proxy.quickmail.com/click/1/529430678/7c2189fa00fdbc25bc2f7fd0b8236848/67c8e5a254275de33f98a812cf0f393f/next
54.157.4.65301 Moved Permanently 0 B URL HTTP/1.1 proxy.quickmail.com/click/1/529430678/7c2189fa00fdbc25bc2f7fd0b8236848/67c8e5a254275de33f98a812cf0f393f/next
IP 54.157.4.65:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /click/1/529430678/7c2189fa00fdbc25bc2f7fd0b8236848/67c8e5a254275de33f98a812cf0f393f/next HTTP/1.1
Host: proxy.quickmail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Cowboy
Date: Wed, 18 Jan 2023 21:48:26 GMT
Connection: keep-alive
Content-Type: text/html
Location: https://proxy.quickmail.com/click/1/529430678/7c2189fa00fdbc25bc2f7fd0b8236848/67c8e5a254275de33f98a812cf0f393f/next
Transfer-Encoding: chunked
Via: 1.1 vegur
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 37284a837312d6586460a3b86bbe7bd0
6ac0847abd48eb8607597218aaa2cb2d434c012b
6a0e11bb042555d72b397ae0cc3d5e242d3a3fe04418e28ffd222decca7d16ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A0E11BB042555D72B397AE0CC3D5E242D3A3FE04418E28FFD222DECCA7D16CA"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11269
Expires: Thu, 19 Jan 2023 00:56:16 GMT
Date: Wed, 18 Jan 2023 21:48:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8046
Expires: Thu, 19 Jan 2023 00:02:33 GMT
Date: Wed, 18 Jan 2023 21:48:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 21:34:28 GMT
content-type: application/json
age: 839
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7048
Expires: Wed, 18 Jan 2023 23:45:55 GMT
Date: Wed, 18 Jan 2023 21:48:27 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pH+oiZlGXyRSulgxrA6N+nGT1fxrH9H2KV7GCqV8cQzdoOPQzKFfDpbJqGPGRosMBdFSm0BFIsg=
x-amz-request-id: GAX4YZ8MGEJS1MRF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 21:45:35 GMT
age: 172
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 21:48:27 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6893594d5859d31fd298cccf10f95d6f
0f3d5bb32c35e5ab6ae103d8cdd893be330254ea
b7cfda893fc255eab77fd071011d3072d6c67b6f1553b7ace68bb5f54a303aeb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7CFDA893FC255EAB77FD071011D3072D6C67B6F1553B7ACE68BB5F54A303AEB"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21561
Expires: Thu, 19 Jan 2023 03:47:48 GMT
Date: Wed, 18 Jan 2023 21:48:27 GMT
Connection: keep-alive
proxy.quickmail.com/click/1/529430678/7c2189fa00fdbc25bc2f7fd0b8236848/67c8e5a254275de33f98a812cf0f393f/next
54.196.16.164301 Moved Permanently 95 B URL HTTP/1.1 proxy.quickmail.com/click/1/529430678/7c2189fa00fdbc25bc2f7fd0b8236848/67c8e5a254275de33f98a812cf0f393f/next
IP 54.196.16.164:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash b457ea7c99e1a1241959de524f2ed36a
46538502bc234402cb9097eccaf61ffe778c82bb
5893542e13d66fcca86827b49e5ed81b97a08d005c0c008ef6c3352c3d92d267
Analyzer Verdict Alert fortinet Phishing
GET /click/1/529430678/7c2189fa00fdbc25bc2f7fd0b8236848/67c8e5a254275de33f98a812cf0f393f/next HTTP/1.1
Host: proxy.quickmail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Location: https://www.kunocreative.com/
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache
X-Request-Id: a3694ff8-606d-4c96-9a57-386069e98fe2
X-Runtime: 0.019134
Server:
Date:
Last-Modified:
Strict-Transport-Security: max-age=63072000; includeSubDomains
Transfer-Encoding: chunked
Via: 1.1 vegur
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 21:17:25 GMT
age: 1862
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 79af32d8e279b4cfec147ab51cb6fcb3
d726903292bd1e08a6d9fe0719d2cd5b33dc5fe6
bfcb2d8f14d89736ac6b771f1618a8fc5e707691d60807a574fb719c8e9393ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6223
Cache-Control: max-age=133324
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:27 GMT
Etag: "63c7b6a8-1d7"
Expires: Fri, 20 Jan 2023 10:50:31 GMT
Last-Modified: Wed, 18 Jan 2023 09:06:48 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.83.22.170101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.83.22.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8cW6NjWGYAkluoScF3Y06w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nB3Ytzk6iVDYObLVZx/1Nd7Gk0M=
cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
104.17.25.14200 OK 2.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (4890)
Hash aca27ab03077eaec0530b45d4e57f9e2
8d1f2ef2258f2b9d3784ed3e6129fa7afbe30339
5692cd7d56e70b8de0be31e0584f03712e85fa2734ec21b54138aedd6a4871a6
GET /ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 2090
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-139e"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2951231
expires: Mon, 08 Jan 2024 21:48:28 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pJhWVAAXOZuRGEI6pjQUjgWnedy1tNOirtMTPeWainTo7UQF4f9rwSMfyzsmWl0Wqv3fVoVCoP0z3DYCtCFhnFuBjhNoCCWftmSEkfJ2D1ar3nsxL%2BPJtcjGoyt8ObPvouBZaYTl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78ba88f5f9c81c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/jquery.slick/1.6.0/slick.min.js
151.101.1.229200 OK 10 kB URL HTTP/2 cdn.jsdelivr.net/jquery.slick/1.6.0/slick.min.js
IP 151.101.1.229:0
File type ASCII text, with very long lines (32076)
Hash ba882bf599f8318c98412cbe00080451
677414044509b925f58842eefe017197d6a99638
97187ead2226c8d9a50fb11d55809ccbe7b1f6cc904bd894fd7b35f9d80f1832
GET /jquery.slick/1.6.0/slick.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"a3e1-6fy8xPpwy6CTuB2YKht4UJQUzvc"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 18 Jan 2023 21:48:28 GMT
age: 12622146
x-served-by: cache-fra19129-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10159
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1aad7268062e30c1f79607f737e49b33
0573313379b6d49940a4f83106556b1c04face13
8351c44fc884aa44af54e4fa92d8dbc3c5f9ba3112ad1778005a89ab16522d18
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3440
Cache-Control: max-age=108930
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:28 GMT
Etag: "63c7623e-116"
Expires: Fri, 20 Jan 2023 04:03:58 GMT
Last-Modified: Wed, 18 Jan 2023 03:06:38 GMT
Server: ECS (amb/6B97)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 607bf9684e4803d817fdd1120427dcdd
886fa77396c792751868f05806793937a4f11be6
d17df5470015b9c3be3fc1e9c8fa5f2b732231eed453b689e94897f6f1da3911
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 607bf9684e4803d817fdd1120427dcdd
886fa77396c792751868f05806793937a4f11be6
d17df5470015b9c3be3fc1e9c8fa5f2b732231eed453b689e94897f6f1da3911
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.adsrvr.org/up_loader.1.1.0.js
143.204.45.46200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 143.204.45.46:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash a8dc4482053f1d083f27d34ceeea1cbd
6bc208909339ac82a1f12722d78b3aa633008452
0c4c42bc3ffe74dad7814fef97f081777141f4a8b3acd4186e4f450535070037
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 18 Jan 2023 06:03:07 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GIQ8CYJoRvYvjv7hU2d6F5ayrA7sdgfOZpFvX-liifq6JD1mlRGblw==
Age: 56723
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
151.101.2.133200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 151.101.2.133:0
Hash 534625b2493e830ed9806c4b7ccf7648
d923d78683acbfa9e113ad7a2b63b6f2bbfd0359
61df374f8382bf26e5f791457bf1f13b9a95d75888fcc16d4637c6997af8f127
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1462
Content-Type: application/ocsp-response
Etag: "2AA833018463FB1879F512E747BB839A687A408E"
Expires: Thu, 19 Jan 2023 09:00:00 UTC
Last-Modified: Wed, 18 Jan 2023 21:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
Accept-Ranges: bytes
Date: Wed, 18 Jan 2023 21:48:28 GMT
Via: 1.1 varnish
Age: 2169
X-Served-By: cache-bma1676-BMA
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1674078509.644133,VS0,VE1
npmcdn.com/isotope-layout@2/dist/isotope.pkgd.js
172.67.73.81302 Found 535 B URL HTTP/2 npmcdn.com/isotope-layout@2/dist/isotope.pkgd.js
IP 172.67.73.81:0
Hash 02a3ce00c49f033153223b629fb4598e
ea2e9ece7dcaa839d3bb371287d67a036d2dd715
4a99320581f9b79e7a321fa450202571cb82672c85fb04ce1371fff581617fe5
GET /isotope-layout@2/dist/isotope.pkgd.js HTTP/1.1
Host: npmcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 21:48:28 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=14400, s-maxage=600
location: /isotope-layout@2.2.2/dist/isotope.pkgd.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GQ3DNNJCQA524SH19SG1CNMK-fra
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6XAyfxVfKSXo%2B8XeEaior7%2FbABf4dy95W7QCSrXeiIKSs5R6Fja8xdB9CSdpl5fueuf1CuKB4U71fK%2BeOC45DqxzE3fqJYx9Jo2d01Dw%2BHIiRIXurYbLj0u0j8k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78ba88f6adbab4eb-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash bb5631da0160832809d2cf30c9281efe
cf93aaf36ce190c3aa7f0be7d93ba297414a0d01
f4e294aa83963b208a17109003edeb8ccda24a06b8d320e80cc1b4787926e1ea
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 21:48:29 GMT
Last-Modified: Wed, 18 Jan 2023 20:12:00 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q6wj90dWXlixJYMUVrJX_ugwJUna7nvHZhhIpCJmEeLqs9BJAZjeUw==
Age: 5790
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Lato:400,300,700,400italic,300italic,100
142.250.74.106200 OK 21 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:400,300,700,400italic,300italic,100
IP 142.250.74.106:0
Hash 93d3cb112bb1b922795ff08cdacd4cdc
60ddfee4065175dc15d182b2cc4e9be87c42a342
84dda72c7b261f5b1611ddfa88e525762184bddc38d5b0eb43963eaac2557128
GET /css?family=Lato:400,300,700,400italic,300italic,100 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 21:48:28 GMT
date: Wed, 18 Jan 2023 21:48:28 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZWMf6.woff2
216.58.207.227200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZWMf6.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 19816, version 1.0\012- data
Hash 290160ea1f23d0178902ab8a62635b0a
5614266d1f6bf5f0d7601fff4a2bc0924830d983
f6b9eebb05461840790fc804b4590323ef12a57fe5af7fcdeed2d798e572844b
GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 10:03:35 GMT
expires: Wed, 17 Jan 2024 10:03:35 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:08:33 GMT
content-type: font/woff2
age: 128694
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 10:25:03 GMT
expires: Mon, 15 Jan 2024 10:25:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
age: 300206
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 19:33:54 GMT
expires: Thu, 18 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 8075
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2
216.58.207.227200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 19780, version 1.0\012- data
Hash 03717344e4dbb2de44988b281bb7430b
0cd3f7724bd0a5bf2460e1a85e35ccfbd5e85c05
499ec54eb2afd103ec37505e23c6570fc7d89a0d728dde19d87a092e4a3261b4
GET /s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 02:38:14 GMT
expires: Mon, 15 Jan 2024 02:38:14 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 15:48:58 GMT
content-type: font/woff2
age: 328215
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf4jvw.woff2
216.58.207.227200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf4jvw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 19900, version 1.0\012- data
Hash bac4e4fc860f0a92beb62a776048f7c0
26eb7089b1050997d371be35946a12ae0cc7218f
3642df12f0d930d5846a96652080908eb2f383b602a95cf80d1e6227e66e1c46
GET /s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf4jvw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 18:53:25 GMT
expires: Mon, 15 Jan 2024 18:53:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 15:46:01 GMT
content-type: font/woff2
