=None lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2354:u=1:x=1:i=1664878206:t=1664964606:v=2:sig=AQFidgBgqJ4jl1THYddwrdpHP-uWmpEe"; Expires=Wed, 05 Oct 2022 10:10:06 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXqMqoadaCkQ2gZ90N+EA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: C048392DAFC54C209D7468ED186489A0 Ref B: OSL30EDGE0113 Ref C: 2022-10-04T10:10:06Z
date: Tue, 04 Oct 2022 10:10:06 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST /r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Primacosta.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1664878205754&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fprimacosta%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.6694562813155205&_r=1&a=5326&z=0.7786074549788399&gtm=2oubu0 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.6694562813155205&_v=a1&z=0.7786074549788399
access-control-allow-origin: https://www.brandbucket.com
date: Tue, 04 Oct 2022 10:10:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 388
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   388
Md5:    67b860993a1657708b81c90cb2b7858f
Sha1:   83ba4ccbd9bea3c842772265a788ea6cb77b5b0d
Sha256: 225c6969d0c08cc3d6586d1ba191641a19529952785e10a7c8498a06a616c4d7
                                        
                                            POST /collect?v=1&_v=a1&ds=AMP&aip&_s=2&dt=Primacosta.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1664878205765&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fprimacosta%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=event&jid=&ec=&ea=&el=&ev=0&a=5326&z=0.4135437059033543&gtm=2oubu0&ec=engagement&ea=view_item&ni=1&pr1id=438673&pr1nm=primacosta.com&pr1pr=6995&pr1va=Com&pr1br=Invented&pr1qt=1&pr1ps=1 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: image/gif
                                        
access-control-allow-origin: https://www.brandbucket.com
date: Tue, 04 Oct 2022 10:10:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue HTTP/1.1 
Host: www.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?fmt=gif&pid=271730&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None bcookie="v=2&fa9bd2de-3669-432c-8d75-f9745a299135"; Domain=.linkedin.com; Expires=Wed, 04-Oct-2023 10:10:06 GMT; Path=/; Secure; SameSite=None bscookie="v=1&20221004101006b3e4048c-0744-4cf2-87ad-4423e113ca48AQFvg59k510Zy4Vvtr646FFOLg-H1yQX"; Domain=.www.linkedin.com; Expires=Wed, 04-Oct-2023 10:10:06 GMT; Path=/; HttpOnly; Secure; SameSite=None li_gc=MTswOzE2NjQ4NzgyMDY7MjswMjEyctakC68GNA4Ndp2yE+iO2Hh+zRE5ty7Dv5qB+zqc0w==; Domain=.linkedin.com; Expires=Sun, 02 Apr 2023 10:10:06 GMT; Path=/; Secure; SameSite=None lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2401:u=1:x=1:i=1664878206:t=1664964606:v=2:sig=AQEzNK4SQ5dp3I--J2ML0j-8wtYrQNaG"; Expires=Wed, 05 Oct 2022 10:10:06 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXqMqoc1VL/2gwjUTkR7g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 4CE62DFC2C6C4549BC92DECE6BC59F83 Ref B: OSL30EDGE0113 Ref C: 2022-10-04T10:10:06Z
date: Tue, 04 Oct 2022 10:10:06 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /ads/pixel.js HTTP/1.1 
Host: www.redditstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 19 Jul 2022 22:48:09 GMT
etag: "95212d33cfff78ad59f5af5b20c48c53"
cache-control: public, max-age=60
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 04 Oct 2022 10:10:06 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25224)
Size:   7722
Md5:    95212d33cfff78ad59f5af5b20c48c53
Sha1:   9b99a4091a6eb716bc68f1428e3c86eca068b25b
Sha256: bd69f250efa08cb2c0a06c35d91fda762779820d87779019c25211f4559ebb1d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 10:10:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.6694562813155205&_v=a1&z=0.7786074549788399 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         74.125.131.154
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.6694562813155205&_v=a1&z=0.7786074549788399
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 04 Oct 2022 10:10:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 386
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   386
Md5:    df01bf4b1949b617ceaa72c39cb1acac
Sha1:   81a9b57c32bc8aa185638c7eaa2c531855bd9895
Sha256: 67d773f4057b390bba44122fe7dc7c4b15fb91cf38a72875b5835926d708a46b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 10:10:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /20882931.js HTTP/1.1 
Host: js.hs-scripts.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.210.204
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
date: Tue, 04 Oct 2022 10:10:07 GMT
x-trace: 2BA11934BCB0A2EA5A2B65743B3053BBC5E75D74AC000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: f9ef93a1-b255-44dd-881f-00aff80c8299
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.brandbucket.com
last-modified: Tue, 04 Oct 2022 10:08:24 GMT
cf-cache-status: EXPIRED
expires: Tue, 04 Oct 2022 10:11:07 GMT
server: cloudflare
cf-ray: 754d203938980b51-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (495)
Size:   970
Md5:    c462e42ee56008bb5d6267914285a991
Sha1:   842ea6cf78297ff75af6d43b53a4c1f150954f54
Sha256: ccb26e06b3a25d04a7a87898a63b5f9f716c6ead2b0f752a7e3a9fa635d61e55
                                        
