firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 00:12:59 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1hMwl9oYFXhb9FdXqkb-pwQV0RvKBgab0BTj-SB9VyF8WiDflGpVig==
Age: 3398
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11159
Expires: Tue, 20 Sep 2022 04:15:36 GMT
Date: Tue, 20 Sep 2022 01:09:37 GMT
Connection: keep-alive
groceryus.com/xrf
13.56.33.8301 Moved Permanently 175 B IP 13.56.33.8:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 00b1749e7f34b8de5bde2b4abd5cefef
da5846fe6898511ed9dcf79f12d78042fb649e01
b5aa18241aa2adbec8f48b308a46a386e31040f6bb85ca381e427b399679b56e
Analyzer Verdict Alert fortinet Phishing
GET /xrf HTTP/1.1
Host: groceryus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: openresty/1.15.8.2
Date: Tue, 20 Sep 2022 01:09:37 GMT
Content-Type: text/html
Content-Length: 175
Connection: keep-alive
Referrer-Policy: no-referrer
Location: https://www.brandbucket.com/names/groceryus?source=ext
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 19 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: esiWUSt_HxFnHftPLcwPfLxKCZpUFPiGhk83bXzpNYTkbZf3psFNhA==
age: 74064
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 01:09:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 01:03:22 GMT
Expires: Tue, 20 Sep 2022 01:17:39 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SxNKOxO_bqDNBKg5so7PojP4nFibYqm79axqdVAq2KPLcN_yxBITgg==
Age: 376
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash d29c30c2721298fb9c10d3e28e6fc0ab
b208581031ea63a04ae1321d89593153e65f47c0
0bad9dd5b7072937e07d9276080cc56918f61039a02a211dbd60e57c59d0632a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:38 GMT
Server: ECS (amb/6BB4)
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5c817aa82ca8ed4a4257fd1e1628b423
7905c62b6bbc582860c07b75eddae371a4b8d02b
dce1783ecfe50c83d30878b48d60e1cf3fe42a3fa4090fb5d318194de73e53d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4160
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:38 GMT
Last-Modified: Tue, 20 Sep 2022 00:00:18 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.160.51.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.51.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IIOSLKZu1axr0G+fpgAwXw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JlIyiSY1fLaYYlTVLBbS2r7HOwk=
www.brandbucket.com/images2/nice_bk1_thumb.jpg
104.22.6.216200 OK 5.8 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk1_thumb.jpg
IP 104.22.6.216:0
File type JPEG image data, progressive, precision 8, 150x98, components 3\012- data
Hash b4dad318d2eef70faeb94c1de940b8e9
fd7b8e6d33dfdb9514f59ba26b855ec61f2b21ce
d4f3a8ecf34eb859108c375c36cca14e484d752a87763c58a80e20220e866004
GET /images2/nice_bk1_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/jpeg
content-length: 5793
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16185
etag: "5ee1f38e-3f39"
last-modified: Thu, 11 Jun 2020 09:04:14 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2322
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad487c810b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk2_thumb.jpg
104.22.6.216200 OK 6.6 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk2_thumb.jpg
IP 104.22.6.216:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 150x96, components 3\012- data
Hash 87c01ad06c8f0f82f63762112b62c261
4c58266d4e8d2d205fbfe88af39d47e96e353733
96d5437cff72a446bada499ea347636473a33dc3f6a09a5bcce71e794bb7b8dd
GET /images2/nice_bk2_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/jpeg
content-length: 6565
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16629
etag: "5ee1f391-40f5"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2322
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad487c820b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk3_thumb.jpg
104.22.6.216200 OK 6.2 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk3_thumb.jpg
IP 104.22.6.216:0
File type JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Hash 7c72d58b1656eb337865be3d7945019a
70f88fa2fa40ec3b8e7c98b033f5f48e07dfcf07
81684900b1c4f2f5d1b3e6d9917a02e11cf87160152e784ccece4ee159f9ccbe
GET /images2/nice_bk3_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/jpeg
content-length: 6202
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16805
etag: "5ee1f392-41a5"
last-modified: Thu, 11 Jun 2020 09:04:18 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2323
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad487c830b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk4_thumb.jpg
104.22.6.216200 OK 6.1 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk4_thumb.jpg
IP 104.22.6.216:0
File type JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Hash 57aee6ca35013ad9b91ae2583c1831f7
73616462427ff5288ac0e19e54eac477270a7b59
0514463b5d215bf6e91ed3a61d6189e34e89e5921249add1e0f9bbd2e9b41294
GET /images2/nice_bk4_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/jpeg
content-length: 6091
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16406
etag: "5ee1f391-4016"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2322
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad487c840b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_plus.png
104.22.6.216200 OK 604 B URL HTTP/2 www.brandbucket.com/images7/icon_plus.png
IP 104.22.6.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 94865622c5c9f42d952bbea159d15dd6
217ad71873550f450b555bdc83805a1969a2a4b7
70a3df33b31f08827510b14236a8c6320ea413b2b4210b4232416c20bcc751cc
GET /images7/icon_plus.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 604
cf-bgj: imgq:100,h2pri
cf-polished: origSize=743
etag: "5ede24b6-2e7"
last-modified: Mon, 08 Jun 2020 11:44:54 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2322
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad487c870b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk5_thumb.jpg
104.22.6.216200 OK 5.6 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk5_thumb.jpg
IP 104.22.6.216:0
File type JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Hash bca3c9b14d1a37b805e41f8cbe61be7e
5a3849459df95c9ac261840c9efe5cd265cd755a
f730c29ffb9ba16b6e0bcb09ded50ef3076f7125fc133103ed7d26843f3e57b0
GET /images2/nice_bk5_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/jpeg
content-length: 5617
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16068
etag: "5ee1f391-3ec4"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2322
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad487c850b49-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39849bd6f52731cfb360aed1601f98eb
9b7c5b858505e23388d679bc3bfb8325103d082c
ae17c00468ba16c500d99654678a8b67cdbb1d8085698993a9ef90aff57248a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39849bd6f52731cfb360aed1601f98eb
9b7c5b858505e23388d679bc3bfb8325103d082c
ae17c00468ba16c500d99654678a8b67cdbb1d8085698993a9ef90aff57248a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39849bd6f52731cfb360aed1601f98eb
9b7c5b858505e23388d679bc3bfb8325103d082c
ae17c00468ba16c500d99654678a8b67cdbb1d8085698993a9ef90aff57248a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
142.250.74.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Hash 1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 17:24:34 GMT
expires: Fri, 15 Sep 2023 17:24:34 GMT
cache-control: public, max-age=31536000
age: 373505
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-iframe-0.1.js
216.58.211.1200 OK 8.9 kB URL HTTP/2 cdn.ampproject.org/v0/amp-iframe-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (25649)
Hash f3392681c8bf2461bcb5504e6a0b0673
2a79dd0ac628e1651249987d0f59e6cdcdd7b0bb
b1bdc6c012140ff65a2d9bbbadb9111800b5080c61149f59aff02be0508f6d98
GET /v0/amp-iframe-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8943
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "e7f4ece37a2c74ab"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
142.250.74.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11072, version 1.0\012- data
Hash e7df3d0942815909add8f9d0c40d00d9
cf5032eea3399a58870e8a05e629b006a8c7c3c7
bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:03 GMT
expires: Thu, 14 Sep 2023 19:34:03 GMT
cache-control: public, max-age=31536000
age: 452136
last-modified: Wed, 11 May 2022 19:24:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-accordion-0.1.js
216.58.211.1200 OK 5.9 kB URL HTTP/2 cdn.ampproject.org/v0/amp-accordion-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (17551)
Hash db2577fb296afac06f6ee24488ba0b6f
72d79b49f4e8e7899be40e744d1e9ebf39f66425
957a1473b3568100713d910e1765560817dd8ab0e1e3610deb6f675f3889ad31
GET /v0/amp-accordion-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5857
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "cbe6854df5292c5b"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-lightbox-0.1.js
216.58.211.1200 OK 8.5 kB URL HTTP/2 cdn.ampproject.org/v0/amp-lightbox-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (26324)
Hash 6c3ad5f46240603045a89d57b503d3f3
fec6e64679359c8ad4d0d01ab9d6161b8dc5e4b4
a47b837f5f5da8ad3e1836872d18eea43bc57111c5711be14d5fceb4a880e316
GET /v0/amp-lightbox-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8456
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "be705d3b0b2daf4f"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-recaptcha-input-0.1.js
216.58.211.1200 OK 9.2 kB URL HTTP/2 cdn.ampproject.org/v0/amp-recaptcha-input-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (25191)
Hash c7611ebfa552d88928a39ffe7293cdc8
326412d0c9065f315b46e2ac19a511dbcb13a8ae
33bbc50f1ee00b1e7507e7cdb3a21c29f626b9f06d08df08a3f29e6eff05a6c6
GET /v0/amp-recaptcha-input-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9197
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "9ff206e33cfecf9a"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-action-macro-0.1.js
216.58.211.1200 OK 1.5 kB URL HTTP/2 cdn.ampproject.org/v0/amp-action-macro-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (3580)
Hash a397b8aeb09be3844db5bfb6912bc671
689933e69d8975f4075f84f4032c8b0bfa7932e8
0d0f0d76dacff9b40c214be55bb335d65a9a9b21e540acfcf42edad0eb844ac7
GET /v0/amp-action-macro-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1461
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "62b4330468977a19"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-analytics-0.1.js
216.58.211.1200 OK 32 kB URL HTTP/2 cdn.ampproject.org/v0/amp-analytics-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (65534)
Hash fe2f0c81c0bb91987f8cc589f19703db
d96d7b887637256a573184a8a6ba8928e39b86f6
b36883401f6cc288c398c50ba24cefd11e6b081de6b0ee0ffaba97f15a49c0c1
GET /v0/amp-analytics-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 32045
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "41e651644f1ce250"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-animation-0.1.js
216.58.211.1200 OK 19 kB URL HTTP/2 cdn.ampproject.org/v0/amp-animation-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (65532)
Hash 514c75ae252e8b99568f35de0d1dcf77
cac1bfd6f87eb48584755203062e4c82aaa499ab
1bf2d1aa34682e22c64d8c7055eda0e58440e7f43daf1917aaeca5a3187eb1f0
GET /v0/amp-animation-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 18986
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "b8fe126c2ddf7661"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-sidebar-0.1.js
216.58.211.1200 OK 9.7 kB URL HTTP/2 cdn.ampproject.org/v0/amp-sidebar-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (31286)
Hash 09fb321c0177fe1e01acce6aa96410b8
406e1cd9716310aa28d16df1315a80d35ac9d92d
50b75d8d8cf95bcc44ab40ee65d118b5261743fe183c39c99ebed411654aec6c
GET /v0/amp-sidebar-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9656
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "acc3868951df8a41"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-mustache-0.2.js
216.58.211.1200 OK 14 kB URL HTTP/2 cdn.ampproject.org/v0/amp-mustache-0.2.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (41897)
Hash 45e868961a313143e55c00fd2448cb62
189c3d62dc3afb20b000f9c2773aa502327ef671
c415725d75c9d3d553baeae0b594e6a2ce0b4c3509a3a39731ca06b47b8e6fdb
GET /v0/amp-mustache-0.2.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14319
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "254cd272eac0a811"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-bind-0.1.js
216.58.211.1200 OK 16 kB URL HTTP/2 cdn.ampproject.org/v0/amp-bind-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (51047)
Hash 3324cde92da35f6e64c479c13e9162b4
0ea781fe8caba1bd3c35968c1e63376586368282
e9bd65b5907a2d4ef6d3685d3774c8b57b6d2a2dd67fdb665219c93469421065
GET /v0/amp-bind-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 16281
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "1400b402b0d25bd7"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/v0/amp-list-0.1.js
216.58.211.1200 OK 13 kB URL HTTP/2 cdn.ampproject.org/v0/amp-list-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (42785)
Hash 565a71112d821e06c5524a836288c340
82cacf6c5529c310f2b0342943ca886fe4403cb9
cca06744d2fa31ad827845dce2a6ebc5d86919bcfc3a96258f26c61e181c5c06
GET /v0/amp-list-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12920
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "605caad0f87b3596"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39849bd6f52731cfb360aed1601f98eb