age: 269704
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
216.58.207.227200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP 216.58.207.227:0
Hash cd6681c982bc54e7cd60d67676ba7981
52e4ffcf8cb77b32c21a1e6ac5e813ab0b5e6643
5053b72dced9af1e5e03da3c841ffb4eb74ce2567cbfcc4ab0d27a04838423a9
GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 14:34:09 GMT
expires: Fri, 12 Jan 2024 14:34:09 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
age: 544460
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/events.js
54.243.239.236301 Moved Permanently 65 B URL HTTP/1.1 tags.srv.stackadapt.com/events.js
IP 54.243.239.236:0
File type HTML document, ASCII text
Hash f80e89783ec551e69632712d99fd2224
a760361995b52b09f655a2bb469d7dd464619692
c052ddf9a69031b36e27713dfc2ca1d3494de9e0436c5bb35d17d92dac2c61bd
GET /events.js HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Date: Wed, 18 Jan 2023 21:48:29 GMT
Location: https://qvdt3feo.com/events.js
Content-Length: 65
Connection: keep-alive
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 04:29:06 GMT
expires: Wed, 17 Jan 2024 04:29:06 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
age: 148763
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7NWPf4jvw.woff2
216.58.207.227200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7NWPf4jvw.woff2
IP 216.58.207.227:0
Hash 54d7185b277480ada3adfc1006d422ef
aa3586e8649ae388d5b1d3c00d0dbaec7750de8c
c0f80ccea43d511523d0896a09e4910ff73e3145bc90e2359a86f8ee37ae906a
GET /s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7NWPf4jvw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 07:52:42 GMT
expires: Thu, 18 Jan 2024 07:52:42 GMT
cache-control: public, max-age=31536000
age: 50147
last-modified: Tue, 26 Apr 2022 15:48:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZWMf6.woff2
216.58.207.227200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZWMf6.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 19752, version 1.0\012- data
Hash d62145d4db9cd1736127dbac7665f41b
2687b5ba8ddbafc800abd1208069edcefc0ca8f2
c8356c413b566272ba50c98d4ce0546e1fce6177ceb6cf8c2a7efe0a65e085a1
GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 15:43:30 GMT
expires: Wed, 17 Jan 2024 15:43:30 GMT
cache-control: public, max-age=31536000
age: 108299
last-modified: Tue, 26 Apr 2022 15:46:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
insights.sitesearch360.com/insights/session?version=12.3
104.18.8.146204 No Content 0 B URL HTTP/2 insights.sitesearch360.com/insights/session?version=12.3
IP 104.18.8.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /insights/session?version=12.3 HTTP/1.1
Host: insights.sitesearch360.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 159
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 21:48:29 GMT
allow-control-allow-origin: *
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
allow-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 78ba88fbaa7e1c16-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15422
Expires: Thu, 19 Jan 2023 02:05:31 GMT
Date: Wed, 18 Jan 2023 21:48:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15422
Expires: Thu, 19 Jan 2023 02:05:31 GMT
Date: Wed, 18 Jan 2023 21:48:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15422
Expires: Thu, 19 Jan 2023 02:05:31 GMT
Date: Wed, 18 Jan 2023 21:48:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg
IP 34.120.237.76:0
File type gzip compressed data, max compression\012- data
Hash 51ca28e646a06317d185a896bdccd083
3a4048b80dd7b546126c66b97735f7f745bd1df6
315f73b8229aae7bdaf3a7840a8d9f66859d8f7501c99b805f4d030fc8af5d33
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8889
x-amzn-requestid: 10583804-866b-41bc-a99b-6209bd7ae1c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1eHMCoAMF4kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ef-2351e46019a0918724721b89;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: I_gazElY6tP9IsrCWRM7CHI5Jd6uVuruMwXcJV_nNHFI55YqmqG7zg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 00:41:55 GMT
etag: "ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08"
content-type: image/jpeg
age: 75994
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9200e43ca808b9ecec74828e03853d4c
3070340147ced46e5fdf73408272aa39391976fb
abdaedfc2da45180c463607686b20afd82113b78cfa78b0f28ab169b9858469b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6454
x-amzn-requestid: 79329eb3-8d89-423f-8626-32c5e2e2831a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gHpeoAMF-Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-5e859dc121cd322c6b684eee;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1s69950hZsdFKexBAVy2ZepTsxPeLCnI7bDdYfAH_NXrB1_Kt-N2_w==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 21:45:18 GMT
age: 191
etag: "3070340147ced46e5fdf73408272aa39391976fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d134f7ac9a5ca8ab7a9461bd20706bb7
aa47af3e7517390d10e89f0f18237cfdcc63cbed
3431c8027f09bb284fe48ef8e4458fd43d8cc961250601b3028b83a7ba19f6ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13111
x-amzn-requestid: 7a9bb405-c68d-496f-b608-e9d295c44c50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0MStGBBIAMFXag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4c0dd-75d87c0d763744951f13febd;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:13:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jkIL919Q7OFO6bACXTrDan0f9D9rgrN0DJMQv1DYPLeWqT1CywCAEg==
via: 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 03:29:16 GMT
age: 65953
etag: "aa47af3e7517390d10e89f0f18237cfdcc63cbed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f491398239265c63ac162d47ab006ce6
c95e1bba76e910100e86f8abf789e5b5c1a2baa6
cdada2d9608e9d3f8e03cf9ced211550b6f7c8f7e0b5ee027a96f45af38523f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7741
x-amzn-requestid: 9af04340-5be9-42b0-96be-0264661c6dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A6LEMtoAMFW_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7150d-2348c8846249175e74efc226;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:37:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _7YOm38n8-T2LAL-cRA7R8KvEUBhXEM0dOXjOZ6HyPRNfMu6Z0Fh3g==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:03 GMT
age: 85106
etag: "c95e1bba76e910100e86f8abf789e5b5c1a2baa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
IP 34.120.237.76:0
Hash 0d5b3d61625ece2206cdd9c894492cc1
f4fac82174b8eddb6f77f503a461d3f390075d09
d6ccf5e456ef7febfe6b1cd2a3bb147c4e0fcd5d3bafec5c7091e70a2c6b6f92
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5663
x-amzn-requestid: 9a1c75a4-1c8d-4bd2-b6ca-7fccb8b43c12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gF5goAMFveA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-1d274e8074771db651e80979;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sAxuQECVKx0dfc2UM_E_70nKN8za1SBN4opMWr_74gT5ScurgZGVLw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:07 GMT
age: 85102
etag: "cc6b64ff3f09853843b62e555456a1ad9f0909fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f112ea3865f38cbbcc8400b58320fa0
dacc584338546bf60f26b2a0bec48e9b584640dc
7feb3c0691f40354701d1cb0bf3c834d1eeead4a7297fac3afc0f4a7ca2c94cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8853
x-amzn-requestid: ff98ec33-294a-4a13-b064-3cd4744cd2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LLKHPnIAMF0vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf14-233cbc6407c6b138144d7abb;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:05:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QZZaGtGl3Z-4G4DxO4R_gjfDdQVgJc30Ur9EyLAvbGFhv4LfaXziPQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:21:58 GMT
etag: "dacc584338546bf60f26b2a0bec48e9b584640dc"
content-type: image/jpeg
age: 84391
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
32387.fs1.hubspotusercontent-na1.net/hub/32387/hubfs/images/brand-1.png
104.18.33.40200 OK 150 B URL HTTP/2 32387.fs1.hubspotusercontent-na1.net/hub/32387/hubfs/images/brand-1.png
IP 104.18.33.40:0
File type PNG image data, 142 x 143, 1-bit colormap, non-interlaced\012- data
Hash 53ec90961e9629a1e4f3d0785478694e
cf3d78b9a4e2c76fe3d4e4a1811dfc226ee00710
15741ec8521cc78c0ae66419e584af7efa0c91bb26939a015108058625912936
GET /hub/32387/hubfs/images/brand-1.png HTTP/1.1
Host: 32387.fs1.hubspotusercontent-na1.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:29 GMT
content-type: image/png
content-length: 150
cf-ray: 78ba88faedcb0b61-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: "53ec90961e9629a1e4f3d0785478694e"
last-modified: Wed, 24 Aug 2022 07:12:36 GMT
vary: Accept-Encoding
via: 1.1 3d4bfc42e9575ee1f9559241c9e3f464.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-82854157943,FD-167496,P-32387,FLS-ALL
edge-cache-tag: F-82854157943,FD-167496,P-32387,FLS-ALL
x-amz-cf-id: yokDionvyHdrv88QEB9pc8KohJ9odcO0xyOsFbTHcsblURAQpVN_kg==
x-amz-cf-pop: IAD12-P3
x-amz-meta-created-unix-time-millis: 1661325155716
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
X-Firefox-Spdy: h2
tag.perfectaudience.com/serve/5391c9ad2ace08c46a00003d.js
151.101.130.217200 OK 110 B URL HTTP/2 tag.perfectaudience.com/serve/5391c9ad2ace08c46a00003d.js
IP 151.101.130.217:0
File type ASCII text, with no line terminators
Hash 4e1ee9c97bdf11f730e9007a6f26b750
811132b30f525be2492aeb0c53545a3c604bb078
8d73fb7e1e024fccac72ade262090bd06d0dfdca02306c56b6be179e98deda40
GET /serve/5391c9ad2ace08c46a00003d.js HTTP/1.1
Host: tag.perfectaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Cowboy
content-type: text/javascript
cache-control: max-age=1800
x-content-type-options: nosniff
via: 1.1 vegur, 1.1 varnish
content-encoding: gzip
accept-ranges: bytes
date: Wed, 18 Jan 2023 21:48:29 GMT
age: 0
x-served-by: cache-bma1641-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674078509.419310,VS0,VE196
vary: Accept-Encoding
content-length: 110
X-Firefox-Spdy: h2
2659736.fs1.hubspotusercontent-na1.net/hubfs/2659736/kuno/2021/core-vitals--home/images/kunoarrow.png
104.18.33.40200 OK 7.5 kB URL HTTP/2 2659736.fs1.hubspotusercontent-na1.net/hubfs/2659736/kuno/2021/core-vitals--home/images/kunoarrow.png
IP 104.18.33.40:0
Hash 9c76eb9a5ad7e64d73285a55949252d8
79b459954efcc1004c682de97f262c557d0b7413
80cac39b53fde35370ee13b26fea194a976791e0f6adf5d53f5229c0eea36a95
GET /hubfs/2659736/kuno/2021/core-vitals--home/images/kunoarrow.png HTTP/1.1
Host: 2659736.fs1.hubspotusercontent-na1.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:29 GMT
content-type: image/webp
content-length: 166
cf-ray: 78ba88faed0ab4f1-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 7106
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
content-disposition: inline; filename="kunoarrow.webp"
etag: "31387d6754753a7442b7b7abec6f70f4"
last-modified: Mon, 21 Jun 2021 15:02:31 GMT
vary: Accept, Accept-Encoding
via: 1.1 9fde400234236c10982fe8b8a3ca9eb2.cloudfront.net (CloudFront)
cf-cache-status: HIT
access-control-allow-methods: GET
cache-tag: F-49170699809,FD-48784722736,P-2659736,FLS-ALL
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=235
edge-cache-tag: F-49170699809,FD-48784722736,P-2659736,FLS-ALL
x-amz-cf-id: NN5YivG2yKSK-SifylbVFX6qcvPVXhAuAr0JVqyRPb0lkip-YizqVg==
x-amz-cf-pop: ARN56-P1
x-amz-id-2: qOPpYcJKhGR9cHCDv0KjAxHhsIw8/lSY3YdtUY3xHBmdA1/JDopIGxngUgjvKekIxdFbKVrGJ20=
x-amz-meta-cache-tag: F-49170699809,FD-48784722736,P-2659736,FLS-ALL
x-amz-meta-created-unix-time-millis: 1624287749978
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: QE7H0B2HNQ9H91FA
x-amz-server-side-encryption: AES256
x-amz-version-id: 57EjvTOfYSafhj7MGnOQwuFopcPcatX.