                                            GET /collect?fmt=gif&pid=271730&liSync=true HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 65
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&160c6dad-d650-48b8-8609-cdf3f9570f8c"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 04-Oct-2023 10:10:07 GMT; SameSite=None lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2354:u=1:x=1:i=1664878207:t=1664964607:v=2:sig=AQFpzRBKhglLih-PLEc7PgugIv_kAA5B"; Expires=Wed, 05 Oct 2022 10:10:07 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXqMqofkCKB1ZhSpMRF/A==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: F0098CCB82074EC99DE36691E5729729 Ref B: OSL30EDGE0113 Ref C: 2022-10-04T10:10:06Z
date: Tue, 04 Oct 2022 10:10:06 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   65
Md5:    8b0d5b18476ae12e2476f3621d54c4a5
Sha1:   2ad669e9d207fbb37e84dda25766dbaeb66d792c
Sha256: 2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.6694562813155205&_v=a1&z=0.7786074549788399 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 10:10:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.6694562813155205&_v=a1&z=0.7786074549788399&slf_rd=1&random=1105033549
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /bat.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         204.79.197.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: private,max-age=1800
content-length: 11367
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=259AD92C412D66691EB4CB1F407A6761; domain=.bing.com; expires=Sun, 29-Oct-2023 10:10:07 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0D38651A558F4C7B8B637789ED9138C1 Ref B: OSL30EDGE0319 Ref C: 2022-10-04T10:10:07Z
date: Tue, 04 Oct 2022 10:10:06 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Size:   11367
Md5:    293ae3e0fc8b0d5c143fdf9d8490228d
Sha1:   3976c659b908e70818a3a1ac71860b497fe2d1a9
Sha256: 04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
                                        
                                            GET /uwt.js HTTP/1.1 
Host: static.ads-twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.84.157
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Tue, 04 Oct 2022 10:10:07 GMT
x-served-by: cache-iad-kcgs7200165-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57443), with no line terminators
Size:   15317
Md5:    1e9c4d503a9e162d8b549dc3d9c040e2
Sha1:   1fa99d7d7e878cdd45567af4b0c3c65542036c1d
Sha256: f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2276
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:07 GMT
Last-Modified: Tue, 04 Oct 2022 09:32:11 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 314

