flaviar.com/?irclickid=2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0&ir_cid=3334&ir_affid=10813&utm_medium=affiliates&utm_source=MaxBounty.com%20ULC&ir_partnerid=10813&ir_adid=1215604&ir_campaignid=3334
172.66.40.91301 Moved Permanently 0 B URL HTTP/1.1 flaviar.com/?irclickid=2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0&ir_cid=3334&ir_affid=10813&utm_medium=affiliates&utm_source=MaxBounty.com%20ULC&ir_partnerid=10813&ir_adid=1215604&ir_campaignid=3334
IP 172.66.40.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?irclickid=2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0&ir_cid=3334&ir_affid=10813&utm_medium=affiliates&utm_source=MaxBounty.com%20ULC&ir_partnerid=10813&ir_adid=1215604&ir_campaignid=3334 HTTP/1.1
Host: flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 06 Oct 2022 20:19:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 06 Oct 2022 21:19:24 GMT
Location: https://flaviar.com/?irclickid=2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0&ir_cid=3334&ir_affid=10813&utm_medium=affiliates&utm_source=MaxBounty.com%20ULC&ir_partnerid=10813&ir_adid=1215604&ir_campaignid=3334
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AJTC5zqPZkcTyukONolFbqvJd%2F9TjYqTYd0QHl75n0AekVSPxoneELdSto1RRU4JFs%2BXL%2BCIxlos%2FYde48dwySCUy98sppU%2FTecvDKUDNFmlFLmW1vhTgnu0Bv58"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7561177cc9491c0a-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
54.230.111.7200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: twk0mUKVLUwk-mUM2AM6u8zCryR9VBUQs0EdwYRSU1CVBwugV9gWug==
Age: 102726
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7710
Expires: Thu, 06 Oct 2022 22:27:54 GMT
Date: Thu, 06 Oct 2022 20:19:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ab7d8709d334de0e46dcb86aabfbff1
f221138a8ad9d0bfa3c054370dcdb363a67dc310
b91d37f606eaf448b9c7dfc05566a11de004ce44503409e1a776288ee2622805
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15050
Expires: Fri, 07 Oct 2022 00:30:14 GMT
Date: Thu, 06 Oct 2022 20:19:24 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: E1QZH3YrWd0hr2fsFpczk68lHPioDrA1J3BkPbJhYtzga6gL/EYZ30YMAoC8/7afoB9sjz60UPQ=
x-amz-request-id: R3YEYHCVJE4V40MG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 19:58:52 GMT
age: 1232
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 650f764a3b1db2bad29aa67a0a167405
d4dc2e9de3fe8ad30c92ac87fe82a83cf20127fc
128eebd315020f0fd1fcf5df47eb640c1af3cbd79d0d89ebdcafadd6297177dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:24 GMT
Server: ECS (amb/6B88)
Content-Length: 279
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 20:19:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.7200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 19:29:41 GMT
Expires: Thu, 06 Oct 2022 20:07:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: N8EI1NmP3bH37pPip9nPXF2DUkLQQ0TvEdJ7k91GeHgV8bMe_mtEFw==
Age: 2983
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 650f764a3b1db2bad29aa67a0a167405
d4dc2e9de3fe8ad30c92ac87fe82a83cf20127fc
128eebd315020f0fd1fcf5df47eb640c1af3cbd79d0d89ebdcafadd6297177dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:25 GMT
Last-Modified: Thu, 06 Oct 2022 20:19:24 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6586
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:25 GMT
Last-Modified: Thu, 06 Oct 2022 18:29:39 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
54.230.111.50200 OK 6.1 kB URL HTTP/2 widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
IP 54.230.111.50:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Hash 5add60196e5f96a414fb4b9586764e5d
633f471b3c2fcedeef9cad90cb5bf56f5fe55588
5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6124
date: Thu, 06 Oct 2022 05:16:11 GMT
last-modified: Mon, 30 May 2022 14:38:02 GMT
etag: "5add60196e5f96a414fb4b9586764e5d"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1MMAZjio3zF7PQN0RgOSTrHj58uO4kQZ0BckV2cckX9mUpVbRFNPRQ==
age: 54195
X-Firefox-Spdy: h2
use.typekit.net/bne0epn.js
23.36.76.122200 OK 6.7 kB URL HTTP/2 use.typekit.net/bne0epn.js
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (2258)
Hash 56c323529b45591f153e4f5a72d75c0e
cfada07aa803d4651a773d0e4536e036bcfd134c
2953f691618da33aef7c7b909532b8a918bf95dc02c9d44816c526fd40bed81d
GET /bne0epn.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 6730
date: Thu, 06 Oct 2022 20:19:25 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 547c8b7c7175eb17c54535d8c2eb32a6
ac8c774c6fb06e638bfda073e76176f86f7d0c0c
a430c9a56ed33b2e15c196e4477bcfb6144d1b6d740a7938ea9dc77e96a20499
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:25 GMT
Last-Modified: Thu, 06 Oct 2022 18:34:46 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: s1yCC6SfgsK2KTDgX0FFubDyHroIr3q72zQrZomdtrzRLKNkLCZ4og==
Age: 6279
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 547c8b7c7175eb17c54535d8c2eb32a6
ac8c774c6fb06e638bfda073e76176f86f7d0c0c
a430c9a56ed33b2e15c196e4477bcfb6144d1b6d740a7938ea9dc77e96a20499
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:25 GMT
Last-Modified: Thu, 06 Oct 2022 19:31:14 GMT
Server: ECS (dcb/7FA6)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zJlbz-t8aRFCyiBEPE7j1T8QDrLX-NMa8wz0K3G_XLVuYjnQ3xe37g==
Age: 2891
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 547c8b7c7175eb17c54535d8c2eb32a6
ac8c774c6fb06e638bfda073e76176f86f7d0c0c
a430c9a56ed33b2e15c196e4477bcfb6144d1b6d740a7938ea9dc77e96a20499
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:25 GMT
Last-Modified: Thu, 06 Oct 2022 18:50:02 GMT
Server: ECS (dcb/7EEB)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zfAwnKYmikfUKFzd8kpFPieK5yV2wn5wIjEffqkm-7ZZCZi6aXmU3w==
Age: 5363
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 547c8b7c7175eb17c54535d8c2eb32a6
ac8c774c6fb06e638bfda073e76176f86f7d0c0c
a430c9a56ed33b2e15c196e4477bcfb6144d1b6d740a7938ea9dc77e96a20499
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:25 GMT
Server: ECS (dcb/7F5F)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IHPRcaZaLO6hsCJ9kHscPnuwR6JxHdY-Kbw0cLVS0lULwUuKmWdhsQ==
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
44.240.140.78101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.140.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GNbr8eTub3R55m/NdrNErA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0rxCJk66dJZdoVw+6EY7uKKemhw=
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 547c8b7c7175eb17c54535d8c2eb32a6
ac8c774c6fb06e638bfda073e76176f86f7d0c0c
a430c9a56ed33b2e15c196e4477bcfb6144d1b6d740a7938ea9dc77e96a20499
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:25 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q1tu-ZQqG242zuIGUwCSVCSOkbc5MTScFw7n6nwbFKjSUluyvX1tBg==
www.googletagmanager.com/gtm.js?id=GTM-K4F6SWQ
142.250.74.168200 OK 104 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-K4F6SWQ
IP 142.250.74.168:0
File type ASCII text, with very long lines (50758)
Size 104 kB (103740 bytes)
Hash 887b6fc5137075373e98cd2af759aa9b
b0ae34e6747d48c4b0afc6bed278d164bf95881b
a3e249aee95606046ffb1c1361025340244c3fbc3ebb1cc97fb8eba27aec5a20
GET /gtm.js?id=GTM-K4F6SWQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 06 Oct 2022 20:19:25 GMT
expires: Thu, 06 Oct 2022 20:19:25 GMT
cache-control: private, max-age=900
last-modified: Thu, 06 Oct 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103740
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.flaviar.com/build/app-style.f96bbae3.css
54.230.111.75200 OK 104 kB URL HTTP/2 cdn.flaviar.com/build/app-style.f96bbae3.css
IP 54.230.111.75:0
Size 104 kB (103522 bytes)
Hash 90982825891f75a7be38557437421002
4c24d92b9516edfaabd26b71f018399169b8aaa1
dddbe0ff904f810b3143bbda9b79f194980d77b8712d6f5bf7b0535f49ebaa05
GET /build/app-style.f96bbae3.css HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Tue, 04 Oct 2022 07:08:21 GMT
last-modified: Tue, 04 Oct 2022 07:04:23 GMT
etag: W/"31c9f51b7857e3a3288e7f4b337c4be5-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qL5DI865Gdeby6Gcn_vkqKlLlmfai8q1i9w2aTpkehjedkL28naNiA==
age: 220265
X-Firefox-Spdy: h2
cdn.flaviar.com/build/8e5402ccdf94b59b9f78de47cd6cb684.svg
54.230.111.75200 OK 868 B URL HTTP/2 cdn.flaviar.com/build/8e5402ccdf94b59b9f78de47cd6cb684.svg
IP 54.230.111.75:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 81e28f374062b798546ef6218ec5febf
e6532814c6602cb01770126889d9a8b4e9f8f340
7f7c1337807c89a6cbbef83986a1e88ffe8e6fd0837b406cdd857cd2d3a9afd4
GET /build/8e5402ccdf94b59b9f78de47cd6cb684.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.236e9452.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 868
last-modified: Fri, 19 Aug 2022 09:26:01 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 05 Oct 2022 09:17:12 GMT
cache-control: public, max-age=3888000, immutable
etag: "97ed703833547737ccd9a7d4031003f8-1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Y1nv_RN6jlruzpg5BZdWhQkLUieQeBH4erhT9Paw-qJyuLO3bBIqmA==
age: 126135
X-Firefox-Spdy: h2
cdn.flaviar.com/build/147089eb0e969519162228615087840c.svg
54.230.111.75200 OK 167 B URL HTTP/2 cdn.flaviar.com/build/147089eb0e969519162228615087840c.svg
IP 54.230.111.75:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 5e401daafb389738fc65f44508f1183a
6b8e3975b7e8b57812d9786dd181ae5c721a26ff
69484d982b36e8f772df946ef9cd4fb2a3c21a1ae9383a480b0e2f0957fa1542
GET /build/147089eb0e969519162228615087840c.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.236e9452.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 167
date: Thu, 08 Sep 2022 01:12:14 GMT
last-modified: Wed, 07 Sep 2022 10:30:21 GMT
etag: "a8a8c9c926542ca0dcd8356d88824554-1"
cache-control: public, max-age=3888000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SB6QlbQrR88eqjXFl215Ua2XvrVrLVf0jKAEFhXe_F-frBYHEpEdLg==
age: 2488032
X-Firefox-Spdy: h2
cdn.flaviar.com/build/app-main.7262d0fb.js
54.230.111.75200 OK 3.8 kB URL HTTP/2 cdn.flaviar.com/build/app-main.7262d0fb.js
IP 54.230.111.75:0
Hash 4c3d720634b238613fb804233d2dd346
6dcd11090dace062b057f3f77031225f4ba1788f
c32c801fb6c666ab3339c66e67260ca207218aea1da29a59deacbe1bcab94ce7
GET /build/app-main.7262d0fb.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 06 Oct 2022 08:37:12 GMT
last-modified: Thu, 06 Oct 2022 08:36:12 GMT
etag: W/"177de009c007bc1f799c3449af1fcf82-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gtpjQGsgE-PUdczSwjbIXgk2W1zF9YYImZq_CRNLoohKHgEWEUFrNA==
age: 42134
X-Firefox-Spdy: h2
cdn.flaviar.com/build/d850192027f05dd934a52b0d863ad7f5.svg
54.230.111.75200 OK 619 B URL HTTP/2 cdn.flaviar.com/build/d850192027f05dd934a52b0d863ad7f5.svg
IP 54.230.111.75:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 28fa412f736ddd64527ccca25da9e476
fe6590f41f3d7b6ae4e097f11dfd902720dd5235
4badecfeda51547b816abbddf7507fb8028e2b94938f9b6537e717ac1278dc59
GET /build/d850192027f05dd934a52b0d863ad7f5.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.236e9452.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 619
last-modified: Fri, 19 Aug 2022 09:26:07 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 08:30:23 GMT
cache-control: public, max-age=3888000, immutable
etag: "f064a0b829a658c19215470da43b61ea-1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hU4FwHg74PKOLrp6YrNT-DmxuDceg5xL3xuIbpJp_bL6HDvEHSNC3w==
age: 215344
X-Firefox-Spdy: h2
cdn.flaviar.com/build/ee1bfc1004d7a262f4cab6b3a57236b2.svg
54.230.111.75200 OK 403 B URL HTTP/2 cdn.flaviar.com/build/ee1bfc1004d7a262f4cab6b3a57236b2.svg
IP 54.230.111.75:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 40cd3269593182aa24ee9208f99a7a29
24a1613b1214857f4f2608a0905a5bcbb92d909a
b5593ea00b3b76f818402c2eea2a4fc751d3be852c304b49cd5f227249d7fafb
GET /build/ee1bfc1004d7a262f4cab6b3a57236b2.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.236e9452.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 403
date: Sat, 01 Oct 2022 07:22:07 GMT
last-modified: Fri, 30 Sep 2022 11:36:22 GMT
etag: "74e5fbff2bf990dcf3d9f3787c5b9a6e-1"
cache-control: public, max-age=3888000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _duHOm8ZY9t0gJ-nyjzTmAv1JZqvrfOeWyALLGq0X6ThhG9pfjSjVQ==
age: 478640
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/landingPage/frontpage/01_hero_desktop_membership.093b6202.jpg
54.230.111.75200 OK 118 kB URL HTTP/2 cdn.flaviar.com/build/images/landingPage/frontpage/01_hero_desktop_membership.093b6202.jpg
IP 54.230.111.75:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1434x1094, components 3\012- data
Size 118 kB (117885 bytes)
Hash 8ae454b0cd1ff5eda6d54988f055366c
9b8d69bd97443055df393afe8385aa4787b24ef6
2411b89938db306b9e96167501c6e2349848ac0d30e6433e9f5d5868aa7631ee
GET /build/images/landingPage/frontpage/01_hero_desktop_membership.093b6202.jpg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 117885
date: Sat, 10 Sep 2022 05:04:23 GMT
last-modified: Fri, 09 Sep 2022 13:05:14 GMT
etag: "0148f9a547222ba521760f429bfee563-1"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c-lHDZflC2Y2UicgY3H7LVKdDFRu5nYSR4ep6XKDYOpwSXblwHr0fw==
age: 2301304
X-Firefox-Spdy: h2
cdn.flaviar.com/build/4.2a092778.css
54.230.111.75200 OK 11 kB URL HTTP/2 cdn.flaviar.com/build/4.2a092778.css
IP 54.230.111.75:0
Hash 2644c8e2d56f40754d04b63bf416b5fa
1367e3818cfeac8a7fc146b7d7c0699d3213d469
0185489ef2c41aa04b37a73a78508b3229b858af428e53904ce98b5ba94bb23a
GET /build/4.2a092778.css HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 08 Sep 2022 04:53:04 GMT
last-modified: Wed, 07 Sep 2022 10:30:22 GMT
etag: W/"f3b9d55198bcef67fac8f7bdc78c3c88-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jb20ws9gH7oalcFNI-Cjz4fqtoikUh71GXlSoDClNrfValcg9cEFoQ==
age: 2474782
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/landingPage/frontpage/05_icon_wheel.ca85a479.svg
54.230.111.75200 OK 2.3 kB URL HTTP/2 cdn.flaviar.com/build/images/landingPage/frontpage/05_icon_wheel.ca85a479.svg
IP 54.230.111.75:0
Hash ea1294055594fd0913c46d2b13e2a559
751ddaf53bd6a5c6652de322c82c04ce9abe2450
0f4b2aee00b4167837fa6f81492d1bdf1217a520bd36b44bc4065ec42455cd1e
GET /build/images/landingPage/frontpage/05_icon_wheel.ca85a479.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 25 Aug 2022 13:06:27 GMT
last-modified: Wed, 24 Aug 2022 11:29:08 GMT
etag: W/"3c6683219e258ac228d9e3d2444fdce2-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ly3K_LfF-Nw5boYr2hmCCE4Z3OV1nyz71qAPfd_0XfN7m3VxJEyI5w==
age: 3654779
X-Firefox-Spdy: h2
cdn.flaviar.com/build/ef92299a86f9f06db9c9cb6338f70445.svg
54.230.111.75200 OK 517 B URL HTTP/2 cdn.flaviar.com/build/ef92299a86f9f06db9c9cb6338f70445.svg
IP 54.230.111.75:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (413)
Hash 39c7100bc113cfadf92ffd571834e547
e3964948a9d71014ad9aa5b78ee1106315691ac4
222bf3fda43bcb74628055cd4224a6cff48edd5524a9326ec93d70c1cd58b94c
GET /build/ef92299a86f9f06db9c9cb6338f70445.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/landing-frontpage.2932a276.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 517
date: Thu, 08 Sep 2022 03:47:58 GMT
last-modified: Wed, 07 Sep 2022 10:30:28 GMT
etag: "18056129aed2639bd3faacbf444bdc8a-1"
cache-control: public, max-age=3888000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f9Sl_ztROLU0QAP6LI3SmYorFIRjgwjaaeTFtR9F0LbgRLk_s4TqBA==
age: 2478689
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fonts/MalagaOT-Reg.27ac096b.otf
54.230.111.75200 OK 75 kB URL HTTP/2 cdn.flaviar.com/build/fonts/MalagaOT-Reg.27ac096b.otf
IP 54.230.111.75:0
Hash 9b661c8541bee6382772dbc381f8554d
d5d523b629e462328c5ba9ff5de4d76292af4156
780f3d838223b7a584a57932f73e9fe182fbd4e754660729653e7810c4c43231
GET /build/fonts/MalagaOT-Reg.27ac096b.otf HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://cdn.flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: font/otf
date: Sat, 27 Aug 2022 02:15:02 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 7776000
last-modified: Fri, 26 Aug 2022 14:00:56 GMT
etag: W/"137d230a777448619cc48431b268aa92-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: C07yRw1ySf0ljyebZyvJ5GCzVZk7RFX19gMBuI6lhCd6Wcfn-oxiAg==
age: 3521065
X-Firefox-Spdy: h2
use.typekit.net/af/85d455/00000000000000003b9adc6a/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
23.36.76.122200 OK 31 kB URL HTTP/2 use.typekit.net/af/85d455/00000000000000003b9adc6a/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 30656, version 1.0\012- data
Hash 09848390b847375a8dbf4a3808750013
d8b5db5923705fba6073a52d2145d086c5030527
ead661c1cd323f4f9a023be4cea810a9bcbc3498871593a256fc9221a52f1417
GET /af/85d455/00000000000000003b9adc6a/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 30656
etag: "374d4e049d59d33f7c1b988631b115ad96597d60"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 06 Oct 2022 20:19:26 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/379cfa/00000000000000003b9adc6d/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.122200 OK 12 kB URL HTTP/2 use.typekit.net/af/379cfa/00000000000000003b9adc6d/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 11668, version 1.0\012- data
Hash 71eca0957e4d35fc26852895f49491f8
d9ba92c55ef2a7370857143922344880bac2bf6e
4e2db239b50398011c1fb49a5ea7e296a9babab1a7b4968d1974d417f1ab805b
GET /af/379cfa/00000000000000003b9adc6d/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 11668
etag: "a53237c24cbd279f0405e007f31ec7f47234819b"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 06 Oct 2022 20:19:26 GMT
X-Firefox-Spdy: h2
cdn.flaviar.com/build/landing-frontpage.2932a276.css
54.230.111.75200 OK 23 kB URL HTTP/2 cdn.flaviar.com/build/landing-frontpage.2932a276.css
IP 54.230.111.75:0
Hash 80cabe22c9feea35cd8b96ef07ac543f
1fa3d25ca305fa4dac85c7570862da2f5822762a
ee8f60e6daf6b9057f6884af28a3673321d2424389a013d36642a229b69e4c15
GET /build/landing-frontpage.2932a276.css HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Mon, 05 Sep 2022 03:59:53 GMT
last-modified: Fri, 02 Sep 2022 14:13:24 GMT
etag: W/"d896832036da46556de471f5dfa215e0-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZmpgFnCnIJAFlSU4_EKsoR3e2mtZSJDjK_D7jQgJkB3rC86C1itehg==
age: 2737173
X-Firefox-Spdy: h2
widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
54.230.111.50200 OK 2.1 kB URL HTTP/2 widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
IP 54.230.111.50:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6826)
Hash 1307e3fd5846bacc989c2fd05996f010
3fd96ecea8c4a91980939fe1e1efe9ec0f47eebc
39f14c526d9f43a24b5c1e219e7ee63500f90b39517d18085573dcf73eb33d87
GET /trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 2144
date: Thu, 06 Oct 2022 06:49:16 GMT
last-modified: Tue, 04 Oct 2022 10:34:09 GMT
etag: "1307e3fd5846bacc989c2fd05996f010"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4ancPFamlXnniIvxDDRxthk3AwMPvlIRhlQIQhD4l12ngWHuylnxLQ==
age: 48611
X-Firefox-Spdy: h2
widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
54.230.111.50200 OK 2.1 kB URL HTTP/2 widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
IP 54.230.111.50:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6826)
Hash 1307e3fd5846bacc989c2fd05996f010
3fd96ecea8c4a91980939fe1e1efe9ec0f47eebc
39f14c526d9f43a24b5c1e219e7ee63500f90b39517d18085573dcf73eb33d87
GET /trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 2144
date: Thu, 06 Oct 2022 06:49:16 GMT
last-modified: Tue, 04 Oct 2022 10:34:09 GMT
etag: "1307e3fd5846bacc989c2fd05996f010"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yOrUZ2dtEe4GDob_oUQt6yKgv-cZ8gQzpxnDEn_A7jTYL74liYjTvw==
age: 48611
X-Firefox-Spdy: h2
widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/main.js
54.230.111.50200 OK 17 kB URL HTTP/2 widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/main.js
IP 54.230.111.50:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (55452)
Hash 93d7d7afc794dd57add6ab0e6cb1e7a5
f3192d2eb299e4111ac69821274555c54d34dd5e
07125f97b71d0a4b48f6ff11db9e9cbaa6ee1bd510ee795cb05353a3cd087f84
GET /trustboxes/5419b6ffb0d04a076446a9af/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 17072
last-modified: Tue, 04 Oct 2022 10:34:10 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 06 Oct 2022 10:36:21 GMT
cache-control: max-age=86400
etag: "93d7d7afc794dd57add6ab0e6cb1e7a5"
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Qf4FyDcCLffg-KgyKtYXE9BCPgvkfL7DCpiEozIt5gy1nQU979TQQw==
age: 34985
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e64331383b5fb93bf49a4ba9ca93210f
8aacb155491b618ae751bf768aaab81752bb670a
e00993ab549e3741f67aee6037e2a612059d457380bafbf32b9eee9c1a859986
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "E00993AB549E3741F67AEE6037E2A612059D457380BAFBF32B9EEE9C1A859986"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18654
Expires: Fri, 07 Oct 2022 01:30:20 GMT
Date: Thu, 06 Oct 2022 20:19:26 GMT
Connection: keep-alive
consent.cookiebot.com/uc.js?cbid=d053bff0-f51a-4434-ab3e-b7ec8831e3ed
104.84.152.233200 OK 32 kB URL HTTP/2 consent.cookiebot.com/uc.js?cbid=d053bff0-f51a-4434-ab3e-b7ec8831e3ed
IP 104.84.152.233:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65499)
Hash 3c4e162c3321e924fd3d27dc6d095f08
9d2027cab49aaf66a89a521c16133ba818ff3d9d
425713b3dc09882376e466e3e6798ade37f8262d82138cf0e11ecbe92e2d565b
GET /uc.js?cbid=d053bff0-f51a-4434-ab3e-b7ec8831e3ed HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 04 Oct 2022 09:02:48 GMT
accept-ranges: bytes
etag: "0ac913d0d7d81:0"
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 31718
cache-control: public, max-age=1003
expires: Thu, 06 Oct 2022 20:36:09 GMT
date: Thu, 06 Oct 2022 20:19:26 GMT
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=GTM-NLP39W9
142.250.74.46200 OK 44 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-NLP39W9
IP 142.250.74.46:0
File type ASCII text, with very long lines (2039)
Hash 77d5c2e0093969776bbadb93fdcf989a
478afbbe8df585737548d85662ecae488f812311
4d77397f93c49e68ef79601c2d314fbceb9b25b33b127d2ac29ac12cd5ccc2d4
GET /optimize.js?id=GTM-NLP39W9 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 06 Oct 2022 20:19:26 GMT
expires: Thu, 06 Oct 2022 20:19:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44034
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
consentcdn.cookiebot.com/sdk/bc-v4.min.html
104.110.3.72200 OK 392 B URL HTTP/2 consentcdn.cookiebot.com/sdk/bc-v4.min.html
IP 104.110.3.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (627), with no line terminators
Hash e7268eccad39bd651697fa793a52cc5c
47299cefa2397b0c1d0c5bf232390a5cf1bcc4d3
907e16c84d35556e4ed841a3511915e6d4bb4e9d68cfca178a740e90b4d80e35
GET /sdk/bc-v4.min.html HTTP/1.1
Host: consentcdn.cookiebot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "3d08665fa4c7bcf9fa2dcbbc7efe1d0f:1649057029.895163"
last-modified: Mon, 04 Apr 2022 07:23:49 GMT
server: AkamaiNetStorage
x-akamai-transformed: 9 - 0 pmb=mRUM,1
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31175407
expires: Mon, 02 Oct 2023 16:09:33 GMT
date: Thu, 06 Oct 2022 20:19:26 GMT
content-length: 392
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
consent.cookiebot.com/d053bff0-f51a-4434-ab3e-b7ec8831e3ed/cc.js?renew=false&referer=flaviar.com&dnt=false&init=false&georegions=%5B%7B%22r%22%3A%22US-06%22%2C%22i%22%3A%226b04ee58-2401-4074-bb6b-0969a4c527d9%22%7D%5D
104.84.152.233200 OK 156 B URL HTTP/2 consent.cookiebot.com/d053bff0-f51a-4434-ab3e-b7ec8831e3ed/cc.js?renew=false&referer=flaviar.com&dnt=false&init=false&georegions=%5B%7B%22r%22%3A%22US-06%22%2C%22i%22%3A%226b04ee58-2401-4074-bb6b-0969a4c527d9%22%7D%5D
IP 104.84.152.233:0
ASN #20940 Akamai International B.V.
File type ASCII text, with CRLF line terminators
Hash 3477de123b1bcca0a96d557218c3c72c
279660604c7c2e9d5be154df57180849efca1e34
9331664c1938651f09a14fb45d0af5fd86a72c2d9aff0bc26193e239ddb38268
GET /d053bff0-f51a-4434-ab3e-b7ec8831e3ed/cc.js?renew=false&referer=flaviar.com&dnt=false&init=false&georegions=%5B%7B%22r%22%3A%22US-06%22%2C%22i%22%3A%226b04ee58-2401-4074-bb6b-0969a4c527d9%22%7D%5D HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, max-age=1200
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
last-modified: Thu, 06 Oct 2022 20:19:26 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 156
date: Thu, 06 Oct 2022 20:19:26 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 33e6a12e7e94dfd7ec2e925be6be7fbf
74265e37a2270fdbc588430f01421e46c31d8e44
23edf0e8a1a7473380254169d86170aeee2bf7e1200842ec6ce9c4d098770e05
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:19:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 06 Oct 2022 14:06:52 GMT
Expires: Thu, 13 Oct 2022 14:06:51 GMT
Etag: "74265e37a2270fdbc588430f01421e46c31d8e44"
Cache-Control: max-age=581844,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7561178acaf01c0a-OSL
cdn.segmentify.com/06e2e4b6-5e17-4dbf-9574-c462c3d742d7/segmentify.js
34.120.65.227200 OK 50 kB URL HTTP/2 cdn.segmentify.com/06e2e4b6-5e17-4dbf-9574-c462c3d742d7/segmentify.js
IP 34.120.65.227:0
File type ASCII text, with very long lines (56611)
Hash e11ec5b492c2fb1c6ae4e464629d3626
4d7790d263fc3bdb89b4ac8f0d22d657f6016131
457cfea95867ff6f0fd7915f55a468691454a9c9f33ddfab9ff5acf8eb504003
GET /06e2e4b6-5e17-4dbf-9574-c462c3d742d7/segmentify.js HTTP/1.1
Host: cdn.segmentify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvLIjVXrgN6SI2J4_NqHuXLL6BFNCeGzZgDdW-swVsQ7JjiT1w0VJTWMqzXan9RzS5cd5NoBLA3e9zkDyzYYzis
x-goog-generation: 1664980718441886
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 50341
content-encoding: gzip
x-goog-hash: crc32c=lAAGVw==, md5=4R7FtJLC+xxq5ORkYp02Jg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 50341
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept, Content-Type, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
server: UploadServer
date: Wed, 05 Oct 2022 14:45:07 GMT
expires: Wed, 12 Oct 2022 14:45:07 GMT
cache-control: public, max-age=604800
last-modified: Wed, 05 Oct 2022 14:38:38 GMT
etag: "e11ec5b492c2fb1c6ae4e464629d3626"
content-type: application/javascript
age: 106459
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/favicon/favicon-16x16.d0ef64b5.png
54.230.111.75200 OK 366 B URL HTTP/2 cdn.flaviar.com/build/images/favicon/favicon-16x16.d0ef64b5.png
IP 54.230.111.75:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 4c06c8e440650c300d3b62fa3e070fd4
4cf5e23e149202acf229889ad06d286f01374837
277ec8ba10f75611524e035b6e02aed13b21ed7206ebdcaaac236de61246d410
GET /build/images/favicon/favicon-16x16.d0ef64b5.png HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1665087566.1.0.1665087566.60.0.0; _ga=GA1.1.2009995165.1665087567
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 366
date: Thu, 01 Sep 2022 16:53:00 GMT
last-modified: Thu, 01 Sep 2022 14:40:25 GMT
etag: "334446e663de0654661de79703a6f44b-1"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qSzjb-maF03-ZOn95nDUdm4dMDGXWZG7WJ6eDFFcsBpr-cDVuWjErw==
age: 3036386
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/favicon/favicon.d0a8bcf7.ico
54.230.111.75200 OK 15 kB URL HTTP/2 cdn.flaviar.com/build/images/favicon/favicon.d0a8bcf7.ico
IP 54.230.111.75:0
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 77f3027ab846a13cd38111aeb570f027
aef83b0321260c21e42fa61b722d7bd10ce2a68d
6ff382ef95ad55469265af244e5a0c8544b7e3481de4c2ff0a96b1362dc43b04
GET /build/images/favicon/favicon.d0a8bcf7.ico HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1665087566.1.0.1665087566.60.0.0; _ga=GA1.1.2009995165.1665087567
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 15086
date: Thu, 25 Aug 2022 06:11:08 GMT
last-modified: Wed, 24 Aug 2022 11:29:07 GMT
etag: "af288e94a0b9429c904d0eba8f8c6608-1"
accept-ranges: bytes
server: AmazonS3
cache-control: public, max-age=31536000, immutable
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hVi2UhbjzDh0ALq3-7ZGtQOojLlnlZhpgaTsJLAe-xu_5mPMogfTEg==
age: 3679699
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11568
Expires: Thu, 06 Oct 2022 23:32:14 GMT
Date: Thu, 06 Oct 2022 20:19:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11568
Expires: Thu, 06 Oct 2022 23:32:14 GMT
Date: Thu, 06 Oct 2022 20:19:26 GMT
Connection: keep-alive
campaign.fbot.me/06cc9139-6a61-41fc-88db-9ec21e04eecf/campaigns.js
54.230.111.120200 OK 34 kB URL HTTP/2 campaign.fbot.me/06cc9139-6a61-41fc-88db-9ec21e04eecf/campaigns.js
IP 54.230.111.120:0
Hash 46d145e11c1430f27746734b4610bc18
62882815360d5ea928fc2f79bfb4b7c943e563f0
f2d041153b4190767521b58ea3e6882451a50c316effaf7956cfa880b669c548
GET /06cc9139-6a61-41fc-88db-9ec21e04eecf/campaigns.js HTTP/1.1
Host: campaign.fbot.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 15:38:01 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 0iWavKBcklx08Aok0xiJOZp_tK.PsHKa
server: AmazonS3
content-encoding: gzip
date: Thu, 06 Oct 2022 20:19:27 GMT
cache-control: max-age=30
etag: W/"d0b7ccee3cc4cfbac5a76a5b938bc857"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c8sYKyKNMEeJFsLC9vw5gGTD_u7g-k4loUDOctlQQz1diOAeMA87mg==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11568
Expires: Thu, 06 Oct 2022 23:32:14 GMT
Date: Thu, 06 Oct 2022 20:19:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11568
Expires: Thu, 06 Oct 2022 23:32:14 GMT
Date: Thu, 06 Oct 2022 20:19:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e520f87cae411cfc2ed1c8a14184385
69ad212cb7ae309d4f02019552887135bfae67da
723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: BddSUzh-PKiFmfw2p9gPW-B0qtrXWxCXfee29Pk-wLqN7RO21Yic6g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 81740
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70ea26af79226e9ff06d6198e2c019dc
ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57
f9393e7b8cbaedc8e1ef87fd89c617cf102f58813d84d866ff68e3124f94d44c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 127bce04-9f75-4bb1-bbe7-33bf1694d96c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZdZPmHG5oAMFehw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ba263-3896085b3b73ff5403237206;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: E4yZTPRLFdK717YfwjOIFOJDi0wYpyA736dQELeM5iPLvGDXBosEWg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 05:04:17 GMT
age: 54909
etag: "ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbba56f647bf5989ca51863632bbebfc
26694f34166345ee5693653e0101db6b910e68ba
ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: f3cb33c4-26b6-4fd8-9293-dfb42be34600
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZiEZ4IAMFvLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-424459547db8b3d721d75e54;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: q70sezhl0h-lASzUDh5_WQ6KraRa3fWYl_tO0iuE0CpbJ5GeiihgMw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
age: 81740
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 488ec5b4267ccb1cdc4e6e08556f7f3b
42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88
d9b05fe92962a58b9a8e8dbd4757969aa361be12018107ae649ffcdb8a0f8d84
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3430
x-amzn-requestid: 9b3b52d6-08b4-4893-962b-3dfe67e2f11d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjTijF0vIAMFq3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dffa9-0a128734418b6c4d6375e2ac;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 22:05:29 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: G0mKHnEonkmY4EDpNGAbg_DF37oxElJt58Lv6IJ4ro-hiG61wEAqVQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 09:57:45 GMT
age: 37301
etag: "42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: LySueW1si-yWLwecUILV1s57IEV2FdcQ9_pH1Aoe4AYISi7QXXfd3A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:39:28 GMT
age: 81598
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: e5d0bb7a-b9d5-49b1-b51c-8db019da641f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQOGEQloAMFjgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa5a-519d91fb0b83920960da479d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: l1HGT5ycH36vVojsOPFptRSU1YJFvLbBsgiWJqzRlRIGgm2o5vf6jg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:58:56 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 80430
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 06 Oct 2022 18:41:09 GMT
expires: Thu, 06 Oct 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 5897
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ecc594c8ad8a58175abca6f74592cad0
bc3eb5409877f214ca5d45c39d39754fd80997ae
4376e30946f541ed958cbbff449d18b6acb24608aa48fa078440cb99291dc7d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5312
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:26 GMT
Last-Modified: Thu, 06 Oct 2022 18:50:54 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1cecd042e106c70af7e8f0d9863ca3d9
fa94604e9e99c752d18708abcec8584a5eee66ea
3525f542ce5a72795646c2bba144333920f67f3e9938748f9d3bd3aff9ac496e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-94QYBVSJNV&cid=2009995165.1665087567>m=2oea50&aip=1&z=1907145201
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-94QYBVSJNV&cid=2009995165.1665087567>m=2oea50&aip=1&z=1907145201
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-94QYBVSJNV&cid=2009995165.1665087567>m=2oea50&aip=1&z=1907145201 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 20:19:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aacdn.nagich.com/assets/locale/en.json
104.26.15.45200 OK 27 kB URL HTTP/2 aacdn.nagich.com/assets/locale/en.json
IP 104.26.15.45:0
File type JSON data\012- , ASCII text, with CRLF line terminators
Hash a5790a065346d467eedf3212a8a56930
58f142a5d1053bb679a352866ba12fe7c3c35619
bedbe7885ad10d90763e86974108ca6b50248a26600bed6dbf508805ea62cece
GET /assets/locale/en.json HTTP/1.1
Host: aacdn.nagich.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:26 GMT
content-type: application/json
cache-control: public, max-age=2204800
last-modified: Tue, 15 Jun 2021 15:40:09 GMT
etag: W/"f45920b9fc61d71:0"
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: deny
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J2II5L%2BUyKJRnclJQs9fWoZMQI0aoomcH7Yo221NUSJnBOd6JVKvXRyQi3Klq6Cs174pKi4Txjb6MMgNcLqPWCn8ga4yY9ehH33fYfJH4AUQW%2FdxQ19cX5KqPu2Rigm%2FwAc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7561178bc8fc0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/landingPage/frontpage/04_image_favorite_dram.1ae9ed19.jpg
54.230.111.75200 OK 84 kB URL HTTP/2 cdn.flaviar.com/build/images/landingPage/frontpage/04_image_favorite_dram.1ae9ed19.jpg
IP 54.230.111.75:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1268x898, components 3\012- data
Hash 9cddc511d9100cd3f67bffcfd5793b27
89836103be33b228999a13d01fdbd20db165dc99
0ef2bb53d0cffd55ad4c341bdb76f3f89c5b0de86719fbad396b1dde0c08c7f4
GET /build/images/landingPage/frontpage/04_image_favorite_dram.1ae9ed19.jpg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1665087566.1.0.1665087566.60.0.0; _ga=GA1.2.2009995165.1665087567; _gid=GA1.2.1328691908.1665087567
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 83683
date: Fri, 26 Aug 2022 06:26:03 GMT
last-modified: Wed, 24 Aug 2022 11:29:10 GMT
etag: "4ed4ad1d3056db3e43645bacd890073f-1"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f_n6h2x36lDF-ojidk1gdRw2SEQgoWzyFc4L9HyWJPKQGlRfJbwrQg==
age: 3592404
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ecc594c8ad8a58175abca6f74592cad0
bc3eb5409877f214ca5d45c39d39754fd80997ae
4376e30946f541ed958cbbff449d18b6acb24608aa48fa078440cb99291dc7d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5312
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:26 GMT
Last-Modified: Thu, 06 Oct 2022 18:50:54 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1cecd042e106c70af7e8f0d9863ca3d9
fa94604e9e99c752d18708abcec8584a5eee66ea
3525f542ce5a72795646c2bba144333920f67f3e9938748f9d3bd3aff9ac496e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
widget.trustpilot.com/trustbox-data/5419b6ffb0d04a076446a9af?businessUnitId=5c63d6134064df0001fff3b7&locale=en-US
54.230.111.50200 OK 482 B URL HTTP/2 widget.trustpilot.com/trustbox-data/5419b6ffb0d04a076446a9af?businessUnitId=5c63d6134064df0001fff3b7&locale=en-US
IP 54.230.111.50:0
File type JSON data\012- , ASCII text, with very long lines (1051), with no line terminators
Hash 6674af3e706f3fa70d04b2d8f96e6f50
ef963ac01d18e3f89fbb833768df1fb821e5d37c
0a1128bb0429c4374bfc2a7c0e0b8a47af06d0921a464e67ba482e2d319c19b0
GET /trustbox-data/5419b6ffb0d04a076446a9af?businessUnitId=5c63d6134064df0001fff3b7&locale=en-US HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 482
content-encoding: gzip
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-fallback-status: BYPASS
x-skip-cache-cookie: 0
x-xss-protection: 1; mode=block
date: Thu, 06 Oct 2022 20:19:27 GMT
cache-control: public,max-age=1800
etag: "aef1fce8ed398a3b3bba77875b4ca9ab"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pDaZR7IJXZEAB1Wh3jqkQXNmIlvCbb7ZYoIeTaLLhcosjO3vMHb6dA==
age: 1287
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1586e8afb467137232ac4966e72f9006
9c415fa9b740d016f5ae423b058a820630cb4cba
3ff220fc7f5580b8738cf680749d9fe91c6a0b386ba7051defad062d24e89631
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:19:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 20:28:58 GMT
Expires: Mon, 10 Oct 2022 20:28:57 GMT
Etag: "9c415fa9b740d016f5ae423b058a820630cb4cba"
Cache-Control: max-age=345569,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7561178d4e061c0a-OSL
cdn.sgmntfy.com/pa.js
34.149.223.191200 OK 3.7 kB IP 34.149.223.191:0
File type ASCII text, with very long lines (3744), with no line terminators
Hash 7327381bba6f249fe470d17c0dca2cb4
b6fac12855c66c4841a38d07934fc22302e881ef
393195c622ffdab45d8f71e6988cdcc65ef85102061defa603882dc9f80d11ec
Analyzer Verdict Alert quad9 Sinkholed