9b7c5b858505e23388d679bc3bfb8325103d082c
ae17c00468ba16c500d99654678a8b67cdbb1d8085698993a9ef90aff57248a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15250
Expires: Tue, 20 Sep 2022 05:23:49 GMT
Date: Tue, 20 Sep 2022 01:09:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15250
Expires: Tue, 20 Sep 2022 05:23:49 GMT
Date: Tue, 20 Sep 2022 01:09:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15250
Expires: Tue, 20 Sep 2022 05:23:49 GMT
Date: Tue, 20 Sep 2022 01:09:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15250
Expires: Tue, 20 Sep 2022 05:23:49 GMT
Date: Tue, 20 Sep 2022 01:09:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15250
Expires: Tue, 20 Sep 2022 05:23:49 GMT
Date: Tue, 20 Sep 2022 01:09:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f4438521bfdc6871ae384abcb7da547
a17fc7a7c30999b8789011c2064f5a8704b00eee
2e40ac154724af625c4858b09b90fa3f6a600b70c9e5e959598f0cdb05a78847
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5402
x-amzn-requestid: 0442580c-9024-46b1-8ad5-5c7e8d35371d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfMALHT2oAMFmgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322c067-254ecd9003455f090f7d5ef9;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:04:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Y4IeHZWMs_JdT2dG8d3BNqpxvU3lcYDsXub1CuCoVBxzTPsjuU_5Ww==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 18:11:38 GMT
age: 25081
etag: "a17fc7a7c30999b8789011c2064f5a8704b00eee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9556616ca10eb4383b1e15f360fbf6d4
cb328d0f66f4c2779bc64342ef89735636ae5ded
4f945ab342352aea3f4b2242d084d527bb517cf7c6efd0c10a828f0bee9f5d3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9227
x-amzn-requestid: 26d977d3-f4d2-4218-a8f4-a56c873e6a26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YiFzKG2zIAMFoDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6323e9ad-0bfac6c453e6ea5a311a28a8;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 03:12:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FDAZ-13mmseYF5UsTN4t2HGmdFyco33lUQgfWoc7j02kSsCDPtirBA==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 05:04:22 GMT
age: 72317
etag: "cb328d0f66f4c2779bc64342ef89735636ae5ded"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3463c46d2b7a87a91ff1a701a438d80e
92c78b27f4e31609c1b78670b26e68b4f991a8ed
b95b290832f12f97c7da51382fe92feba2fa93a5ec0470d48a533a58a13dc474
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5985
x-amzn-requestid: 6797727b-78c7-470f-bee8-7b55e64d36ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugzxH6qoAMF67w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e1b1-0d574a815d19636b21376c91;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RIRyR6BXSZrTZq2joFYjssEpZAqxuWYgdoU5um35md0Yt_m0UzZpiw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:51:37 GMT
age: 11882
etag: "92c78b27f4e31609c1b78670b26e68b4f991a8ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
age: 10796
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F099b68b9-9e16-49e4-85b1-93b59b2ba2e0.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F099b68b9-9e16-49e4-85b1-93b59b2ba2e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f816c646aefe417c3b980f432b98b41f
39c46ac3c49f0e2067aa6937a95839845b372dea
b9d8cb82c21257f9d5b5d82cf12bbf8aff690321f39c26e4a89f8a4d89fb00a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F099b68b9-9e16-49e4-85b1-93b59b2ba2e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8746
x-amzn-requestid: 23ee3cce-0abd-436a-b4d8-a2ad451cbeaf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7zElLoAMF0cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-1e03d3ee7a0033dd78620f20;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ChuMpL0m_XtTffIvROFslpQUwz13cx8rKF8UfD3LTfMtHvKKm5VNAQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:08:46 GMT
age: 10853
etag: "39c46ac3c49f0e2067aa6937a95839845b372dea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F681ee4d8-26a9-4cf5-b578-449931eef31a.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F681ee4d8-26a9-4cf5-b578-449931eef31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d1cf01936db09979b24d611b5ef75ddc
90a3f56cc22a8756096262972d525f66ab99f1e7
42fe14d3691d6290204c73aa7ad3c9f7efad867cbc658578408809dc0259ee86
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F681ee4d8-26a9-4cf5-b578-449931eef31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8536
x-amzn-requestid: 7fcc3572-09ee-41c2-b9fc-93e545206d45
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yr9jpGamoAMFvvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6327dc7d-746f3324113acdf36f2fc579;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 03:05:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DY9gjalknFX1DuM13Hz1MlrO5N_yyWlVycPq6eYqF50EHr9vAeeMNQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 03:41:51 GMT
age: 77268
etag: "90a3f56cc22a8756096262972d525f66ab99f1e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.brandbucket.com/images7/menu_corner.png
104.22.6.216200 OK 326 B URL HTTP/2 www.brandbucket.com/images7/menu_corner.png
IP 104.22.6.216:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 46030a6b4d338aa9be62f50203c4ff5b
c88766c7af725f4519b8d26b1001b549bef17a60
a2207a26b24c6f4d985ad4f6da0ee829f6b7c29880ee0f025bdd7f2406133e59
GET /images7/menu_corner.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 326
cf-bgj: imgq:100,h2pri
cf-polished: origSize=415
etag: "5fdf0f81-19f"
last-modified: Sun, 20 Dec 2020 08:46:57 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c2da30b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bc_search_bigblk.png
104.22.6.216200 OK 2.3 kB URL HTTP/2 www.brandbucket.com/images6/icon_bc_search_bigblk.png
IP 104.22.6.216:0
File type PNG image data, 128 x 128, 8-bit gray+alpha, non-interlaced\012- data
Hash 5df8840f95ca2b57cb4c1a04a450bd18
7d97554537c3d55bcd2dc2525ebf8b6460b3aedf
30c2e6ee83ea286bef75e58172ea15e543b798ffa26154024f1a2a95d89971b9
GET /images6/icon_bc_search_bigblk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 2332
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2940
etag: "5a96c759-b7c"
last-modified: Wed, 28 Feb 2018 15:14:33 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c2da50b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bc_refine_blk.png
104.22.6.216200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images6/icon_bc_refine_blk.png
IP 104.22.6.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 21fed69f80de4815a845b554523f1f0b
1f8f3562f2581619b0b12be06996eb7d2efef926
eb56a89bd14ada5dc2498e27f8b074a3a889c47c07f06a73c04d212fb9f48016
GET /images6/icon_bc_refine_blk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 1081
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2074
etag: "5fe9acd4-81a"
last-modified: Mon, 28 Dec 2020 10:00:52 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c3da80b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_heart.png
104.22.6.216200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images6/icon_heart.png
IP 104.22.6.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 88e4464632078c7b6cbfbccffd95878a
68c907205dfcfaf600fb84c28c1363f029dc8e78
3051e31080b34dacf5378df68561065fb516b05594c5695b95905e32e8a551af
GET /images6/icon_heart.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 1095
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1405
etag: "5a12dec0-57d"
last-modified: Mon, 20 Nov 2017 13:55:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c3dab0b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/head_logo2.png
104.22.6.216200 OK 5.9 kB URL HTTP/2 www.brandbucket.com/images7/head_logo2.png
IP 104.22.6.216:0
File type PNG image data, 580 x 90, 8-bit gray+alpha, non-interlaced\012- data
Hash fb4bff13a9b6f0b181ca99f55e1851bf
2969bbee6ce6f471d131c52ea806070eeb2f75be
372a7875b90613c3706d7bac0792679818354119b0d656e5ef16875ba701a585
GET /images7/head_logo2.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 5907
cf-bgj: imgq:100,h2pri
cf-polished: origSize=10386
etag: "5ee085a5-2892"
last-modified: Wed, 10 Jun 2020 07:03:01 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c3da90b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_cart_blk.png
104.22.6.216200 OK 594 B URL HTTP/2 www.brandbucket.com/images6/icon_cart_blk.png
IP 104.22.6.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 0f4bfd7ce7e3cd0031e75eafb5ae5ced
975cf52ea1a8c5a75b1bedbead36161629aba05f
2e924b33b08af08800be44199679ee7f7e46012070bcd2dbf5b916bb99e684dc
GET /images6/icon_cart_blk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 594
cf-bgj: imgq:100,h2pri
cf-polished: origSize=693
etag: "5a12debd-2b5"
last-modified: Mon, 20 Nov 2017 13:55:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c3daa0b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_chat.png
104.22.6.216200 OK 374 B URL HTTP/2 www.brandbucket.com/images7/icon_chat.png
IP 104.22.6.216:0
File type PNG image data, 56 x 56, 8-bit gray+alpha, non-interlaced\012- data
Hash 8bd1e7f1a5f9e05fd61373b746e73baa
d8483c30258d4e33a96755dec31b65e892c5c3a8
867f0673ce919e3987de03d8ccb8d26f50721b64624e4ba2fdbd6772c1b5e9a8
GET /images7/icon_chat.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 374
cf-bgj: imgq:100,h2pri
cf-polished: origSize=691
etag: "5ebbcbd0-2b3"
last-modified: Wed, 13 May 2020 10:28:32 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c4db10b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_percent.png
104.22.6.216200 OK 771 B URL HTTP/2 www.brandbucket.com/images7/icon_percent.png
IP 104.22.6.216:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 20b4980f9d03b45ec7ec243f3a898d97
b09250a824c84a5f90862ccb93d155128d30d753
25e04c953669e488a0f727d11b858f19a67c2165d8232586fff448e16290d446
GET /images7/icon_percent.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 771
cf-bgj: imgq:100,h2pri
cf-polished: origSize=875
etag: "6023e899-36b"
last-modified: Wed, 10 Feb 2021 14:07:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c4db20b49-OSL
X-Firefox-Spdy: h2
cdn.ampproject.org/v0.js
216.58.211.1200 OK 488 B IP 216.58.211.1:0
Hash ecdbbc8258f81f5cc36944941eb381cd
6a7970f95e21da0a54211e49760bf2ac5738915a
e7501a24075314198d656bed11723ea4beceddd08864f53a31a6eecabc000946
GET /v0.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 72615
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=3000, stale-while-revalidate=1206600
etag: "d846f64d6544327b"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_heart.png
104.22.6.216200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images7/icon_heart.png
IP 104.22.6.216:0
File type PNG image data, 64 x 56, 8-bit gray+alpha, non-interlaced\012- data
Hash 8c10244caab110d2455d3952b47304af
ea695914fb21e4227c6ed482e84d70c8d145009d
626e178145fb4293ef5ff59a67451883d3c35d6048fab45c1e2f365f8b3a134f
GET /images7/icon_heart.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 1069
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1597
etag: "5ebbcbd2-63d"
last-modified: Wed, 13 May 2020 10:28:34 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c5db60b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk1_.jpg
104.22.6.216200 OK 184 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk1_.jpg
IP 104.22.6.216:0
File type JPEG image data, progressive, precision 8, 1600x1024, components 3\012- data
Size 184 kB (184078 bytes)
Hash a16d81686e7139d223f7abbe22f781e8
bc8d96b0698f2cb7fa9202e77d184eeb861ae9f7
3d4b4be3f8b7b79f2b5ba988c6e4ca6f993db5b87bb7a157f91c0d46276f9cff
GET /images2/nice_bk1_.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/jpeg
content-length: 184078
cf-bgj: imgq:100,h2pri
cf-polished: origSize=202326
etag: "5fdbcc77-31656"
last-modified: Thu, 17 Dec 2020 21:24:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c5db80b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_gift.png
104.22.6.216200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_gift.png
IP 104.22.6.216:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash aa034845cd6345549655fd9b8d156ba4
832f87b3f83f315dcd0a86943c63d41a283635a0
56ee437c47ad090ba5204c9583adbbbf933b3f11a9dd64e5aa856bb01ff30b6e
GET /images6/icon_gift.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 1956
cf-bgj: imgq:100,h2pri
cf-polished: origSize=3038
etag: "5a12debf-bde"
last-modified: Mon, 20 Nov 2017 13:55:11 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c7dc00b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_paint.png
104.22.6.216200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_paint.png
IP 104.22.6.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 738d11479c8f00bbf6becd4f1628484e
92a9972dc97422c334792e7ca593f1aa00d124bf
4f96956134964753a940fcafd693e72f9d153e7e0f02c4c9b29944ad40dfa3d4
GET /images6/icon_paint.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 1961
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2539
etag: "5a12dec1-9eb"
last-modified: Mon, 20 Nov 2017 13:55:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c7dc10b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_info.png
104.22.6.216200 OK 1.5 kB URL HTTP/2 www.brandbucket.com/images6/icon_info.png
IP 104.22.6.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 1ccab99f59c5b67e39a46b1df9ff0e60