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 783c01fa14ade2316e22ead869b3dbf8
71e20a947b3a9e10cb2bf046e2ca3da294d97f70
9b0aee93ad83dd0c14a106a2514b86ab950b2fc679596fd621841242b5c7e95c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-5GH5CQQ
142.250.74.168200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5GH5CQQ
IP 142.250.74.168:0
File type ASCII text, with very long lines (3605)
Hash 8e38cc5b8889d9e4b6d4b1b1de5bb834
5615f1eaf56e76ffcb15a376e426359f90269c57
4932e91474fa2acf6f1f40b6d4666b6fa8a4b451376ecfb9ab69f5650788e048
GET /gtm.js?id=GTM-5GH5CQQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 18 Jan 2023 21:48:29 GMT
expires: Wed, 18 Jan 2023 21:48:29 GMT
cache-control: private, max-age=900
last-modified: Wed, 18 Jan 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78994
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 783c01fa14ade2316e22ead869b3dbf8
71e20a947b3a9e10cb2bf046e2ca3da294d97f70
9b0aee93ad83dd0c14a106a2514b86ab950b2fc679596fd621841242b5c7e95c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 0b5ca5faf58874ec2d02fb13bdee4a3c
4521cfbffe286b9a4b64a4579a8c5ec4071a2b7b
a62834e377d8257066699ad2d98616e0122019df1f731515c0f4413ce30285fc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 21:48:29 GMT
Last-Modified: Wed, 18 Jan 2023 21:10:29 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: brfBmCkJxhwWpuIgZt0_Ut8jIiQhH3G_y6721N5g9TT-_HS90imk5w==
Age: 2280
api.hubapi.com/hs-script-loader-public/v1/config/adwords/enhanced-conversion-event-settings/json?portalId=32387
104.17.204.204200 OK 2 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/adwords/enhanced-conversion-event-settings/json?portalId=32387
IP 104.17.204.204:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /hs-script-loader-public/v1/config/adwords/enhanced-conversion-event-settings/json?portalId=32387 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:30 GMT
content-type: application/json;charset=utf-8
content-length: 2
cf-ray: 78ba88feda77b527-OSL
access-control-allow-origin: https://www.kunocreative.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: 751c519a-0190-408e-b5a4-1f32ab7fee12
x-trace: 2BD7669B224A98D275B459D2DC3EF0DC8BC1DF96CE000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6JdFa3M7oZqFwbYMrUYb63lf%2F%2BLegfZfP4uYFCu6x7MV%2BjnOvwWKlxsB3%2BCYCLd7oG9LQKq71qt6gGxFNVWdlZitRtHzPZi5qWXRBnfJ1A48OOL2NR1VPEZ56R1Cpzdr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/sa.css
54.243.239.236200 OK 27 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.css
IP 54.243.239.236:0
Hash 83f5ba33314db5f218488a5a51da1455
87a21689afa235c4c65437334085be4bf5cca170
3f100e5e6ff270dadb43b44878f0118a2389dee0d844acc102b5179d70a824dc
GET /sa.css HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: text/css
Date: Wed, 18 Jan 2023 21:48:30 GMT
Content-Length: 27
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash e1d0a943e8f5e6aac39de98d318e4008
fe73305134744cb7611e80caf36744d4ee5f2342
6fda1beb7d0ce8406529ea6fb0dddba426ce499551d08e95cc35867aa55631f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5849
Cache-Control: max-age=164308
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:30 GMT
Etag: "63c83129-118"
Expires: Fri, 20 Jan 2023 19:26:58 GMT
Last-Modified: Wed, 18 Jan 2023 17:49:29 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
cta-service-cms2.hubspot.com/ctas/v2/public/cs/cta-json?canon=https%3A%2F%2Fwww.kunocreative.com%2F&pageId=5416766054&pid=32387&sv=cta-embed-js-static-1.116&rdy=1&cos=1&df=t&pg=b0c26746-b8da-4e0d-bb35-47ba12f4489e&pg=c83f9bb0-4856-440e-a4c3-ecb137db7d5a&pg=c83f9bb0-4856-440e-a4c3-ecb137db7d5a&pg=b0c26746-b8da-4e0d-bb35-47ba12f4489e&pg=94f3b316-de04-4f02-bce4-45ce394e68f9
104.19.155.83200 OK 2.1 kB URL HTTP/2 cta-service-cms2.hubspot.com/ctas/v2/public/cs/cta-json?canon=https%3A%2F%2Fwww.kunocreative.com%2F&pageId=5416766054&pid=32387&sv=cta-embed-js-static-1.116&rdy=1&cos=1&df=t&pg=b0c26746-b8da-4e0d-bb35-47ba12f4489e&pg=c83f9bb0-4856-440e-a4c3-ecb137db7d5a&pg=c83f9bb0-4856-440e-a4c3-ecb137db7d5a&pg=b0c26746-b8da-4e0d-bb35-47ba12f4489e&pg=94f3b316-de04-4f02-bce4-45ce394e68f9
IP 104.19.155.83:0
File type JSON data\012- , ASCII text, with very long lines (7550), with no line terminators
Hash 78d7f3047957c66198940f1ab60eaec7
fe2821fdfd500c47d763cce3e52a24be03b871f1
4eb8d73136cf950478cacaa63eda20837b074578910708a9af921c2e1766bfc8
GET /ctas/v2/public/cs/cta-json?canon=https%3A%2F%2Fwww.kunocreative.com%2F&pageId=5416766054&pid=32387&sv=cta-embed-js-static-1.116&rdy=1&cos=1&df=t&pg=b0c26746-b8da-4e0d-bb35-47ba12f4489e&pg=c83f9bb0-4856-440e-a4c3-ecb137db7d5a&pg=c83f9bb0-4856-440e-a4c3-ecb137db7d5a&pg=b0c26746-b8da-4e0d-bb35-47ba12f4489e&pg=94f3b316-de04-4f02-bce4-45ce394e68f9 HTTP/1.1
Host: cta-service-cms2.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:30 GMT
content-type: application/json;charset=utf-8
x-trace: 2B02AF967CE1DC00BDC3CB9618AF27878B19686D8A000000000000000000
x-origin-hublet: na1
cache-control: max-age=0, no-cache, no-store
vary: origin
x-hubspot-correlation-id: 82b3a5bd-acca-43c2-bf81-841c74b97a6d
access-control-allow-origin: https://www.kunocreative.com
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent
access-control-allow-credentials: true
access-control-max-age: 180
x-robots-tag: noindex, follow
access-control-expose-headers: X-Origin-Hublet
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=Ct3AcIcQakdQC7wxkfXEv4dP5ri18ACdb3yQwWrrDqg-1674078510-0-ARmMre0lEFCt0V/uh6ZA4AZVdIritYpWukH3lK9vNYUyS2yNISHcd6+7BLEDWj2hdv0MVMHSP7HfghbbHyt9ynU=; path=/; expires=Wed, 18-Jan-23 22:18:30 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w2IADSFV50Fqqo4PXaFRzqWnh7Szl5iXw%2BGmgus1WvDuwwncZuilbyZ2QxfrHmouEPapNaVetbonAMLzxDpLtoW%2B%2Fc0GSda%2Fi74oe6NVT2ai7p4xbBlgIRvE2N8r9yaaDV7G2ZS29WeBdz8lnMY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78ba8900a93eb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0da43329e2c23f46a924db51560dd469
851892de7855d864873466cf44740ef392093883
ab40a29a79c9786c0e54362ca4affc120d8d9e191e333b0d378e892eb2a1e3fd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4098
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:30 GMT
Last-Modified: Wed, 18 Jan 2023 20:40:12 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0da43329e2c23f46a924db51560dd469
851892de7855d864873466cf44740ef392093883
ab40a29a79c9786c0e54362ca4affc120d8d9e191e333b0d378e892eb2a1e3fd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4098
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:30 GMT
Last-Modified: Wed, 18 Jan 2023 20:40:12 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
perf.hsforms.com/embed/v3/counters.gif?key=cta-json-success&value=1
104.16.88.5200 OK 35 B URL HTTP/2 perf.hsforms.com/embed/v3/counters.gif?key=cta-json-success&value=1
IP 104.16.88.5:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=cta-json-success&value=1 HTTP/1.1
Host: perf.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:30 GMT
content-type: image/gif
content-length: 35
x-trace: 2B84657B1172E282B761324D8E2682FBC05AFE35A4000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: origin, Accept-Encoding
x-hubspot-correlation-id: f93e1335-1b24-4dc0-904b-9e31799b67d2
access-control-allow-credentials: false
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
last-modified: Wed, 18 Jan 2023 21:48:30 GMT
cf-cache-status: MISS
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78ba89023cb3b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
qvdt3feo.com/events.js
34.195.239.85200 OK 5.3 kB IP 34.195.239.85:0
Hash 88fb55765964a10712e49c783f972e65
117580560d46a7d99fefd8e0cbe60bf9e0524f42
002a9331f9f4fc792d2d5c8c5162ebf51b9adfd25dfb6a7bbb25e6683f30d188
GET /events.js HTTP/1.1
Host: qvdt3feo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kunocreative.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:29 GMT
content-type: text/javascript
access-control-allow-origin: *
cache-control: max-age=5
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0da43329e2c23f46a924db51560dd469
851892de7855d864873466cf44740ef392093883
ab40a29a79c9786c0e54362ca4affc120d8d9e191e333b0d378e892eb2a1e3fd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4098
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:30 GMT
Last-Modified: Wed, 18 Jan 2023 20:40:12 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
region1.google-analytics.com/g/collect?v=2&tid=G-HL7R7JDVCS>m=2oe1a1&_p=74671515&cid=1219793822.1674078510&ul=en-us&sr=1280x1024&_s=1&sid=1674078509&sct=1&seg=0&dl=https%3A%2F%2Fwww.kunocreative.com%2F&dt=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-HL7R7JDVCS>m=2oe1a1&_p=74671515&cid=1219793822.1674078510&ul=en-us&sr=1280x1024&_s=1&sid=1674078509&sct=1&seg=0&dl=https%3A%2F%2Fwww.kunocreative.com%2F&dt=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-HL7R7JDVCS>m=2oe1a1&_p=74671515&cid=1219793822.1674078510&ul=en-us&sr=1280x1024&_s=1&sid=1674078509&sct=1&seg=0&dl=https%3A%2F%2Fwww.kunocreative.com%2F&dt=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.kunocreative.com
date: Wed, 18 Jan 2023 21:48:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/saq_pxl?uid=OxxRHVodcIkkuLRs2gwsgQ&is_js=true&landing_url=https%3A%2F%2Fwww.kunocreative.com%2F&t=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&tip=J3p1ceHO1I9HQHL-Ql3vHlg3sfd18kKgVh7Gh8KxYDM&host=https://www.kunocreative.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo
54.243.239.236200 OK 94 B URL HTTP/1.1 tags.srv.stackadapt.com/saq_pxl?uid=OxxRHVodcIkkuLRs2gwsgQ&is_js=true&landing_url=https%3A%2F%2Fwww.kunocreative.com%2F&t=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&tip=J3p1ceHO1I9HQHL-Ql3vHlg3sfd18kKgVh7Gh8KxYDM&host=https://www.kunocreative.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo
IP 54.243.239.236:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2d12c1129f6ff37622d03db4a2a5949e
bc44653c4a06e671ce423600755fed86fad8ec24
078f3dd88e751c3c421b2007e1cb27bcb65a95daf278bd25de81ba7b2bf3c4e4
GET /saq_pxl?uid=OxxRHVodcIkkuLRs2gwsgQ&is_js=true&landing_url=https%3A%2F%2Fwww.kunocreative.com%2F&t=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&tip=J3p1ceHO1I9HQHL-Ql3vHlg3sfd18kKgVh7Gh8KxYDM&host=https://www.kunocreative.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://www.kunocreative.com
Content-Type: text/plain; charset=utf-8
Date: Wed, 18 Jan 2023 21:48:30 GMT
Set-Cookie: sa-user-id=s%3A0-f8361cde-770f-45e4-52f8-130707d21f3a.m4TEgy8MVKpvl0KWZGXESJ1OHbRWDVla36Lr80NX5z8; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3A-DYc3ncPReRS-BMHB9IfOltaKpo.y6ujSmfnn8MXV0ReoUjqYrtMIW3V%2FtgSjFYE9bgw%2BMo; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 94
Connection: keep-alive
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.210200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=79598