GET /pa.js HTTP/1.1
Host: cdn.sgmntfy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsQ-I23tOtWjrkY8HsQAHJtSNBeIky52lB-De1Ov0ArMqy-sXDXkxj5f2berEY8N7kS8vkG-95iB4cM_vPHp-xfbA
x-goog-generation: 1654598345914433
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3744
content-language: en
x-goog-hash: crc32c=EasKAQ==, md5=cyc4G7pvJJ/kcNF8DcostA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 3744
server: UploadServer
date: Thu, 06 Oct 2022 19:30:45 GMT
expires: Thu, 06 Oct 2022 20:30:45 GMT
cache-control: public, max-age=3600
age: 2922
last-modified: Tue, 07 Jun 2022 10:39:06 GMT
etag: "7327381bba6f249fe470d17c0dca2cb4"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=28px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
54.230.111.50204 No Content 0 B URL HTTP/2 widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=28px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
IP 54.230.111.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stats/TrustboxImpression?locale=en-US&styleHeight=28px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Thu, 06 Oct 2022 20:19:26 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YOHjIOumaraNKKU3U_PlFz7SGL5oA3w8c3QtHuaXQStfERq35W8vWQ==
X-Firefox-Spdy: h2
widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
54.230.111.50204 No Content 0 B URL HTTP/2 widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
IP 54.230.111.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stats/TrustboxImpression?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Thu, 06 Oct 2022 20:19:27 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MvtoxegSqkHc-yvRjclcLnhquF7mFDWzfVLKarWJ9S14_5EXSDGhUw==
X-Firefox-Spdy: h2
widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
54.230.111.50204 No Content 0 B URL HTTP/2 widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
IP 54.230.111.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stats/TrustboxView?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Thu, 06 Oct 2022 20:19:27 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f32RbK2A-LnqYuqFJQk3wiaxThNXpabplusC1-9kmOVdIKJEwyUuJw==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js
142.250.74.138200 OK 33 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (32086)
Hash 430e927c980ad4079de727fa59dd93f2
891aaada9a55a91292999f6d50fd300439905982
e8728df8617340bd8c10bc8d27d3a725a48871a269c850e8598689938ec6e2ed
GET /ajax/libs/jquery/1.11.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Oct 2022 02:47:33 GMT
expires: Mon, 02 Oct 2023 02:47:33 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 408714
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1586e8afb467137232ac4966e72f9006
9c415fa9b740d016f5ae423b058a820630cb4cba
3ff220fc7f5580b8738cf680749d9fe91c6a0b386ba7051defad062d24e89631
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:19:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 20:28:58 GMT
Expires: Mon, 10 Oct 2022 20:28:57 GMT
Etag: "9c415fa9b740d016f5ae423b058a820630cb4cba"
Cache-Control: max-age=345569,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7561178ed8091c0a-OSL
region1.analytics.google.com/g/collect?v=2&tid=G-94QYBVSJNV>m=2oea50&_p=447142632&_gaz=1&cid=2009995165.1665087567&ul=en-us&sr=1280x1024&_s=1&sid=1665087566&sct=1&seg=0&dl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&dt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&en=page_view&_fv=1&_nsi=1&_ss=1&up.membership_status=anonymous
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-94QYBVSJNV>m=2oea50&_p=447142632&_gaz=1&cid=2009995165.1665087567&ul=en-us&sr=1280x1024&_s=1&sid=1665087566&sct=1&seg=0&dl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&dt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&en=page_view&_fv=1&_nsi=1&_ss=1&up.membership_status=anonymous
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-94QYBVSJNV>m=2oea50&_p=447142632&_gaz=1&cid=2009995165.1665087567&ul=en-us&sr=1280x1024&_s=1&sid=1665087566&sct=1&seg=0&dl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&dt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&en=page_view&_fv=1&_nsi=1&_ss=1&up.membership_status=anonymous HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://flaviar.com
date: Thu, 06 Oct 2022 20:19:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
public.fbot.me/events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr
52.45.210.7200 OK 2 B URL HTTP/2 public.fbot.me/events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr
IP 52.45.210.7:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr HTTP/1.1
Host: public.fbot.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:27 GMT
content-length: 2
server: nginx/1.23.1
access-control-allow-origin: https://flaviar.com
access-control-allow-credentials: true
access-control-allow-methods: POST, GET
access-control-allow-headers: Authorization, Content-Type
info: {"connection":"upgrade","host":"public.fbot.me","x-forwarded-for":"91.90.42.154","x-forwarded-proto":"https","x-forwarded-port":"443","x-amzn-trace-id":"Root=1-633f384f-521fb91c1af43dcb672dd0ac","user-agent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","accept":"*/*","accept-language":"en-US,en;q=0.5","accept-encoding":"gzip, deflate, br","access-control-request-method":"POST","access-control-request-headers":"authorization,content-type","referer":"https://flaviar.com/","origin":"https://flaviar.com","sec-fetch-dest":"empty","sec-fetch-mode":"cors","sec-fetch-site":"cross-site"}
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-94QYBVSJNV&cid=2009995165.1665087567>m=2oea50&aip=1
173.194.73.156204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-94QYBVSJNV&cid=2009995165.1665087567>m=2oea50&aip=1
IP 173.194.73.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-94QYBVSJNV&cid=2009995165.1665087567>m=2oea50&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://flaviar.com
date: Thu, 06 Oct 2022 20:19:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-28959768-20&cid=2009995165.1665087567&jid=59214629&gjid=1220826778&_gid=1328691908.1665087567&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1462507570
173.194.73.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-28959768-20&cid=2009995165.1665087567&jid=59214629&gjid=1220826778&_gid=1328691908.1665087567&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1462507570
IP 173.194.73.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-28959768-20&cid=2009995165.1665087567&jid=59214629&gjid=1220826778&_gid=1328691908.1665087567&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1462507570 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://flaviar.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 06 Oct 2022 20:19:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-28959768-1&cid=2009995165.1665087567&jid=1260416104&gjid=1543498063&_gid=1328691908.1665087567&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1138578357
173.194.73.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-28959768-1&cid=2009995165.1665087567&jid=1260416104&gjid=1543498063&_gid=1328691908.1665087567&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1138578357
IP 173.194.73.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-28959768-1&cid=2009995165.1665087567&jid=1260416104&gjid=1543498063&_gid=1328691908.1665087567&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1138578357 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://flaviar.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 06 Oct 2022 20:19:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 05cdf02bcbbeed0122679c1118a350ce
b5311d6866b69206bec8f67a19cfeeefed233ef1
4b7235ec2ca2295957e75e79fdc718fbacc13bfd5674d1aeb7cbe5bed9fe9ead
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gandalf-eu.segmentify.com//get/key/v1.json?count=2
35.246.234.8200 30 B URL HTTP/1.1 gandalf-eu.segmentify.com//get/key/v1.json?count=2
IP 35.246.234.8:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , ASCII text, with no line terminators
Hash ffbe8df7ed67de5a47c42e7a1e62a906
6457fb3b22a4129d079a15209f056a1f99b37f4b
dbb1fd285ec2794e8b60869066861e60cbfbd594da5baaebb75695d6ddb5cb0d
GET //get/key/v1.json?count=2 HTTP/1.1
Host: gandalf-eu.segmentify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: br
Content-Type: application/json;charset=UTF-8
Date: Thu, 06 Oct 2022 20:19:27 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: 7bc30e0e2a5e4039e53cb85fca96879b
public.fbot.me/events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr
52.45.210.7200 OK 514 B URL HTTP/2 public.fbot.me/events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr
IP 52.45.210.7:0
File type JSON data\012- , ASCII text, with very long lines (514), with no line terminators
Hash 605fb4f14f88492f811d9f6254295e16
ecc6ee669e541c08f0e8a99fdf4b6f25f63cc238
baf09aa24283c81692df2336df64be87f9ab03816759fff2f83b5ebf44679d6c
POST /events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr HTTP/1.1
Host: public.fbot.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Authorization:
Content-Type: application/json
Origin: https://flaviar.com
Content-Length: 215
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:27 GMT
content-type: application/json
content-length: 514
server: nginx/1.23.1
access-control-allow-origin: https://flaviar.com
set-cookie: globalId=d232d524-53f2-4d4d-9222-25cacfb9d37e; Max-Age=315360000; Domain=.fbot.me; Path=/; HttpOnly; Secure; SameSite=None
access-control-allow-credentials: true
X-Firefox-Spdy: h2
aacdn.nagich.com/assets/images/11.svg
104.26.15.45200 OK 572 B URL HTTP/2 aacdn.nagich.com/assets/images/11.svg
IP 104.26.15.45:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 79f7638eb77519ac1ccdd8cfc5a23cd3
16cb8a8052c229ba4327d6471819697d72f4d76f
010f098484fef61b740ac0c329e8d503867938c71abb52bf2a22ecbcd96aeac2
GET /assets/images/11.svg HTTP/1.1
Host: aacdn.nagich.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:27 GMT
content-type: image/svg+xml
cache-control: public, max-age=2204800
last-modified: Thu, 01 Aug 2019 12:47:47 GMT
etag: W/"42b27526748d51:0"
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: deny
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 383324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iYJr8Shq016GQoVrhoGH5Bp6Oj50dxI09tklj38uAqt7P0ANXKrNG2LQC1PPpjVLfs11XL%2FGWq50zzOma9ITC8erGVpl609Mu2zVVQTWNaUNDhHhtNLlHECHq%2B2GUaR1XS0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7561178fad2a0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 38c8ed81c69d2af0003394c9fb9274c5
a71c6fb6d685275f8a8c7d9d87860df08a450038
fdff30d374603ecd62c6d244a1175731787725dba48777122802055969be28f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 38c8ed81c69d2af0003394c9fb9274c5
a71c6fb6d685275f8a8c7d9d87860df08a450038
fdff30d374603ecd62c6d244a1175731787725dba48777122802055969be28f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-28959768-1&cid=2009995165.1665087567&jid=1260416104&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1068951493
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-28959768-1&cid=2009995165.1665087567&jid=1260416104&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1068951493
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-28959768-1&cid=2009995165.1665087567&jid=1260416104&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1068951493 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 20:19:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/logos/flaviar.d834b8fc.svg
54.230.111.75200 OK 2.3 kB URL HTTP/2 cdn.flaviar.com/build/images/logos/flaviar.d834b8fc.svg
IP 54.230.111.75:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (8362), with no line terminators
Hash 06c7691601e11b592675abd10d3a9ace
f1a78c3087ae3b961d072f776ce88de4c046f5ca
3a1fb32c29198de4c52740ff48876ff468dcdab4604fbc6ab08ae97b334693bc
GET /build/images/logos/flaviar.d834b8fc.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1665087566.1.0.1665087566.60.0.0; _ga=GA1.1.2009995165.1665087567
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 03 Sep 2022 01:49:44 GMT
last-modified: Fri, 02 Sep 2022 14:13:22 GMT
etag: W/"bffec1c9b2cf2687181fc865bca3a631-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bhP_5zEYkw4LuSDqo1aLaEETTErV77Rgx8q5OZDGZdu30aUvmq3_Lg==
age: 2917783
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-28959768-20&cid=2009995165.1665087567&jid=59214629&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1088584540
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-28959768-20&cid=2009995165.1665087567&jid=59214629&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1088584540
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-28959768-20&cid=2009995165.1665087567&jid=59214629&npa=1&_u=aCDAgEAjQAAAAEAAI~&z=1088584540 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 20:19:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gandalf-eu.segmentify.com//add/events/v1.json?apiKey=06e2e4b6-5e17-4dbf-9574-c462c3d742d7
35.246.234.8200 8.0 kB URL HTTP/1.1 gandalf-eu.segmentify.com//add/events/v1.json?apiKey=06e2e4b6-5e17-4dbf-9574-c462c3d742d7
IP 35.246.234.8:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (33825), with no line terminators
Hash ff8d61faa39090b3da5159a01b50618a
89709b5b35110b57a2e86c281b7e1d9839b6b93a
3bcb4432f3ad790ae8214e82ca59718974712a24bbfde04945687a04c0068cd9
POST //add/events/v1.json?apiKey=06e2e4b6-5e17-4dbf-9574-c462c3d742d7 HTTP/1.1
Host: gandalf-eu.segmentify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 06e2e4b6-5e17-4dbf-9574-c462c3d742d7
Content-Length: 1445
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: br
Content-Type: application/json;charset=UTF-8
Date: Thu, 06 Oct 2022 20:19:27 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: e50eafe57688af3a47ec4fb3140ed864
beacon-v2.helpscout.net/
54.230.111.96200 OK 328 B IP 54.230.111.96:0
File type ASCII text, with very long lines (458), with no line terminators
Hash e06ae6a347de0e093eebf0f226a4a587
f82aad08f244fd8d8b33ee47f15e1f51c034ae12
ea793fc476fb27c3c8d538cc427a2dee7aacf69251dbc27b0110eea4b9247bc2
GET / HTTP/1.1
Host: beacon-v2.helpscout.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 328
last-modified: Wed, 05 Oct 2022 09:30:09 GMT
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Thu, 06 Oct 2022 20:18:41 GMT
cache-control: max-age=120, s-maxage=120, public
etag: "e06ae6a347de0e093eebf0f226a4a587"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 28KF9M6Y4BYXbCm7TlSl9AAr0Q0UM-f4TGTzQ3bd_JT9XrqIIAhIQw==
age: 48
X-Firefox-Spdy: h2
beacon-v2.helpscout.net/static/js/vendor.06c7227b.js
54.230.111.96200 OK 22 kB URL HTTP/2 beacon-v2.helpscout.net/static/js/vendor.06c7227b.js
IP 54.230.111.96:0
File type ASCII text, with very long lines (64482), with no line terminators
Hash 3f4a5cbde86a1c38d64756f63411e950
4f660ae52eb3e6c2fb9b07232a39f7dbd8fc920b
bf7ee1af4166e65a9d8aa2587a87f4a22965e9917c1f222c6ddb985fa2397d88
GET /static/js/vendor.06c7227b.js HTTP/1.1
Host: beacon-v2.helpscout.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 22285
date: Thu, 06 Oct 2022 18:24:29 GMT
last-modified: Wed, 05 Oct 2022 09:30:10 GMT
etag: "3f4a5cbde86a1c38d64756f63411e950"
cache-control: max-age=315360000, s-maxage=7200, public
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9i3Gm5M1utrBdxdRx7jS1TXW_cn5xERXYo1JTE9zRoGS4nJGhXkeDQ==
age: 6899
X-Firefox-Spdy: h2
beacon-v2.helpscout.net/static/js/main.18441a3c.js
54.230.111.96200 OK 9.7 kB URL HTTP/2 beacon-v2.helpscout.net/static/js/main.18441a3c.js
IP 54.230.111.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (24956)
Hash f2c0d254011b42ee6d3d9712c2404f0d
2b61cdef1da4b9171e3191adcbef9626eb615907
b5c3c31eb985e13e197aa743262c1243afbde5402ec38a6668c1f3c32de81fc5
GET /static/js/main.18441a3c.js HTTP/1.1
Host: beacon-v2.helpscout.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 9699
date: Thu, 06 Oct 2022 18:24:29 GMT
last-modified: Wed, 05 Oct 2022 09:30:10 GMT
etag: "f2c0d254011b42ee6d3d9712c2404f0d"
cache-control: max-age=315360000, s-maxage=7200, public
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cU9wsYiDIZs3lLpGLAwnKtmj8p6L3QFd7UEdNjmniQw5u6PD7P9wZw==
age: 6899
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
54.230.82.240200 OK 8.8 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (25360), with no line terminators
Hash e9a9d4e245fb5df1ac33be19306752e8
246e5996a63a71ce325dff7ca6c9ef71f324b62f
64211912b65ff9a15aa212c8e8f5d4e60b86629d305c130f8824eb55837b8d4a
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 8764
server: CloudFront
date: Thu, 06 Oct 2022 20:19:27 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Fri, 07 Oct 2022 19:21:19 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: brsqozgMFKx3J49Tnf2Vnuz4KhP1dZ-zDbAjKXhp5iLRjqF0ZaM1kw==
X-Firefox-Spdy: h2
www.redditstatic.com/ads/pixel.js
151.101.85.140200 OK 7.7 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.85.140:0
File type ASCII text, with very long lines (25224)
Hash 95212d33cfff78ad59f5af5b20c48c53
9b99a4091a6eb716bc68f1428e3c86eca068b25b
bd69f250efa08cb2c0a06c35d91fda762779820d87779019c25211f4559ebb1d
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 19 Jul 2022 22:48:09 GMT
etag: "95212d33cfff78ad59f5af5b20c48c53"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 20:19:27 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 75fa992cdd38422c02becf97f2fba44c
32ae97abe59ccfa477e58fb92830a4f87210c005
54f3984974bc5bd26ca6333d2631f0830c3da42fc3ceca1a20df8ea384268322
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 357
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:27 GMT
Last-Modified: Thu, 06 Oct 2022 20:13:30 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 3345356cb10f305062015079aa680e7f
727a4e4f0d7a52c84d32d936e07aa24b0887347f
5efa1b2f68a5eaf6d1cff23b832b8f0b13b225b06fd331ad0a829ba4e2d61904
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3154
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:27 GMT
Last-Modified: Thu, 06 Oct 2022 19:26:53 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 3345356cb10f305062015079aa680e7f
727a4e4f0d7a52c84d32d936e07aa24b0887347f
5efa1b2f68a5eaf6d1cff23b832b8f0b13b225b06fd331ad0a829ba4e2d61904
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 721
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:27 GMT
Last-Modified: Thu, 06 Oct 2022 20:07:26 GMT
Server: ECS (amb/6B88)
X-Cache: HIT
Content-Length: 727
beacon-v2.helpscout.net/static/js/full-beacon-init.ec997731.chunk.js
54.230.111.96200 OK 100 kB URL HTTP/2 beacon-v2.helpscout.net/static/js/full-beacon-init.ec997731.chunk.js
IP 54.230.111.96:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8f346daa7617a2ebb22a8a82db746ffa
10f8ccc0a185b6437d4b8bca411f3ad81dd88cfe
59fc14d5c75fb65fb76b14ba721d252c0e2cbd5d1d382ae95265385a7375a398