9bbef30e63d3a3682c90d3e26fa12fa2466db9cb
e4e75c45fadf08c54284e1ea641a494ff531b87757751653e66dcd99eb1a5212
GET /images6/icon_info.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 1462
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1853
etag: "5a12dec0-73d"
last-modified: Mon, 20 Nov 2017 13:55:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c7dc30b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_delivery.png
104.22.6.216200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_delivery.png
IP 104.22.6.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash a3ecd77d0fb534a6077b4d9640e225f6
622ab1f4b324e7e9a5afe55d75d7033a59fcd4d3
39ba61ecabf031e71e239e634d36bb31583fdd9b2d6c69f1e12a81498b860006
GET /images6/icon_delivery.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 1955
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2491
etag: "5a12debe-9bb"
last-modified: Mon, 20 Nov 2017 13:55:10 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c8dc50b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bills.png
104.22.6.216200 OK 1.5 kB URL HTTP/2 www.brandbucket.com/images6/icon_bills.png
IP 104.22.6.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 63b9477a8d4f573114ef3a8385e421c1
af618a395be518ed856135aae176cafa600c3766
1791cdebe64eb084b289ade2587c236382055b8a45b9f610ddd0b0a0a5b56d46
GET /images6/icon_bills.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: image/png
content-length: 1464
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1809
etag: "5a12debb-711"
last-modified: Mon, 20 Nov 2017 13:55:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 2320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c7dc40b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/136245/large_groceryus.png
104.22.6.216200 OK 6.7 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/136245/large_groceryus.png
IP 104.22.6.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ca119d01d346964c19ef690fc1e39cc
78528740b47515f6cefa479f70462c97a0c3c529
5e107ac0667132ca456bfd4e2a57c613283f80ee76ec33135f109bca18f89372
GET /sites/default/files/logo_uploads/136245/large_groceryus.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:40 GMT
content-type: image/png
content-length: 6690
last-modified: Fri, 30 Jun 2017 14:50:52 GMT
etag: "5956654c-1a22"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad487c800b49-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 91188191998fd276e0125e16bc7e6485
7b6c1646f6ebeaf4e5a9f7977e2c8b5450c9909b
996fb874dcb6a542c21ba67d29c00fe86f10f3596137369d0f32ce806401b2c4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "996FB874DCB6A542C21BA67D29C00FE86F10F3596137369D0F32CE806401B2C4"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2162
Expires: Tue, 20 Sep 2022 01:45:42 GMT
Date: Tue, 20 Sep 2022 01:09:40 GMT
Connection: keep-alive
www.brandbucket.com/sites/default/files/logo_uploads/336437/large_gotogrocery.png
104.22.6.216200 OK 3.1 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/336437/large_gotogrocery.png
IP 104.22.6.216:0
File type PNG image data, 360 x 200, 8-bit colormap, non-interlaced\012- data
Hash 1d8ab9228b03e4e2617f3fe772728f2d
2e3b7d1c96e83016d7b9e85ad81cb6590c7b8d87
36174c9d2a3d92958872e77b0ac72030d852a65889b97f4ca6dfa3a9fffbf580
GET /sites/default/files/logo_uploads/336437/large_gotogrocery.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:40 GMT
content-type: image/png
content-length: 3092
cf-bgj: imgq:100,h2pri
cf-polished: origSize=6516
etag: "604b7418-1974"
last-modified: Fri, 12 Mar 2021 14:00:56 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c8dc80b49-OSL
X-Firefox-Spdy: h2
q.quora.com/_/ad/b81fc17866594cbbb3efebdd1241e062/pixel?tag=ViewContent
54.225.120.86200 OK 43 B URL HTTP/1.1 q.quora.com/_/ad/b81fc17866594cbbb3efebdd1241e062/pixel?tag=ViewContent
IP 54.225.120.86:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /_/ad/b81fc17866594cbbb3efebdd1241e062/pixel?tag=ViewContent HTTP/1.1
Host: q.quora.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Tue, 20 Sep 2022 01:09:40 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,8ec43e5b70505664984499315b31afd6,10.0.0.61,20854,91.90.42.154,,62114603629,1,1663636180.223,0.001,,.,0,0,0.000,0.000,-,0,0,197,162,81,10,34729,,,,,,-,
Content-Length: 43
Connection: keep-alive
www.brandbucket.com/images2/nice_bk2.jpg
104.22.6.216200 OK 153 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk2.jpg
IP 104.22.6.216:0
File type JPEG image data, progressive, precision 8, 1600x1024, components 3\012- data
Size 153 kB (153149 bytes)
Hash 2b609e5c7b90f4aa31c19ad4dbb9888b
95d70cc4b3896f11079f94cf2851235551b17281
6730326e166c0ba1f3b8d128d62da81d7578c6beb946139e64d5833fa014de0e
GET /images2/nice_bk2.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:40 GMT
content-type: image/jpeg
content-length: 153149
cf-bgj: imgq:100,h2pri
cf-polished: origSize=158414
etag: "54d4c43d-26ace"
last-modified: Fri, 06 Feb 2015 13:40:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c5dba0b49-OSL
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-form-0.1.js
216.58.211.1200 OK 5.0 kB URL HTTP/2 cdn.ampproject.org/v0/amp-form-0.1.js
IP 216.58.211.1:0
Hash 6f434968a87ca0f18b96607eed23fcd7
90c8ea9b7a0130cc7ca3ff70224b04ccb36a66eb
390a4bdb57611e611893475495830198043bba57cfed2a144654f3cd6da16cbc
GET /v0/amp-form-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14969
date: Tue, 20 Sep 2022 01:09:39 GMT
expires: Tue, 20 Sep 2022 01:09:39 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "c92f7c08ac4608ee"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/440432/large_groceryplex.png
104.22.6.216200 OK 5.3 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/440432/large_groceryplex.png
IP 104.22.6.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash bfa83341138a839e96f43737aafc25a3
808e07372d7b609c7b47b1bdae81b368896d705b
f1e4404c705914ee5021600e5348f04bbf474a40aeae12313800ce058437a7a9
GET /sites/default/files/logo_uploads/440432/large_groceryplex.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:40 GMT
content-type: image/png
content-length: 5303
last-modified: Mon, 27 Jun 2022 22:33:08 GMT
etag: "62ba3024-14b7"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c8dca0b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/267453/large_grocerywarrior.png
104.22.6.216200 OK 8.1 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/267453/large_grocerywarrior.png
IP 104.22.6.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 55f05112e1b56fbfbf927ff31bc6f639
c8e5748c6352a65ba4cf89fd5ec049199c44fc59
2c2a86159bf1c529ee4656c1bd3f59f5a4f085857f10df52ebe567ce5e4d8bd0
GET /sites/default/files/logo_uploads/267453/large_grocerywarrior.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:40 GMT
content-type: image/png
content-length: 8100
last-modified: Wed, 20 Nov 2019 17:38:02 GMT
etag: "5dd579fa-1fa4"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c9dce0b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/393415/large_leangrocery.png
104.22.6.216200 OK 7.4 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/393415/large_leangrocery.png
IP 104.22.6.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash a61dc88f51ad7a7020b0e31a646446dd
6b1664161e9811d8abad1b9ebe9a9c5d1700025d
19bc1783c67b0f78b8e80c0f609894ddd41a80cd5b7f5071c712704c51dc58bb
GET /sites/default/files/logo_uploads/393415/large_leangrocery.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:40 GMT
content-type: image/png
content-length: 7415
last-modified: Thu, 18 Nov 2021 09:33:07 GMT
etag: "61961dd3-1cf7"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c8dc70b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/430781/large_organicgrocery.png
104.22.6.216200 OK 7.1 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/430781/large_organicgrocery.png
IP 104.22.6.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, interlaced\012- data
Hash d576a258157756c748c5e493130118b1
730a1cbd0c41061a3d2e0ae6e5293edc6baa029f
cb2e907a4883957a00736451e87250105c1556dedffb664b92d53b92d9776db7
GET /sites/default/files/logo_uploads/430781/large_organicgrocery.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:40 GMT
content-type: image/png
content-length: 7111
last-modified: Sat, 14 May 2022 21:29:03 GMT
etag: "62801f1f-1bc7"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c8dcb0b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/394966/large_specialtygrocery.png
104.22.6.216200 OK 4.4 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/394966/large_specialtygrocery.png
IP 104.22.6.216:0
File type PNG image data, 360 x 200, 8-bit colormap, non-interlaced\012- data
Hash ca7840e4fe06dacfbc6d9c2d391146a8
5b48b8b7481104934fe7e11419df99e35a55bf83
d226acc80aea182dcd1b48f5244a8f95835a91c2cd095ac08aa1dd6805c87a69
GET /sites/default/files/logo_uploads/394966/large_specialtygrocery.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:40 GMT
content-type: image/png
content-length: 4433
cf-bgj: imgq:100,h2pri
cf-polished: origSize=7673
etag: "619f6ea3-1df9"
last-modified: Thu, 25 Nov 2021 11:08:19 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c8dcc0b49-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/434612/large_grocerysystem_0.png
104.22.6.216200 OK 8.3 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/434612/large_grocerysystem_0.png
IP 104.22.6.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash c857f81582833eb4120d4edad31af6a9
87a4ada3f23256c04decd5b033c423b07c7bf779
01011c5f5ff4d79e519f104f87630bec135ee2781e5f06505ca5ba87a3813303
GET /sites/default/files/logo_uploads/434612/large_grocerysystem_0.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:40 GMT
content-type: image/png
content-length: 8266
last-modified: Fri, 03 Jun 2022 00:13:59 GMT
etag: "62995247-204a"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad4c9dcf0b49-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 26fcf8aea27805b4a6a29e3e2a4ba19b
f920fd6c5a79a4adb2f456edcee678757ff1602c
7aa63d03f514e4f51190e85f167f747563f980e0e6fdee6cce9393321dff1038
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.statcounter.com/11502527/0/987dc755/1/
104.20.228.67200 OK 49 B URL HTTP/2 c.statcounter.com/11502527/0/987dc755/1/
IP 104.20.228.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /11502527/0/987dc755/1/ HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:40 GMT
content-type: image/gif
content-length: 49
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc11502527.1663636180.0; SameSite=None; Secure; Expires=Saturday, 18-Sep-2027 21:09:40 EDT; Path=/; Domain=.statcounter.com
is_visitor_unique=1663636180266019175; SameSite=None; Secure; Expires=Wednesday, 18-Sep-2024 21:09:40 EDT; Path=/; Domain=.statcounter.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74d6ad51bc22b4f9-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fgroceryus%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
142.250.74.72200 OK 1.2 kB URL HTTP/2 www.googletagmanager.com/amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fgroceryus%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 142.250.74.72:0
File type JSON data\012- , ASCII text, with very long lines (10081)
Hash 03debedba2ec37961320018ad1f71dbc
b44a455aa6ef42658371bb1dda24edd405141f9c
9d69f8c10a671222e611576349a7bd027c0f3bf0ab7b54264645e0ad8d1c04bc
GET /amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fgroceryus%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Origin: https://www.brandbucket.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.brandbucket.com
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
amp-access-control-allow-source-origin: https://www.brandbucket.com
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
content-disposition: attachment; filename="GTM-NMCQSSJ.json"
content-encoding: br
vary: *
date: Tue, 20 Sep 2022 01:09:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 1157
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
104.22.6.216200 OK 81 B URL HTTP/2 www.brandbucket.com/amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 104.22.6.216:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3d2527b0c3ee35292c5b0c9de43d35d9
849f9f3de175bca3d169905cd75d27896571a233
e9e33572c864b23bd7b2396d86742d8527546f99804c9d5e9b1940868201fdb1
GET /amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/names/groceryus?source=ext
AMP-Same-Origin: true
Connection: keep-alive
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:40 GMT
content-type: application/json
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
set-cookie: cart=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
fav=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
amp_run_time: 0.00576s
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74d6ad4d1dec0b49-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
142.250.74.72200 OK 262 B URL HTTP/2 www.googletagmanager.com/gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 142.250.74.72:0
File type JSON data\012- , ASCII text, with very long lines (497), with no line terminators
Hash e2d9a6191d8c718a71ced1d8865928aa
f6e0df35194027da97abe0a08f39411eaea2b679
0c907755f6f201383f6842b97e55c409c8b62676bc62321c291b6c4bc9677886
POST /gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Content-Type: text/plain;charset=utf-8