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 10:10:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.brandbucket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/primacosta?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=fbbu4vs5eamf5hm8m5p5j70h54; land_URL=1664878203%3B%2Fnames%2Fprimacosta%3Fsource%3Dext; land_referrer=1664878203%3B; bb_recent=438673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.4.41
HTTP/2 200 OK
content-type: text/html
                                        
date: Tue, 04 Oct 2022 10:10:04 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3058
last-modified: Tue, 04 Oct 2022 09:19:06 GMT
server: cloudflare
cf-ray: 754d202adda7b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   5521
Md5:    c8eed65e997f5bc4301562f2bad75f43
Sha1:   f27fdf47f997a212bbb05a8999f7b8473800e931
Sha256: 43a6a591e760a3980d168999a590cabd30a7a0eb8cddec62438dbb380766f0dc
                                        
                                            GET /rp.gif?ts=1664878206523&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=b187ad13-98e7-4036-aeb4-951082eeef39&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1 
Host: alb.reddit.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: image/gif
                                        
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Tue, 04 Oct 2022 10:10:07 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.6694562813155205&_v=a1&z=0.7786074549788399&slf_rd=1&random=1105033549 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 10:10:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /20882931.js HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.33.171
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
date: Tue, 04 Oct 2022 10:10:07 GMT
x-amz-id-2: LZQJEIUGZpimRU8u1RpHftmBzqWoKddSEimv1q4KRhb1GfuXfY0vgY9GfW6WrayKUY+ihlNMN4U=
x-amz-request-id: VFEXZ99DDVNKEYDB
last-modified: Tue, 30 Aug 2022 23:09:39 GMT
etag: W/"78ffb10a4b1a78e3dbb2fbc3833d979b"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: wVTF9d3ewW5rPbyGOXdwIXoxBD_CEo_I
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
expires: Tue, 04 Oct 2022 10:12:11 GMT
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d203abeb1b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (60657)
Size:   15396
Md5:    cf15f79d1f519dfa3cfe41e4dc4849e1
Sha1:   e2022ea3eda27f12066853d58278b4f09adbbd4d
Sha256: 0e4c8fff375416564dce39d0ac73e2d3d267a011f3bfaacbf2d52648a11b3a8d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 195
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:07 GMT
Last-Modified: Tue, 04 Oct 2022 10:06:52 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 312

                                        
                                            OPTIONS /livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10873&mobile=false&messagesUtk=e301fd96b122496faee387de51a162a3&traceId=e301fd96b122496faee387de51a162a3&hubspotUtk=425fa7c621c8bf293e5e35bfc5e84976&__hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1&referrer=https%3A%2F%2Fwww.brandbucket.com%2F HTTP/1.1 
Host: api.hubspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.brandbucket.com/
Origin: https://www.brandbucket.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.19.154.83
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Tue, 04 Oct 2022 10:10:07 GMT
content-length: 18
cf-ray: 754d203b6ceefab8-OSL
access-control-allow-origin: https://www.brandbucket.com
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 76039e6c-929e-44a1-9286-9f0d0754c283
x-trace: 2B48804AC417911F21FD42402387B488C2831FF48C000000000000000000
set-cookie: __cf_bm=CfluNKfH1Q2O01lt4HBp8ErEP0iv_QwCZS1rqcz8sos-1664878207-0-AZ0FdnauLkpbB1qGmqhS/IacTDxXHSKDEoIN3KlKJP5uW209XdwgICBJdN5fzC/SRXVDoSN+SqjCbt/Ogaola9E=; path=/; expires=Tue, 04-Oct-22 10:40:07 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3%2F0FsDPxfS8AxJp8tWBaZqJL1iQ2BeYjfzmmogVv8m%2Fpu3sg20wsUcPRywFaIHPR%2FUhUGhN6zzO%2FZGTQzrRsmEOSDVRvavqIw9lCqtw2MCfsxIP8jv%2FPbAr6erAclcq5nw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   18
Md5:    cc7fd95a87ea3721ce1853bf3c4dd75e
Sha1:   7f687f7881adf0fc407378d375a61b8f198c0912
Sha256: 0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
                                        