GET /static/js/full-beacon-init.ec997731.chunk.js HTTP/1.1
Host: beacon-v2.helpscout.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 99888
last-modified: Wed, 05 Oct 2022 09:30:10 GMT
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Thu, 06 Oct 2022 19:30:51 GMT
cache-control: max-age=315360000, s-maxage=7200, public
etag: "8f346daa7617a2ebb22a8a82db746ffa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XR_2hyciPnxQsx0JZUM51sTECYX6VpHmwR3kkmHkF6znk40AWn_B7w==
age: 2918
X-Firefox-Spdy: h2
shop.pe/widget/widget_async.js
35.227.244.1301 Moved Permanently 178 B URL HTTP/2 shop.pe/widget/widget_async.js
IP 35.227.244.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /widget/widget_async.js HTTP/1.1
Host: shop.pe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 06 Oct 2022 20:19:28 GMT
content-type: text/html
content-length: 178
location: https://d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
x-frame-options: deny
content-security-policy: frame-ancestors none;
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fd1ce6e32decaa40ae311533fdf04e9f
30823740f60d7f7cd2fd93b8e54e61044016e8e9
2522029d9f787a6f2dfd7f2a8b6740de444981a9f8489496e1ef20eb2cd50898
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2522029D9F787A6F2DFD7F2A8B6740DE444981A9F8489496E1EF20EB2CD50898"
Last-Modified: Wed, 05 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 07 Oct 2022 02:19:28 GMT
Date: Thu, 06 Oct 2022 20:19:28 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 063a17f926dc3e3811bbbf511a18f2e8
c39ee6c7c916e9e14e37ba033e5fd4641ced5197
e61ec994c8e5b0e83899c20400f9ec5bc6cbf782f65a314a225e470a78ae65e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1029
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:28 GMT
Last-Modified: Thu, 06 Oct 2022 20:02:19 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 063a17f926dc3e3811bbbf511a18f2e8
c39ee6c7c916e9e14e37ba033e5fd4641ced5197
e61ec994c8e5b0e83899c20400f9ec5bc6cbf782f65a314a225e470a78ae65e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5532
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:28 GMT
Last-Modified: Thu, 06 Oct 2022 18:47:16 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 3345356cb10f305062015079aa680e7f
727a4e4f0d7a52c84d32d936e07aa24b0887347f
5efa1b2f68a5eaf6d1cff23b832b8f0b13b225b06fd331ad0a829ba4e2d61904
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3155
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:28 GMT
Last-Modified: Thu, 06 Oct 2022 19:26:53 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 727
tr.snapchat.com/cm/i?pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&u_scsid=03a7103e-bbf7-4b5d-870d-ba9cdf60bcbc&u_sclid=d12b167c-65e7-4c61-bcbd-4d27777bc10d
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&u_scsid=03a7103e-bbf7-4b5d-870d-ba9cdf60bcbc&u_sclid=d12b167c-65e7-4c61-bcbd-4d27777bc10d
IP 35.190.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&u_scsid=03a7103e-bbf7-4b5d-870d-ba9cdf60bcbc&u_sclid=d12b167c-65e7-4c61-bcbd-4d27777bc10d HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 1
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/p?trackId=1c00205b-0ed4-45ba-b15f-9dce7a74ae09&pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&ev=PAGE_VIEW&pl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&ts=1665087568106&rf=&v=1.6.0&if=false&bt=1d53c387&intg=gtm&m_sl=3867&m_rd=3894&m_pi=1953&m_dcl=2032&m_fcps=1975&m_pl=3576&m_ic=0&m_pv=v2&u_hem=FFFeb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&u_c1=a69e04ca-cf52-4060-98a3-0ec70a259fe7&u_scsid=03a7103e-bbf7-4b5d-870d-ba9cdf60bcbc&u_sclid=d12b167c-65e7-4c61-bcbd-4d27777bc10d&s_r_ids=0
35.190.43.134200 OK 68 B URL HTTP/2 tr.snapchat.com/p?trackId=1c00205b-0ed4-45ba-b15f-9dce7a74ae09&pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&ev=PAGE_VIEW&pl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&ts=1665087568106&rf=&v=1.6.0&if=false&bt=1d53c387&intg=gtm&m_sl=3867&m_rd=3894&m_pi=1953&m_dcl=2032&m_fcps=1975&m_pl=3576&m_ic=0&m_pv=v2&u_hem=FFFeb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&u_c1=a69e04ca-cf52-4060-98a3-0ec70a259fe7&u_scsid=03a7103e-bbf7-4b5d-870d-ba9cdf60bcbc&u_sclid=d12b167c-65e7-4c61-bcbd-4d27777bc10d&s_r_ids=0
IP 35.190.43.134:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /p?trackId=1c00205b-0ed4-45ba-b15f-9dce7a74ae09&pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&ev=PAGE_VIEW&pl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&ts=1665087568106&rf=&v=1.6.0&if=false&bt=1d53c387&intg=gtm&m_sl=3867&m_rd=3894&m_pi=1953&m_dcl=2032&m_fcps=1975&m_pl=3576&m_ic=0&m_pv=v2&u_hem=FFFeb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&u_c1=a69e04ca-cf52-4060-98a3-0ec70a259fe7&u_scsid=03a7103e-bbf7-4b5d-870d-ba9cdf60bcbc&u_sclid=d12b167c-65e7-4c61-bcbd-4d27777bc10d&s_r_ids=0 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
access-control-allow-origin: *
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgQ0AIAgDsItIwMHEc4jEKzjeljhxnSEoh/jqlrPT5NW6UC0kfcbI0NzBHP3Symf/MgAAAA==;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/p?trackId=b78f335d-366b-4789-905f-b4dcd1b29a83&pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&ev=PAGE_VIEW&pl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&ts=1665087568111&rf=&v=1.6.0&if=false&bt=1d53c387&intg=gtm&m_sl=3867&m_rd=3898&m_pi=1953&m_dcl=2032&m_fcps=1975&m_pl=3576&m_ic=0&m_pv=v2&u_hem=FFFeb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&u_c1=a69e04ca-cf52-4060-98a3-0ec70a259fe7&u_scsid=03a7103e-bbf7-4b5d-870d-ba9cdf60bcbc&u_sclid=d12b167c-65e7-4c61-bcbd-4d27777bc10d&s_r_ids=0
35.190.43.134200 OK 68 B URL HTTP/2 tr.snapchat.com/p?trackId=b78f335d-366b-4789-905f-b4dcd1b29a83&pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&ev=PAGE_VIEW&pl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&ts=1665087568111&rf=&v=1.6.0&if=false&bt=1d53c387&intg=gtm&m_sl=3867&m_rd=3898&m_pi=1953&m_dcl=2032&m_fcps=1975&m_pl=3576&m_ic=0&m_pv=v2&u_hem=FFFeb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&u_c1=a69e04ca-cf52-4060-98a3-0ec70a259fe7&u_scsid=03a7103e-bbf7-4b5d-870d-ba9cdf60bcbc&u_sclid=d12b167c-65e7-4c61-bcbd-4d27777bc10d&s_r_ids=0
IP 35.190.43.134:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /p?trackId=b78f335d-366b-4789-905f-b4dcd1b29a83&pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&ev=PAGE_VIEW&pl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&ts=1665087568111&rf=&v=1.6.0&if=false&bt=1d53c387&intg=gtm&m_sl=3867&m_rd=3898&m_pi=1953&m_dcl=2032&m_fcps=1975&m_pl=3576&m_ic=0&m_pv=v2&u_hem=FFFeb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&u_c1=a69e04ca-cf52-4060-98a3-0ec70a259fe7&u_scsid=03a7103e-bbf7-4b5d-870d-ba9cdf60bcbc&u_sclid=d12b167c-65e7-4c61-bcbd-4d27777bc10d&s_r_ids=0 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
access-control-allow-origin: *
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBiQ3AQAgDsImQiAhP1wFxUzB87bU3nWrCAYS+TxpGyR5MZX1c3iHCtdKjTn9eL6XcMgAAAA==;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 063a17f926dc3e3811bbbf511a18f2e8
c39ee6c7c916e9e14e37ba033e5fd4641ced5197
e61ec994c8e5b0e83899c20400f9ec5bc6cbf782f65a314a225e470a78ae65e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5532
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:28 GMT
Last-Modified: Thu, 06 Oct 2022 18:47:16 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
splow.flaviar.com/com.snowplowanalytics.snowplow/tp2
172.66.43.165200 OK 0 B URL HTTP/2 splow.flaviar.com/com.snowplowanalytics.snowplow/tp2
IP 172.66.43.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: splow.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
content-length: 0
access-control-allow-origin: https://flaviar.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-max-age: 5
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qQRTHspA1uxGYmIejiQLmoAc%2FOiS8X3a6XKa79wRSlgCNbv7z8KZ9D6vEHG12AgKlEShkd7b3z4UK%2FEOrepglA9nTkaARGZs3ay7m1fTR3pgPxtZ4x90ghhsLYkN2thk53vd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 75611794c8f4b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fbcapi.flaviar.com/events
54.183.233.41200 OK 0 B URL HTTP/2 fbcapi.flaviar.com/events
IP 54.183.233.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /events HTTP/1.1
Host: fbcapi.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 506
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1665087566.1.0.1665087566.60.0.0; _ga=GA1.2.2009995165.1665087567; _gid=GA1.2.1328691908.1665087567; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1665087567463.1544524691; _sgf_user_id=3082261241143297; _sgf_session_id=3082261241143296
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
content-length: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://flaviar.com
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash d74fdee2f850a6fb88404ab9a0510944
c0b86879d405bf4608bb72c1b3f1159bd9b110df
9a2d0468d320d112378e18194c7aa7b7d6dc49030773c035d910d71ddc57b22e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:28 GMT
Last-Modified: Thu, 06 Oct 2022 18:35:19 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n7k0XkFuoXZiWWptvtDTvu7g7YfGkc33ucbccZDcREyfmsE0qqmX8A==
Age: 6249
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash d74fdee2f850a6fb88404ab9a0510944
c0b86879d405bf4608bb72c1b3f1159bd9b110df
9a2d0468d320d112378e18194c7aa7b7d6dc49030773c035d910d71ddc57b22e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:28 GMT
Last-Modified: Thu, 06 Oct 2022 18:31:33 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Zc3wCjangJlmUllDLPsVZyTQqWqMyxkHxtZ6VIvI21wW5SNtimPMhQ==
Age: 6475
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash eae12b62b7c970008788c6aaece2f515
aa0f698cee22bfd002452504bc7bfd5faa6ca35b
1e280136044775832765ec45a0f2e9952d6f3769cd6160ea9213d6e14d6badcf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6133
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:28 GMT
Last-Modified: Thu, 06 Oct 2022 18:37:15 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 314
dynamic.criteo.com/js/ld/ld.js?a=95340
178.250.2.140200 OK 15 kB URL HTTP/2 dynamic.criteo.com/js/ld/ld.js?a=95340
IP 178.250.2.140:0
File type ASCII text, with very long lines (43225)
Hash 39531bcbd4afa6f9864dee94b236d8a5
e0566a3f529de49b68b203220fc2b35a283539af
74192754d27b933f37cf966e82510640c82f09e4e811612bc6c37dac5b9d81bc
GET /js/ld/ld.js?a=95340 HTTP/1.1
Host: dynamic.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:27 GMT
content-type: application/javascript; charset=utf-8
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin, Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=kspn7V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czlaMEZ5QWV5SVJmNEglMkJOYko1emY0bU9WQmVaciUyRkliJTJCekxIT3R2NXZOc20; expires=Tue, 31 Oct 2023 20:19:28 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 226439
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn.flaviar.com/sp/2.18.2/Lk98JfUw.js
54.230.111.75200 OK 27 kB URL HTTP/2 cdn.flaviar.com/sp/2.18.2/Lk98JfUw.js
IP 54.230.111.75:0
Hash e06ee26120169daba9b0c2cdb4bb608b
fee408ab13dd922ac6db0c5dfa58fa851ed6c102
02105364c63199a91ffabfbb5061da8c2e42970011581ad07c16f7ee7f798a52
GET /sp/2.18.2/Lk98JfUw.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1665087566.1.0.1665087566.60.0.0; _ga=GA1.2.2009995165.1665087567; _gid=GA1.2.1328691908.1665087567; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1665087567463.1544524691; _sgf_user_id=3082261241143297; _sgf_session_id=3082261241143296; _gcl_au=1.1.77709639.1665087568; _sgf_exp=; _sgf_push_permission_asked=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 22 Aug 2022 02:19:56 GMT
last-modified: Wed, 11 May 2022 13:33:25 GMT
etag: W/"595025034b65fd95a6547d58d743471a"
cache-control: public, max-age=315360000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A_p4wWxtL31OwZSaVngyAglytjGHO1uziGwcF2-GnLX8rYuhChE6Nw==
age: 3952772
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 05dc820485b100917b39e380e671871b
6dca69ce616fa5117b14fada8f8bbb56b642e33a
ddf9c2a955809b79e558b01a6db113bbb4f66708c87ec690fd29fb7fbe761105
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4970
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:28 GMT
Last-Modified: Thu, 06 Oct 2022 18:56:38 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 05dc820485b100917b39e380e671871b
6dca69ce616fa5117b14fada8f8bbb56b642e33a
ddf9c2a955809b79e558b01a6db113bbb4f66708c87ec690fd29fb7fbe761105
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4986
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:28 GMT
Last-Modified: Thu, 06 Oct 2022 18:56:22 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 312
tr.snapchat.com/collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com
35.190.43.134200 OK 103 B URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com
IP 35.190.43.134:0
Hash b83beee037e2a3690fe8f32145c785ce
5e3e14d1c4e929eb5820aca2548b2d0db77c20ca
298901a6cbbdf670fb926508f99d055df61f705cfbbd0b6d6a58abeffb732d71
GET /collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
access-control-allow-origin: https://flaviar.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/landing?gcs=G111&rnd=1825508107.1665087568&url=https%3A%2F%2Fflaviar.com%2F>m=2wga50K4F6SWQ&auid=77709639.1665087568
142.250.74.130200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/landing?gcs=G111&rnd=1825508107.1665087568&url=https%3A%2F%2Fflaviar.com%2F>m=2wga50K4F6SWQ&auid=77709639.1665087568
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/landing?gcs=G111&rnd=1825508107.1665087568&url=https%3A%2F%2Fflaviar.com%2F>m=2wga50K4F6SWQ&auid=77709639.1665087568 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 20:19:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 20:34:28 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0&page=irclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0&page=ir_cid%3D3334&page=ir_affid%3D10813&page=utm_medium%3Daffiliates&page=utm_source%3DMaxBounty.com%20ULC&page=ir_partnerid%3D10813&page=ir_adid%3D1215604&page=ir_campaignid%3D3334
99.83.154.140200 OK 195 B URL HTTP/2 api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0&page=irclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0&page=ir_cid%3D3334&page=ir_affid%3D10813&page=utm_medium%3Daffiliates&page=utm_source%3DMaxBounty.com%20ULC&page=ir_partnerid%3D10813&page=ir_adid%3D1215604&page=ir_campaignid%3D3334
IP 99.83.154.140:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0723ed315681ee97f43c1b44e7fd68bc
a5927f2328ba9f38f43e1e1643b47e8adbc5f2bb
69b8b0012040436518a52cb1e9118b32b4a33773bb2bfe6b8b07599d1f89d96f
GET /v1/personalize/simple?pageviews=1&isMobile=0&page=irclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0&page=ir_cid%3D3334&page=ir_affid%3D10813&page=utm_medium%3Daffiliates&page=utm_source%3DMaxBounty.com%20ULC&page=ir_partnerid%3D10813&page=ir_adid%3D1215604&page=ir_campaignid%3D3334 HTTP/1.1
Host: api.sail-personalize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
authorization: Bearer 65de79281e7de94b00f804e81e0d65c0
content-type: application/json
x-lib-version: v1.0.1
x-referring-url: https://flaviar.com/?irclickid=2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0&ir_cid=3334&ir_affid=10813&utm_medium=affiliates&utm_source=MaxBounty.com%20ULC&ir_partnerid=10813&ir_adid=1215604&ir_campaignid=3334
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
content-type: application/json
content-length: 195
access-control-allow-origin: *
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-store
expires: -1
allowedheaders: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin
allowedorigins: *
allowedmethods: GET,OPTIONS
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
rb9yp8py.flaviar.com/assets/wxyz.rb.js
159.203.152.67200 OK 10 kB URL HTTP/1.1 rb9yp8py.flaviar.com/assets/wxyz.rb.js
IP 159.203.152.67:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (347)
Hash 28da32c8a3559274180a454ca5231e08
37b980c1eaa6fb94ae0bea7ff55e2ccbb6319ae7
6e9d6535db0d92b4bf9c7263eafa6fd552da77999bd86eb5e2f0e3d97aeebc62
GET /assets/wxyz.rb.js HTTP/1.1
Host: rb9yp8py.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 06 Oct 2022 20:19:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
d3hb14vkzrxvla.cloudfront.net/v1/00e580f3-b08f-44e2-b7b0-5949db5bfaf3
54.230.245.184200 OK 10 kB URL HTTP/2 d3hb14vkzrxvla.cloudfront.net/v1/00e580f3-b08f-44e2-b7b0-5949db5bfaf3
IP 54.230.245.184:0
Hash 19043235beccfa3e30856df3d58c9aeb
4ad8f3f425df5f45b67e311a744715f15370cb06
adfcd65ea5a8da21acc035452c0e0f69f91e4bc4fe76363ddcb525bdfe1122d9
GET /v1/00e580f3-b08f-44e2-b7b0-5949db5bfaf3 HTTP/1.1
Host: d3hb14vkzrxvla.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
correlationId: 417ebb5c-2018-4302-908f-f87c633c1880
Helpscout-Origin: Beacon-Embed
Helpscout-Release: 2.2.26
Beacon-Device-ID: b1698768-668e-4edc-8847-72ff16f3345f
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 06 Oct 2022 20:19:28 GMT
access-control-allow-origin: https://flaviar.com
access-control-expose-headers: Resource-ID
access-control-allow-credentials: true
cache-control: max-age=300
x-ratelimit-limit-general-minute: 60
x-ratelimit-remaining-general-minute: 60
x-ratelimit-limit-conversations-hour: 10
x-ratelimit-remaining-conversations-hour: 10
x-ratelimit-limit-attachments-hour: 10
x-ratelimit-remaining-attachments-hour: 10
x-ratelimit-limit-chat-tokens-hour: 25
x-ratelimit-remaining-chat-tokens-hour: 25
x-ratelimit-limit-identify-hour: 25
x-ratelimit-remaining-identify-hour: 25
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3h1YkfbARfnKqDxB52OHxlrxBj2RT26stIdkqEavQqELebCRHXuuHg==
X-Firefox-Spdy: h2
d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
54.230.111.123200 OK 905 B URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
IP 54.230.111.123:0
File type ASCII text, with very long lines (559)
Hash 2cad27199e75b1770e99310603d4f11f
8f0513ceb84ebd9b90f06616abfb3c0ef25d8b74
7821039aa13f17aa92da2bdadb0deb769c84f524de30f859e7a3bb2899755ba3
GET /widget/widget_async.js HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 905
last-modified: Thu, 06 Oct 2022 16:37:52 GMT
content-encoding: gzip
x-amz-meta-mtime: 1665074270.76
accept-ranges: bytes
server: AmazonS3
date: Thu, 06 Oct 2022 19:38:14 GMT
cache-control: max-age=3600, public
etag: "2cad27199e75b1770e99310603d4f11f"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nsbEcfdJDbZ53FID7vo4Zl3g6mHvr_rEn6tg7w7mQ2HQaS_vYrtOlw==
age: 2475
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=3B9857485188639A1DAA457D50DF62DA; domain=.bing.com; expires=Tue, 31-Oct-2023 20:19:28 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0805438FC99647BDAFB065A7B1C7DFE0 Ref B: OSL30EDGE0413 Ref C: 2022-10-06T20:19:28Z
date: Thu, 06 Oct 2022 20:19:27 GMT
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57443), with no line terminators