date: Wed, 18 Jan 2023 21:48:30 GMT
content-length: 4777
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 6ffc62725eb8d702d9aebcb456457fb2
0b5f6c5f99abfc8cc37016f8b76e19097c3ba294
f0d158f00224cad7d42c75dfdbbbe4f7ab6a4cdb221d3faa5aeb9917d98d4f0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 18 Jan 2023 20:41:07 GMT
expires: Wed, 18 Jan 2023 22:41:07 GMT
cache-control: public, max-age=7200
age: 4043
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 948e6eab4e0fbb57ec991519b205a62b
d85968f393cf652627a14b5afd00e17d46bdfa13
4b1931c60a3b716142ac04c9b573f15dc7cef2297b62c1fad93d132cc6c05391
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5735
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:30 GMT
Last-Modified: Wed, 18 Jan 2023 20:12:55 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 6ffc62725eb8d702d9aebcb456457fb2
0b5f6c5f99abfc8cc37016f8b76e19097c3ba294
f0d158f00224cad7d42c75dfdbbbe4f7ab6a4cdb221d3faa5aeb9917d98d4f0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/985936838/?random=1674078509790&cv=11&fst=1674078509790&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=738590409.1674078510&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.130200 OK 911 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/985936838/?random=1674078509790&cv=11&fst=1674078509790&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=738590409.1674078510&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (1987), with no line terminators
Hash a87dc0a125bed559e34ffce4f41ea509
90d4c8a036da7e37115591b4194ff3d024954710
669fd1aa1e420238f15c3684ab8767bbe5d24a80df156d99af3ff6dd51d73daf
GET /pagead/viewthroughconversion/985936838/?random=1674078509790&cv=11&fst=1674078509790&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=738590409.1674078510&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 21:48:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 911
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 18-Jan-2023 22:03:30 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/985936838/?random=1674078509620&cv=11&fst=1674078509620&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&auid=738590409.1674078510&rfmt=3&fmt=4
142.250.74.130200 OK 895 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/985936838/?random=1674078509620&cv=11&fst=1674078509620&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&auid=738590409.1674078510&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (1923), with no line terminators
Hash dbee02528ff944d8d692ad629b53cdf1
0da82d03a231a46b2576e5391fc7d6c8998b295e
e110388bf9852cf6542816deb6ce009cfeb131cd0960db13647c00c8243746c5
GET /pagead/viewthroughconversion/985936838/?random=1674078509620&cv=11&fst=1674078509620&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&auid=738590409.1674078510&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 21:48:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 895
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 18-Jan-2023 22:03:31 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: YXo9HEJc2fcrbbrnQbMorXvLZZLVE38Baf5LgU4TcUcgLRnr1JOqDytQviGDfkeJ3Jb7iT/cIvOnnYCeu4WgcQ==
content-length: 27815
x-fb-trip-id: 1904183273
date: Wed, 18 Jan 2023 21:48:30 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 6ffc62725eb8d702d9aebcb456457fb2
0b5f6c5f99abfc8cc37016f8b76e19097c3ba294
f0d158f00224cad7d42c75dfdbbbe4f7ab6a4cdb221d3faa5aeb9917d98d4f0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.hotjar.com/c/hotjar-1089622.js?sv=7
54.230.111.8200 OK 4.0 kB URL HTTP/2 static.hotjar.com/c/hotjar-1089622.js?sv=7
IP 54.230.111.8:0
File type ASCII text, with very long lines (7669)
Hash 1324084514f113e4cd18c175928b7b52
b912f085e543fa01bde89d1599f4e45886ff782d
58b6a582b665744cde637230c16d426ce4a2e080fe21cce2d26bcd85a5490890
GET /c/hotjar-1089622.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 18 Jan 2023 21:48:30 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/5a6cd9af4874be405d455a96f2c59f87
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _u0dWm7JTpG8pnwih_nQrgWGOxeaz5BqDCQcEEQAS3uHIAjfqS_jfw==
X-Firefox-Spdy: h2
vars.hotjar.com/box-ff00c703c3bbdf54ae44ee858d64f69e.html
143.204.55.118200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-ff00c703c3bbdf54ae44ee858d64f69e.html
IP 143.204.55.118:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 730971b89ffa8b99e4157f49a4275594
7041ce872cc30e32c6b04a958b0cf810e5fc5651
da09da5b55ce65cdb58f29842d654aa637580d8c4d5d3cddfa08de6d866dcf65
GET /box-ff00c703c3bbdf54ae44ee858d64f69e.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 18 Jan 2023 10:13:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "730971b89ffa8b99e4157f49a4275594"
last-modified: Wed, 18 Jan 2023 10:12:30 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Gx1G2PBVLp23Qg47Z7iU_EWOBO74cpLvk5HBmcSVSDiGCxjM8F0M7A==
age: 41725
X-Firefox-Spdy: h2
script.hotjar.com/modules.4829238839b92db7e6b6.js
143.204.55.68200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.4829238839b92db7e6b6.js
IP 143.204.55.68:0
File type Unicode text, UTF-8 text, with very long lines (48015)
Hash 33cdf1335ebc1b6d54f0110dc31bd36c
0fb8d71d83bb707ad67943e4fff34423909949dd
7dfc08ff97621de55cfbe9e0235669f54d91ddc83e2d38c5edb69473bc728672
GET /modules.4829238839b92db7e6b6.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68627
date: Wed, 18 Jan 2023 10:13:05 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "33cdf1335ebc1b6d54f0110dc31bd36c"
last-modified: Wed, 18 Jan 2023 10:12:30 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LPF8yFOXeVj2MdD9BWMwJezbjTLAickFa7_hfyI6ZQS_U8kSFzcpwg==
age: 41726
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 558ca082e2b49b22ae356cf10b191c68
c3956046019b64bc525381a4ab7f0c70002b5b17
862dfa54857c199a1d5450b0b07d8fcc3e2702476e7a0938b3d34e2fab332af3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 532289832b1f21cd9014c904ca0a1ad6
16b0dbd03283cf8a80316e49ab0a0299fd237d99
e0b0758c8bea976e4963c7ca91cc223d9b68f1e45048dd9d5cce73c9f20a08a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/985936838/?random=1674078509620&cv=11&fst=1674075600000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&fmt=3&is_vtc=1&random=768090997&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/985936838/?random=1674078509620&cv=11&fst=1674075600000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&fmt=3&is_vtc=1&random=768090997&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/985936838/?random=1674078509620&cv=11&fst=1674075600000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&fmt=3&is_vtc=1&random=768090997&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 21:48:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/985936838/?random=1674078509790&cv=11&fst=1674075600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2275086051&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/985936838/?random=1674078509790&cv=11&fst=1674075600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2275086051&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/985936838/?random=1674078509790&cv=11&fst=1674075600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2275086051&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 21:48:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1674078300000/32387.js
104.17.71.176200 OK 22 kB URL HTTP/2 js.hs-analytics.net/analytics/1674078300000/32387.js
IP 104.17.71.176:0
File type ASCII text, with very long lines (56621), with CRLF, LF line terminators
Hash d859aed496977dfeb9fb1a522c77a3e8
012ea1b809f4d4e141e55a3df1cb9d445619e54e
e6d44b33ea8b3eaae3e2eeddb952d37c410ae7144eb95e4176b0132a4b133370
GET /analytics/1674078300000/32387.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:31 GMT
content-type: text/javascript
x-amz-id-2: D3I1RFVsluAMBLlAjuzSsvChcUsoVhok2nc40PnQ/g2uSIenJ5hkqcTk0L1aRu7X5zjEt+eJEhw=
x-amz-request-id: NT9S8BGSFD6T4WYG
last-modified: Wed, 18 Jan 2023 19:55:36 GMT
etag: W/"49b8677dc3f102dcb6bc0b4af9a3bbad"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Wed, 18 Jan 2023 21:53:31 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 78ba89056883b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/985936838/?random=1674078509790&cv=11&fst=1674075600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2275086051&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/985936838/?random=1674078509790&cv=11&fst=1674075600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2275086051&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/985936838/?random=1674078509790&cv=11&fst=1674075600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.kunocreative.com%2F&tiba=Inbound%20Marketing%20Agency%20%7C%20Kuno%20Creative%20an%20Inbound%20Marketing%20Company&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2275086051&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 21:48:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/sa.jpeg
54.243.239.236200 OK 651 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.jpeg
IP 54.243.239.236:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3\012- data
Hash 09302e541e838c8dc1da3c89b26d41b3
f005278d6a66642cb8fe4c802a51d34c96b1bfb9
dafdf72b9e30b6c0a6d6e06971b5d4f3adce2d362921890f192df96be6427c9c
GET /sa.jpeg HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: image/jpeg
Date: Wed, 18 Jan 2023 21:48:31 GMT
Content-Length: 651
Connection: keep-alive
px.ads.linkedin.com/collect?v=2&fmt=js&pid=22425&time=1674078510780&url=https%3A%2F%2Fwww.kunocreative.com%2F
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=22425&time=1674078510780&url=https%3A%2F%2Fwww.kunocreative.com%2F
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=22425&time=1674078510780&url=https%3A%2F%2Fwww.kunocreative.com%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D22425%26time%3D1674078510780%26url%3Dhttps%253A%252F%252Fwww.kunocreative.com%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQIpfzYaHuInSAAAAYXG2uCfhiFJvXt8ZWvKung4PTHwv4EA-1UH-SsIG6RroiDOlQGvXT63qqVnqA; Max-Age=2592000; Expires=Fri, 17 Feb 2023 21:48:31 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKFVc5PqaWJmgAAAYXG2uCfZo6wD0IxbzP9zf3vlxjTawa1vJMvog2nAdteE6PYBgA3uNgmO3FH27s4KkLjfQ; Max-Age=2592000; Expires=Fri, 17 Feb 2023 21:48:31 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&0c199797-ff8d-4482-8384-820486cd2522"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 18-Jan-2024 21:48:31 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2471:u=1:x=1:i=1674078511:t=1674164911:v=2:sig=AQEz5om77MhEq0NcUA-F6tm9msDuBh8H"; Expires=Thu, 19 Jan 2023 21:48:31 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXykMb9WbuiFTd18i/D/w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 30BF381D928749F7B69ED237D7307FDE Ref B: OSL30EDGE0420 Ref C: 2023-01-18T21:48:31Z