                                            GET /i/adsct?bci=3&eci=2&event_id=6cad7613-f7f3-4cae-b7e2-9d08568b320a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=8dd8b352-16e1-4692-9016-90693e57767e&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fprimacosta%3Fsource%3Dext%26ext%3D438673%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27 HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Cookie: muc_ads=155049c2-b949-404c-b33d-425afe910b2a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.244.42.5
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Tue, 04 Oct 2022 10:10:06 GMT
perf: 7626143928
server: tsa_o
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 54c10bad239bf6e7
strict-transport-security: max-age=0
x-response-time: 107
x-connection-hash: 2a71fb82b85e5f85be413ee590e8d2240c8ea239458b930ccb5a49909307391c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4698
Cache-Control: max-age=152099
Date: Tue, 04 Oct 2022 10:10:07 GMT
Etag: "633ba348-13a"
Expires: Thu, 06 Oct 2022 04:25:06 GMT
Last-Modified: Tue, 04 Oct 2022 03:06:48 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 314

                                        
                                            GET /action/0?ti=138002826&Ver=2&mid=267be24b-f4c2-4575-9c43-eb74371ecd50&sid=b8904a8043cc11ed8c869508d29fba2a&vid=a70dab60e55711ecad10f9ba179de29e&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=All%20names&p=https%3A%2F%2Fwww.brandbucket.com%2F&r=&lt=1074&evt=pageLoad&ifm=1&sv=1&rn=878434 HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         204.79.197.200
HTTP/2 204 No Content
                                        
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=18044ABA2E8A61B5216A58892FDD6086; domain=.bing.com; expires=Sun, 29-Oct-2023 10:10:07 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 434383FB11B64F7B90906C74BB2C5313 Ref B: OSL30EDGE0319 Ref C: 2022-10-04T10:10:07Z
date: Tue, 04 Oct 2022 10:10:06 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6437
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:07 GMT
Last-Modified: Tue, 04 Oct 2022 08:22:50 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-7tbZo5Aytjy_QZMlOmpIOQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fprimacosta%253Fsource%253Dext&dtycbr=41098 HTTP/1.1 
Host: sslwidget.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         178.250.0.163
HTTP/2 302 Found
                                        
date: Tue, 04 Oct 2022 10:10:07 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-7tbZo5Aytjy_QZMlOmpIOQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fprimacosta%253Fsource%253Dext&dtycbr=41098
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 4254638
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 311
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:07 GMT
Last-Modified: Tue, 04 Oct 2022 10:04:56 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 314

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6264
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:07 GMT
Last-Modified: Tue, 04 Oct 2022 08:25:44 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 314

                                        
                                            GET /p/action/138002826.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         204.79.197.200
HTTP/2 204 No Content
                                        
cache-control: private,max-age=1800
set-cookie: MUID=1FB22E9C359F670B25483CAF34C866B8; domain=.bing.com; expires=Sun, 29-Oct-2023 10:10:07 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FB2C20561E8A42009A8AC6E98843792B Ref B: OSL30EDGE0319 Ref C: 2022-10-04T10:10:07Z
date: Tue, 04 Oct 2022 10:10:06 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10873&mobile=false&messagesUtk=e301fd96b122496faee387de51a162a3&traceId=e301fd96b122496faee387de51a162a3&hubspotUtk=425fa7c621c8bf293e5e35bfc5e84976&__hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1&referrer=https%3A%2F%2Fwww.brandbucket.com%2F HTTP/1.1 
Host: api.hubspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.brandbucket.com/amp/tracking/names/primacosta?source=ext&ext=438673&source=ext#amp=1
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.19.154.83
HTTP/2 200 OK
content-type: application/json;charset=utf-8
                                        