Origin: https://www.brandbucket.com
Content-Length: 379
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.brandbucket.com
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
amp-access-control-allow-source-origin: https://www.brandbucket.com
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
content-disposition: attachment; filename="amp.json"
content-encoding: br
vary: *
date: Tue, 20 Sep 2022 01:09:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 262
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 26fcf8aea27805b4a6a29e3e2a4ba19b
f920fd6c5a79a4adb2f456edcee678757ff1602c
7aa63d03f514e4f51190e85f167f747563f980e0e6fdee6cce9393321dff1038
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ct.pinterest.com/v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=135165
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=135165
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=135165 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 2181717084969951
date: Tue, 20 Sep 2022 01:09:41 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZXS200bjVXRlFKb0gySW5vdzZMdVhjbWpTSzEvanVmSGFOVU1uc09DRDY4QldYRk5UZDd0M2l2WEdhWGdBcUhkeUtpWWk1UUkzbC9QR0p1UGx5elViTW9JMFozV1NUOUZjZSszSkNGTkw1ST0mYVp4dVhtWkFVNVZscjJYVVpzdlc0SDVxYXIwPQ=="; Expires=Wed, 20 Sep 2023 01:09:41 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1663636180.7417d5d0
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&88104257-d19b-4bb5-88f8-4690720fd06c"; Domain=.linkedin.com; Expires=Wed, 20-Sep-2023 01:09:41 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022092001094157ee393d-e491-4920-887b-c79d4a35f16fAQGU2LSl0yP4Poh6JFNGWAeb9gJxnejH"; Domain=.www.linkedin.com; Expires=Wed, 20-Sep-2023 01:09:41 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjM2MzYxODE7MjswMjHxQ0NrqPAlqnwYh0x1OTpjuXtcM969AK74wzu+jMSYVQ==; Domain=.linkedin.com; Expires=Sun, 19 Mar 2023 01:09:41 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2384:u=1:x=1:i=1663636181:t=1663722581:v=2:sig=AQHvmye0HHXIcyiNzlfe9pO38_G7BNxh"; Expires=Wed, 21 Sep 2022 01:09:41 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXpEXuc/TtcWZ3gK3mJ3g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 37E1AF4C35244414A029541E85230B1F Ref B: OSL30EDGE0521 Ref C: 2022-09-20T01:09:41Z
date: Tue, 20 Sep 2022 01:09:40 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 0e1398d28d276454514a56f70b55e03e
e0198ac4569fe78ce669893cfeb726a99b2551b1
02facb6ed6cafca99facb5d2bc7d3a44342d4b567452565adf7f4625e6a3a01f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 01:09:41 GMT
Last-Modified: Tue, 20 Sep 2022 00:06:37 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VrOL5AqTdJj5i0gfmh3Wp2-cAlQS5knMgbjdNw0LE0cZLyAYN9j61Q==
Age: 3784
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 962e3aebfa9c1603e2b974a912ccd37d
4be8cc5b0aa165ae5c670d43a7107a781a7fa2f7
ee7c58f33e370d0902d9f544b1c85d872e1e7daba35579133fca004d2ed1eab4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3790
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:41 GMT
Last-Modified: Tue, 20 Sep 2022 00:06:31 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.brandbucket.com/amp/ga?promo&p=135165&ext&dp=391116.334844.438751.430500.393325.266996.434163.82835.382754.203067.259442.385023.113467.130390.391314.134216.220738.153174.284750.327093&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
104.22.6.216200 OK 1.9 kB URL HTTP/2 www.brandbucket.com/amp/ga?promo&p=135165&ext&dp=391116.334844.438751.430500.393325.266996.434163.82835.382754.203067.259442.385023.113467.130390.391314.134216.220738.153174.284750.327093&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 104.22.6.216:0
Hash 694f5092c9bd1d4a364eab19649eaaee
59bbe30a9a70a7413929121570fec2436d185388
8e7ee2d38fc7c0c6cc6e1d7a8c198e903201e29dba36b60a58c0c41441a3767f
GET /amp/ga?promo&p=135165&ext&dp=391116.334844.438751.430500.393325.266996.434163.82835.382754.203067.259442.385023.113467.130390.391314.134216.220738.153174.284750.327093&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/names/groceryus?source=ext
AMP-Same-Origin: true
Connection: keep-alive
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:41 GMT
content-type: application/json
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
amp_run_time: 0.020213s
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74d6ad525f840b49-OSL
X-Firefox-Spdy: h2
www.bizographics.com/collect/?fmt=gif&pid=271730
144.2.12.25301 Moved Permanently 0 B URL HTTP/1.1 www.bizographics.com/collect/?fmt=gif&pid=271730
IP 144.2.12.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/?fmt=gif&pid=271730 HTTP/1.1
Host: www.bizographics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: Play
Location: https://px.ads.linkedin.com/collect?fmt=gif&pid=271730
content-length: 0
Date: Tue, 20 Sep 2022 01:09:41 GMT
Connection: keep-alive
X-Li-Fabric: prod-lva1
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAXpEXuf6HpbT1qhJihHDQ==
Set-Cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=bizographics.com; Secure
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2388:u=1:x=1:i=1663636181:t=1663722581:v=2:sig=AQFM4ZpRayn0inMIgpdWu6NG2ByrnH4u"; Expires=Wed, 21 Sep 2022 01:09:41 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
13.107.42.14200 OK 65 B URL HTTP/2 px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 8b0d5b18476ae12e2476f3621d54c4a5
2ad669e9d207fbb37e84dda25766dbaeb66d792c
2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
GET /collect?pid=271730&fmt=gif&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 65
content-type: image/gif
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&bd13a007-35a0-4460-8132-ba4a79912031"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 20-Sep-2023 01:09:41 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2384:u=1:x=1:i=1663636181:t=1663722581:v=2:sig=AQHvmye0HHXIcyiNzlfe9pO38_G7BNxh"; Expires=Wed, 21 Sep 2022 01:09:41 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXpEXuf/tuhiQ02aFt2ig==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 00B4F796E3C7444B951F3A9C2655C27D Ref B: OSL30EDGE0521 Ref C: 2022-09-20T01:09:41Z
date: Tue, 20 Sep 2022 01:09:40 GMT
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?fmt=gif&pid=271730
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?fmt=gif&pid=271730
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?fmt=gif&pid=271730 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQIsCOnwkTp4AQAAAYNYcZHc7yfWkxTM5hrJPtzyQmzKSL5zZZGXiveCJRrwEiCwCId0MtnvPuxJdg; Max-Age=2592000; Expires=Thu, 20 Oct 2022 01:09:41 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJApAMbwzN6mAAAAYNYcZHcoSD0FhySsxZ4eWChTxKI3qJ4JO9Ph7tsOH6VY2_WaFX9-fxDP9q5v4WRlkn55w; Max-Age=2592000; Expires=Thu, 20 Oct 2022 01:09:41 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&6dc92f8b-dd29-47dc-8307-9870f7aef233"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 20-Sep-2023 01:09:41 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2388:u=1:x=1:i=1663636181:t=1663722581:v=2:sig=AQFM4ZpRayn0inMIgpdWu6NG2ByrnH4u"; Expires=Wed, 21 Sep 2022 01:09:41 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXpEXuhn8qEaeGBiKbyhw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: DCF280A56A7149D58EA23CE8C4F7A491 Ref B: OSL30EDGE0521 Ref C: 2022-09-20T01:09:41Z
date: Tue, 20 Sep 2022 01:09:40 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5b7a05fad83d3476facabd4e7eb8dc42
64d6ee10d23330cd51ea38487544c595b47f2633
4ff8fbed80185bfa0a9196affa36c5f60e743c86d3cf5328a5884b8058dca635
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4570
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:41 GMT
Last-Modified: Mon, 19 Sep 2022 23:53:31 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5b7a05fad83d3476facabd4e7eb8dc42
64d6ee10d23330cd51ea38487544c595b47f2633
4ff8fbed80185bfa0a9196affa36c5f60e743c86d3cf5328a5884b8058dca635
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4570
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:41 GMT
Last-Modified: Mon, 19 Sep 2022 23:53:31 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.facebook.com/tr?noscript=1&ev=PageView&id=1690817644503013
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr?noscript=1&ev=PageView&id=1690817644503013
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /tr?noscript=1&ev=PageView&id=1690817644503013 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Tue, 20 Sep 2022 01:09:41 GMT
X-Firefox-Spdy: h2
amp.brandbucket.com/amp/tracking/names/groceryus?source=ext&ext=135165&source=ext
104.22.6.216302 Found 0 B URL HTTP/2 amp.brandbucket.com/amp/tracking/names/groceryus?source=ext&ext=135165&source=ext
IP 104.22.6.216:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /amp/tracking/names/groceryus?source=ext&ext=135165&source=ext HTTP/1.1
Host: amp.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
date: Tue, 20 Sep 2022 01:09:41 GMT
content-type: text/html
location: https://www.brandbucket.com/amp/tracking/names/groceryus?source=ext&ext=135165&source=ext
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74d6ad522f680b49-OSL
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?fmt=gif&pid=271730&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&191f193a-d637-4222-8532-49b2cb27d375"; Domain=.linkedin.com; Expires=Wed, 20-Sep-2023 01:09:41 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202209200109410ab8376a-0cda-4757-8b94-7a0e10295ae4AQGlJFUHTzvt_arlpMZpKVCjuciOq9og"; Domain=.www.linkedin.com; Expires=Wed, 20-Sep-2023 01:09:41 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjM2MzYxODE7MjswMjF9j+3DDACWaT24a85F1NyPe9PxuG1vbPFx7Ze1a0ODNg==; Domain=.linkedin.com; Expires=Sun, 19 Mar 2023 01:09:41 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2384:u=1:x=1:i=1663636181:t=1663722581:v=2:sig=AQHvmye0HHXIcyiNzlfe9pO38_G7BNxh"; Expires=Wed, 21 Sep 2022 01:09:41 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXpEXuj42/5a9761YLdCw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B12A6474868644A0B5771CD09F0B8DF5 Ref B: OSL30EDGE0521 Ref C: 2022-09-20T01:09:41Z
date: Tue, 20 Sep 2022 01:09:40 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5b7a05fad83d3476facabd4e7eb8dc42
64d6ee10d23330cd51ea38487544c595b47f2633
4ff8fbed80185bfa0a9196affa36c5f60e743c86d3cf5328a5884b8058dca635
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4570
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:41 GMT
Last-Modified: Mon, 19 Sep 2022 23:53:31 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.redditstatic.com/ads/pixel.js
151.101.85.140200 OK 7.7 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.85.140:0
File type ASCII text, with very long lines (25224)
Hash 95212d33cfff78ad59f5af5b20c48c53
9b99a4091a6eb716bc68f1428e3c86eca068b25b
bd69f250efa08cb2c0a06c35d91fda762779820d87779019c25211f4559ebb1d
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 19 Jul 2022 22:48:09 GMT
etag: "95212d33cfff78ad59f5af5b20c48c53"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 01:09:41 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2
www.google-analytics.com/r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Groceryus.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1663636161301&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fgroceryus%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.020404245600564863&_r=1&a=3508&z=0.7731386628733837>m=2oubu0
142.250.74.174302 Found 390 B URL HTTP/2 www.google-analytics.com/r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Groceryus.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1663636161301&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fgroceryus%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.020404245600564863&_r=1&a=3508&z=0.7731386628733837>m=2oubu0
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5375bd1d959c8e33d13a98d140916365
e4e68f08046444ddf61fb2814a9d60823e6de2e4
aabb0072e4cf45be8dbf857c00637548423d867606fff1db27ad9326acdead27
POST /r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Groceryus.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1663636161301&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fgroceryus%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.020404245600564863&_r=1&a=3508&z=0.7731386628733837>m=2oubu0 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837
access-control-allow-origin: https://www.brandbucket.com
date: Tue, 20 Sep 2022 01:09:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 390
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/amp/tracking/names/groceryus?source=ext&ext=135165&source=ext
104.22.6.216200 OK 10 kB URL HTTP/2 www.brandbucket.com/amp/tracking/names/groceryus?source=ext&ext=135165&source=ext
IP 104.22.6.216:0
Hash 348ed585f95c04f7605ec8fb19e59f8c
a2013440fb9587a8520a33583bd8e3a0306e0b22
df3ea3a13d7c0f009747c14ebe847c5f91b388333ed0b77f50ae27210f7949cb
GET /amp/tracking/names/groceryus?source=ext&ext=135165&source=ext HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165; _ga=amp-2xeVwC0jsPUheT_LJ9KtNQ
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:41 GMT
content-type: text/html
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
set-cookie: bb_recent=135165; expires=Mon, 10-Oct-2022 01:09:41 GMT; Max-Age=1728000; path=/