date: Wed, 18 Jan 2023 21:48:30 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 558ca082e2b49b22ae356cf10b191c68
c3956046019b64bc525381a4ab7f0c70002b5b17
862dfa54857c199a1d5450b0b07d8fcc3e2702476e7a0938b3d34e2fab332af3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 96932e7ee122dfbe89a87a0265f8bf94
a260e5fb88fa73efaedcd7880f4bfea7acf44fbb
e806134fe3187494ab16df5a777bb4d7b8d0a8c400b542a5414b63c7ef3ac3e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash efac8d32469e6807b1b1f2916a47edf1
68d91e7af565f1cf6597bcdd642a78dbada50a8d
22639289563bb576a7c20b9c733bdd7f98c41519fdddeef0d710f0d058c5bf88
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-1155537-1&cid=1219793822.1674078510&jid=1221863650&gjid=1307795416&_gid=1663362526.1674078511&_u=YADAAEAAAAAAACAAI~&z=2003657295
74.125.131.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-1155537-1&cid=1219793822.1674078510&jid=1221863650&gjid=1307795416&_gid=1663362526.1674078511&_u=YADAAEAAAAAAACAAI~&z=2003657295
IP 74.125.131.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-1155537-1&cid=1219793822.1674078510&jid=1221863650&gjid=1307795416&_gid=1663362526.1674078511&_u=YADAAEAAAAAAACAAI~&z=2003657295 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.kunocreative.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 18 Jan 2023 21:48:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash efac8d32469e6807b1b1f2916a47edf1
68d91e7af565f1cf6597bcdd642a78dbada50a8d
22639289563bb576a7c20b9c733bdd7f98c41519fdddeef0d710f0d058c5bf88
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D22425%26time%3D1674078510780%26url%3Dhttps%253A%252F%252Fwww.kunocreative.com%252F%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D22425%26time%3D1674078510780%26url%3Dhttps%253A%252F%252Fwww.kunocreative.com%252F%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D22425%26time%3D1674078510780%26url%3Dhttps%253A%252F%252Fwww.kunocreative.com%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kunocreative.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=22425&time=1674078510780&url=https%3A%2F%2Fwww.kunocreative.com%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&d1e4b3c8-96ec-47ec-8024-e1918bacc7cd"; Domain=.linkedin.com; Expires=Thu, 18-Jan-2024 21:48:31 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2023011821483136ae4194-fac2-4c51-85b6-2c426a000b82AQEtC44jnXHa6dVE2liyAhO4WBf76Tce"; Domain=.www.linkedin.com; Expires=Thu, 18-Jan-2024 21:48:31 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzQwNzg1MTE7MjswMjEmhh7rDsGhwqKccTKLs2oPmtnkJUPKINE+m/GiGmBSig==; Domain=.linkedin.com; Expires=Mon, 17 Jul 2023 21:48:31 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2445:u=1:x=1:i=1674078511:t=1674164911:v=2:sig=AQGD3QwLH7JGIs7VeV9YJlKVV3n3Wtcy"; Expires=Thu, 19 Jan 2023 21:48:31 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXykMb/9jyGfGpH3gU1zg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: F7099EF8A21D4884AED9AE0858D35193 Ref B: OSL30EDGE0420 Ref C: 2023-01-18T21:48:31Z
date: Wed, 18 Jan 2023 21:48:30 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash afbe260dea6e0902126321776ded5ea5
9ceb5e5966d5a8db0d5ea325c183fb3dfd92575c
a9ed9a8540a6eb3f36c9ccbebf4ed369b1e7222e685c1b0f0a6d9b8950a41a26
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=153937
Date: Wed, 18 Jan 2023 21:48:31 GMT
Etag: "63c80f5f-1d7"
Expires: Fri, 20 Jan 2023 16:34:08 GMT
Last-Modified: Wed, 18 Jan 2023 15:25:19 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7eI7TAd23-I9S_5zvicV5oEu_Tm-gTzmZRxbJExvgWwCrsyO-M1kYg==
Age: 4129
in.hotjar.com/api/v2/client/sites/1089622/visit-data?sv=7
54.154.122.88200 OK 137 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/1089622/visit-data?sv=7
IP 54.154.122.88:0
File type JSON data\012- , ASCII text, with no line terminators
Hash efcd5932a2aebe7eb6a516dd20ed2446
8333b3d99d90c0e406388c2142c677c8946001be
48c91f69d9bd5e1d17bb328c354355eaf8c714f2619fd0327fec0f7ef242746b
POST /api/v2/client/sites/1089622/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 114
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:31 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1021636444570495&ev=PageView&dl=https%3A%2F%2Fwww.kunocreative.com%2F&rl=&if=false&ts=1674078511346&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1674078511345.1172709145&it=1674078510864&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1021636444570495&ev=PageView&dl=https%3A%2F%2Fwww.kunocreative.com%2F&rl=&if=false&ts=1674078511346&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1674078511345.1172709145&it=1674078510864&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1021636444570495&ev=PageView&dl=https%3A%2F%2Fwww.kunocreative.com%2F&rl=&if=false&ts=1674078511346&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1674078511345.1172709145&it=1674078510864&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 18 Jan 2023 21:48:31 GMT
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=22425&time=1674078510780&url=https%3A%2F%2Fwww.kunocreative.com%2F&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=22425&time=1674078510780&url=https%3A%2F%2Fwww.kunocreative.com%2F&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=22425&time=1674078510780&url=https%3A%2F%2Fwww.kunocreative.com%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kunocreative.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&f0a5b8f6-9704-4734-8410-2407dfd8b928"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 18-Jan-2024 21:48:31 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2445:u=1:x=1:i=1674078511:t=1674164911:v=2:sig=AQGD3QwLH7JGIs7VeV9YJlKVV3n3Wtcy"; Expires=Thu, 19 Jan 2023 21:48:31 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXykMcFjQ9Lg8HUnjruDQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 65C145268DCA4324B3A3F4BA786CB9A6 Ref B: OSL30EDGE0420 Ref C: 2023-01-18T21:48:31Z
date: Wed, 18 Jan 2023 21:48:31 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 51a649878045b7ebf17edd9dba55e617
33e795d4a08d3618e96e42a1d4665126390364a3
de4e433515e565f49d7e8004a6dcef42fe5c2620f1b39cdcbd99dbe11854bf0e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170775
Date: Wed, 18 Jan 2023 21:48:31 GMT
Etag: "63c84e9f-1d7"
Expires: Fri, 20 Jan 2023 21:14:46 GMT
Last-Modified: Wed, 18 Jan 2023 19:55:11 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VY4K8DOR-U8xFYLFpX9zo0cQnOQMeSnnv91QAJrRidQMpgTOThN--Q==
Age: 4775
ws19.hotjar.com/api/v2/client/ws
54.195.206.240101 Switching Protocols 0 B URL HTTP/1.1 ws19.hotjar.com/api/v2/client/ws
IP 54.195.206.240:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws19.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.kunocreative.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Rel+12Rwx/J0lbPP2wYiPw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 18 Jan 2023 21:48:31 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jAkOA5vhJsuBn34mhPqqzG9ASWo=
Sec-WebSocket-Extensions: permessage-deflate
content.hotjar.io/
54.229.67.50200 OK 56 B IP 54.229.67.50:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9688b886e69505a746491b973c1a6fe2
6290f0534a05b68d4903bcee24501b0aaf2e78b8
fd2ddce43613cfd91535a55fa4b170b1862064ca0998290ea2f2c69f071afa99
POST / HTTP/1.1
Host: content.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 247367
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:32 GMT
content-type: application/json
content-length: 56
vary: Origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
a.clickcertain.com/px/cont/?c=2467f7b899f55b6&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&cn=NO
172.67.74.207200 OK 950 B URL HTTP/2 a.clickcertain.com/px/cont/?c=2467f7b899f55b6&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&cn=NO
IP 172.67.74.207:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ae92c0199c92e705c5e07bbf79d08054
e016aa8128d92dcb0e969f3e542eb337d07ca8f6
41a308ee9e0fb6ad09be181d94da8298f915710bf239c49ad4df47f9695c41ea
GET /px/cont/?c=2467f7b899f55b6&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&cn=NO HTTP/1.1
Host: a.clickcertain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; _ccpx=2467f7b899f55b6; _ccpx_2467f7b899f55b6=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:32 GMT
content-type: text/html
etag: W/"MmYzYWNkZjdnZTY5YWc0N2MxZzk2ODhnYjQyZTRjYzhmOWIyLXow"
set-cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; Expires=Thu, 18 Jan 2024 21:48:32 GMT; Path=/; HttpOnly; SameSite=None; Secure
x-frontend: cc-nginx-554675d589-4j8m5:cc-nginx-554675d589-4j8m5
x-requestid: 4a1e277c-f3eb-4589-934d-3a37d5b2baff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KT4FbfrUvlUjd3S1SmNBG2T0Lh1h38Weh%2FaQW8lh0mn15MgsZBob3IAFdGkkzKfXN8KUT2dZqWCJc4sNWtxOi8%2FZaep4rh9XGfZPeC4rzpYI5kc3RY8n%2FDR0ROyDC4m1q2P88Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78ba890e08370b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
a.clickcertain.com/px/r/?ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2
172.67.74.207302 Found 0 B URL HTTP/2 a.clickcertain.com/px/r/?ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2
IP 172.67.74.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/r/?ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2 HTTP/1.1
Host: a.clickcertain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.clickcertain.com/px/cont/?c=2467f7b899f55b6&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&cn=NO
Cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; _ccpx=2467f7b899f55b6; _ccpx_2467f7b899f55b6=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
date: Wed, 18 Jan 2023 21:48:32 GMT
content-type: text/html
location: https://i.liadm.com/s/56408?bidder_id=200441&bidder_uuid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&redir=https%253a%252f%252fcm%252eg%252edoubleclick%252enet%252fpixel%253fgoogle_nid%253dclickcertain%2526google_cm%253d1%2526google_sc%253d1%2526redir%253dhttps%25253a%25252f%25252fsecure%25252eadnxs%25252ecom%25252fgetuidu%25253fhttps%25253a%25252f%25252fa%25252eclickcertain%25252ecom%25252fpx%25252fimg%25252fbidswitch%25252f%25253fdone%25253dtrue%252526ccid%25253d2f3acdf7%25252de69a%25252d47c1%25252d9688%25252db42e4cc8f9b2%252526anx_uId%25253d%252524UID
set-cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; Expires=Thu, 18 Jan 2024 21:48:32 GMT; Path=/; HttpOnly; SameSite=None; Secure
x-frontend: cc-nginx-554675d589-8scmx:cc-nginx-554675d589-8scmx
x-requestid: 052fcb22-d1ed-4eff-8d4f-345d2978e4b3
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Go%2FF6bcG5ejtU2SX3K4iUmAF2JBeJ46Vrm0cIPC2fEKjEW2y9%2B7zY7jHIv0tjGNqdJ7uuOzLO%2FFl3htOTHanp9If%2BBrk7uWw0wajSLckPcH%2B0bhL30QcG7VJ%2FrufmRfATKTLDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78ba89104a680b65-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b39fffbbbb6dde1cc7242db6b6ea19b1