date: Tue, 04 Oct 2022 10:10:07 GMT
content-length: 1493
cf-ray: 754d203c4d88fab8-OSL
access-control-allow-origin: https://www.brandbucket.com
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 6e6c7777-573e-4de3-84f1-1f208bedb1c8
x-trace: 2B9BFA861A3DAF904C9F1586E077678AF10EA693BA000000000000000000
set-cookie: __cf_bm=GwsQSqlSZ65IByFDiNrKSXeX5BJTXBCBRoJ9i4c_314-1664878207-0-Aehx89cKUXt/BAxDf29csGV7W/EU4BKQ7hBVPqtLLEJkfW3aVeIyRfrkjHSTtK8KT2LLZnzcxMFRZUZGAEKzfG8=; path=/; expires=Tue, 04-Oct-22 10:40:07 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xnl0c%2B%2F5a%2FDdRZYWoft1M0%2FeaKkHktlxR2mPlqr5YnE6Lh9rrZEzB0ch0qj%2B1SrSEjBoiYHR5yWblccsy97Sspyq%2FmFovZ8AnUnl6OL7ojhrM%2FtiBHeSwqKUdhnZ4YvAGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (2997), with no line terminators
Size:   1493
Md5:    4b6e7a0dd3216f44e992c9323397cb36
Sha1:   97d1f022cbac4de5440b389199b0e9bfb74363dc
Sha256: f77c63e022523bbc2dfe7d04c9a3ae4551df70dd42be6af79ea4a95cfb940009
                                        
                                            GET /i/adsct?bci=3&eci=2&event_id=6cad7613-f7f3-4cae-b7e2-9d08568b320a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=8dd8b352-16e1-4692-9016-90693e57767e&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fprimacosta%3Fsource%3Dext%26ext%3D438673%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27 HTTP/1.1 
Host: analytics.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.244.42.131
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Tue, 04 Oct 2022 10:10:07 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_XyAn52J8coGNM0Rg6TVuDA=="; Max-Age=63072000; Expires=Thu, 03 Oct 2024 10:10:07 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: c182cf28d4b85547
strict-transport-security: max-age=631138519
x-response-time: 107
x-connection-hash: 6239f05876061de63a9b327188d2e9f226d43c219423c202afe414618735f5a2
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4590
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:07 GMT
Last-Modified: Tue, 04 Oct 2022 08:53:37 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /newidsd HTTP/1.1 
Host: gem.gbc.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         178.250.6.240
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 04 Oct 2022 10:10:07 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 89063
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5389)
Size:   20954
Md5:    27531ad3baa700b7e1ae29b1e0243290
Sha1:   ef6507edd1984c0303bf8f8adbd75e86777de8da
Sha256: 9acbc220e3b360191c1bea252226b3680d06a997d61f8d0169e15f9a18bf9037
                                        
                                            GET /j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Content-Length: 0
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:18:11 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: K9dzGZAohAJAB73fze0fp2Pg4vmSNhlw
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 04 Oct 2022 09:43:22 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
Age: 2104
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: j_Do8-8tBvfRsnm8WKuIvUkRzS0gw2VNnDjYqz8J7MdkO-JHq6cMaw==

                                        
                                            GET /j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
                                        
Content-Length: 0
Connection: keep-alive
Date: Mon, 03 Oct 2022 10:57:04 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/exp/index.js
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
Age: 83583
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: a2S4z_O4YxN2QuwSCrfXy2X9wBYfl3qwbh2z_nMR7-4jnj_7Egy16Q==

                                        
                                            GET /j/exp/index.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 28
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 17:25:28 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: VS8aSrwndm.MeiNnyJ10ruHH56v74CIF
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 04 Oct 2022 00:06:37 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
Age: 36404
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aSV0VDePb06RRu0jXLrxrrJwGEBiywuzhdJADvGQuhRaoP_C4M0rjQ==


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   28
Md5:    5816cced8568d223aa09d889f300692b
Sha1:   95cab5e474d7391762c3da5c7dc50fcf05df529f
Sha256: f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52
                                        
                                            GET /j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
                                        
Content-Length: 0
Connection: keep-alive
Date: Tue, 04 Oct 2022 04:41:39 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/pre/index.js
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
Age: 19708
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5CjNOJuVQknJsPmp953jFQiG-IHFz48xXT2yMA1WzxKHmuTQqobmqw==