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74d6ad56d8ce0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?fmt=gif&pid=271730&liSync=true
13.107.42.14200 OK 65 B URL HTTP/2 px.ads.linkedin.com/collect?fmt=gif&pid=271730&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 8b0d5b18476ae12e2476f3621d54c4a5
2ad669e9d207fbb37e84dda25766dbaeb66d792c
2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
GET /collect?fmt=gif&pid=271730&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 65
content-type: image/gif
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&be7f849f-9d09-4c30-8cd0-af6c6c4abe2a"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 20-Sep-2023 01:09:41 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2345:u=1:x=1:i=1663636181:t=1663722581:v=2:sig=AQFDUDs1wdr5CleQWgyN4pAqlounRWEV"; Expires=Wed, 21 Sep 2022 01:09:41 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXpEXumw4RMAlpQ09HCKw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 8FD39584C07B434F93A7F56825C91BB7 Ref B: OSL30EDGE0521 Ref C: 2022-09-20T01:09:41Z
date: Tue, 20 Sep 2022 01:09:41 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dda77a44a7f9eeb9bd828f659ccb7e22
9af43f88835600fd3206e4f18b0c1c2571a3959c
c8effed6366a20b26e104fc4f64d24213eb357d61e7683e28f812d0c21edd044
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837
142.251.1.156302 Found 388 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837
IP 142.251.1.156:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash a580704cc6a4171560183197855d822e
4c7dd0b6d041acfa4f2f9b1055f6cbce82edc47d
602e9942e00880f2be08e31ed98f4a3500d2c0626ed08f9a61c32b0a6194ec79
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 20 Sep 2022 01:09:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 388
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 549e6506ec42419bb88013546dc1ba54
454e6992698222380d53568920c7d76114c54a8c
0807004fb6a896a339dbfabbd4730c8acb9d8b438c62267890518683c3847c31
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6063
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Last-Modified: Mon, 19 Sep 2022 23:28:39 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 280
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57443), with no line terminators
Hash 1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Tue, 20 Sep 2022 01:09:41 GMT
x-served-by: cache-iad-kiad7000051-IAD, cache-bma1669-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 21c6399a28aa08152326ea0be180ebbd
ad8a54706f925e2ded1a56ce70c1fcb8c393a624
1ba4747fefde75e72e42d6de8f63aa4dce5e24e2256c4105a8384b2b53733706
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1573
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Last-Modified: Tue, 20 Sep 2022 00:43:30 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 313
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=3140663643466F873D06741342116EE9; domain=.bing.com; expires=Sun, 15-Oct-2023 01:09:42 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9E1DA37AAD77443C90170B8DB4C2D422 Ref B: OSL30EDGE0310 Ref C: 2022-09-20T01:09:41Z
date: Tue, 20 Sep 2022 01:09:42 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c53364cae0510b97de38fb4b3396ff56
d6088b7fe775ebc077d116271fbe7fce898c06f0
2df909d86d97fbb9a27dd94ca9335ea29eae8f9325fccc8d0ef00a4f7cd7cdc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dda77a44a7f9eeb9bd828f659ccb7e22
9af43f88835600fd3206e4f18b0c1c2571a3959c
c8effed6366a20b26e104fc4f64d24213eb357d61e7683e28f812d0c21edd044
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 01:09:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837&slf_rd=1&random=362073394
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alb.reddit.com/rp.gif?ts=1663636161970&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=c87da877-8cca-41f0-a3c6-6882f663f0f0&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
151.101.85.140200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1663636161970&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=c87da877-8cca-41f0-a3c6-6882f663f0f0&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
IP 151.101.85.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1663636161970&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=c87da877-8cca-41f0-a3c6-6882f663f0f0&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Tue, 20 Sep 2022 01:09:42 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash f3c9ac57af105f22f3074aea193261a8
318221ade050019d7b3793776f339a5fe5f8f62d
7564b50e8d317fd7b1eac8b34a58a2dc2642f73d5a3178b9adbd13694ccdd60c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3489
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Last-Modified: Tue, 20 Sep 2022 00:11:33 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash f3c9ac57af105f22f3074aea193261a8
318221ade050019d7b3793776f339a5fe5f8f62d
7564b50e8d317fd7b1eac8b34a58a2dc2642f73d5a3178b9adbd13694ccdd60c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3489
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Last-Modified: Tue, 20 Sep 2022 00:11:33 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fa65e4428adb73fd14d3e23085784699
00f883ce942c6c1be5e8e39d8ebe126de77dbadf
8eb4b4b2d5dc9f17570f22fc0afdf63d1fc80cc0aa37ad77cc81d52dda2bc281
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 7a69ac81bbbd6603d4bd6b3ace4feac2
e827b5afb31965b2b7428b6bf47da7deccab5084
1363896fd87c72236088c37bb006562ea85d0d066d224dc4c67fdac48de58a65
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6321
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Last-Modified: Mon, 19 Sep 2022 23:24:21 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 313
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837&slf_rd=1&random=362073394
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837&slf_rd=1&random=362073394
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-2xeVwC0jsPUheT_LJ9KtNQ&jid=0.020404245600564863&_v=a1&z=0.7731386628733837&slf_rd=1&random=362073394 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 01:09:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fa65e4428adb73fd14d3e23085784699
00f883ce942c6c1be5e8e39d8ebe126de77dbadf
8eb4b4b2d5dc9f17570f22fc0afdf63d1fc80cc0aa37ad77cc81d52dda2bc281
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=486edc82940f4b41b35f07c4c13f8c9b&traceId=486edc82940f4b41b35f07c4c13f8c9b&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
104.19.155.83200 OK 18 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=486edc82940f4b41b35f07c4c13f8c9b&traceId=486edc82940f4b41b35f07c4c13f8c9b&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
IP 104.19.155.83:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=486edc82940f4b41b35f07c4c13f8c9b&traceId=486edc82940f4b41b35f07c4c13f8c9b&referrer=https%3A%2F%2Fwww.brandbucket.com%2F HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.brandbucket.com/
Origin: https://www.brandbucket.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:42 GMT
content-type: text/plain; charset=utf-8
content-length: 18
cf-ray: 74d6ad5a3b690b39-OSL
access-control-allow-origin: https://www.brandbucket.com
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: cc2f66a1-3544-4e4b-a59e-ea9a49446598
x-trace: 2B5B3A9E3E6074AEB2DB5BCA1130DC33C2E8560885000000000000000000
set-cookie: __cf_bm=jfBoWIzJ3T0Qq2QkdnKwGZ4.DSu5cLF6_gPm56CbHzE-1663636182-0-ARV4B1Di4uGv8IyC5qfXiD/15dUypI5lxwq4AKJutNwD3EIPHi8rKPsfj2033wqoQ+VFR/HHTR3F8uemzJO13Oo=; path=/; expires=Tue, 20-Sep-22 01:39:42 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=irBiyX78HeDUVVRCKLEg5mSTxJT1UYlNZ1l5aFXsYJ3P%2BEGwgw8HW7CVLSdaaGGmVhsIwxB80i8y6dqWueprPqZHa4HU80r2n2bPX8uNOD7%2FVGitRI6MGQ9bzfAOan%2B8AA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash f3c9ac57af105f22f3074aea193261a8
318221ade050019d7b3793776f339a5fe5f8f62d
7564b50e8d317fd7b1eac8b34a58a2dc2642f73d5a3178b9adbd13694ccdd60c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3489
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Last-Modified: Tue, 20 Sep 2022 00:11:33 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 280
t.co/i/adsct?bci=3&eci=2&event_id=67b74cd1-ee39-4964-8f96-4a59963465a1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=b626675f-7650-4e0a-8ca4-1236d67e5fc3&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fgroceryus%3Fsource%3Dext%26ext%3D135165%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
104.244.42.69200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=67b74cd1-ee39-4964-8f96-4a59963465a1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=b626675f-7650-4e0a-8ca4-1236d67e5fc3&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fgroceryus%3Fsource%3Dext%26ext%3D135165%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=67b74cd1-ee39-4964-8f96-4a59963465a1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=b626675f-7650-4e0a-8ca4-1236d67e5fc3&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fgroceryus%3Fsource%3Dext%26ext%3D135165%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:41 GMT
server: tsa_o
set-cookie: muc_ads=10ee1a04-8c32-4871-bab6-9ed1e49dbb4a; Max-Age=63072000; Expires=Thu, 19 Sep 2024 01:09:42 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=0
x-response-time: 104
x-connection-hash: 5fd9560b643b41b1b092f0ee897836e64325a94a46abd6cad66d4dd8600a3643
X-Firefox-Spdy: h2
js.hs-scripts.com/20882931.js
104.17.213.204200 OK 811 B URL HTTP/2 js.hs-scripts.com/20882931.js
IP 104.17.213.204:0
File type ASCII text, with very long lines (495)
Hash 42c2afaf6f7943264641e5f734b1e5f9
c25348d4938fa0188531423dceb035fbb97fa689
4b6670738364bfaa9975727089ed2801a7b13e7f366c137f751246dfeb3d10c8
GET /20882931.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:41 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B77EB32BFFD3ED301AE0F6E36114A68A886B0FB1A000000000000000000
cache-control: public, max-age=60
vary: Accept-Encoding
x-hubspot-correlation-id: dd2428a8-5f6c-4147-a5da-a16f55d513f2
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.brandbucket.com
last-modified: Tue, 20 Sep 2022 01:08:07 GMT
cf-cache-status: EXPIRED
expires: Tue, 20 Sep 2022 01:10:41 GMT
server: cloudflare
cf-ray: 74d6ad58483d0b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=www.brandbucket.com&origin=onetag
178.250.2.146200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=www.brandbucket.com&origin=onetag
IP 178.250.2.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 336d3e015f987a65d205999a49be4805
57a3f572cd89347b5ead196670776134f1f0f69e
9621f1cc5441ed0d364b0fb9986a8c6742af2c5c356e6e4edb432728fe319ff3
GET /syncframe?topUrl=www.brandbucket.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:41 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=88670e03-d2ff-4250-bbf4-8deb32d57c5e; expires=Sun, 15 Oct 2023 01:09:41 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 660036
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e9d9ebb7dabd27d0a341649bc2de639d
e0089863488c13374b03405aed158ace7491345a
7e01d6c81d783fabf38f2663261771a08fd74a2b53ce9892c60b559f1c26cf2c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6195
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Last-Modified: Mon, 19 Sep 2022 23:26:28 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e9d9ebb7dabd27d0a341649bc2de639d
e0089863488c13374b03405aed158ace7491345a
7e01d6c81d783fabf38f2663261771a08fd74a2b53ce9892c60b559f1c26cf2c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6233
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Last-Modified: Mon, 19 Sep 2022 23:25:49 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 313
api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=486edc82940f4b41b35f07c4c13f8c9b&traceId=486edc82940f4b41b35f07c4c13f8c9b&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
104.19.155.83200 OK 186 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=486edc82940f4b41b35f07c4c13f8c9b&traceId=486edc82940f4b41b35f07c4c13f8c9b&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
IP 104.19.155.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 66bf77dd031ebfc350b4b4e8a934e6fc
333f3ea9dd153ade95ea6967005f8385b2aeff97
d4d5981f0ca362dd1e2a095d58b8c7298f01e15327d671cf3eaf21499c7b1e4b
GET /livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10632&mobile=false&messagesUtk=486edc82940f4b41b35f07c4c13f8c9b&traceId=486edc82940f4b41b35f07c4c13f8c9b&referrer=https%3A%2F%2Fwww.brandbucket.com%2F HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.brandbucket.com/amp/tracking/names/groceryus?source=ext&ext=135165&source=ext#amp=1
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:42 GMT
content-type: application/json;charset=utf-8
content-length: 186
cf-ray: 74d6ad5b0baa0b39-OSL
access-control-allow-origin: https://www.brandbucket.com
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 2f78c9f8-a8ff-4768-966f-6f549fe76006
x-trace: 2B3BCCF89EA1466AC7126EA55B587F26974D752743000000000000000000
set-cookie: __cf_bm=Bik3.I9fPHK9UGVLiyIKbpW.laOEqOxy_NeHb31Vc5g-1663636182-0-AVBuUqboP7Y4W9+ZtSxcGazM7V/GypWyQQmey7x7IW7qgTYRG9CR/bgTSYdw8lwTJL/fgDbEl+A9Kr+cbYJ1LrA=; path=/; expires=Tue, 20-Sep-22 01:39:42 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8w%2BAjUkblAqr2bZwzoqAGkQvtwk393IFPenJj34PwSpDVnSkOO1K6zrRZ5VNFDxmuxrloCFidwyPX7yHKliaJvhUF5DY775iC1Wuo616QqxWTip3WjYQ4yuzuCSDynz2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=138002826&Ver=2&mid=f93d505d-ef0a-4969-a892-a55c71705afe&sid=dc515100388011eda1aa058a796476b2&vid=dc5140b0388011ed883cc3cff5008343&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=All%20names&p=https%3A%2F%2Fwww.brandbucket.com%2F&r=<=1003&evt=pageLoad&ifm=1&sv=1&rn=831426