d7cf071ec848880bb121ad393a7e9211cfbdec3c
87c7dbee101ee7b3633c426842dcc02201a2045edc939aacedc2b4a765adb73b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4280
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 21:48:33 GMT
Last-Modified: Wed, 18 Jan 2023 20:37:13 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
pixel.tapad.com/idsync/ex/receive/check?partner_id=3318&partner_device_id=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&partner_url=https%3a%2f%2fa%2eclickcertain%2ecom%2fpx%2fta%2f%3fdone%3dtrue%26ta_id%3d%24%7bTA_DEVICE_ID%7d
35.227.248.159302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive/check?partner_id=3318&partner_device_id=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&partner_url=https%3a%2f%2fa%2eclickcertain%2ecom%2fpx%2fta%2f%3fdone%3dtrue%26ta_id%3d%24%7bTA_DEVICE_ID%7d
IP 35.227.248.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive/check?partner_id=3318&partner_device_id=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&partner_url=https%3a%2f%2fa%2eclickcertain%2ecom%2fpx%2fta%2f%3fdone%3dtrue%26ta_id%3d%24%7bTA_DEVICE_ID%7d HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a.clickcertain.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 18 Jan 2023 21:48:33 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1674078513012;Expires=Sun, 19 Mar 2023 21:48:33 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=56f9abd0-654a-4bdd-9ecd-dde7b1588e1e;Expires=Sun, 19 Mar 2023 21:48:33 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_3WAY_SYNCS=;Expires=Sun, 19 Mar 2023 21:48:33 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://a.clickcertain.com/px/ta/?done=true&ta_id=56f9abd0-654a-4bdd-9ecd-dde7b1588e1e
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.clickcertain.com/px/ta/?done=true&ta_id=56f9abd0-654a-4bdd-9ecd-dde7b1588e1e
172.67.74.207204 No Content 0 B URL HTTP/2 a.clickcertain.com/px/ta/?done=true&ta_id=56f9abd0-654a-4bdd-9ecd-dde7b1588e1e
IP 172.67.74.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/ta/?done=true&ta_id=56f9abd0-654a-4bdd-9ecd-dde7b1588e1e HTTP/1.1
Host: a.clickcertain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a.clickcertain.com/
Connection: keep-alive
Cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; _ccpx=2467f7b899f55b6; _ccpx_2467f7b899f55b6=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 21:48:33 GMT
set-cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; Expires=Thu, 18 Jan 2024 21:48:33 GMT; Path=/; HttpOnly; SameSite=None; Secure
x-frontend: cc-nginx-554675d589-4xlns:cc-nginx-554675d589-4xlns
x-requestid: 2c0b4154-829d-4f8e-8acc-37f65baa20c1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vAGPOUQ%2F4NlyWHAuYEaoe42csD96AQ662y%2F4azoWEdrJroWiSNVlxpK%2BA2c7yw6yb%2Ff7aUafbtnq4IwPW4bZj%2FGGvsVxLcpdhnlDw4A%2FFuTt6IyuN6B7YuvRckBPZEJrtg04ug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78ba89127c910b65-OSL
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash c4b3d5ae52b30c4268e810598af36bf6
54f163a9884218f78ed73312f1760d54b1bff60f
3e6dd26d2488118ebb184bf3d32960588feeca894e7bc4af63eb008d203f5076
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=135390
Date: Wed, 18 Jan 2023 21:48:33 GMT
Etag: "63c7c076-1d7"
Expires: Fri, 20 Jan 2023 11:25:03 GMT
Last-Modified: Wed, 18 Jan 2023 09:48:38 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SjadmW5d62Qk9p_s9r565pG9ZdM_nyESlbpZN_4Zrf2NRU1clm5xLQ==
Age: 5785
a.clickcertain.com/px/?c=2467f7b899f55b6
172.67.74.207200 OK 2.0 kB URL HTTP/2 a.clickcertain.com/px/?c=2467f7b899f55b6
IP 172.67.74.207:0
File type ASCII text, with very long lines (2807)
Hash 24d899fe04d488d5771efeaee715ec01
1a548ff6dd5c4a3e0d9efcba5dcff01f1d8b64da
33798dc99bc26634c9bced3cde976e62d0efde9ed5af8536bb793db424e82cd5
GET /px/?c=2467f7b899f55b6 HTTP/1.1
Host: a.clickcertain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kunocreative.com/
Connection: keep-alive
Cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:32 GMT
content-type: text/javascript
set-cookie: _ccpx=2467f7b899f55b6; Expires=Thu, 18 Jan 2024 21:48:32 GMT; Path=/; HttpOnly; SameSite=None; Secure
_ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; Expires=Thu, 18 Jan 2024 21:48:32 GMT; Path=/; HttpOnly; SameSite=None; Secure
_ccpx_2467f7b899f55b6=1; Expires=Thu, 18 Jan 2024 21:48:32 GMT; Path=/; HttpOnly; SameSite=None; Secure
x-frontend: cc-nginx-554675d589-mnpjp:cc-nginx-554675d589-mnpjp
x-requestid: ae44b289-194d-4c18-97d9-86c5d99d5eec
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HfDIjX6OxQI76gTjBvnYVcDzCSOlAd5EUaGz6UONOLJvs6eJ2qlj5yz4J%2F1%2BwfNv%2FHwsh%2FEE24FZS3sKskyyFE4z%2B6DhJoDuO9kxSrBL%2B6gWLf6q3qKqAQ1Z6E5ztuvAj3QyeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78ba88fde8ae0b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
a.usbrowserspeed.com/cs?puid=d69594e7-1593-5fdc-b8b0-08644614c47e&pid=lc&r=https%3a%2f%2fa%2eclickcertain%2ecom%2fpx%2ft%2f%3fdone%3dtrue%26uid%3d%24%7bDEVICE_ID%7d%26hem%3d%24%7bHEM_SHA256_LOWERCASE%7d
54.214.96.229302 Found 119 B URL HTTP/2 a.usbrowserspeed.com/cs?puid=d69594e7-1593-5fdc-b8b0-08644614c47e&pid=lc&r=https%3a%2f%2fa%2eclickcertain%2ecom%2fpx%2ft%2f%3fdone%3dtrue%26uid%3d%24%7bDEVICE_ID%7d%26hem%3d%24%7bHEM_SHA256_LOWERCASE%7d
IP 54.214.96.229:0
File type HTML document, ASCII text
Hash b79e360aa61c737feaf17d6410d1743e
91911e6445c90991d93e33e763deb1f482f977f1
20e93c0439869d61875ba2c7d885a8aa6ee6a5dc16ea53785c4780913a948c37
GET /cs?puid=d69594e7-1593-5fdc-b8b0-08644614c47e&pid=lc&r=https%3a%2f%2fa%2eclickcertain%2ecom%2fpx%2ft%2f%3fdone%3dtrue%26uid%3d%24%7bDEVICE_ID%7d%26hem%3d%24%7bHEM_SHA256_LOWERCASE%7d HTTP/1.1
Host: a.usbrowserspeed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.clickcertain.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: awselb/2.0
date: Wed, 18 Jan 2023 21:48:33 GMT
content-type: text/html; charset=utf-8
content-length: 119
location: https://a.clickcertain.com/px/t/?done=true&uid=af088636-5fb8-4c78-a0b9-cbd0549fe7b2&hem=
set-cookie: tuid=af088636-5fb8-4c78-a0b9-cbd0549fe7b2; Path=/; Domain=a.usbrowserspeed.com; Max-Age=31536000; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
i.liadm.com/s/56408?bidder_id=200441&bidder_uuid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&redir=https%253a%252f%252fcm%252eg%252edoubleclick%252enet%252fpixel%253fgoogle_nid%253dclickcertain%2526google_cm%253d1%2526google_sc%253d1%2526redir%253dhttps%25253a%25252f%25252fsecure%25252eadnxs%25252ecom%25252fgetuidu%25253fhttps%25253a%25252f%25252fa%25252eclickcertain%25252ecom%25252fpx%25252fimg%25252fbidswitch%25252f%25253fdone%25253dtrue%252526ccid%25253d2f3acdf7%25252de69a%25252d47c1%25252d9688%25252db42e4cc8f9b2%252526anx_uId%25253d%252524UID
54.198.35.187303 See Other 0 B URL HTTP/1.1 i.liadm.com/s/56408?bidder_id=200441&bidder_uuid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&redir=https%253a%252f%252fcm%252eg%252edoubleclick%252enet%252fpixel%253fgoogle_nid%253dclickcertain%2526google_cm%253d1%2526google_sc%253d1%2526redir%253dhttps%25253a%25252f%25252fsecure%25252eadnxs%25252ecom%25252fgetuidu%25253fhttps%25253a%25252f%25252fa%25252eclickcertain%25252ecom%25252fpx%25252fimg%25252fbidswitch%25252f%25253fdone%25253dtrue%252526ccid%25253d2f3acdf7%25252de69a%25252d47c1%25252d9688%25252db42e4cc8f9b2%252526anx_uId%25253d%252524UID
IP 54.198.35.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/56408?bidder_id=200441&bidder_uuid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&redir=https%253a%252f%252fcm%252eg%252edoubleclick%252enet%252fpixel%253fgoogle_nid%253dclickcertain%2526google_cm%253d1%2526google_sc%253d1%2526redir%253dhttps%25253a%25252f%25252fsecure%25252eadnxs%25252ecom%25252fgetuidu%25253fhttps%25253a%25252f%25252fa%25252eclickcertain%25252ecom%25252fpx%25252fimg%25252fbidswitch%25252f%25253fdone%25253dtrue%252526ccid%25253d2f3acdf7%25252de69a%25252d47c1%25252d9688%25252db42e4cc8f9b2%252526anx_uId%25253d%252524UID HTTP/1.1
Host: i.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a.clickcertain.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Wed, 18 Jan 2023 21:48:33 GMT
Content-Length: 0
Connection: keep-alive
Location: /s/56408?redir=https%253a%252f%252fcm%252eg%252edoubleclick%252enet%252fpixel%253fgoogle_nid%253dclickcertain%2526google_cm%253d1%2526google_sc%253d1%2526redir%253dhttps%25253a%25252f%25252fsecure%25252eadnxs%25252ecom%25252fgetuidu%25253fhttps%25253a%25252f%25252fa%25252eclickcertain%25252ecom%25252fpx%25252fimg%25252fbidswitch%25252f%25253fdone%25253dtrue%252526ccid%25253d2f3acdf7%25252de69a%25252d47c1%25252d9688%25252db42e4cc8f9b2%252526anx_uId%25253d%252524UID&bidder_id=200441&bidder_uuid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&_li_chk=true&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&previous_uuid=901fc2bd41eb478f8502fa77bc8163a7
Set-Cookie: lidid=901fc2bd-41eb-478f-8502-fa77bc8163a7; Max-Age=63072000; Expires=Fri, 17 Jan 2025 21:48:33 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Request-Time: 1
Strict-Transport-Security: max-age=31536000; includeSubDomains
a.clickcertain.com/px/t/?done=true&uid=af088636-5fb8-4c78-a0b9-cbd0549fe7b2&hem=
172.67.74.207204 No Content 0 B URL HTTP/2 a.clickcertain.com/px/t/?done=true&uid=af088636-5fb8-4c78-a0b9-cbd0549fe7b2&hem=
IP 172.67.74.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/t/?done=true&uid=af088636-5fb8-4c78-a0b9-cbd0549fe7b2&hem= HTTP/1.1
Host: a.clickcertain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a.clickcertain.com/
Connection: keep-alive
Cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; _ccpx=2467f7b899f55b6; _ccpx_2467f7b899f55b6=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 21:48:33 GMT
set-cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; Expires=Thu, 18 Jan 2024 21:48:33 GMT; Path=/; HttpOnly; SameSite=None; Secure
x-frontend: cc-nginx-554675d589-5lnck:cc-nginx-554675d589-5lnck
x-requestid: c4ac14c4-737a-4156-88e2-fde6024a0c37
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P6OIDwrtA%2FkIWJvlAW7T85Tv2qfX0EgbSNtdrvoQqMo1e87bhqP4a%2BQQa7U%2F7UbA4KGtuNpr0SrY2vtp%2F6sHVNqL4RTQy2wQGj8IiKsUibiV9mAbm9oKSGFYHn%2FotI7QfVGUQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78ba8914df180b65-OSL
X-Firefox-Spdy: h2
i.liadm.com/s/56408?redir=https%253a%252f%252fcm%252eg%252edoubleclick%252enet%252fpixel%253fgoogle_nid%253dclickcertain%2526google_cm%253d1%2526google_sc%253d1%2526redir%253dhttps%25253a%25252f%25252fsecure%25252eadnxs%25252ecom%25252fgetuidu%25253fhttps%25253a%25252f%25252fa%25252eclickcertain%25252ecom%25252fpx%25252fimg%25252fbidswitch%25252f%25253fdone%25253dtrue%252526ccid%25253d2f3acdf7%25252de69a%25252d47c1%25252d9688%25252db42e4cc8f9b2%252526anx_uId%25253d%252524UID&bidder_id=200441&bidder_uuid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&_li_chk=true&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&previous_uuid=901fc2bd41eb478f8502fa77bc8163a7