Hash 1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Thu, 06 Oct 2022 20:19:28 GMT
x-served-by: cache-iad-kcgs7200165-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2
fbcapi.flaviar.com/events
54.183.233.41200 OK 0 B URL HTTP/2 fbcapi.flaviar.com/events
IP 54.183.233.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /events HTTP/1.1
Host: fbcapi.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2067
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1665087566.1.0.1665087566.60.0.0; _ga=GA1.2.2009995165.1665087567; _gid=GA1.2.1328691908.1665087567; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1665087567463.1544524691; _sgf_user_id=3082261241143297; _sgf_session_id=3082261241143296; _gcl_au=1.1.77709639.1665087568; _sgf_exp=; _sgf_push_permission_asked=true; _rdt_uuid=1665087568084.f7f3d719-248b-4203-a0b1-db3b52929fae; _scid=a69e04ca-cf52-4060-98a3-0ec70a259fe7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
content-length: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://flaviar.com
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=c317b78
54.230.111.123200 OK 3.8 kB URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=c317b78
IP 54.230.111.123:0
File type ASCII text, with very long lines (583)
Hash d7af88384cdf90fe680bbe9afa064284
663d92c4add83453de4b7d96449cd32c3ef16171
45c7ccfb76a59efcd7363cd182d90d66d7f26f1e17c08877f5dbf1c989f5c825
GET /widget/triggerRunner.js?v=c317b78 HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 3772
date: Thu, 06 Oct 2022 16:38:14 GMT
last-modified: Thu, 06 Oct 2022 16:37:52 GMT
etag: "d7af88384cdf90fe680bbe9afa064284"
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1665074270.73
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZogudQoiyhYCQ4XgonLFgVS0dFx0SgUX4-9fXXPTOZY208eoKCj8ZA==
age: 13275
X-Firefox-Spdy: h2
alb.reddit.com/rp.gif?ts=1665087568086&id=t2_h2e6q&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=f7f3d719-248b-4203-a0b1-db3b52929fae&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
151.101.85.140200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1665087568086&id=t2_h2e6q&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=f7f3d719-248b-4203-a0b1-db3b52929fae&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
IP 151.101.85.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1665087568086&id=t2_h2e6q&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=f7f3d719-248b-4203-a0b1-db3b52929fae&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Thu, 06 Oct 2022 20:19:28 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.14200 OK 82 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.14:0
Hash 96ac4e4c66a6ab663a676699e7412fb8
f9a10feaba12830d261530aaaf1c4f2e38d769ba
116359eedbff44a925172a60006c437fa9aee53fe55bf0b3b58d5152fd63d5a9
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:27 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 91748
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
rb9yp8py.flaviar.com/integrations?source=flaviar
159.203.152.67200 OK 59 B URL HTTP/1.1 rb9yp8py.flaviar.com/integrations?source=flaviar
IP 159.203.152.67:0
ASN #14061 DIGITALOCEAN-ASN
Hash b13b075ac18d7ecbf705dad11323402e
124e2c4307c6beabfd3e751f14a4f7acb02eb6ce
03db7011ba06ed159ca1b7dee62dc5a01ee2d0a3d6f3b0294004cd455251b7f2
GET /integrations?source=flaviar HTTP/1.1
Host: rb9yp8py.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1665087566.1.0.1665087566.60.0.0; _ga=GA1.2.2009995165.1665087567; _gid=GA1.2.1328691908.1665087567; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1665087567463.1544524691; _sgf_user_id=3082261241143297; _sgf_session_id=3082261241143296; _gcl_au=1.1.77709639.1665087568; _sgf_exp=; _sgf_push_permission_asked=true; _rdt_uuid=1665087568084.f7f3d719-248b-4203-a0b1-db3b52929fae; _scid=a69e04ca-cf52-4060-98a3-0ec70a259fe7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 06 Oct 2022 20:19:28 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 7065fbf8d63d2ecd8879362fd907ec32
321677349d53a38d7f786c0bc60778ebbf5b115e
17db658b429ff9d8ad5f06672ca0929a328af27af7e5a054848d676a455d585f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3584
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:28 GMT
Last-Modified: Thu, 06 Oct 2022 19:19:44 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 7065fbf8d63d2ecd8879362fd907ec32
321677349d53a38d7f786c0bc60778ebbf5b115e
17db658b429ff9d8ad5f06672ca0929a328af27af7e5a054848d676a455d585f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3870
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:28 GMT
Last-Modified: Thu, 06 Oct 2022 19:14:58 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
rb9yp8py.flaviar.com/v2/rb?url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&action=view&source=flaviar&rb_source=flaviar&script_version=wxyz.rb.js&sessionId=84109fc8-106d-408c-a6b7-6f3efbb252d6&uid=rbos-1aba6150-dc47-40da-8e4e-f93579e64431
159.203.152.67200 OK 44 B URL HTTP/1.1 rb9yp8py.flaviar.com/v2/rb?url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&action=view&source=flaviar&rb_source=flaviar&script_version=wxyz.rb.js&sessionId=84109fc8-106d-408c-a6b7-6f3efbb252d6&uid=rbos-1aba6150-dc47-40da-8e4e-f93579e64431
IP 159.203.152.67:0
ASN #14061 DIGITALOCEAN-ASN
File type GIF image data, version 89a, 1 x 1\012- data
Hash 75e9566b8523b76993b790444d697848
46bcf0fe72739cd1bc11b7d525d6fdaf4533a845
039a8bb6d736466063dde3c2a80d71d54456a7875cb1654263058bc69c1c042d
GET /v2/rb?url=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&action=view&source=flaviar&rb_source=flaviar&script_version=wxyz.rb.js&sessionId=84109fc8-106d-408c-a6b7-6f3efbb252d6&uid=rbos-1aba6150-dc47-40da-8e4e-f93579e64431 HTTP/1.1
Host: rb9yp8py.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1665087566.1.0.1665087566.60.0.0; _ga=GA1.2.2009995165.1665087567; _gid=GA1.2.1328691908.1665087567; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1665087567463.1544524691; _sgf_user_id=3082261241143297; _sgf_session_id=3082261241143296; _gcl_au=1.1.77709639.1665087568; _sgf_exp=; _sgf_push_permission_asked=true; _rdt_uuid=1665087568084.f7f3d719-248b-4203-a0b1-db3b52929fae; _scid=a69e04ca-cf52-4060-98a3-0ec70a259fe7; _uetsid=2e1f105045b411ed9a19f9cd7e05edcb; _uetvid=2e1f1e4045b411edab5415f2654855b2; cto_bundle=ufgaXF9rZE1VUnpWQ0RLejcyRWtiZkolMkJDSUdwdGZpcXJaQXV6ODVsZ2w2VTB0ZG9iJTJCVXAlMkJCYXY2aDhvN1pHYSUyRnZvN1pXdEdWeU1neUFhWXdXbTRwYU5Zb0ZkT1FqdmJ5QXVVRCUyRlBUWHdva1M3S2VMRXVzdE1GUHdGT2dhRjVMRTdDUFE0WUtxVjR4ZXE3cVNOVHRjJTJCTW1taHclM0QlM0Q; rbuid=rbos-1aba6150-dc47-40da-8e4e-f93579e64431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 06 Oct 2022 20:19:29 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: rbuid=rbos-1aba6150-dc47-40da-8e4e-f93579e64431; domain=flaviar.com; path=/;Max-Age=2592000; SameSite=None; Secure
t.co/i/adsct?bci=3&eci=2&event_id=492765e0-995b-457d-aade-775833cb2a34&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
104.244.42.133200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=492765e0-995b-457d-aade-775833cb2a34&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
IP 104.244.42.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=492765e0-995b-457d-aade-775833cb2a34&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=fc3875cc-ff5d-496e-8c27-f5d82d1efad4; Max-Age=63072000; Expires=Sat, 05 Oct 2024 20:19:29 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 6d3903d6beb9a350
strict-transport-security: max-age=0
x-response-time: 105
x-connection-hash: 12983faa12d57980f0b06c1011ec83550c36d1540c29b4363e8871bfce6d1322
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=f5aad31a-680c-44f2-a977-7aaed9737993&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
104.244.42.133200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=f5aad31a-680c-44f2-a977-7aaed9737993&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
IP 104.244.42.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=f5aad31a-680c-44f2-a977-7aaed9737993&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=55a2b43e-3d51-4b36-bfb3-49e691888b13; Max-Age=63072000; Expires=Sat, 05 Oct 2024 20:19:29 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 30f4f359a0af228a
strict-transport-security: max-age=0
x-response-time: 104
x-connection-hash: 12983faa12d57980f0b06c1011ec83550c36d1540c29b4363e8871bfce6d1322
X-Firefox-Spdy: h2
d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=e0788e6
54.230.111.123200 OK 48 kB URL HTTP/2 d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=e0788e6
IP 54.230.111.123:0
File type ASCII text, with very long lines (778)
Hash 6bebdc8a425360ae4fc3f713a895b578
c72e31486bd5a3d2778fa746fa12c29dba567865
c9ce13f9beddb93593321dbf74d3a0792fbf5c6cf3a45ea6b78f8bc826a57684
GET /widget/widget.js?v=e0788e6 HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 47583
date: Thu, 06 Oct 2022 16:38:15 GMT
last-modified: Thu, 06 Oct 2022 16:37:52 GMT
etag: "6bebdc8a425360ae4fc3f713a895b578"
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1665074269.08
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7nxnqGL4mR7ol1Hn4ijGPj3AV_2fTstYt18G35dzVPhy2zByHY4y2Q==
age: 13275
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=5715081&tm=gtm002&Ver=2&mid=ef2707be-5aa6-4c10-ab00-fe77b1da7a3b&sid=2e1f105045b411ed9a19f9cd7e05edcb&vid=2e1f1e4045b411edab5415f2654855b2&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&p=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&r=<=3576&evt=pageLoad&sv=1&rn=596462
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5715081&tm=gtm002&Ver=2&mid=ef2707be-5aa6-4c10-ab00-fe77b1da7a3b&sid=2e1f105045b411ed9a19f9cd7e05edcb&vid=2e1f1e4045b411edab5415f2654855b2&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&p=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&r=<=3576&evt=pageLoad&sv=1&rn=596462
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5715081&tm=gtm002&Ver=2&mid=ef2707be-5aa6-4c10-ab00-fe77b1da7a3b&sid=2e1f105045b411ed9a19f9cd7e05edcb&vid=2e1f1e4045b411edab5415f2654855b2&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&p=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&r=<=3576&evt=pageLoad&sv=1&rn=596462 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2A4A15CCFC1068841B4A07F9FD47699A; domain=.bing.com; expires=Tue, 31-Oct-2023 20:19:29 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8E03890FC6854D7E92286CF893879294 Ref B: OSL30EDGE0413 Ref C: 2022-10-06T20:19:29Z
date: Thu, 06 Oct 2022 20:19:28 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 09ca26eaf86cfbfac28b54cac6d42d5f
e3272c4faf239c1792aeae0e6fcf5b4eb9ab2d8c
f3ac85d3475c24a00784d37e006fbdc7b393326417f736c4a774c299697a95fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5788
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:29 GMT
Last-Modified: Thu, 06 Oct 2022 18:43:02 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 09ca26eaf86cfbfac28b54cac6d42d5f
e3272c4faf239c1792aeae0e6fcf5b4eb9ab2d8c
f3ac85d3475c24a00784d37e006fbdc7b393326417f736c4a774c299697a95fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 292
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:29 GMT
Last-Modified: Thu, 06 Oct 2022 20:14:37 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
sslwidget.criteo.com/event?a=95340&v=5.12.1&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=ufgaXF9rZE1VUnpWQ0RLejcyRWtiZkolMkJDSUdwdGZpcXJaQXV6ODVsZ2w2VTB0ZG9iJTJCVXAlMkJCYXY2aDhvN1pHYSUyRnZvN1pXdEdWeU1neUFhWXdXbTRwYU5Zb0ZkT1FqdmJ5QXVVRCUyRlBUWHdva1M3S2VMRXVzdE1GUHdGT2dhRjVMRTdDUFE0WUtxVjR4ZXE3cVNOVHRjJTJCTW1taHclM0QlM0Q&tld=flaviar.com&dy=1&fu=https%253A%252F%252Fflaviar.com%252F%253Firclickid%253D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%2526ir_cid%253D3334%2526ir_affid%253D10813%2526utm_medium%253Daffiliates%2526utm_source%253DMaxBounty.com%252520ULC%2526ir_partnerid%253D10813%2526ir_adid%253D1215604%2526ir_campaignid%253D3334&dtycbr=16955&cs=1---&cv=1
178.250.0.163302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=95340&v=5.12.1&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=ufgaXF9rZE1VUnpWQ0RLejcyRWtiZkolMkJDSUdwdGZpcXJaQXV6ODVsZ2w2VTB0ZG9iJTJCVXAlMkJCYXY2aDhvN1pHYSUyRnZvN1pXdEdWeU1neUFhWXdXbTRwYU5Zb0ZkT1FqdmJ5QXVVRCUyRlBUWHdva1M3S2VMRXVzdE1GUHdGT2dhRjVMRTdDUFE0WUtxVjR4ZXE3cVNOVHRjJTJCTW1taHclM0QlM0Q&tld=flaviar.com&dy=1&fu=https%253A%252F%252Fflaviar.com%252F%253Firclickid%253D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%2526ir_cid%253D3334%2526ir_affid%253D10813%2526utm_medium%253Daffiliates%2526utm_source%253DMaxBounty.com%252520ULC%2526ir_partnerid%253D10813%2526ir_adid%253D1215604%2526ir_campaignid%253D3334&dtycbr=16955&cs=1---&cv=1
IP 178.250.0.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=95340&v=5.12.1&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=ufgaXF9rZE1VUnpWQ0RLejcyRWtiZkolMkJDSUdwdGZpcXJaQXV6ODVsZ2w2VTB0ZG9iJTJCVXAlMkJCYXY2aDhvN1pHYSUyRnZvN1pXdEdWeU1neUFhWXdXbTRwYU5Zb0ZkT1FqdmJ5QXVVRCUyRlBUWHdva1M3S2VMRXVzdE1GUHdGT2dhRjVMRTdDUFE0WUtxVjR4ZXE3cVNOVHRjJTJCTW1taHclM0QlM0Q&tld=flaviar.com&dy=1&fu=https%253A%252F%252Fflaviar.com%252F%253Firclickid%253D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%2526ir_cid%253D3334%2526ir_affid%253D10813%2526utm_medium%253Daffiliates%2526utm_source%253DMaxBounty.com%252520ULC%2526ir_partnerid%253D10813%2526ir_adid%253D1215604%2526ir_campaignid%253D3334&dtycbr=16955&cs=1---&cv=1 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 06 Oct 2022 20:19:28 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=95340&v=5.12.1&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=ufgaXF9rZE1VUnpWQ0RLejcyRWtiZkolMkJDSUdwdGZpcXJaQXV6ODVsZ2w2VTB0ZG9iJTJCVXAlMkJCYXY2aDhvN1pHYSUyRnZvN1pXdEdWeU1neUFhWXdXbTRwYU5Zb0ZkT1FqdmJ5QXVVRCUyRlBUWHdva1M3S2VMRXVzdE1GUHdGT2dhRjVMRTdDUFE0WUtxVjR4ZXE3cVNOVHRjJTJCTW1taHclM0QlM0Q&tld=flaviar.com&dy=1&fu=https%253A%252F%252Fflaviar.com%252F%253Firclickid%253D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%2526ir_cid%253D3334%2526ir_affid%253D10813%2526utm_medium%253Daffiliates%2526utm_source%253DMaxBounty.com%252520ULC%2526ir_partnerid%253D10813%2526ir_adid%253D1215604%2526ir_campaignid%253D3334&dtycbr=16955&cs=1---&cv=1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 8687853
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=flaviar.com&origin=onetag&us_privacy=1---
178.250.2.146200 OK 7.2 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=flaviar.com&origin=onetag&us_privacy=1---
IP 178.250.2.146:0
Hash 7e2b77be29335cfdb87c96658ffc8e57
057e4b61c82fb400c828729f593565c06d931a8f
9be2ab2a7a2520ddec377a7285e7bd8a73b5219740b0674fc0878e12c7bb52b7
GET /syncframe?topUrl=flaviar.com&origin=onetag&us_privacy=1--- HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=3a519c5b-898e-43a3-bbe8-759ad0ab62cc; expires=Tue, 31 Oct 2023 20:19:27 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 563384
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
bat.bing.com/p/action/5715081.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/5715081.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5715081.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=3C73708E644C6D5639E862BB651B6C36; domain=.bing.com; expires=Tue, 31-Oct-2023 20:19:29 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AB96F5CC80D0479380A091467C355C65 Ref B: OSL30EDGE0413 Ref C: 2022-10-06T20:19:29Z
date: Thu, 06 Oct 2022 20:19:28 GMT
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 79821b0f0b6ed820fc7f70149c3748cd
61cf07d08cf7091b1538bfe2b8810ffb0054c5d1
3dff9b77a07090cc7100ad3535e4e8359c800f3a74a6d5a13156bcdd3105bdbd
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4460
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:29 GMT
Last-Modified: Thu, 06 Oct 2022 19:05:09 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=492765e0-995b-457d-aade-775833cb2a34&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
104.244.42.67200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=492765e0-995b-457d-aade-775833cb2a34&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
IP 104.244.42.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=492765e0-995b-457d-aade-775833cb2a34&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_7sbWFQakT0igRlZuOboVCA=="; Max-Age=63072000; Expires=Sat, 05 Oct 2024 20:19:29 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 998d3928f5a1d774
strict-transport-security: max-age=631138519
x-response-time: 110
x-connection-hash: cabe933c05a5806ac8d0ee588fd3955bb4119d19e5505a638c77aee0a39bac87
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 79821b0f0b6ed820fc7f70149c3748cd
61cf07d08cf7091b1538bfe2b8810ffb0054c5d1
3dff9b77a07090cc7100ad3535e4e8359c800f3a74a6d5a13156bcdd3105bdbd
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4460
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:29 GMT
Last-Modified: Thu, 06 Oct 2022 19:05:09 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=f5aad31a-680c-44f2-a977-7aaed9737993&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
104.244.42.67200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=f5aad31a-680c-44f2-a977-7aaed9737993&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
IP 104.244.42.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=f5aad31a-680c-44f2-a977-7aaed9737993&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=56decee9-fa65-4569-bb55-304b1aa21698&tw_document_href=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_ndORTCbCiJhLBEf+JQ3/og=="; Max-Age=63072000; Expires=Sat, 05 Oct 2024 20:19:29 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 2772bbd4a6091436
strict-transport-security: max-age=631138519
x-response-time: 109
x-connection-hash: cabe933c05a5806ac8d0ee588fd3955bb4119d19e5505a638c77aee0a39bac87
X-Firefox-Spdy: h2
tr.outbrain.com/unifiedPixel?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7&obApiVersion=1.1&obtpVersion=1.8.2&name=Pageview&dl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&optOut=false&bust=04757400689296596&referrer=
64.202.112.127200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7&obApiVersion=1.1&obtpVersion=1.8.2&name=Pageview&dl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&optOut=false&bust=04757400689296596&referrer=
IP 64.202.112.127:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7&obApiVersion=1.1&obtpVersion=1.8.2&name=Pageview&dl=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&optOut=false&bust=04757400689296596&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:19:29 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 0c90c9fdf4788dad4b6fd23d85bdb95d
content-encoding: gzip
shopper.shop.pe/input.js
35.190.54.17200 OK 8.9 kB IP 35.190.54.17:0
File type ASCII text, with very long lines (17023)
Hash 59ca2c390b4a140196dd06ead7968dd5
0ff331d4f67b3e4816542b23f5877407e97c50e5