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=138002826&Ver=2&mid=f93d505d-ef0a-4969-a892-a55c71705afe&sid=dc515100388011eda1aa058a796476b2&vid=dc5140b0388011ed883cc3cff5008343&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=All%20names&p=https%3A%2F%2Fwww.brandbucket.com%2F&r=<=1003&evt=pageLoad&ifm=1&sv=1&rn=831426
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=138002826&Ver=2&mid=f93d505d-ef0a-4969-a892-a55c71705afe&sid=dc515100388011eda1aa058a796476b2&vid=dc5140b0388011ed883cc3cff5008343&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=All%20names&p=https%3A%2F%2Fwww.brandbucket.com%2F&r=<=1003&evt=pageLoad&ifm=1&sv=1&rn=831426 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2F85FB697DB662D90355E94C7CE163CB; domain=.bing.com; expires=Sun, 15-Oct-2023 01:09:42 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A3666829CF5742939E37C0EA723B4964 Ref B: OSL30EDGE0310 Ref C: 2022-09-20T01:09:42Z
date: Tue, 20 Sep 2022 01:09:42 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 345a9fd92c344b3eaf1b74e46931dd66
13f5365448890da77bd7b3290f884bf7fabe327b
6338b6459e31086d52d4d6a4ca019f8de22db2c9f02e2f38475cfb1c184c35cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1387
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Last-Modified: Tue, 20 Sep 2022 00:46:35 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 314
sslwidget.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-2xeVwC0jsPUheT_LJ9KtNQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=yT1w6180VTY2N0JJcWhCbkhmWVpFVVhGTFZYWHBCemE4R0FDSU1GdmFvOTRDWEpXSHhXcG82QjR3WDVlVlFIcjg0ZVVZVVp4bnRXVGlIckdHRlZWcXhBMXZGNjlVRWZxbjZSMUllczd5bnY2aDVhaFBhT3BEcTdEV3BNamoyJTJGYVNraGdNRFgwUGpmazk3TnRDdTZDMWFlRzI1USUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fgroceryus%253Fsource%253Dext&dtycbr=4256
178.250.2.151302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-2xeVwC0jsPUheT_LJ9KtNQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=yT1w6180VTY2N0JJcWhCbkhmWVpFVVhGTFZYWHBCemE4R0FDSU1GdmFvOTRDWEpXSHhXcG82QjR3WDVlVlFIcjg0ZVVZVVp4bnRXVGlIckdHRlZWcXhBMXZGNjlVRWZxbjZSMUllczd5bnY2aDVhaFBhT3BEcTdEV3BNamoyJTJGYVNraGdNRFgwUGpmazk3TnRDdTZDMWFlRzI1USUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fgroceryus%253Fsource%253Dext&dtycbr=4256
IP 178.250.2.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-2xeVwC0jsPUheT_LJ9KtNQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=yT1w6180VTY2N0JJcWhCbkhmWVpFVVhGTFZYWHBCemE4R0FDSU1GdmFvOTRDWEpXSHhXcG82QjR3WDVlVlFIcjg0ZVVZVVp4bnRXVGlIckdHRlZWcXhBMXZGNjlVRWZxbjZSMUllczd5bnY2aDVhaFBhT3BEcTdEV3BNamoyJTJGYVNraGdNRFgwUGpmazk3TnRDdTZDMWFlRzI1USUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fgroceryus%253Fsource%253Dext&dtycbr=4256 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 20 Sep 2022 01:09:42 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-2xeVwC0jsPUheT_LJ9KtNQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=yT1w6180VTY2N0JJcWhCbkhmWVpFVVhGTFZYWHBCemE4R0FDSU1GdmFvOTRDWEpXSHhXcG82QjR3WDVlVlFIcjg0ZVVZVVp4bnRXVGlIckdHRlZWcXhBMXZGNjlVRWZxbjZSMUllczd5bnY2aDVhaFBhT3BEcTdEV3BNamoyJTJGYVNraGdNRFgwUGpmazk3TnRDdTZDMWFlRzI1USUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fgroceryus%253Fsource%253Dext&dtycbr=4256
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 10020325
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
bat.bing.com/p/action/138002826.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/138002826.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/138002826.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=3508D4EFF84F66913364C6CAF91867D1; domain=.bing.com; expires=Sun, 15-Oct-2023 01:09:42 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2FEE7FC459034DF6BBD8AEBCB1FF1D24 Ref B: OSL30EDGE0310 Ref C: 2022-09-20T01:09:42Z
date: Tue, 20 Sep 2022 01:09:42 GMT
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=67b74cd1-ee39-4964-8f96-4a59963465a1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=b626675f-7650-4e0a-8ca4-1236d67e5fc3&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fgroceryus%3Fsource%3Dext%26ext%3D135165%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
104.244.42.67200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=67b74cd1-ee39-4964-8f96-4a59963465a1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=b626675f-7650-4e0a-8ca4-1236d67e5fc3&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fgroceryus%3Fsource%3Dext%26ext%3D135165%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
IP 104.244.42.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=67b74cd1-ee39-4964-8f96-4a59963465a1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=b626675f-7650-4e0a-8ca4-1236d67e5fc3&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fgroceryus%3Fsource%3Dext%26ext%3D135165%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:42 GMT
server: tsa_o
set-cookie: personalization_id="v1_gM/ZgntGWOVk1mLWJ4P9Zw=="; Max-Age=63072000; Expires=Thu, 19 Sep 2024 01:09:42 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: c3786acc0457541c4edb8485839efb00f0b5e3a58d9f29b85c2de12ecb1264a6
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f28ee47ad2f491256005c88006a81872
b5837f5f07139e9610c1b16deeedd553bcb2683b
c3fee025d8006471e0cdb1c60af049818f7d6844334fe05bad0033bff54bfd64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1220
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:42 GMT
Last-Modified: Tue, 20 Sep 2022 00:49:22 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 313
widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-2xeVwC0jsPUheT_LJ9KtNQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=yT1w6180VTY2N0JJcWhCbkhmWVpFVVhGTFZYWHBCemE4R0FDSU1GdmFvOTRDWEpXSHhXcG82QjR3WDVlVlFIcjg0ZVVZVVp4bnRXVGlIckdHRlZWcXhBMXZGNjlVRWZxbjZSMUllczd5bnY2aDVhaFBhT3BEcTdEV3BNamoyJTJGYVNraGdNRFgwUGpmazk3TnRDdTZDMWFlRzI1USUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fgroceryus%253Fsource%253Dext&dtycbr=4256
74.119.119.150200 OK 20 kB URL HTTP/2 widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-2xeVwC0jsPUheT_LJ9KtNQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=yT1w6180VTY2N0JJcWhCbkhmWVpFVVhGTFZYWHBCemE4R0FDSU1GdmFvOTRDWEpXSHhXcG82QjR3WDVlVlFIcjg0ZVVZVVp4bnRXVGlIckdHRlZWcXhBMXZGNjlVRWZxbjZSMUllczd5bnY2aDVhaFBhT3BEcTdEV3BNamoyJTJGYVNraGdNRFgwUGpmazk3TnRDdTZDMWFlRzI1USUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fgroceryus%253Fsource%253Dext&dtycbr=4256
IP 74.119.119.150:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (5655)
Hash 4fd46653d01c9444dbce64428dfdfc40
e180c0f8fc5efc8c67e5d951043d3ca7f67e230b
2aab326894c8feb66b1d944b37c2e444608aadcb2753c7de8073805221b1354e
GET /event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-2xeVwC0jsPUheT_LJ9KtNQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=yT1w6180VTY2N0JJcWhCbkhmWVpFVVhGTFZYWHBCemE4R0FDSU1GdmFvOTRDWEpXSHhXcG82QjR3WDVlVlFIcjg0ZVVZVVp4bnRXVGlIckdHRlZWcXhBMXZGNjlVRWZxbjZSMUllczd5bnY2aDVhaFBhT3BEcTdEV3BNamoyJTJGYVNraGdNRFgwUGpmazk3TnRDdTZDMWFlRzI1USUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fgroceryus%253Fsource%253Dext&dtycbr=4256 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:42 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 23704015
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js
143.204.55.75200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js
IP 143.204.55.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Last-Modified: Mon, 12 Sep 2022 18:14:28 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: 6eXq1Vm.raboIzwleO8C2i0W83f9CRWd
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 20 Sep 2022 01:01:33 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
Age: 676
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZP8QWv1xy7es-ctnYL2YD17YzwvBg0o_cyIXvgrx-VP61dPIoS5BKA==
s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js
143.204.55.75302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js
IP 143.204.55.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Mon, 19 Sep 2022 04:33:53 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/pre/index.js
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
Age: 74150
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: biDmkKoj3u2zkMSksTP3X7io7hocDOz1sq60f7ZwjwErVqSgDRccPQ==
s.adroll.com/j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js
143.204.55.75302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js
IP 143.204.55.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Mon, 19 Sep 2022 18:54:06 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/exp/index.js
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
Age: 22537
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fZA9EDwCIx09gmjmgz8bRd9YsqqmTYCtv3VnnSJrX6eBAT5IbdcRcA==
s.adroll.com/j/exp/index.js
143.204.55.75200 OK 28 B URL HTTP/1.1 s.adroll.com/j/exp/index.js
IP 143.204.55.75:0
File type ASCII text, with no line terminators
Hash 5816cced8568d223aa09d889f300692b
95cab5e474d7391762c3da5c7dc50fcf05df529f
f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52
GET /j/exp/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 28
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 17:25:28 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: VS8aSrwndm.MeiNnyJ10ruHH56v74CIF
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 19 Sep 2022 03:24:47 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
Age: 81215
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xe5kIUXMNGMG7Er3BQya4ji08_-KpuORhoDQtrP8x3R0SUe0sFm1Kg==
s.adroll.com/j/pre/index.js
143.204.55.75200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/index.js
IP 143.204.55.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 15 Jan 2020 23:54:18 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: nQEe8wQ7h0ROt7P4GJfDfstto6x684Hy
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 19 Sep 2022 21:45:10 GMT
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
Age: 12273
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dQfy0Vh8O3hGUk1mwT5_BoZGu6unJ2uZxZEZRgQpluspCVMf8NEIIw==
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 20 Sep 2022 01:09:42 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 812438
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
d.adroll.com/consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fgroceryus%3Fsource%3Dext%26ext%3D135165%26source%3Dext%23amp%3D1&_s=148f8da7d2143d2315c59d40ceb1ab80&_b=2
52.19.197.203200 OK 447 B URL HTTP/2 d.adroll.com/consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fgroceryus%3Fsource%3Dext%26ext%3D135165%26source%3Dext%23amp%3D1&_s=148f8da7d2143d2315c59d40ceb1ab80&_b=2
IP 52.19.197.203:0
File type ASCII text, with very long lines (447), with no line terminators
Hash 86fad4864bab32589c662f2746ee2ba7
c980a6400bbca177679c02e42158ab9731362a25
bbc0b94e79cca791b97a281ad28bab35e010e050e9f5ed4f657e2cbb6140b17a
GET /consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fgroceryus%3Fsource%3Dext%26ext%3D135165%26source%3Dext%23amp%3D1&_s=148f8da7d2143d2315c59d40ceb1ab80&_b=2 HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:43 GMT
content-type: application/javascript
content-length: 447
server: nginx/1.20.0
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-j3RhnjzeeQH1WlxPEmqwX6MOaaqozpLsRUsv0Q
104.18.19.126302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-j3RhnjzeeQH1WlxPEmqwX6MOaaqozpLsRUsv0Q
IP 104.18.19.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-j3RhnjzeeQH1WlxPEmqwX6MOaaqozpLsRUsv0Q HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 20 Sep 2022 01:09:43 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-j3RhnjzeeQH1WlxPEmqwX6MOaaqozpLsRUsv0Q&C=1
cf-ray: 74d6ad612d43b4f3-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YykS1wOojBz-84kd8i8iQgAA; Path=/; Domain=casalemedia.com; Expires=Wed, 20 Sep 2023 01:09:43 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4452; Path=/; Domain=casalemedia.com; Expires=Mon, 19 Dec 2022 01:09:43 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4452; Path=/; Domain=casalemedia.com; Expires=Mon, 19 Dec 2022 01:09:43 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2f%2F%2Fbq9uLNBrYh04jiQMnSciHNq6cwr3EO3b%2BgjPciyLmI3LTxDGE%2BWCijfkbOV3xojnEOkedZs5zHGLXd%2BHISW6k8QyI%2BJNsMyijxYHP43%2FA2OEuw%2FmNFy76jidU9UuBwNg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-bON5RjzeeQH1WlxPEmqwX6MOaapU6MmYYM8dsg
23.38.200.22200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-bON5RjzeeQH1WlxPEmqwX6MOaapU6MmYYM8dsg
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-bON5RjzeeQH1WlxPEmqwX6MOaapU6MmYYM8dsg HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3066377833580294000V10; Expires=Wed, 20 Sep 2023 01:09:43 GMT; domain=.media.net; Path=/;
data-c-ts=1663636183;Expires=Thu, 20 Oct 2022 01:09:43 GMT;path=/;domain=.media.net;