54.198.35.187303 See Other 0 B URL HTTP/1.1 i.liadm.com/s/56408?redir=https%253a%252f%252fcm%252eg%252edoubleclick%252enet%252fpixel%253fgoogle_nid%253dclickcertain%2526google_cm%253d1%2526google_sc%253d1%2526redir%253dhttps%25253a%25252f%25252fsecure%25252eadnxs%25252ecom%25252fgetuidu%25253fhttps%25253a%25252f%25252fa%25252eclickcertain%25252ecom%25252fpx%25252fimg%25252fbidswitch%25252f%25253fdone%25253dtrue%252526ccid%25253d2f3acdf7%25252de69a%25252d47c1%25252d9688%25252db42e4cc8f9b2%252526anx_uId%25253d%252524UID&bidder_id=200441&bidder_uuid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&_li_chk=true&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&previous_uuid=901fc2bd41eb478f8502fa77bc8163a7
IP 54.198.35.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/56408?redir=https%253a%252f%252fcm%252eg%252edoubleclick%252enet%252fpixel%253fgoogle_nid%253dclickcertain%2526google_cm%253d1%2526google_sc%253d1%2526redir%253dhttps%25253a%25252f%25252fsecure%25252eadnxs%25252ecom%25252fgetuidu%25253fhttps%25253a%25252f%25252fa%25252eclickcertain%25252ecom%25252fpx%25252fimg%25252fbidswitch%25252f%25253fdone%25253dtrue%252526ccid%25253d2f3acdf7%25252de69a%25252d47c1%25252d9688%25252db42e4cc8f9b2%252526anx_uId%25253d%252524UID&bidder_id=200441&bidder_uuid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&_li_chk=true&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&previous_uuid=901fc2bd41eb478f8502fa77bc8163a7 HTTP/1.1
Host: i.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a.clickcertain.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Wed, 18 Jan 2023 21:48:33 GMT
Content-Length: 0
Connection: keep-alive
Location: https://a.clickcertain.com/px/li/?redir=https%3a%2f%2fcm%2eg%2edoubleclick%2enet%2fpixel%3fgoogle_nid%3dclickcertain%26google_cm%3d1%26google_sc%3d1%26redir%3dhttps%253a%252f%252fsecure%252eadnxs%252ecom%252fgetuidu%253fhttps%253a%252f%252fa%252eclickcertain%252ecom%252fpx%252fimg%252fbidswitch%252f%253fdone%253dtrue%2526ccid%253d2f3acdf7%252de69a%252d47c1%252d9688%252db42e4cc8f9b2%2526anx_uId%253d%2524UID&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2
Set-Cookie: _li_ss=CggKBgiSARCOFA; Max-Age=2592000; Expires=Fri, 17 Feb 2023 21:48:33 GMT; SameSite=None; Path=/s; Secure
lidid=4692853f-2895-4584-8857-531cddd1d13c; Max-Age=63072000; Expires=Fri, 17 Jan 2025 21:48:33 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Request-Time: 2
Strict-Transport-Security: max-age=31536000; includeSubDomains
insight.adsrvr.org/track/up?adv=tj29b23&ref=https%3A%2F%2Fwww.kunocreative.com%2F&upid=9v5frev&upv=1.1.0
52.223.40.198200 OK 45 B URL HTTP/2 insight.adsrvr.org/track/up?adv=tj29b23&ref=https%3A%2F%2Fwww.kunocreative.com%2F&upid=9v5frev&upv=1.1.0
IP 52.223.40.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c8817d472077ebfc04593c1fa019d32d
e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247
dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4
GET /track/up?adv=tj29b23&ref=https%3A%2F%2Fwww.kunocreative.com%2F&upid=9v5frev&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:34 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
forms.hubspot.com/lead-flows-config/v1/config/json?portalId=32387&utk=eedb9e03502a9067a7e34878631edbf0&__hstc=23038436.eedb9e03502a9067a7e34878631edbf0.1674078513650.1674078513650.1674078513650.1&__hssc=23038436.1.1674078513650&contentId=5416766054¤tUrl=https%3A%2F%2Fwww.kunocreative.com%2F
104.19.154.83200 OK 233 B URL HTTP/2 forms.hubspot.com/lead-flows-config/v1/config/json?portalId=32387&utk=eedb9e03502a9067a7e34878631edbf0&__hstc=23038436.eedb9e03502a9067a7e34878631edbf0.1674078513650.1674078513650.1674078513650.1&__hssc=23038436.1.1674078513650&contentId=5416766054¤tUrl=https%3A%2F%2Fwww.kunocreative.com%2F
IP 104.19.154.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7ea525acb0457f2edfa398ed986e43a6
90401c609f6936a80b1eeedbd31cdf8e159ac8d9
bd6c9b0214e898b6357fa77510e5451de1ea2eda308697b6ec104dd2ab7ac089
GET /lead-flows-config/v1/config/json?portalId=32387&utk=eedb9e03502a9067a7e34878631edbf0&__hstc=23038436.eedb9e03502a9067a7e34878631edbf0.1674078513650.1674078513650.1674078513650.1&__hssc=23038436.1.1674078513650&contentId=5416766054¤tUrl=https%3A%2F%2Fwww.kunocreative.com%2F HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:34 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: 5911c57d-6343-4c56-bd93-b32a908adfbc
access-control-allow-credentials: false
access-control-allow-origin: https://www.kunocreative.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent
access-control-max-age: 180
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=TbjrTRDIPnmpkgefxK7LGrXXVK3BNOmsfvwx9dC3vvw-1674078514-0-AVyc0WT5JRGEeTtpwSlQBrq7kQhY8HumfwQ2fwd7DR2Bz+Iz6GIr0Ku8qyM5kMQgnE8Z6wqplN4BDNF/a1fijao=; path=/; expires=Wed, 18-Jan-23 22:18:34 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pUTnoUf0CTUqv6XmdtsGjEHNdt9AlkjsEhB4pBOKOmL0JUwjm9bRaFKxSq9%2Fgz2kLCKpzB5WyhAJ5hvXvpAF%2B4O%2BRYa3V8ZPNcvCgxT2qdlW8n8YdkH993P%2Fv0%2B065Lbd9KZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78ba89183920b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.remarketstats.com/px/smart/?c=2467f7b899f55b6&seg=home
104.26.2.122302 Found 0 B URL HTTP/2 a.remarketstats.com/px/smart/?c=2467f7b899f55b6&seg=home
IP 104.26.2.122:0
GET /px/smart/?c=2467f7b899f55b6&seg=home HTTP/1.1
Host: a.remarketstats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 18 Jan 2023 21:48:29 GMT
content-type: text/html
location: https://a.clickcertain.com/px/smart/a/?c=2467f7b899f55b6&seg=home
x-frontend: cc-nginx-554675d589-4j8m5:cc-nginx-554675d589-4j8m5
x-requestid: 8d4ffff1-a81c-41a0-a0e3-1c2cd1c011cf
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JdFBoN8Y7Kpei%2FXlDlurw0wq3igI0xUgQr4dZZ4C21Kav9FZcR%2BkEGduJKiPJThkGtYz1sDvbLo5bn%2BlPrLh9ekPcmITq109kazNvfos%2FbaM8mnh9V6NHBrpRU71l816Xmf03Es%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78ba88fbaaffb4f7-OSL
X-Firefox-Spdy: h2
js.usemessages.com/conversations-embed.js
104.17.236.204200 OK 0 B URL HTTP/2 js.usemessages.com/conversations-embed.js
IP 104.17.236.204:0
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Fri, 13 Jan 2023 12:25:39 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: PZ.VqJdb97Sg7li94POrAGz_HafqqY_T
etag: W/"b7bd570cd2eaf6ea9eace36101424097"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 420b04515afbec0c45b59617f13f792a.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P4
x-amz-cf-id: HMxJggNzGeS8hrVeaIXP03taKJDissQAfYkBYOZw9TgX_UmzGGBWTA==
age: 361
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.11763/bundles/project.js&cfRay=78b69a623bcdb52d-IAD
x-hs-target-asset: conversations-embed/static-1.11763/bundles/project.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 78ba88fb7c670afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
npmcdn.com/isotope-layout@2.2.2/dist/isotope.pkgd.js
172.67.73.81200 OK 0 B URL HTTP/2 npmcdn.com/isotope-layout@2.2.2/dist/isotope.pkgd.js
IP 172.67.73.81:0
GET /isotope-layout@2.2.2/dist/isotope.pkgd.js HTTP/1.1
Host: npmcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kunocreative.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:28 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Fri, 21 Aug 2015 15:29:04 GMT
etag: W/"1c401-H+zOdR6NKKvUZcJlSFGsVvnKFkg"
via: 1.1 fly.io
fly-request-id: 01GDFX0RPE2AF863M8P4MKN2SC-fra
cf-cache-status: HIT
age: 10318672
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jz3XupxhvkKmx3i1o9DLbD8OrZTDvm1LJkS9hCGrR4r4F7YkijLVWyRLB07NfEjQLzRAKA8EgyukPO%2BqogW%2BCYlVQJLK4EPl10wLywIhEfRz%2BRsiTQCJ0NxdZ94%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78ba88f72e83b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Merriweather:400,300,300italic,700,400italic,700italic,900
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Merriweather:400,300,300italic,700,400italic,700italic,900
IP 142.250.74.106:0
GET /css?family=Merriweather:400,300,300italic,700,400italic,700italic,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 21:48:28 GMT
date: Wed, 18 Jan 2023 21:48:28 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.hs-banner.com/32387.js
104.18.33.171200 OK 0 B URL HTTP/2 js.hs-banner.com/32387.js
IP 104.18.33.171:0
GET /32387.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:29 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: d6zSj9aEVJO529fp+JGNUFZNOzsn1EzxvQVx1i6cXudB+r7/jFy2zUDzBFrtCvMFKsvtrQAVI8qE0L0tktoqJg==
x-amz-request-id: XKKXDPN7F1V0FYXF
last-modified: Fri, 04 Nov 2022 13:12:26 GMT
etag: W/"dd2a9dde2205022812c4dba4d0722f6b"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: lxIt6plC_QZFREtpJqHGEz4ojegtezMX
access-control-allow-origin: https://www.kunocreative.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Wed, 18 Jan 2023 21:53:29 GMT
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 78ba88fb7e08b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
32387.fs1.hubspotusercontent-na1.net/hubfs/32387/2018/images/kuno_plus.s
104.18.33.40404 Not Found 0 B URL HTTP/2 32387.fs1.hubspotusercontent-na1.net/hubfs/32387/2018/images/kuno_plus.s
IP 104.18.33.40:0
GET /hubfs/32387/2018/images/kuno_plus.s HTTP/1.1
Host: 32387.fs1.hubspotusercontent-na1.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 18 Jan 2023 21:48:30 GMT
content-type: text/html
cf-ray: 78ba88faedca0b61-OSL
access-control-allow-origin: *
cache-control: s-maxage=300, max-age=600
etag: W/"f6e4b6cdb45684ca8239a8161901d7ad"
last-modified: Tue, 19 Feb 2019 20:12:00 GMT
vary: Accept-Encoding
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
cf-cache-status: EXPIRED
access-control-allow-methods: GET
x-amz-cf-id: VNTUAN6U1BLmcvcR4SX9h7M9J4N-9TYrpEf1J7bYPaDn8_QkvyDMvg==
x-amz-cf-pop: OSL50-C1
x-amz-version-id: oQ5g.LoAEFK3mdk3M1pWALQQ6oLrzuy3
x-cache: Error from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/22425/domain/kunocreative.com/token
54.230.111.42200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/22425/domain/kunocreative.com/token
IP 54.230.111.42:0
GET /partner/22425/domain/kunocreative.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Wed, 18 Jan 2023 21:48:31 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: l44c7Fp-si7vKA_Nrk569Ha2P9C73IXM25eH7vmMaZVa8jPsqdU9Ew==
X-Firefox-Spdy: h2
a.clickcertain.com/px/ta/?ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2
172.67.74.207302 Found 0 B URL HTTP/2 a.clickcertain.com/px/ta/?ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2