3c85433a8f668cab07a4a59d8180ad79b0333e23369289aca9f19e465a8abac6
GET /input.js HTTP/1.1
Host: shopper.shop.pe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycds-jhql1KZzKOsrUDIy7RIcIFxUkCZY7mxmHS4xoETmg-CjdgfqHb1u7_pbml3opNpc7-k19i1IcJnVQ2OvaRSBaQ
x-goog-generation: 1650549267910243
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 8883
content-encoding: gzip
x-goog-hash: crc32c=BLS7fA==, md5=WcosOQtKFAGW3Qbq15aN1Q==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 8883
access-control-allow-origin: *
access-control-expose-headers: Access-Control-Allow-Origin
server: UploadServer
date: Thu, 06 Oct 2022 19:09:50 GMT
expires: Thu, 06 Oct 2022 23:09:50 GMT
cache-control: public, max-age=14400
age: 4179
last-modified: Thu, 21 Apr 2022 13:54:28 GMT
etag: "59ca2c390b4a140196dd06ead7968dd5"
content-type: application/javascript; charset=utf-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7
64.202.112.127200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7
IP 64.202.112.127:0
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:19:29 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: 5117264b25e3fa3088808fef547d0016
content-encoding: gzip
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 7141d10b460b0decb93c6232b672f719
b301c998064875617f3a71dce702f3e445732f6f
c828ab74c71e397bdd7d7f3c4f4ffdc15ac091c1f972c71205878f2123f6fd94
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:29 GMT
Last-Modified: Thu, 06 Oct 2022 20:01:23 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: We8Uq3kEp4tfUhSv5SezGSgV7lIjUgiUkP9-sbgSvN3TYn8Xk6QRzQ==
Age: 1086
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3f829797d9876eb0ef60afbdaca36cfb
7a5d150bcce01ce7967686b6fda12629c78218e8
f80fafdfdc0c1bbeed905eb8cfcd08768995fb893927ebe149bef1f342ee527a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:19:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 23:26:23 GMT
Expires: Mon, 10 Oct 2022 23:26:22 GMT
Etag: "7a5d150bcce01ce7967686b6fda12629c78218e8"
Cache-Control: max-age=356211,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 756117a07d601c0a-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 41fc0695ffa3d8a7bad284a2097bb5a5
0fb0c71aa07b7385f8348c11204bdd528e3e5488
1fc618e53c6de5002ab0dea944f66783070aecec0bc53e5146d516f4c7d9055a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 19:00:01 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: O25xNz92H2RAZraDSpj9zvth4gqLpRQo3hba3qSYPsBR7Xxa3DLZaQ==
Age: 4769
addshoppers.s3.amazonaws.com/customize/632b240c36963004c36631fb/95a70ba5ad45471ab18a70910459026d.js?_t=1663842722
52.216.94.27200 OK 1.2 kB URL HTTP/1.1 addshoppers.s3.amazonaws.com/customize/632b240c36963004c36631fb/95a70ba5ad45471ab18a70910459026d.js?_t=1663842722
IP 52.216.94.27:0
File type ASCII text, with very long lines (7161), with no line terminators
Hash 97b3aebc00b27da51c0df4eb2e998f3a
ef79f7c2d7f78d51ed0d8c03f8e2c57124a7bdc7
ac73bac72c2dac41d531b4c885968db285093c7e11e42286db23353af1291143
GET /customize/632b240c36963004c36631fb/95a70ba5ad45471ab18a70910459026d.js?_t=1663842722 HTTP/1.1
Host: addshoppers.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: dSL+APKJPxM848FlqC3ERz8VUTPD/8wWZ8+9fX7rnog14MeHUBx/4yhC3/2jIQGDzsx8ZQ9MfUw=
x-amz-request-id: RSTMZGRGAD3WZ2XK
Date: Thu, 06 Oct 2022 20:19:31 GMT
Last-Modified: Thu, 22 Sep 2022 10:32:03 GMT
ETag: "97b3aebc00b27da51c0df4eb2e998f3a"
Cache-Control: max-age=2592000, public
Content-Encoding: gzip
x-amz-version-id: dj8Lv4KqUukPd9u5LPlywZrWQx7saKXD
Accept-Ranges: bytes
Content-Type: application/javascript; charset=utf-8
Server: AmazonS3
Content-Length: 1186
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e1591a4972fb8dd47b926f22c9bf1387
728f193f9ce8bb80b4b6eb306073afd61a320525
c7884c017565264e9d5fade2406a36008aa1170cf530b7cda8093a258c29da50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6334
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 18:33:56 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
nytrng.com/iframe?vcp=4dd5h0np&as_id=c7913413b75b47fd9ad522a0a211234b
75.2.91.175200 OK 996 B URL HTTP/2 nytrng.com/iframe?vcp=4dd5h0np&as_id=c7913413b75b47fd9ad522a0a211234b
IP 75.2.91.175:0
File type gzip compressed data, from Unix\012- data
Hash dbd104d7debc3781ca58ac8bb194a260
ace7daff299d03c28b7a28b17df467a214e7dbd8
941c6b53462d07e9c14f300d59ed913a63265e8ae7b0f7452b5e1c77742c6c5c
GET /iframe?vcp=4dd5h0np&as_id=c7913413b75b47fd9ad522a0a211234b HTTP/1.1
Host: nytrng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:30 GMT
content-type: text/html; charset=utf-8
content-length: 410
server: gunicorn
X-Firefox-Spdy: h2
100.20.58.101/is
100.20.58.101200 OK 32 B IP 100.20.58.101:0
File type ASCII text, with no line terminators
Hash fda62ed19947ca6f80cfea3ba8c3b6e2
e0d1b46b936daddfafe23fb79fc46340a685f6d3
6184766094dc0efc6b7d08f62b5932e471984da01680d3143de0af8f952193d4
GET /is HTTP/1.1
Host: 100.20.58.101
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Thu, 06 Oct 2022 20:19:30 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: text/plain;charset=utf-8
content-length: 32
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close
cdn.nytrng.com/pl.2.2.min.js
54.230.111.121200 OK 0 B URL HTTP/2 cdn.nytrng.com/pl.2.2.min.js
IP 54.230.111.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pl.2.2.min.js HTTP/1.1
Host: cdn.nytrng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nytrng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/plain
content-length: 0
date: Thu, 29 Sep 2022 16:18:45 GMT
last-modified: Wed, 31 Jul 2019 16:57:19 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 83tXxai9qgk-Etc8w9HHSKGtvG5wuyKzDq2EIk_3qwcrn1VIz34oOg==
age: 619245
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5774d5b536c915b575e9389af1aefd99
92a0d0459d609de77c2f1833a4accbbace54ef94
29b6b785d8077ef84165a98d7f751e935f7d58f61a7604b7447357e5b78048e8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "29B6B785D8077EF84165A98D7F751E935F7D58F61A7604B7447357E5B78048E8"
Last-Modified: Thu, 06 Oct 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5275
Expires: Thu, 06 Oct 2022 21:47:25 GMT
Date: Thu, 06 Oct 2022 20:19:30 GMT
Connection: keep-alive
matching.ivitrack.com/sync?realm=criteo&uid=k-lalgdYyFtkn3YsMjnIeCD65HbrT9Ml8Za16eCw
34.117.157.22200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-lalgdYyFtkn3YsMjnIeCD65HbrT9Ml8Za16eCw
IP 34.117.157.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-lalgdYyFtkn3YsMjnIeCD65HbrT9Ml8Za16eCw HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Thu, 06 Oct 2022 20:19:29 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5774d5b536c915b575e9389af1aefd99
92a0d0459d609de77c2f1833a4accbbace54ef94
29b6b785d8077ef84165a98d7f751e935f7d58f61a7604b7447357e5b78048e8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "29B6B785D8077EF84165A98D7F751E935F7D58F61A7604B7447357E5B78048E8"
Last-Modified: Thu, 06 Oct 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5275
Expires: Thu, 06 Oct 2022 21:47:25 GMT
Date: Thu, 06 Oct 2022 20:19:30 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash d03b5d72259f006bc2aa97edef40d5a8
b765d88905b86e4650c3da653996ad1e9bd7b72d
08e7a5cce0cdd05f483e134e1e239babdf51e6f490d11660c6e31b9120fe7a51
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 19:08:04 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IyfsOmeayRFhvw7_f_NEj9mgrlD3wHQ4ald0jLISioBOkvDurUtwlA==
Age: 4286
tr.snapchat.com/init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41
35.190.43.134200 OK 130 B URL HTTP/2 tr.snapchat.com/init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41
IP 35.190.43.134:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9b7833f1ed75558e25ec673bcb5eb036
5d43ad126dbed4c555e58bf58e3bdfc94546302c
85754328be3be47ae19743154270bfcd917f3355b08592479d6fa050a45757c2
GET /init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
access-control-allow-origin: https://flaviar.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-q_8BPoyFtkn3YsMjnIeCD65HbrRB3jTOStbWjA
23.38.200.22200 OK 118 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-q_8BPoyFtkn3YsMjnIeCD65HbrRB3jTOStbWjA
IP 23.38.200.22:0
Hash 40021b4182e8db384bae87018896028f
12b8fbf59731d1193c4542c55f010db4bae16343
a9dbbe0b8d59aa0f3d0804be6f0ca804afd9790f038fd0802b93f13c81ca567b
GET /cksync.php?cs=3&type=crt&ovsid=k-q_8BPoyFtkn3YsMjnIeCD65HbrRB3jTOStbWjA HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3080891703580284000V10; Expires=Fri, 06 Oct 2023 20:19:30 GMT; domain=.media.net; Path=/;
data-c-ts=1665087570;Expires=Sat, 05 Nov 2022 20:19:30 GMT;path=/;domain=.media.net;
data-c=k-q_8BPoyFtkn3YsMjnIeCD65HbrRB3jTOStbWjA~~3;Expires=Sat, 05 Nov 2022 20:19:30 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Thu, 06 Oct 2022 20:19:30 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 06 Oct 2022 20:19:30 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 076b5545d3b172759d57ebf0bb3daca8
fe49d91a44447c25303899ede347896dff3b6358
3593de7b71551abfbfab02a91d0a57de438983dfeb4c035ff9b70e5101091d96
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4549
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 19:03:41 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash c0cf0377dcaf217722a548f534796bf4
ce64e8df5799a8365aee99719de6a0e8d8378f99
1ecdb50ada5cd7147069336f6a586bafa13a3d81e15d1b26b3e56189a1778f3f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 06 Oct 2022 20:19:31 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 06 Oct 2022 16:52:05 GMT
Expires: Fri, 07 Oct 2022 16:52:05 GMT
ETag: "ce64e8df5799a8365aee99719de6a0e8d8378f99"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash bca92f383af2d5d4e8b51cc93c18ddd3
52c8028617577ddacc03741af2d98b0032d8ed61
5293690a525e66a5e5cc246e7a947e4d97b0f610bb5f4a9a605862d5ac1a9b53
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:19:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 13:56:49 GMT
Expires: Tue, 11 Oct 2022 13:56:48 GMT
Etag: "52c8028617577ddacc03741af2d98b0032d8ed61"
Cache-Control: max-age=408437,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 756117a52ab81c0a-OSL
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-7VCeOIyFtkn3YsMjnIeCD65HbrRkneS64pwgBg
185.80.36.245302 Found 0 B URL HTTP/1.1 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-7VCeOIyFtkn3YsMjnIeCD65HbrRkneS64pwgBg
IP 185.80.36.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-7VCeOIyFtkn3YsMjnIeCD65HbrRkneS64pwgBg HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 06 Oct 2022 20:19:30 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rum?cm_dsp_id=20&external_user_id=k-7VCeOIyFtkn3YsMjnIeCD65HbrRkneS64pwgBg&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=Yz84Uu2A0XwCyaWXP7U5MgAA; Path=/; Domain=casalemedia.com; Expires=Fri, 06 Oct 2023 20:19:30 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=5060; Path=/; Domain=casalemedia.com; Expires=Wed, 04 Jan 2023 20:19:30 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=5060; Path=/; Domain=casalemedia.com; Expires=Wed, 04 Jan 2023 20:19:30 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-dYZjm4yFtkn3YsMjnIeCD65HbrRHqNdYmdpT3w&expires=30
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-dYZjm4yFtkn3YsMjnIeCD65HbrRHqNdYmdpT3w&expires=30
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-dYZjm4yFtkn3YsMjnIeCD65HbrRHqNdYmdpT3w&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 49049ff336235ad60cb44abcb1cec1d6
Content-Type: image/gif
x.bidswitch.net/sync?dsp_id=46&user_id=k-ZSLcmYyFtkn3YsMjnIeCD65HbrTJPtZxZfA97Q&expires=30
3.126.140.73302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?dsp_id=46&user_id=k-ZSLcmYyFtkn3YsMjnIeCD65HbrTJPtZxZfA97Q&expires=30
IP 3.126.140.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-ZSLcmYyFtkn3YsMjnIeCD65HbrTJPtZxZfA97Q&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 06 Oct 2022 20:19:30 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-ZSLcmYyFtkn3YsMjnIeCD65HbrTJPtZxZfA97Q&expires=30
Set-Cookie: tuuid=8d48671c-8d39-499a-b157-a1ff690ebd9b; path=/; expires=Fri, 06-Oct-2023 20:19:30 GMT; domain=.bidswitch.net; samesite=none; secure
c=1665087570; path=/; expires=Fri, 06-Oct-2023 20:19:30 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1665087570; path=/; expires=Fri, 06-Oct-2023 20:19:30 GMT; domain=.bidswitch.net; samesite=none; secure
c=1665087570; path=/; expires=Fri, 06-Oct-2023 20:19:30 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
criteo-sync.teads.tv/um?eid=80&uid=k-uyIBfoyFtkn3YsMjnIeCD65HbrTgvx46JVrMCw
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-uyIBfoyFtkn3YsMjnIeCD65HbrTgvx46JVrMCw
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-uyIBfoyFtkn3YsMjnIeCD65HbrTgvx46JVrMCw HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Thu, 06 Oct 2022 20:19:30 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 06 Oct 2022 20:19:30 GMT
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
37.252.173.27307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 37.252.173.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 06 Oct 2022 20:19:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 73b8b06b-cb50-44c6-a6ce-3773d579d0d1
Set-Cookie: uuid2=7782603024306222581; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 04-Jan-2023 20:19:30 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 539.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c3a1d995c14f6697159764b39fb7440f
b191833749f9211030a943a4ab7a29a008fbd450
08a352ea9b14dddd1e28275f25c95744162663f4af6a2b7b35cb409ad37b3bea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6370
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 18:33:20 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 6a8ba2784a2f6fff1482041bfe957395
6ea20478137eb076cf5f4e4f727fae0642be9485
9fcad0d72292fe486504f12e7bd55c5db89af3b97036454bbb3b17dca6920131
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 19:05:42 GMT
Server: ECS (nyb/1D2B)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HUPFqm9o4wiDalzGdowHQy0F196ufR2UNiQB_w9M6W88pC1kOg6wfQ==
Age: 4429
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 16686ceabf98449a0b0feedb0aad47e0
523cb77001ef131b194ceba76a08c889039dd983
b2b4e1f3c83f5e63bae3bf327bcb277db7cf567b6b78403ad86c218da5b5785d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2063
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 19:45:07 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 312
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-KQgE-oyFtkn3YsMjnIeCD65HbrQOGMa2cb_3nA
185.64.189.110200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-KQgE-oyFtkn3YsMjnIeCD65HbrQOGMa2cb_3nA
IP 185.64.189.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-KQgE-oyFtkn3YsMjnIeCD65HbrQOGMa2cb_3nA HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 20:19:30 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-KQgE-oyFtkn3YsMjnIeCD65HbrQOGMa2cb_3nA&KRTB&23144-uid:k-KQgE-oyFtkn3YsMjnIeCD65HbrQOGMa2cb_3nA&KRTB&23286-uid:k-KQgE-oyFtkn3YsMjnIeCD65HbrQOGMa2cb_3nA&KRTB&23287-uid:k-KQgE-oyFtkn3YsMjnIeCD65HbrQOGMa2cb_3nA; domain=pubmatic.com; secure; expires=Sat, 05-Nov-2022 20:19:30 GMT; path=/
PugT=1665087570; domain=pubmatic.com; secure; expires=Sat, 05-Nov-2022 20:19:30 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-QuvWHYyFtkn3YsMjnIeCD65HbrQro5re5fMHlQ
18.185.190.16302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-QuvWHYyFtkn3YsMjnIeCD65HbrQro5re5fMHlQ
IP 18.185.190.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-QuvWHYyFtkn3YsMjnIeCD65HbrQro5re5fMHlQ HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 06 Oct 2022 20:19:30 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-QuvWHYyFtkn3YsMjnIeCD65HbrQro5re5fMHlQ
set-cookie: tuuid=fb000e33-fbd3-4ec3-94e0-25a00903caae; Expires=Wed, 04 Jan 2023 20:19:30 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1665087570; Expires=Wed, 04 Jan 2023 20:19:30 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9f80547910a96f5fe6a05d52513a196c
eee75a6d068de025a0eb6dbaf4708608b4c769d2
af3e062cc134b69c8a1ee79384245aec8772265d5e835e8def403c545f3a0248
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1649
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 19:52:01 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-7VCeOIyFtkn3YsMjnIeCD65HbrRkneS64pwgBg&C=1
185.80.36.245200 OK 43 B URL HTTP/1.1 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-7VCeOIyFtkn3YsMjnIeCD65HbrRkneS64pwgBg&C=1
IP 185.80.36.245:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-7VCeOIyFtkn3YsMjnIeCD65HbrRkneS64pwgBg&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:19:30 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
dx.mountain.com/spx?dxver=4.0.0&shaid=33038&tdr=&plh=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&cb=5447400565932881term=value
35.83.209.52200 4.1 kB URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=33038&tdr=&plh=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&cb=5447400565932881term=value
IP 35.83.209.52:0
Hash 050d83a17758a2fb5f4e21201662d809
1a33eddd97572a022f69c61927fa15510453a622
5882c0589201ea4d8cdd4660736b83834abe277e5f5835098cff5502452285ee
GET /spx?dxver=4.0.0&shaid=33038&tdr=&plh=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&cb=5447400565932881term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Thu, 06 Oct 2022 20:19:28 GMT
connection: close
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-QuvWHYyFtkn3YsMjnIeCD65HbrQro5re5fMHlQ
18.185.190.16200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-QuvWHYyFtkn3YsMjnIeCD65HbrQro5re5fMHlQ
IP 18.185.190.16:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-QuvWHYyFtkn3YsMjnIeCD65HbrQro5re5fMHlQ HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:30 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-ZSLcmYyFtkn3YsMjnIeCD65HbrTJPtZxZfA97Q&expires=30
3.126.140.73200 OK 43 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-ZSLcmYyFtkn3YsMjnIeCD65HbrTJPtZxZfA97Q&expires=30
IP 3.126.140.73:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-ZSLcmYyFtkn3YsMjnIeCD65HbrTJPtZxZfA97Q&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Thu, 06 Oct 2022 20:19:30 GMT
Content-Length: 43
Connection: keep-alive
dpm.demdex.net/ibs:dpid=28645&dpuuid=
34.243.91.96302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 34.243.91.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v044-0cc10ed06.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=81008057063188263853551304870046062233; Max-Age=15552000; Expires=Tue, 04 Apr 2023 20:19:30 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: FwAatPX3QzA=
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d58a5247e91f79727a6db47873a4dd81
13838baab1cb36bf1684b760700acb69cff9e3ef
c23aa1f16859ac2f19cd63962c059951096097777638a0f6d24f8c3914945396