data-c=k-bON5RjzeeQH1WlxPEmqwX6MOaapU6MmYYM8dsg~~3;Expires=Thu, 20 Oct 2022 01:09:43 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Tue, 20 Sep 2022 01:09:43 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Sep 2022 01:09:43 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 9d5009298ea980df84701d97731acbc5
8393ae2fa891d349418eb13bb50e7a875640914d
d816673db8341ffb5ae385884011e9f0c57d6bcd6314eb19cf6962d3c34dc135
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Mon, 19 Sep 2022 23:20:29 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KOXtu5ky14Y7096NJL9m3FAkXZSBqQM7wl2AGi64NlPJFGs4NntlEQ==
Age: 6554
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-j3RhnjzeeQH1WlxPEmqwX6MOaaqozpLsRUsv0Q&C=1
104.18.19.126200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-j3RhnjzeeQH1WlxPEmqwX6MOaaqozpLsRUsv0Q&C=1
IP 104.18.19.126:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-j3RhnjzeeQH1WlxPEmqwX6MOaaqozpLsRUsv0Q&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:43 GMT
content-type: image/gif
content-length: 43
cf-ray: 74d6ad617d68b4f3-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tKWS3kq1M%2BzNt6aStwdUrQwqIREYEpbf4I4DYH9bPjJVmj%2BGygMqufKsLA3HbT1cG2RSdy1JgvM7XsvbuR0WpVntpUXsvvH0knFIlN4mZVGQa7aAomepqjWsLiYRqi4x%2BRDv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1d13fc88355dd2c1d95b41c427ee8cd3
92737e60d55c4ddfd14a0f0bcc493ab272811c9f
234cb8cfbd31c3ef1ba5fdabe7751534c2b5134926636218b0d57be3b3bbe26d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5268
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Mon, 19 Sep 2022 23:41:55 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-lBV4MjzeeQH1WlxPEmqwX6MOaaoXckpUABeD2g&google_cm&google_hm=ay1sQlY0TWp6ZWVRSDFXbHhQRW1xd1g2TU9hYW9YY2twVUFCZUQyZw
142.250.74.98302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-lBV4MjzeeQH1WlxPEmqwX6MOaaoXckpUABeD2g&google_cm&google_hm=ay1sQlY0TWp6ZWVRSDFXbHhQRW1xd1g2TU9hYW9YY2twVUFCZUQyZw
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 1be23afe263fcad008e29c465a8178d9
ae38db6911246d1bd4758f8dbf634e811dca2828
cf72d60177739b5de615c7d2000693b924fb12ec9af93e9436251d7cbf15d1ac
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-lBV4MjzeeQH1WlxPEmqwX6MOaaoXckpUABeD2g&google_cm&google_hm=ay1sQlY0TWp6ZWVRSDFXbHhQRW1xd1g2TU9hYW9YY2twVUFCZUQyZw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-lBV4MjzeeQH1WlxPEmqwX6MOaaoXckpUABeD2g&google_cm=&google_hm=ay1sQlY0TWp6ZWVRSDFXbHhQRW1xd1g2TU9hYW9YY2twVUFCZUQyZw&google_tc=
date: Tue, 20 Sep 2022 01:09:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 20-Sep-2022 01:24:43 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6963a6c541b2f7c20a96899a6bafcfb8
bbc66775ecf65ed9ec66be4a4382cbc6a352c9d3
6b056a2d3335f86fa206387151ad1eb8f4e562434e96781af88fd0ee84a67623
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6162
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Mon, 19 Sep 2022 23:27:01 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
185.89.210.212307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 185.89.210.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Tue, 20 Sep 2022 01:09:43 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: aca7f8c8-7978-434a-a44f-39f6d5ac704b
Set-Cookie: uuid2=2571441063588552682; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 19-Dec-2022 01:09:43 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-lBV4MjzeeQH1WlxPEmqwX6MOaaoXckpUABeD2g&google_cm=&google_hm=ay1sQlY0TWp6ZWVRSDFXbHhQRW1xd1g2TU9hYW9YY2twVUFCZUQyZw&google_tc=
142.250.74.98302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-lBV4MjzeeQH1WlxPEmqwX6MOaaoXckpUABeD2g&google_cm=&google_hm=ay1sQlY0TWp6ZWVRSDFXbHhQRW1xd1g2TU9hYW9YY2twVUFCZUQyZw&google_tc=
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 45c53b0ac52ce4b5048266d5f68a9e60
9bf0ec7f0d1a3bd7550ca334e02fcd0b980e1579
4b72f79b5b9813d8713c3beeea3d150bf8762cb8ee5bff266c217feb58dca40d
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-lBV4MjzeeQH1WlxPEmqwX6MOaaoXckpUABeD2g&google_cm=&google_hm=ay1sQlY0TWp6ZWVRSDFXbHhQRW1xd1g2TU9hYW9YY2twVUFCZUQyZw&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-lBV4MjzeeQH1WlxPEmqwX6MOaaoXckpUABeD2g&google_error=3
date: Tue, 20 Sep 2022 01:09:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-LtaMCDzeeQH1WlxPEmqwX6MOaaoi3TWOLVQR-Q&expires=30
213.19.162.90204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-LtaMCDzeeQH1WlxPEmqwX6MOaaoi3TWOLVQR-Q&expires=30
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-LtaMCDzeeQH1WlxPEmqwX6MOaaoi3TWOLVQR-Q&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 693f17ec94b6fd0c82d03268b1ba23d6
Content-Type: image/gif
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-6ZxoBzzeeQH1WlxPEmqwX6MOaaoUUo63hvMPTQ
185.64.189.110200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-6ZxoBzzeeQH1WlxPEmqwX6MOaaoUUo63hvMPTQ
IP 185.64.189.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-6ZxoBzzeeQH1WlxPEmqwX6MOaaoUUo63hvMPTQ HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 01:09:41 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-6ZxoBzzeeQH1WlxPEmqwX6MOaaoUUo63hvMPTQ&KRTB&23144-uid:k-6ZxoBzzeeQH1WlxPEmqwX6MOaaoUUo63hvMPTQ&KRTB&23286-uid:k-6ZxoBzzeeQH1WlxPEmqwX6MOaaoUUo63hvMPTQ&KRTB&23287-uid:k-6ZxoBzzeeQH1WlxPEmqwX6MOaaoUUo63hvMPTQ; domain=pubmatic.com; secure; expires=Thu, 20-Oct-2022 01:09:41 GMT; path=/
PugT=1663636181; domain=pubmatic.com; secure; expires=Thu, 20-Oct-2022 01:09:41 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 270068b57ad399006c2afd36ff32adbf
966f1604a1385fb52e5dc4de8054900e4ca3956a
3f96de1d0ca34947755a763dd545de6075c96a2220c89fb38e02f9aa73fd5543
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6035
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Mon, 19 Sep 2022 23:29:08 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 312
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a63f008121441b3610f09d5a8d21f2eb
12855b87981010ed81a3582a3ce06eae3ef5dc6f
71c6b98c6b091b2239c705069605ce73abd18b3e4426e0011bfa16499aaf136e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 01:09:43 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 01:56:49 GMT
Expires: Sat, 24 Sep 2022 01:56:48 GMT
Etag: "12855b87981010ed81a3582a3ce06eae3ef5dc6f"
Cache-Control: max-age=347824,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74d6ad61f827b521-OSL
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 695a0c8b5bfff6e08bc423f2a2ec6b3d
65531362f796d2d4e10a4aba0bbd8835d2639ac1
7bd70a744b1e481611161f132df6c584a5852d3d0d9e682c1bd8506bd8bf0e8c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Tue, 20 Sep 2022 00:39:21 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Q9pksoDb6NBl9jQ_LUSFEioSWaADZWzfxKbY4mOWfERTBJZ9cH5J0g==
Age: 1822
criteo-sync.teads.tv/um?eid=80&uid=k-6m-lRjzeeQH1WlxPEmqwX6MOaaqPFcNnIjE_rw
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-6m-lRjzeeQH1WlxPEmqwX6MOaaqPFcNnIjE_rw
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-6m-lRjzeeQH1WlxPEmqwX6MOaaqPFcNnIjE_rw HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Tue, 20 Sep 2022 01:09:43 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Sep 2022 01:09:43 GMT
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-3z8UEzzeeQH1WlxPEmqwX6MOaapq3Dev0p9LodHdHv_cznz8
3.66.137.164200 OK 70 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-3z8UEzzeeQH1WlxPEmqwX6MOaapq3Dev0p9LodHdHv_cznz8
IP 3.66.137.164:0
File type ASCII text, with no line terminators
Hash b4adac819072f731e94e3eb2ef464bd4
ac7bb0e84e8705e88cf187dd8ac291fdea8cf988
69c4f805f2d245da697e19172f743f8eb9ff3529130c78c342dad1c18ec1ab47
GET /usersync/push?partner=criteo&partnerId=k-3z8UEzzeeQH1WlxPEmqwX6MOaapq3Dev0p9LodHdHv_cznz8 HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:43 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%22e8ef9c60-3880-11ed-af80-c70f498774b2%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Tue, 04 Oct 2022 01:09:43 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%22e8ef9c60-3880-11ed-af80-c70f498774b2%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Tue, 04 Oct 2022 01:09:43 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-3z8UEzzeeQH1WlxPEmqwX6MOaapq3Dev0p9LodHdHv_cznz8%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Tue, 04 Oct 2022 01:09:43 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 61bf976ff6b3fa763b7be75e0dc644d9
5a83f04285ae91d8eb8f065cf885bc38d06699b0
f159f1113ea300b559fd7a5ee32fc5ff7aef0460cda84a7be7ff07f6650026c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1474
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Tue, 20 Sep 2022 00:45:10 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
x.bidswitch.net/sync?dsp_id=46&user_id=k-dRS_2TzeeQH1WlxPEmqwX6MOaaqTexaTmaGC2Q&expires=30
52.58.8.248302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?dsp_id=46&user_id=k-dRS_2TzeeQH1WlxPEmqwX6MOaaqTexaTmaGC2Q&expires=30
IP 52.58.8.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-dRS_2TzeeQH1WlxPEmqwX6MOaaqTexaTmaGC2Q&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 20 Sep 2022 01:09:43 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-dRS_2TzeeQH1WlxPEmqwX6MOaaqTexaTmaGC2Q&expires=30
Set-Cookie: tuuid=ff86a8b1-9139-4167-9151-5b6a4ce39f9f; path=/; expires=Wed, 20-Sep-2023 01:09:43 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663636183; path=/; expires=Wed, 20-Sep-2023 01:09:43 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1663636183; path=/; expires=Wed, 20-Sep-2023 01:09:43 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663636183; path=/; expires=Wed, 20-Sep-2023 01:09:43 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-3BJQmTzeeQH1WlxPEmqwX6MOaarW30nN2rdfGg
18.185.190.16302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-3BJQmTzeeQH1WlxPEmqwX6MOaarW30nN2rdfGg
IP 18.185.190.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-3BJQmTzeeQH1WlxPEmqwX6MOaarW30nN2rdfGg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 20 Sep 2022 01:09:43 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-3BJQmTzeeQH1WlxPEmqwX6MOaarW30nN2rdfGg
set-cookie: tuuid=e01496c3-174b-4d17-80ea-c1f48d68587a; Expires=Mon, 19 Dec 2022 01:09:43 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1663636183; Expires=Mon, 19 Dec 2022 01:09:43 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 68de358d71c4d37c45c3aec5b3e653d2
dcafd418544469406f8e285b4c8976979d726744
70c9f21c333d42ff6715a08a2c75458a750214c48fc02f79e606c5a826539704
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5409
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Mon, 19 Sep 2022 23:39:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-dFxDaDzeeQH1WlxPEmqwX6MOaarBlJlR9cDz6g
185.86.139.113200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-dFxDaDzeeQH1WlxPEmqwX6MOaarBlJlR9cDz6g
IP 185.86.139.113:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-dFxDaDzeeQH1WlxPEmqwX6MOaarBlJlR9cDz6g HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Tue, 20 Sep 2022 01:09:42 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=6357229906926101847; expires=Fri, 20 Oct 2023 01:09:43 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Fri, 20 Oct 2023 01:09:43 GMT; domain=smartadserver.com; path=/
csync=79:k-dFxDaDzeeQH1WlxPEmqwX6MOaarBlJlR9cDz6g; expires=Wed, 20 Sep 2023 01:09:43 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bad0d423510c29cfad88136003f3e98c
ec28b67b597f8fc0b401d987e48fa32198526986
8287717b8b0dfcd35993c7650bd7d0f8c5599386213ae3713b104656e9aed4c9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6500
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Mon, 19 Sep 2022 23:21:23 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ad.yieldlab.net/m?dm_id=8666&ext_id=k-Z5BWojzeeQH1WlxPEmqwX6MOaar5EU2BiMX-Qw
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dm_id=8666&ext_id=k-Z5BWojzeeQH1WlxPEmqwX6MOaar5EU2BiMX-Qw
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dm_id=8666&ext_id=k-Z5BWojzeeQH1WlxPEmqwX6MOaar5EU2BiMX-Qw HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Mon, 19 Sep 2022 01:09:43 GMT
Date: Tue, 20 Sep 2022 01:09:43 GMT
Connection: keep-alive
Set-Cookie: id=e0b54cf9-3752-437c-a084-0894cc4a070c; Path=/; Domain=yieldlab.net; Expires=Wed, 20-Sep-2023 01:09:43 GMT; Max-Age=31536000; Secure; SameSite=None
cm.adform.net/pixel?adform_pid=15&adform_pc=k-8uEP5TzeeQH1WlxPEmqwX6MOaapplbgooBopIA
37.157.6.252200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-8uEP5TzeeQH1WlxPEmqwX6MOaapplbgooBopIA
IP 37.157.6.252:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-8uEP5TzeeQH1WlxPEmqwX6MOaapplbgooBopIA HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 01:09:43 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 12 Jul 2016 14:10:56 GMT
etag: "5784fa70-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-dRS_2TzeeQH1WlxPEmqwX6MOaaqTexaTmaGC2Q&expires=30
52.58.8.248200 OK 43 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-dRS_2TzeeQH1WlxPEmqwX6MOaaqTexaTmaGC2Q&expires=30
IP 52.58.8.248:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-dRS_2TzeeQH1WlxPEmqwX6MOaaqTexaTmaGC2Q&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Tue, 20 Sep 2022 01:09:43 GMT
Content-Length: 43
Connection: keep-alive
dpm.demdex.net/ibs:dpid=28645&dpuuid=
3.248.125.227302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 3.248.125.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v041-0cfadca90.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=20799691420196070870830294970323792641; Max-Age=15552000; Expires=Sun, 19 Mar 2023 01:09:43 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: GII5e3lAQMg=