                                        
                                            GET /j/pre/index.js HTTP/1.1 
Host: s.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 15 Jan 2020 23:54:18 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: nQEe8wQ7h0ROt7P4GJfDfstto6x684Hy
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 04 Oct 2022 06:32:01 GMT
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
Age: 47707
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: q-RGrXsRzLEW5KwtbTzAb1CgUsBsjv1dSoTkhFNqOWmTI0pRh6M_9g==

                                        
                                            GET /conversations-embed.js HTTP/1.1 
Host: js.usemessages.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.239.204
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 04 Oct 2022 10:10:07 GMT
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Sep 2022 03:28:22 UTC
etag: W/"8f72896eff8de085fc34d4ab80d97463"
x-amz-server-side-encryption: AES256
x-amz-version-id: y24q1zYP7BjLwmSbcrvN2WI7ANyjR6Yj
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 68a3b1d5c75429221abc685a453afb60.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: 08ys3UAu7YCwOBIyV3xja-Kr3ypD0W68sC6PFmcWX0TlRhw66y5TbQ==
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.10873/bundles/project.js&cfRay=752e0bcea9b1b4f4-IAD
x-hs-target-asset: conversations-embed/static-1.10873/bundles/project.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 75
server: cloudflare
cf-ray: 754d203abb18b506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (65536), with no line terminators
Size:   20639
Md5:    db501b516c3de044c1f2283fb7dfb689
Sha1:   a3531253aa3e14130c341b1afa64128348e5c566
Sha256: 8d3ecfe2d1fccd858190e4863bab0021d8ac9b322446606523acfeeb41537b78
                                        
                                            GET /consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fprimacosta%3Fsource%3Dext%26ext%3D438673%26source%3Dext%23amp%3D1&_s=a1349ee88e8a659510ba3b6bdaf8571f&_b=2 HTTP/1.1 
Host: d.adroll.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.214.200.155
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 04 Oct 2022 10:10:08 GMT
content-length: 447
server: nginx/1.20.0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (447), with no line terminators
Size:   447
Md5:    fdacbdfc0676fff96ef8f96cc94ac750
Sha1:   e211321d013201532d1d85b490864bade42b712b
Sha256: 5a16900ccc365cfbfadc6022b35d5b45c65264190d4151c29a2f21ec5d1222a7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 10:10:08 GMT
Last-Modified: Tue, 04 Oct 2022 08:23:22 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: oB3gL1hxYuHr9XOUjCNCKzeMSf9lam1gmKdEKUWwQCmvIR7wjR0nSg==
Age: 6406

                                        
                                            GET /rum?cm_dsp_id=20&external_user_id=k-c0VWf_Z7JCeMDRS4T1MjTjV_SXLGvtNlu2SoMQ HTTP/1.1 
Host: r.casalemedia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.18.126
HTTP/2 302 Found
                                        
date: Tue, 04 Oct 2022 10:10:08 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-c0VWf_Z7JCeMDRS4T1MjTjV_SXLGvtNlu2SoMQ&C=1
cf-ray: 754d204239620b69-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YzwGgHyQGuvMl14KYbyrswAA; Path=/; Domain=casalemedia.com; Expires=Wed, 04 Oct 2023 10:10:08 GMT; Max-Age=31536000; Secure; SameSite=None CMPS=4332; Path=/; Domain=casalemedia.com; Expires=Mon, 02 Jan 2023 10:10:08 GMT; Max-Age=7776000; Secure; SameSite=None CMPRO=4332; Path=/; Domain=casalemedia.com; Expires=Mon, 02 Jan 2023 10:10:08 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fu8Li0dpcPgVf0w0KusSdNi%2Frd2wnGORzeICPRIcaJSvpuB86JDJ%2Bqcyx42yxIMl4YlBnfHrBiF9LSnbwFjtABr0%2FR%2FH7s7KoTjChe9wIBGYlSEtv1gn3WkpWb5QZpN%2Foamp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ec