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5508
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 18:47:42 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ad.yieldlab.net/m?dt_id=8664&ext_id=k-A7noBYyFtkn3YsMjnIeCD65HbrRgK7btDsWSNA
23.32.110.31204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-A7noBYyFtkn3YsMjnIeCD65HbrRgK7btDsWSNA
IP 23.32.110.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-A7noBYyFtkn3YsMjnIeCD65HbrRgK7btDsWSNA HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Wed, 05 Oct 2022 20:19:30 GMT
Date: Thu, 06 Oct 2022 20:19:30 GMT
Connection: keep-alive
Set-Cookie: id=245469c4-a536-49bc-9cbc-d2bfa495603f; Path=/; Domain=yieldlab.net; Expires=Fri, 06-Oct-2023 20:19:30 GMT; Max-Age=31536000; Secure; SameSite=None
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8048fc341226439e3d13cb3c96e0eefd
748dbba3babb0dd988171b174fb5284dd030edce
1c67abbe0a427d66a5399b67b6b30990900d4e673347659351f4d1fae5019f6a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4678
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 19:01:32 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash c485b838053a8014d622bd6024ccc5b3
a0f0ea98a833098686d10222e3bac33d0ed7f15d
9b857f61219560f0de967a279e33b0914ebb9e4081d55d60c08be854c2213be5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 18:35:37 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WRZGNHZCoCh9YTzW8q6cAGF6WYeTygo5OboQ6zPJK4iu_5PRGnbITw==
Age: 6233
cm.adform.net/pixel?adform_pid=15&adform_pc=k-e_IsoIyFtkn3YsMjnIeCD65HbrQfaaScE-rJjQ
37.157.4.28200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-e_IsoIyFtkn3YsMjnIeCD65HbrQfaaScE-rJjQ
IP 37.157.4.28:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-e_IsoIyFtkn3YsMjnIeCD65HbrQfaaScE-rJjQ HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 20:19:30 GMT
content-type: image/gif
content-length: 43
last-modified: Wed, 10 Apr 2019 10:06:26 GMT
etag: "5cadc022-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0ef5ba5f414b83617d61af4f484f98aa
23120bd70c1c5eff0751314ab6c91394206d93e1
1580e3a923221302354bb92b547039a3b90d392f4df80911613ffae494fa65e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1580E3A923221302354BB92B547039A3B90D392F4DF80911613FFAE494FA65E3"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8198
Expires: Thu, 06 Oct 2022 22:36:08 GMT
Date: Thu, 06 Oct 2022 20:19:30 GMT
Connection: keep-alive
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-JYttDoyFtkn3YsMjnIeCD65HbrTfYyLfz6Bdsg
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-JYttDoyFtkn3YsMjnIeCD65HbrTfYyLfz6Bdsg
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-JYttDoyFtkn3YsMjnIeCD65HbrTfYyLfz6Bdsg HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 06 Oct 2022 20:19:30 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-JYttDoyFtkn3YsMjnIeCD65HbrTfYyLfz6Bdsg&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFI4P2MCEIUVwRVBU3Sbl-hzzdnxG6EFEgEBAQGJQGNJYwAAAAAA_eMAAA&S=AQAAAvuVraGF_V2jVCDfLRR01dw; Expires=Sat, 7 Oct 2023 02:19:30 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-EVZEIYyFtkn3YsMjnIeCD65HbrSIJunPX5AIDA
52.28.129.28204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-EVZEIYyFtkn3YsMjnIeCD65HbrSIJunPX5AIDA
IP 52.28.129.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-EVZEIYyFtkn3YsMjnIeCD65HbrSIJunPX5AIDA HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 06 Oct 2022 20:19:30 GMT
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
34.243.91.96200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 34.243.91.96:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v044-016996127.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: U9b4QR4RQgY=
Content-Length: 59
Connection: keep-alive
id5-sync.com/s/966/9.gif?puid=k-SkbJJoyFtkn3YsMjnIeCD65HbrSazTalAMa87A
162.19.138.117200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-SkbJJoyFtkn3YsMjnIeCD65HbrSazTalAMa87A
IP 162.19.138.117:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-SkbJJoyFtkn3YsMjnIeCD65HbrSazTalAMa87A HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Thu, 06-Oct-2022 20:24:31 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Thu, 06-Oct-2022 20:24:31 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Thu, 06-Oct-2022 20:24:31 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Thu, 06-Oct-2022 20:24:31 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Thu, 06-Oct-2022 20:24:31 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Thu, 06-Oct-2022 20:24:31 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Thu, 06 Oct 2022 20:19:30 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash fcfbf8bda821f4d02896b06004ba2089
5435f897404c6e1e6751e2ae61c200e114ff7035
db26466520b6220dccdc8c110e4fda623e7a7e7c0882986981b4e6e28c326037
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:30 GMT
Last-Modified: Thu, 06 Oct 2022 19:03:54 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mNyrZxdaiG8k_qIay8k2ZXMvLYCStowRan0ciZzBzeur-EdFGVVoVw==
Age: 4536
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-JYttDoyFtkn3YsMjnIeCD65HbrTfYyLfz6Bdsg&verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-JYttDoyFtkn3YsMjnIeCD65HbrTfYyLfz6Bdsg&verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-JYttDoyFtkn3YsMjnIeCD65HbrTfYyLfz6Bdsg&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 06 Oct 2022 20:19:31 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFM4P2MCEM_zGRorU3jLlSq4Mpvfz8AFEgEBAQGJQGNJYwAAAAAA_eMAAA&S=AQAAApnReYv9qRX6UPfyoS0JoPY; Expires=Sat, 7 Oct 2023 02:19:31 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 06 Oct 2022 20:19:30 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 763008
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=2711&xuid=k-ZLZYz4yFtkn3YsMjnIeCD65HbrR07frSo2IrYw&dongle=013b
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-ZLZYz4yFtkn3YsMjnIeCD65HbrR07frSo2IrYw&dongle=013b
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-ZLZYz4yFtkn3YsMjnIeCD65HbrR07frSo2IrYw&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:31 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
37.252.173.27302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 37.252.173.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 06 Oct 2022 20:19:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: d06407a3-193a-46f3-add5-efbfb8f6426e
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 539.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
sync.outbrain.com/cookie-sync?p=criteo&uid=k-gABkMYyFtkn3YsMjnIeCD65HbrSsB9n7d3hG6A
64.202.112.127200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-gABkMYyFtkn3YsMjnIeCD65HbrSsB9n7d3hG6A
IP 64.202.112.127:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-gABkMYyFtkn3YsMjnIeCD65HbrSsB9n7d3hG6A HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:19:31 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: fcc94b4b829502980b1bb96c209ef703
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash ee247a6f6a252a4e7cbf3d44e3087833
d0b767178d9978bec597d3f7cdf60578d48a9f17
7eee0a3fa56af955df75b765c1cf717c9881bc9c73225e9636d398459d3690bf
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:31 GMT
Last-Modified: Thu, 06 Oct 2022 19:01:00 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nIrxDLoOGWKHsV-J7pCOdQlolyl4XwacSLEpLJyi4Ns605zaz4CAFA==
Age: 4711
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash ea853ab09aedfe6ded5bc65a1052caf6
210ee52940d8cade31a61a81bac59b17a6dbd1cf
c091f607d0642679bbeba4521b6a01099be9436b9f381cdfb1786dbe42cb9e80
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 20:19:31 GMT
Last-Modified: Thu, 06 Oct 2022 18:33:28 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0-brNyziVYDlEF6hDzGNdAUP6-MWZPSFifgA-O_ttOHGwQkmrdstqA==
Age: 6363
sync-criteo.ads.yieldmo.com/sync?id=k-NdaEToyFtkn3YsMjnIeCD65HbrRQUdlZvACffQ&pn_id=criteo&ext=1
54.220.128.66200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-NdaEToyFtkn3YsMjnIeCD65HbrRQUdlZvACffQ&pn_id=criteo&ext=1
IP 54.220.128.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-NdaEToyFtkn3YsMjnIeCD65HbrRQUdlZvACffQ&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:31 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g762a75f21de7f098e1e%7C1665087571124%7C0%7C; Domain=.yieldmo.com; Expires=Fri, 06-Oct-2023 20:19:31 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-NdaEToyFtkn3YsMjnIeCD65HbrRQUdlZvACffQ; Domain=ads.yieldmo.com; Expires=Fri, 06-Oct-2023 20:19:31 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash ff33dc6c29f288dcd51954766c28bf19
045d9d044b3168e2a6ea5f8f88fbe1ad1ab9a9c4
4dc7e4fa29c768b6ada4ae58ff44015d0a16706706efb8830faa88669174bdf0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:19:31 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 03:11:53 GMT
Expires: Wed, 12 Oct 2022 03:11:52 GMT
Etag: "045d9d044b3168e2a6ea5f8f88fbe1ad1ab9a9c4"
Cache-Control: max-age=456140,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 756117a69ce31c0a-OSL
px.mountain.com/st?ga_tracking_id=UA-28959768-20&ga_client_id=2009995165.1665087567&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%222009995165.1665087567%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221665087566.1%22%2C%22dcm_gid%22%3A%221328691908.1665087567%22%2C%22ga_utm_source%22%3A%22MaxBounty.com%20ULC%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%22glKHoe1xnXpxOFOUSmfngZCTOW96uWrx%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1665087566.1&dcm_gid=1328691908.1665087567&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&cb=5447400565932881term%3Dvalue&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue
35.85.106.161200 OK 1.8 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-28959768-20&ga_client_id=2009995165.1665087567&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%222009995165.1665087567%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221665087566.1%22%2C%22dcm_gid%22%3A%221328691908.1665087567%22%2C%22ga_utm_source%22%3A%22MaxBounty.com%20ULC%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%22glKHoe1xnXpxOFOUSmfngZCTOW96uWrx%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1665087566.1&dcm_gid=1328691908.1665087567&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&cb=5447400565932881term%3Dvalue&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue
IP 35.85.106.161:0
Hash 7ae81f9339fa9d172efe719027c36476
d65c89d9c39d9e7ee1de26b2488bc94a5d884a38
8d06e5da7879c94b0d869678ce3cf15fc28b7d8f7e760e4e919d3fb2042189ca
GET /st?ga_tracking_id=UA-28959768-20&ga_client_id=2009995165.1665087567&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%222009995165.1665087567%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221665087566.1%22%2C%22dcm_gid%22%3A%221328691908.1665087567%22%2C%22ga_utm_source%22%3A%22MaxBounty.com%20ULC%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%22glKHoe1xnXpxOFOUSmfngZCTOW96uWrx%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1665087566.1&dcm_gid=1328691908.1665087567&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&cb=5447400565932881term%3Dvalue&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Thu, 06 Oct 2022 20:19:31 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=2f68cac7-45b4-11ed-9bb2-8f5160478b12;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-c5cdR4yFtkn3YsMjnIeCD65HbrT7paL5-afDEw
185.255.84.152200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-c5cdR4yFtkn3YsMjnIeCD65HbrT7paL5-afDEw
IP 185.255.84.152:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-c5cdR4yFtkn3YsMjnIeCD65HbrT7paL5-afDEw HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=c0433c3f4ce250b4fc45da3cfc62f9c4; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 20:19:30 GMT
content-length: 49
x-envoy-upstream-service-time: 4
server: ayl-lb-fra02
X-Firefox-Spdy: h2
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
52.210.106.114204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 52.210.106.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 06 Oct 2022 20:19:31 GMT
set-cookie: _kuid_=PH1G17w2; Expires=Tue, 04-Apr-23 20:19:31 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n023-dub-prod.krxd.net
x-request-time: D=24 t=1665087571
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 06 Oct 2022 20:19:30 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 485295
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash c755eb7048f752be598118124c93f421
1cbadee26235aefbd3d4362b6b85a38347a59b50
15ba1950f76dd38f6bbfee4633c777f85ea911084044e92d0f08055efcdf9ada
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "15BA1950F76DD38F6BBFEE4633C777F85EA911084044E92D0F08055EFCDF9ADA"
Last-Modified: Thu, 06 Oct 2022 20:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3103
Expires: Thu, 06 Oct 2022 21:11:14 GMT
Date: Thu, 06 Oct 2022 20:19:31 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
3.128.146.7200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 3.128.146.7:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:31 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 2fcb5d01-45b4-11ed-a8c6-0000ac17036b
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
gs.mountain.com/gs
34.212.4.35200 OK 144 B IP 34.212.4.35:0
File type ASCII text, with no line terminators
Hash 97cbaa5dd25c897b5820dbe3376121a5
51915cab180770038cac0f5efadd6ca541e052a2
d56f1647ddfafe1d7d529c8d88c65a4cc581fb1f7fd7cc98dd911ae09b5b8c46
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: guid=2f68cac7-45b4-11ed-9bb2-8f5160478b12
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Thu, 06 Oct 2022 20:19:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 4f47cd14eebc700e9f4c2fd84125169f
0830edab747b17fd2d858892ae39dda0049ca827
b0964579ab0af8cb05d5ad9e00c3d2d917f2e35fbff8ca72665f67454184b947
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:19:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 10 Oct 2022 18:44:26 GMT
ETag: "0830edab747b17fd2d858892ae39dda0049ca827"
Last-Modified: Thu, 06 Oct 2022 18:44:27 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2678
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 756117b14eea0b31-OSL
criteo-partners.tremorhub.com/sync?UICR=k-jmN3oYyFtkn3YsMjnIeCD65HbrTFa29eCNdd_Q
52.44.73.49200 OK 1.5 kB URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-jmN3oYyFtkn3YsMjnIeCD65HbrTFa29eCNdd_Q
IP 52.44.73.49:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 83de7df5c87262750c430d9eb93dfdd7
97028f7b840e6f6b39cdbf70ac5ed1af27165a3c
ba1862d8c4a3c10e5f3a202a497f99ed6559c0fdce3563bbd26a8b1dfd54996a
GET /sync?UICR=k-jmN3oYyFtkn3YsMjnIeCD65HbrTFa29eCNdd_Q HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:31 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-28959768-20&ga_client_id=2009995165.1665087567&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%222009995165.1665087567%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221665087566.1%22%2C%22dcm_gid%22%3A%221328691908.1665087567%22%2C%22ga_utm_source%22%3A%22MaxBounty.com%20ULC%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%22glKHoe1xnXpxOFOUSmfngZCTOW96uWrx%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1665087566.1&dcm_gid=1328691908.1665087567&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1665087571018689&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665087571734
35.85.106.161200 OK 1.5 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-28959768-20&ga_client_id=2009995165.1665087567&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%222009995165.1665087567%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221665087566.1%22%2C%22dcm_gid%22%3A%221328691908.1665087567%22%2C%22ga_utm_source%22%3A%22MaxBounty.com%20ULC%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%22glKHoe1xnXpxOFOUSmfngZCTOW96uWrx%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1665087566.1&dcm_gid=1328691908.1665087567&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1665087571018689&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665087571734
IP 35.85.106.161:0
Hash 083074d17294a81039f0cc61c5beaa45
e0694b1b46b56249eb3aea98eb52d7512c5b2171
707a5129ed5f697e525cf88853478d2a2aaed1a164138872ab5b5790b9780bf2
GET /st?ga_tracking_id=UA-28959768-20&ga_client_id=2009995165.1665087567&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%222009995165.1665087567%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221665087566.1%22%2C%22dcm_gid%22%3A%221328691908.1665087567%22%2C%22ga_utm_source%22%3A%22MaxBounty.com%20ULC%22%2C%22ga_utm_medium%22%3A%22affiliates%22%2C%22mntnis%22%3A%22glKHoe1xnXpxOFOUSmfngZCTOW96uWrx%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1665087566.1&dcm_gid=1328691908.1665087567&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F%3Firclickid%3D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%26ir_cid%3D3334%26ir_affid%3D10813%26utm_medium%3Daffiliates%26utm_source%3DMaxBounty.com%2520ULC%26ir_partnerid%3D10813%26ir_adid%3D1215604%26ir_campaignid%3D3334&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1665087571018689&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665087571734 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: guid=2f68cac7-45b4-11ed-9bb2-8f5160478b12
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Thu, 06 Oct 2022 20:19:32 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWKlOyMtJR8guKNzY2MLaINzK3NFayMkAWsTC2AIsgcw3NzEwNLMxNzY1MzI1rAe1h9f1GAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
rt="MzMwMzg6MTY2NTA4NzU3Mg==";Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=2f68cac7-45b4-11ed-9bb2-8f5160478b12;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
insight.adsrvr.org/track/evnt/?adv=76e29rb&ct=0:yx1zelg&fmt=3
15.197.193.217200 OK 9.4 kB URL HTTP/2 insight.adsrvr.org/track/evnt/?adv=76e29rb&ct=0:yx1zelg&fmt=3
IP 15.197.193.217:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6c04451460d5b5b0c26ff650c1a2edf8
9589523101754864299d34201a97f10b1baeba49
bb9bf1543effda11b4abc000b3d39c7b4b39329207358ec8d0eba294ffefaa4c
GET /track/evnt/?adv=76e29rb&ct=0:yx1zelg&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:32 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
tr.snapchat.com/collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com
IP 35.190.43.134:0
GET /collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
access-control-allow-origin: https://flaviar.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fonts/Nitti-Normal.dfcca7d1.otf
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/fonts/Nitti-Normal.dfcca7d1.otf
IP 54.230.111.75:0
GET /build/fonts/Nitti-Normal.dfcca7d1.otf HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://cdn.flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: font/otf
date: Thu, 29 Sep 2022 05:27:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 7776000