IP 172.67.74.207:0
GET /px/ta/?ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2 HTTP/1.1
Host: a.clickcertain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.clickcertain.com/px/cont/?c=2467f7b899f55b6&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&cn=NO
Cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; _ccpx=2467f7b899f55b6; _ccpx_2467f7b899f55b6=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
date: Wed, 18 Jan 2023 21:48:32 GMT
content-type: text/html
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=3318&partner_device_id=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2&partner_url=https%3a%2f%2fa%2eclickcertain%2ecom%2fpx%2fta%2f%3fdone%3dtrue%26ta_id%3d%24%7bTA_DEVICE_ID%7d
set-cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; Expires=Thu, 18 Jan 2024 21:48:32 GMT; Path=/; HttpOnly; SameSite=None; Secure
x-frontend: cc-nginx-554675d589-4xlns:cc-nginx-554675d589-4xlns
x-requestid: 8234eeeb-4522-4421-975b-d9dfcb09b4eb
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FS2b5VEbNV59eiE%2BONUCMYidfNzAiGXfLoaMJe4f6WZ2xdvKlWeX1gtpNMGIDfm3g7J2ANFoTVy90v9GyQuWW8LjoPy%2FsbKGKntVk0D5d5aG%2BEGXo02jPb9oNjtTx1hvrq%2BQKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78ba89104a630b65-OSL
X-Firefox-Spdy: h2
www.kunocreative.com/
199.60.103.29200 OK 0 B IP 199.60.103.29:0
ASN #209242 Cloudflare London, LLC
GET / HTTP/1.1
Host: www.kunocreative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:28 GMT
content-type: text/html; charset=UTF-8
cache-control: s-maxage=10800, max-age=0
etag: W/"efb39805e42ad6afcb3263927ede513d"
last-modified: Sat, 14 Jan 2023 06:01:26 GMT
link: </hs/hsstatic/HubspotToolsMenu/static-1.143/js/index.js>; rel=preload; as=script,</hs/hsstatic/keyboard-accessible-menu-flyouts/static-1.17/bundles/project.js>; rel=preload; as=script,</hs/hsstatic/cos-i18n/static-1.53/bundles/project.js>; rel=preload; as=script
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
edge-cache-tag: CT-5416766054,P-32387,L-5137558178,L-5138092366,L-82853645314,W-5393894060,CW-53618135961,CW-82849812632,CW-82851725401,CW-82852521556,CW-82853644908,CW-82854009417,E-37912324369,E-5137795232,E-5137795426,E-5206909105,E-8541875098,E-8541878423,MENU-5393894060,PGS-ALL,SW-3,GC-28645191916,GC-33836961295
referrer-policy: no-referrer-when-downgrade
x-hs-cache-config: BrowserCache-5s-EdgeCache-180s
x-hs-cache-control: s-maxage=10800, max-age=0
x-hs-cf-cache-status: MISS
x-hs-content-id: 5416766054
x-hs-hub-id: 32387
x-hs-prerendered: Sat, 14 Jan 2023 06:01:26 GMT
x-powered-by: HubSpot
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LpLb9eqPyoNycf5j2PaQE7IhWAsaBwcpSUtfUDZK61xZ3%2BM13aUp9EO1PH%2FcugflQe7dDS6bmizuRrbeWCvhifAgdo90rXDUcxjLMgIZe%2BLMT4pCh0YS1vBhj5e9Dfs4RZqpdIBq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: __cf_bm=kQ.dLO7E54taKh5ZAlG3mRRtuYQfO3WqJUZVA.G3Zag-1674078508-0-Aapt6ZRtVbzGRqQwqB36LK9LBFoH1XSVMTpWYyncBImc+yPDw3jXIkWOgVmhgerrxB2nTy27jN3PFfOI5j1n3jk=; path=/; expires=Wed, 18-Jan-23 22:18:28 GMT; domain=.www.kunocreative.com; HttpOnly; Secure; SameSite=None
__cfruid=b04f2886b037baad9afeeb26f1f80856f2faed8e-1674078508; path=/; domain=.www.kunocreative.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 78ba88f1abcefab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-h2-pushed: </hs/hsstatic/HubspotToolsMenu/static-1.143/js/index.js>,</hs/hsstatic/keyboard-accessible-menu-flyouts/static-1.17/bundles/project.js>,</hs/hsstatic/cos-i18n/static-1.53/bundles/project.js>
X-Firefox-Spdy: h2
cdn.sitesearch360.com/sitesearch360-v12.mjs
104.18.8.146200 OK 0 B URL HTTP/2 cdn.sitesearch360.com/sitesearch360-v12.mjs
IP 104.18.8.146:0
GET /sitesearch360-v12.mjs HTTP/1.1
Host: cdn.sitesearch360.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:28 GMT
content-type: application/javascript
last-modified: Fri, 01 Apr 2022 15:49:27 GMT
etag: W/"339d1-5db99b9310357"
access-control-allow-origin: *
cf-cache-status: HIT
age: 7106
expires: Sat, 18 Feb 2023 21:48:28 GMT
cache-control: public, max-age=2678400
vary: Accept-Encoding
server: cloudflare
cf-ray: 78ba88f6cbd3b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hsleadflows.net/leadflows.js
104.17.231.204200 OK 0 B URL HTTP/2 js.hsleadflows.net/leadflows.js
IP 104.17.231.204:0
GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:29 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 12 Jan 2023 01:15:58 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: cBWlZpBPNqCcN4.OsLoqDE.Qz8k.oCDt
etag: W/"81f94bb71da5bf7e447ae1cd97c54e62"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 7a9f6a4fba100d04559a6d3a82b7dc56.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P4
x-amz-cf-id: genmqjS5SCaak9HT-wYtoGm9r_oMq5ZC-DD_9NC1xAqS1hgc2DQmWQ==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=lead-flows-js/static-1.1126/bundle/main/lead-flows-release.js&cfRay=78adf6630ba09926-IAD
x-hs-target-asset: lead-flows-js/static-1.1126/bundle/main/lead-flows-release.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 7106
server: cloudflare
cf-ray: 78ba88fb6dc5b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=32387
104.17.204.204200 OK 0 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=32387
IP 104.17.204.204:0
GET /hs-script-loader-public/v1/config/pixel/json?portalId=32387 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:29 GMT
content-type: application/json;charset=utf-8
cf-ray: 78ba88fd2810b527-OSL
access-control-allow-origin: https://www.kunocreative.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: 39cffdea-aa3b-423e-88fc-ae8e24dd8750
x-trace: 2B8698831ACEF11774E5A9EE8AE465F02E10BDCC04000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9BnjZuWDLzBtKIiuKxUGnOgzVNnFHa7QjV6%2F3nvPVW2SSqZUcC7JtYylIbjmzsxJrs2rnBZ3Q5UVQfo1Xj1fWbWn5YNJsF%2BHcU7HL5%2BvbUf%2Bv%2FzUrVAly4jOJYcde%2Fcw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/22425/domain/kunocreative.com/token
54.230.111.42200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/22425/domain/kunocreative.com/token
IP 54.230.111.42:0
GET /partner/22425/domain/kunocreative.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kunocreative.com
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Wed, 18 Jan 2023 21:48:31 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4FmCdYSTzT1w8Tb1_r1wdqa0YPeTONEkJqber5naFqPnUWT1UFa9VA==
X-Firefox-Spdy: h2
a.clickcertain.com/px/li/?redir=https%3a%2f%2fcm%2eg%2edoubleclick%2enet%2fpixel%3fgoogle_nid%3dclickcertain%26google_cm%3d1%26google_sc%3d1%26redir%3dhttps%253a%252f%252fsecure%252eadnxs%252ecom%252fgetuidu%253fhttps%253a%252f%252fa%252eclickcertain%252ecom%252fpx%252fimg%252fbidswitch%252f%253fdone%253dtrue%2526ccid%253d2f3acdf7%252de69a%252d47c1%252d9688%252db42e4cc8f9b2%2526anx_uId%253d%2524UID&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2
172.67.74.207200 OK 0 B URL HTTP/2 a.clickcertain.com/px/li/?redir=https%3a%2f%2fcm%2eg%2edoubleclick%2enet%2fpixel%3fgoogle_nid%3dclickcertain%26google_cm%3d1%26google_sc%3d1%26redir%3dhttps%253a%252f%252fsecure%252eadnxs%252ecom%252fgetuidu%253fhttps%253a%252f%252fa%252eclickcertain%252ecom%252fpx%252fimg%252fbidswitch%252f%253fdone%253dtrue%2526ccid%253d2f3acdf7%252de69a%252d47c1%252d9688%252db42e4cc8f9b2%2526anx_uId%253d%2524UID&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2
IP 172.67.74.207:0
GET /px/li/?redir=https%3a%2f%2fcm%2eg%2edoubleclick%2enet%2fpixel%3fgoogle_nid%3dclickcertain%26google_cm%3d1%26google_sc%3d1%26redir%3dhttps%253a%252f%252fsecure%252eadnxs%252ecom%252fgetuidu%253fhttps%253a%252f%252fa%252eclickcertain%252ecom%252fpx%252fimg%252fbidswitch%252f%253fdone%253dtrue%2526ccid%253d2f3acdf7%252de69a%252d47c1%252d9688%252db42e4cc8f9b2%2526anx_uId%253d%2524UID&ccid=2f3acdf7-e69a-47c1-9688-b42e4cc8f9b2 HTTP/1.1
Host: a.clickcertain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a.clickcertain.com/
Connection: keep-alive
Cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; _ccpx=2467f7b899f55b6; _ccpx_2467f7b899f55b6=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:33 GMT
content-type: text/html
set-cookie: _ccpx_u=2f3acdf7%2de69a%2d47c1%2d9688%2db42e4cc8f9b2; Expires=Thu, 18 Jan 2024 21:48:33 GMT; Path=/; HttpOnly; SameSite=None; Secure
x-frontend: cc-nginx-554675d589-4xlns:cc-nginx-554675d589-4xlns
x-requestid: 96198fc6-0a3d-4f9a-b98a-a2e2f33a1621
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qzlX%2B9BlbBsCFEvkvCqB%2Bq2LG%2B0abV%2F4GV2Ur5023W0s%2FT1fLysO%2BLoJlhmvsQNY6PFWgj8LROKcBCW8T6l1NeeKOWnLI8rFyErFubZ3MENGqE06EZSQPYdU6WQTfc%2FSi7pQIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78ba891658770b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn2.hubspot.net/hub/7052064/hub_generated/template_assets/1673630757442/hubspot/hubspot_default/shared/responsive/layout.min.css
104.17.241.204200 OK 0 B URL HTTP/2 cdn2.hubspot.net/hub/7052064/hub_generated/template_assets/1673630757442/hubspot/hubspot_default/shared/responsive/layout.min.css
IP 104.17.241.204:0
GET /hub/7052064/hub_generated/template_assets/1673630757442/hubspot/hubspot_default/shared/responsive/layout.min.css HTTP/1.1
Host: cdn2.hubspot.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:28 GMT
content-type: text/css
cf-ray: 78ba88f61b94b506-OSL
access-control-allow-origin: *
age: 447640
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"94daf62e7e6df83595c6251fb0c7c055"
last-modified: Fri, 13 Jan 2023 17:25:59 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: GET
x-amz-cf-pop: IAD89-P1
x-amz-meta-created-unix-time-millis: 1673630758401
x-amz-replication-status: PENDING
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oRupKj6AflTSNIkht4FXpL7rhzBvqlC5NntRIQ3gl6Ti3dDHlWPTec3CwWSN3K6%2BPB46MNmUUTb2JUddsuI0SnUegXVRaUW%2BpG7QuTxAIqQ%2BnHBPllteaPW%2BlscTEmcC9AU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
js.hsadspixel.net/fb.js
104.17.112.176200 OK 0 B IP 104.17.112.176:0
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kunocreative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 21:48:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Tue, 03 Jan 2023 01:54:30 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: Pzk5Y6yW4FTLubLBTP3MgGAHjRxytAJ0
etag: W/"83a5a8783c71c1074cc34ecd8c8615de"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 305fa1d7f9df4e42edba1bba6d0ebb56.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P4
x-amz-cf-id: eM8dz_xQ9JP6qbtRjaHa0U9IDVC4eKvp5CXqRDlGDJIELQvqPWOD7g==
age: 198
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.304/bundles/pixels-release.js&cfRay=78b69e5de8ceb509-OSL
x-hs-target-asset: adsscriptloaderstatic/static-1.304/bundles/pixels-release.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 78ba88fb7ec3b515-OSL
content-encoding: br
X-Firefox-Spdy: h2