last-modified: Wed, 28 Sep 2022 12:27:05 GMT
etag: W/"0e573e77619a53e42a59131479b01bbc-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Kfo8PdswCb6gRtJscVBldr2zG87NvQfxTkTrUeEJ8w_KKKhh3jUHPA==
age: 658326
X-Firefox-Spdy: h2
widget.us.criteo.com/event?a=95340&v=5.12.1&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=ufgaXF9rZE1VUnpWQ0RLejcyRWtiZkolMkJDSUdwdGZpcXJaQXV6ODVsZ2w2VTB0ZG9iJTJCVXAlMkJCYXY2aDhvN1pHYSUyRnZvN1pXdEdWeU1neUFhWXdXbTRwYU5Zb0ZkT1FqdmJ5QXVVRCUyRlBUWHdva1M3S2VMRXVzdE1GUHdGT2dhRjVMRTdDUFE0WUtxVjR4ZXE3cVNOVHRjJTJCTW1taHclM0QlM0Q&tld=flaviar.com&dy=1&fu=https%253A%252F%252Fflaviar.com%252F%253Firclickid%253D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%2526ir_cid%253D3334%2526ir_affid%253D10813%2526utm_medium%253Daffiliates%2526utm_source%253DMaxBounty.com%252520ULC%2526ir_partnerid%253D10813%2526ir_adid%253D1215604%2526ir_campaignid%253D3334&dtycbr=16955&cs=1---&cv=1
74.119.119.150200 OK 0 B URL HTTP/2 widget.us.criteo.com/event?a=95340&v=5.12.1&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=ufgaXF9rZE1VUnpWQ0RLejcyRWtiZkolMkJDSUdwdGZpcXJaQXV6ODVsZ2w2VTB0ZG9iJTJCVXAlMkJCYXY2aDhvN1pHYSUyRnZvN1pXdEdWeU1neUFhWXdXbTRwYU5Zb0ZkT1FqdmJ5QXVVRCUyRlBUWHdva1M3S2VMRXVzdE1GUHdGT2dhRjVMRTdDUFE0WUtxVjR4ZXE3cVNOVHRjJTJCTW1taHclM0QlM0Q&tld=flaviar.com&dy=1&fu=https%253A%252F%252Fflaviar.com%252F%253Firclickid%253D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%2526ir_cid%253D3334%2526ir_affid%253D10813%2526utm_medium%253Daffiliates%2526utm_source%253DMaxBounty.com%252520ULC%2526ir_partnerid%253D10813%2526ir_adid%253D1215604%2526ir_campaignid%253D3334&dtycbr=16955&cs=1---&cv=1
IP 74.119.119.150:0
GET /event?a=95340&v=5.12.1&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=ufgaXF9rZE1VUnpWQ0RLejcyRWtiZkolMkJDSUdwdGZpcXJaQXV6ODVsZ2w2VTB0ZG9iJTJCVXAlMkJCYXY2aDhvN1pHYSUyRnZvN1pXdEdWeU1neUFhWXdXbTRwYU5Zb0ZkT1FqdmJ5QXVVRCUyRlBUWHdva1M3S2VMRXVzdE1GUHdGT2dhRjVMRTdDUFE0WUtxVjR4ZXE3cVNOVHRjJTJCTW1taHclM0QlM0Q&tld=flaviar.com&dy=1&fu=https%253A%252F%252Fflaviar.com%252F%253Firclickid%253D2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0%2526ir_cid%253D3334%2526ir_affid%253D10813%2526utm_medium%253Daffiliates%2526utm_source%253DMaxBounty.com%252520ULC%2526ir_partnerid%253D10813%2526ir_adid%253D1215604%2526ir_campaignid%253D3334&dtycbr=16955&cs=1---&cv=1 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:30 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 29793984
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn.flaviar.com/build/2.543c78f7.js
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/2.543c78f7.js
IP 54.230.111.75:0
GET /build/2.543c78f7.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 02 Oct 2022 06:28:16 GMT
last-modified: Fri, 30 Sep 2022 11:36:28 GMT
etag: W/"3f7a92fa1ccb0db3d9c3bb38fda86113-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gr5q2XwAjAaaD6Do3dQJjtIZVg1XNZKajQ1x1GvcNbUjWgOTiUKHjg==
age: 395470
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fonts/MalagaOT-BoldItalic.9e4f2f1c.otf
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/fonts/MalagaOT-BoldItalic.9e4f2f1c.otf
IP 54.230.111.75:0
GET /build/fonts/MalagaOT-BoldItalic.9e4f2f1c.otf HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://cdn.flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: font/otf
date: Mon, 19 Sep 2022 05:12:46 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 7776000
last-modified: Fri, 16 Sep 2022 12:06:53 GMT
etag: W/"98bb7c8a238c6fd7d88826b0786c98bc-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Rt_-coAQqI5orJefGuo5k8uJlKX9cxfCxE210ckHBm9xVrdVHkVaow==
age: 1523201
X-Firefox-Spdy: h2
ak.sail-horizon.com/spm/spm.v1.min.js
54.230.111.63200 OK 0 B URL HTTP/2 ak.sail-horizon.com/spm/spm.v1.min.js
IP 54.230.111.63:0
GET /spm/spm.v1.min.js HTTP/1.1
Host: ak.sail-horizon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 23:20:31 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 06 Oct 2022 20:18:47 GMT
cache-control: max-age=600; must-revalidate
etag: W/"97dd801dd26ae0172c7875245d92f506"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 03Lat3FUkAo5ZTZC8nfqU1XJZOoGZxHrac-ZRyg3iGsR6B2SYKEv0g==
age: 41
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-e2iB2YyFtkn3YsMjnIeCD65HbrSjS3Sx7-0CKA
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-e2iB2YyFtkn3YsMjnIeCD65HbrSjS3Sx7-0CKA
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-e2iB2YyFtkn3YsMjnIeCD65HbrSjS3Sx7-0CKA HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 20:19:30 GMT
x-fastly-to-nlb-rtt: 22003
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fonts/MalagaOT-Bold.9fd9e2b9.otf
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/fonts/MalagaOT-Bold.9fd9e2b9.otf
IP 54.230.111.75:0
GET /build/fonts/MalagaOT-Bold.9fd9e2b9.otf HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://cdn.flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: font/otf
date: Tue, 27 Sep 2022 02:59:04 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 7776000
last-modified: Fri, 23 Sep 2022 14:09:26 GMT
etag: W/"f844ae9d5dccf1719fadc1a2d0bc8388-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZGCuhSTGIm_d6rVbDUVZvVkqprhy1q7_k3QERr_3ade3Po_rKtXZgg==
age: 840023
X-Firefox-Spdy: h2
cdn.flaviar.com/build/runtime.a35d2926.js
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/runtime.a35d2926.js
IP 54.230.111.75:0
GET /build/runtime.a35d2926.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 06 Oct 2022 08:37:12 GMT
last-modified: Thu, 06 Oct 2022 08:36:21 GMT
etag: W/"8fe452e2462909d2a6379f635a59e587-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tps2VAiDEylcPR8rYlDEw0DWpnewuVEhUR_I6kGUdauKHhNqTBINjA==
age: 42134
X-Firefox-Spdy: h2
aacdn.nagich.com/style/btncolor.css
104.26.15.45200 OK 0 B URL HTTP/2 aacdn.nagich.com/style/btncolor.css
IP 104.26.15.45:0
GET /style/btncolor.css HTTP/1.1
Host: aacdn.nagich.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:26 GMT
content-type: text/css
cache-control: public, max-age=2204800
last-modified: Mon, 11 Feb 2019 11:17:50 GMT
etag: W/"4c2a96cfbc1d41:0"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: deny
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 383323
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9rklccB7tPHsHMh8VY6vNQrhzBQ0O8SqYaGWwMem79qBGLBzIB7nQFIeQtWOL9lvtMtcc0qwyD3TFm5gOiJotKRIiELhEkNR8BA0hOkf2HTl8HmQCpjfTj1OVaRabcem2zo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7561178bc8fb0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
tr.snapchat.com/init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41
IP 35.190.43.134:0
GET /init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
access-control-allow-origin: https://flaviar.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 3
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=kspn7V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czlaMEZ5QWV5SVJmNEglMkJOYko1emY0bU9WQmVaciUyRkliJTJCekxIT3R2NXZOc20
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:27 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=5A10GF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czlaMEZ5QWV5SVJmNEglMkJOYko1emY0bSUyRk81TVpqZHBnbVNQWTRQVjBxTVBN; expires=Tue, 31 Oct 2023 20:19:28 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 306988
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-4xB3coyFtkn3YsMjnIeCD65HbrRPpAuhIkpe0J7pmOrunUeZ
35.158.179.233200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-4xB3coyFtkn3YsMjnIeCD65HbrRPpAuhIkpe0J7pmOrunUeZ
IP 35.158.179.233:0
GET /usersync/push?partner=criteo&partnerId=k-4xB3coyFtkn3YsMjnIeCD65HbrRPpAuhIkpe0J7pmOrunUeZ HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:30 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%222f2c5de0-45b4-11ed-ac3e-79aa79a9d356%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 20 Oct 2022 20:19:30 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%222f2c5de0-45b4-11ed-ac3e-79aa79a9d356%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 20 Oct 2022 20:19:30 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%222f2c5de0-45b4-11ed-ac3e-79aa79a9d356%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 20 Oct 2022 20:19:30 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%222f2c5de0-45b4-11ed-ac3e-79aa79a9d356%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 20 Oct 2022 20:19:30 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-4xB3coyFtkn3YsMjnIeCD65HbrRPpAuhIkpe0J7pmOrunUeZ%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Thu, 20 Oct 2022 20:19:30 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
aacdn.nagich.com/core/4.3.7/accessibility.js
104.26.15.45200 OK 0 B URL HTTP/2 aacdn.nagich.com/core/4.3.7/accessibility.js
IP 104.26.15.45:0
GET /core/4.3.7/accessibility.js HTTP/1.1
Host: aacdn.nagich.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:26 GMT
content-type: application/javascript
cache-control: public, max-age=2204800
last-modified: Wed, 20 Jul 2022 11:28:32 GMT
etag: W/"03079d72b9cd81:0"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: deny
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 383324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FhdwD%2FxhWS6UE8mQZDpZkKUxyc2Gbs2uWeHPeHhvZJ7cZ%2Fcfqtn%2Ff3zVIcjM9pHoQUODBt4q6OzhgJzzNE7iDWiIGsrO2sMbYvikmbCLe%2Fch1mUfaD1%2FcU2Fu4%2Fr2585bXo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7561178adff10b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.21200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.21:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:28 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 320480
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
flaviar.com/?irclickid=2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0&ir_cid=3334&ir_affid=10813&utm_medium=affiliates&utm_source=MaxBounty.com%20ULC&ir_partnerid=10813&ir_adid=1215604&ir_campaignid=3334
172.66.43.165200 OK 0 B URL HTTP/2 flaviar.com/?irclickid=2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0&ir_cid=3334&ir_affid=10813&utm_medium=affiliates&utm_source=MaxBounty.com%20ULC&ir_partnerid=10813&ir_adid=1215604&ir_campaignid=3334
IP 172.66.43.165:0
GET /?irclickid=2Ts0EhwnYxyNRFW0Vm26Pw3CUkDQl1z5LTTqXQ0&ir_cid=3334&ir_affid=10813&utm_medium=affiliates&utm_source=MaxBounty.com%20ULC&ir_partnerid=10813&ir_adid=1215604&ir_campaignid=3334 HTTP/1.1
Host: flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:24 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=adb7bce513ef8f58c66e63ed47e52340; expires=Fri, 07-Oct-2022 20:19:24 GMT; Max-Age=86400; path=/; secure; HttpOnly
cache-control: max-age=0, must-revalidate, private
link: <https://cdn.flaviar.com/build/runtime.a35d2926.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/1.e8bf64dc.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/2.543c78f7.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/app.163c7a5a.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/6.ce717dae.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/app-main.7262d0fb.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/4.2a092778.css>; rel="preload"; as="style",<https://cdn.flaviar.com/build/app-style.f96bbae3.css>; rel="preload"; as="style",<https://cdn.flaviar.com/build/landing-frontpage.2932a276.css>; rel="preload"; as="style",<https://cdn.flaviar.com/build/menu-style.236e9452.css>; rel="preload"; as="style"
expires: Thu, 06 Oct 2022 20:19:24 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kXXXHLeQYbBA5eKzjRPunziZvP7EIv3TwU7jaBtvfOx2eU9vnns2qal8VRWHDSc25P6EG9sPbIwuqb3HuxYFDtqqa%2FZXyWV3yAukJeXvdwgZJsxcn9jwk5prhN0w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7561177e9fa8b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.flaviar.com/build/6.ce717dae.js
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/6.ce717dae.js
IP 54.230.111.75:0
GET /build/6.ce717dae.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 29 Aug 2022 11:00:34 GMT
last-modified: Mon, 29 Aug 2022 10:59:12 GMT
etag: W/"80d3a698f2c31a52cd2cd03eaf49dce5-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KeK_jmJo4r3h-sXEReFUkVR-rTuykIn96E5i_CRRN1oXpG1STvFDmg==
age: 3316732
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fa85bb2bd3533a168c4d9437b5aa7b0d.svg
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/fa85bb2bd3533a168c4d9437b5aa7b0d.svg
IP 54.230.111.75:0
GET /build/fa85bb2bd3533a168c4d9437b5aa7b0d.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.236e9452.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 17 Sep 2022 18:06:26 GMT
last-modified: Fri, 16 Sep 2022 12:06:50 GMT
etag: W/"255764b619885adda75866123ece8dda-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fdFRXp1pDtRSTfKfgUSJwL3prA-hx7nM9WLCN3GkBLma_Sm_x0EtxQ==
age: 1649581
X-Firefox-Spdy: h2
getrockerbox.com/customdomain/rb9yp8py.flaviar.com/wxyz.rb.js
172.64.140.25301 Moved Permanently 0 B URL HTTP/2 getrockerbox.com/customdomain/rb9yp8py.flaviar.com/wxyz.rb.js
IP 172.64.140.25:0
GET /customdomain/rb9yp8py.flaviar.com/wxyz.rb.js HTTP/1.1
Host: getrockerbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Thu, 06 Oct 2022 20:19:28 GMT
content-type: text/html
location: https://rb9yp8py.flaviar.com/assets/wxyz.rb.js
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1MCEUsGvTGh48dPpaXjIXWNI36ebdkXDrTjojAGtVDa%2BZocVyYh4K8owgWWzvDWIP01%2FByy%2ByYlJYeK1OszVmc6LTEKvpFwSPzGeCkb05%2FagBE8RiflVPZArwACc761n0QVX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75611793bbff7702-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.flaviar.com/build/2f5229cba5018924b139053104305e8a.svg
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/2f5229cba5018924b139053104305e8a.svg
IP 54.230.111.75:0
GET /build/2f5229cba5018924b139053104305e8a.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/app-style.f96bbae3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Tue, 06 Sep 2022 04:13:17 GMT
last-modified: Mon, 05 Sep 2022 13:38:06 GMT
etag: W/"4c6347cccfa9222bea0eef8c6f75b1eb-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CKBRqTIZBhp1Uwh_jFnY6EcvNmyfcUMTpfJYir30GEiFEfjzeUdv9g==
age: 2649970
X-Firefox-Spdy: h2
cdn.flaviar.com/build/1.e8bf64dc.js
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/1.e8bf64dc.js
IP 54.230.111.75:0
GET /build/1.e8bf64dc.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 06 Oct 2022 08:37:12 GMT
last-modified: Thu, 06 Oct 2022 08:36:24 GMT
etag: W/"4b24fc6b89a42c9726908d0fa7373394-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ii44s4QgOnYKOqhEn2lVdIHvDG3AN7tfkjZRCaA2yXFbx5zhyiHqzg==
age: 42134
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-uC0W64yFtkn3YsMjnIeCD65HbrRPPdMkTFDsxQ&google_error=3
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-uC0W64yFtkn3YsMjnIeCD65HbrRPPdMkTFDsxQ&google_error=3
IP 178.250.0.163:0
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-uC0W64yFtkn3YsMjnIeCD65HbrRPPdMkTFDsxQ&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:30 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 289230
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/landingPage/frontpage/01_icon_gift_hover.e2eb5fbd.svg
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/images/landingPage/frontpage/01_icon_gift_hover.e2eb5fbd.svg
IP 54.230.111.75:0
GET /build/images/landingPage/frontpage/01_icon_gift_hover.e2eb5fbd.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sun, 18 Sep 2022 05:03:25 GMT
last-modified: Fri, 16 Sep 2022 12:06:51 GMT
etag: W/"63be925835bdc79e525217812114992c-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Nh04QBd60u5Z7zOQ12G_ZZodRl7cfDl_M0Pmf2IeajcIp944-5wLKA==
age: 1610161
X-Firefox-Spdy: h2
cdn.flaviar.com/build/menu-style.236e9452.css
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/menu-style.236e9452.css
IP 54.230.111.75:0
GET /build/menu-style.236e9452.css HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 06 Oct 2022 08:37:12 GMT
last-modified: Thu, 06 Oct 2022 08:36:24 GMT
etag: W/"56d9e27ba6b73975394e6de5c5f0ab66-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8IMWswBjJUPTm2XDS-QucwezocdHgPNW0kgN0cJo9KsgeIsZh77j9w==
age: 42134
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fonts/MalagaOT-RegItalic.353f6a6d.otf
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/fonts/MalagaOT-RegItalic.353f6a6d.otf
IP 54.230.111.75:0
GET /build/fonts/MalagaOT-RegItalic.353f6a6d.otf HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://cdn.flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: font/otf
date: Tue, 23 Aug 2022 03:29:09 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 7776000
last-modified: Mon, 22 Aug 2022 10:42:55 GMT
etag: W/"91795c6fb0338a75e2f2c7a1106bbd13-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MrFY7NUbDGbJJPQY5pGF9l91okAUFdKWaCCyWYOCLoMy1iYTVP47hQ==
age: 3862218
X-Firefox-Spdy: h2
cdn.flaviar.com/build/app.163c7a5a.js
54.230.111.75200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/app.163c7a5a.js
IP 54.230.111.75:0
GET /build/app.163c7a5a.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 06 Oct 2022 08:37:12 GMT
last-modified: Thu, 06 Oct 2022 08:36:26 GMT
etag: W/"ad22c04a1aba37d787fe1fa2bea58e4c-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Y8a9iC9YupELaa6GCDRKurrkVcbyMKmb9QBReFLKwL_S4VNuqZXOnA==
age: 42134
X-Firefox-Spdy: h2
static.fbot.me/friendbuy.js
54.230.111.83200 OK 0 B URL HTTP/2 static.fbot.me/friendbuy.js
IP 54.230.111.83:0
GET /friendbuy.js HTTP/1.1
Host: static.fbot.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 17:34:04 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Vj9cO3l5RYncjimhgaXjNFZt0XonlPHf
server: AmazonS3
content-encoding: gzip
date: Thu, 06 Oct 2022 20:15:03 GMT
cache-control: max-age=300
etag: W/"41102b6d69448ef943a65246bbd38aa3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sv9GnvEZkx09YrbIMsl30YViL3AGFGlCx7461W4ELwWygtz5hrRwGQ==
age: 263
X-Firefox-Spdy: h2
aacdn.nagich.com/style/style.css
104.26.15.45200 OK 0 B URL HTTP/2 aacdn.nagich.com/style/style.css
IP 104.26.15.45:0
GET /style/style.css HTTP/1.1
Host: aacdn.nagich.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:26 GMT
content-type: text/css
cache-control: public, max-age=2204800
last-modified: Sun, 02 Oct 2022 09:01:39 GMT
etag: W/"809b15953dd6d81:0"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: deny
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 383323
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3KZzXJG4HRowzEGWKV7CG%2FL58GMvBx80HfJBZPo3xP2m7tFqQVJKgIteX8AbA8XBXl1b7XWJVq57TWx8AuHUHIm7wwi3JOgdJQap18MX2tpASL%2Bc26uQj14obudhCk3Ugc0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7561178bb8f60b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.0.163:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 20:19:30 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 661289
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2