Content-Length: 0
Connection: keep-alive
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-3BJQmTzeeQH1WlxPEmqwX6MOaarW30nN2rdfGg
18.185.190.16200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-3BJQmTzeeQH1WlxPEmqwX6MOaarW30nN2rdfGg
IP 18.185.190.16:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-3BJQmTzeeQH1WlxPEmqwX6MOaarW30nN2rdfGg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:43 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-40x-WDzeeQH1WlxPEmqwX6MOaaoBNWkvBqAMVA
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-40x-WDzeeQH1WlxPEmqwX6MOaaoBNWkvBqAMVA
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-40x-WDzeeQH1WlxPEmqwX6MOaaoBNWkvBqAMVA HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 20 Sep 2022 01:09:43 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-40x-WDzeeQH1WlxPEmqwX6MOaaoBNWkvBqAMVA&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBNcSKWMCEDIHQjc4UYxc4NPE1MPuVIEFEgEBAQFkKmMyYwAAAAAA_eMAAA&S=AQAAAgQNrLA_o12xgqgdMFOyLcM; Expires=Wed, 20 Sep 2023 07:09:43 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 4a605f6d6ce35dbf2d1d95a8a9257cc2
50c5d6f06e0b1746b6ec65e8213414ff93088413
0518decaed9d1f56b0552ccb545d30398837336f54a328428016caafd56db612
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Tue, 20 Sep 2022 00:41:40 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8njuz5MrothPJWsVc6OyNV_TONY_WP4F0EbXzfN3M2wZwdBNstYNmg==
Age: 1683
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 048cc6ff9b35c5b5353248b0b3a2a955
6f022f91a06f2e9e3d4a6f8bed9d3351d1adb9e1
09ce4658ad50f0ec52dff95d69ff133913d3b3ce8d0e811b42e3e41eff19767b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 01:09:43 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 15:11:57 GMT
Expires: Sat, 24 Sep 2022 15:11:56 GMT
Etag: "6f022f91a06f2e9e3d4a6f8bed9d3351d1adb9e1"
Cache-Control: max-age=395532,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74d6ad62e88eb521-OSL
ad.yieldlab.net/m?dt_id=8664&ext_id=k-Z5BWojzeeQH1WlxPEmqwX6MOaar5EU2BiMX-Qw
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-Z5BWojzeeQH1WlxPEmqwX6MOaar5EU2BiMX-Qw
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-Z5BWojzeeQH1WlxPEmqwX6MOaar5EU2BiMX-Qw HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Mon, 19 Sep 2022 01:09:43 GMT
Date: Tue, 20 Sep 2022 01:09:43 GMT
Connection: keep-alive
Set-Cookie: id=e99cc8af-8e86-48e4-a4fa-1db90ba28365; Path=/; Domain=yieldlab.net; Expires=Wed, 20-Sep-2023 01:09:43 GMT; Max-Age=31536000; Secure; SameSite=None
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash e0af2c62426f3ea481c7f1ce8a3f6b4f
3911248092ff5fa0527599bd8e60b77ebffc4c41
a54c0c9e61daa2bb05e059ca5890ef09cb71228f60e3187ca98b002a28ac1e2d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Mon, 19 Sep 2022 23:37:08 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pHc1_pyj6bw4kf0d1PNs21jkXjP1UmrwSFCtjweolUkjAjiAD4yWOw==
Age: 5556
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-40x-WDzeeQH1WlxPEmqwX6MOaaoBNWkvBqAMVA&verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-40x-WDzeeQH1WlxPEmqwX6MOaaoBNWkvBqAMVA&verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-40x-WDzeeQH1WlxPEmqwX6MOaaoBNWkvBqAMVA&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 20 Sep 2022 01:09:43 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBNcSKWMCEJQ1eWG46xRW9zFfG-0F76EFEgEBAQFkKmMyYwAAAAAA_eMAAA&S=AQAAAuwO_ynOGLnxN5OOIQsElpg; Expires=Wed, 20 Sep 2023 07:09:43 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-e-0w_zzeeQH1WlxPEmqwX6MOaapcT94A9l5qYw
35.158.53.117204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-e-0w_zzeeQH1WlxPEmqwX6MOaapcT94A9l5qYw
IP 35.158.53.117:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-e-0w_zzeeQH1WlxPEmqwX6MOaapcT94A9l5qYw HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 20 Sep 2022 01:09:43 GMT
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
3.248.125.227200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 3.248.125.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v041-0a60a8ed6.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: j0nHpUR0TMw=
Content-Length: 59
Connection: keep-alive
eb2.3lift.com/xuid?mid=2711&xuid=k-xLV5EjzeeQH1WlxPEmqwX6MOaaqhnxV5vywjPw&dongle=013b
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-xLV5EjzeeQH1WlxPEmqwX6MOaaqhnxV5vywjPw&dongle=013b
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-xLV5EjzeeQH1WlxPEmqwX6MOaaqhnxV5vywjPw&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:43 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-Bd1LuDzeeQH1WlxPEmqwX6MOaar4kT-UyJhb1w
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-Bd1LuDzeeQH1WlxPEmqwX6MOaar4kT-UyJhb1w
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-Bd1LuDzeeQH1WlxPEmqwX6MOaar4kT-UyJhb1w HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=ac9cb321c07d7c7ccb2c3e4b229aa651; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Tue, 20 Sep 2022 01:09:43 GMT
content-length: 49
x-envoy-upstream-service-time: 4
server: ayl-lb-fra02
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 20 Sep 2022 01:09:42 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 725029
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=12438557&ext_id=k-Z5BWojzeeQH1WlxPEmqwX6MOaar5EU2BiMX-Qw
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=12438557&ext_id=k-Z5BWojzeeQH1WlxPEmqwX6MOaar5EU2BiMX-Qw
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=12438557&ext_id=k-Z5BWojzeeQH1WlxPEmqwX6MOaar5EU2BiMX-Qw HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Mon, 19 Sep 2022 01:09:43 GMT
Date: Tue, 20 Sep 2022 01:09:43 GMT
Connection: keep-alive
Set-Cookie: id=e64ee730-5d13-4f02-966b-97deb4f4c693; Path=/; Domain=yieldlab.net; Expires=Wed, 20-Sep-2023 01:09:43 GMT; Max-Age=31536000; Secure; SameSite=None
sync.outbrain.com/cookie-sync?p=criteo&uid=k-2rjOQTzeeQH1WlxPEmqwX6MOaap_sUcYbpTvmQ
64.202.112.255200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-2rjOQTzeeQH1WlxPEmqwX6MOaap_sUcYbpTvmQ
IP 64.202.112.255:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-2rjOQTzeeQH1WlxPEmqwX6MOaap_sUcYbpTvmQ HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 01:09:43 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: aaefc124467a22309909ee4da279d7d7
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash d155f235ff0044f8c7ad873cd6b0778e
e444cf417f58a13d08f0f44d8dae9edbf180edc6
0a30146d4a9acd7f011f2f1090ffeeede8b3f8d270adb867c10644d154181f74
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Mon, 19 Sep 2022 23:43:34 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8WF_a0F_fvjaxkuUi5OtjKNSZNJah-FObfLyziv3Rfucw8b_WwQ2bw==
Age: 5170
sync-criteo.ads.yieldmo.com/sync?id=k--pelfDzeeQH1WlxPEmqwX6MOaaqYbC6WQ51GCQ&pn_id=criteo&ext=1
54.77.57.168200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k--pelfDzeeQH1WlxPEmqwX6MOaaqYbC6WQ51GCQ&pn_id=criteo&ext=1
IP 54.77.57.168:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k--pelfDzeeQH1WlxPEmqwX6MOaaqYbC6WQ51GCQ&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:43 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=gf4680b687f5b66b08ba%7C1663636183656%7C0%7C; Domain=.yieldmo.com; Expires=Wed, 20-Sep-2023 01:09:43 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k--pelfDzeeQH1WlxPEmqwX6MOaaqYbC6WQ51GCQ; Domain=ads.yieldmo.com; Expires=Wed, 20-Sep-2023 01:09:43 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d5d7863f71d6844159c8179578b5660
25e03aece927733851c4c6725de955b2a0036823
1feca7c763a9d811613ad184b6eb017917bf791cc60fe7daa2449716645a9cfb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3150
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 01:09:43 GMT
Last-Modified: Tue, 20 Sep 2022 00:17:13 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
52.213.108.198204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 52.213.108.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 20 Sep 2022 01:09:43 GMT
set-cookie: _kuid_=PFt75jWt; Expires=Sun, 19-Mar-23 01:09:43 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n019-dub-prod.krxd.net
x-request-time: D=26 t=1663636183
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 20 Sep 2022 01:09:43 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 550192
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 2f3cf05aed003dab50e21ce1aa4e6d02
9b07a54ca205a8365ae7e1b9396e6be388cf40d2
bfea397554f7ec02cec37f3c4ee331babd059973d75d6a8be91ae7afe8e426fe
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144493
Date: Tue, 20 Sep 2022 01:09:43 GMT
Etag: "63289512-1d7"
Expires: Wed, 21 Sep 2022 17:17:56 GMT
Last-Modified: Mon, 19 Sep 2022 16:13:06 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lzUOT8u7FSD8U0CMBX8PU5ZxLhnmVYCyM9ayaHAbGu1qCDasPB3A8g==
Age: 3890
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 8ed76f352aa0c4ba18ab6ae61a91462f
75eb939019076ce6ac4ea2b9be733cccd2da842b
155d96373438d640c970a8d8d91d8a73cdd7388ae27062ca543b0bc04736ac84
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "155D96373438D640C970A8D8D91D8A73CDD7388AE27062CA543B0BC04736AC84"
Last-Modified: Mon, 19 Sep 2022 20:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=2243
Expires: Tue, 20 Sep 2022 01:47:07 GMT
Date: Tue, 20 Sep 2022 01:09:44 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
3.12.105.184200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 3.12.105.184:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:44 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: e970da50-3880-11ed-9401-0000ac1700f0
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
www.brandbucket.com/names/groceryus?source=ext
104.22.6.216200 OK 0 B URL HTTP/2 www.brandbucket.com/names/groceryus?source=ext
IP 104.22.6.216:0
GET /names/groceryus?source=ext HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: text/html
vary: Accept-Encoding
set-cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; path=/
land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; expires=Mon, 19-Dec-2022 01:09:38 GMT; Max-Age=7776000; path=/
land_referrer=1663636178%3B; expires=Mon, 19-Dec-2022 01:09:38 GMT; Max-Age=7776000; path=/
bb_recent=135165; expires=Mon, 10-Oct-2022 01:09:38 GMT; Max-Age=1728000; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-origin: https://js.stripe.com/, https://get.brandbucket.com/, //staging.brandbucket.com/
brandbucket-domain: groceryus.com #135165
x-frame-options: DENY
access-control-allow-credentials: true
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74d6ad418a990b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=UradKV80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlJrdUNIQ3dQTzZlQmdsd1hhNnBrZ3kyUmxlJTJGYXQ2ZDhVdTZWQlRZOFJI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:41 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=7qNJml80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlJrdUNIQ3dQTzZlQmdsd1hhNnBraFFpck04OHFqQW9GbGxUN3ZSdzk1Mg; expires=Sun, 15 Oct 2023 01:09:42 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 428454
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.brandbucket.com/favicon.ico
104.22.6.216200 OK 0 B URL HTTP/2 www.brandbucket.com/favicon.ico
IP 104.22.6.216:0
GET /favicon.ico HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/groceryus?source=ext
Cookie: PHPSESSID=db7dq6dtrppds3oua3f08663l2; land_URL=1663636178%3B%2Fnames%2Fgroceryus%3Fsource%3Dext; land_referrer=1663636178%3B; bb_recent=135165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:39 GMT
content-type: text/html
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 6319
last-modified: Mon, 19 Sep 2022 23:24:20 GMT
server: cloudflare
cf-ray: 74d6ad4aad350b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.usemessages.com/conversations-embed.js
104.17.235.204200 OK 0 B URL HTTP/2 js.usemessages.com/conversations-embed.js
IP 104.17.235.204:0
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:42 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 22 Aug 2022 02:10:32 UTC
etag: W/"be054c0d1ce8e9f928e051e15475d755"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3C1npQH0ys7YIJipkKSW0mB3OJD1A1US
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0ed062928320c9569a09db8a928795e4.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P3
x-amz-cf-id: CCaIeFlcY3FKQHuvMW_xkmPK_IXi4cIu8ufdKJtOzoD_KwKhhipDpQ==
age: 341
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.10632/bundles/project.js&cfRay=745bcef5de010afe-IAD
x-hs-target-asset: conversations-embed/static-1.10632/bundles/project.js
x-hs-cache-status: EXPIRED
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 74d6ad599ce2b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.0.163:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:43 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 478066
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
dynamic.criteo.com/js/ld/ld.js?a=23078
178.250.0.147200 OK 0 B URL HTTP/2 dynamic.criteo.com/js/ld/ld.js?a=23078
IP 178.250.0.147:0
GET /js/ld/ld.js?a=23078 HTTP/1.1
Host: dynamic.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:41 GMT
content-type: application/javascript; charset=utf-8
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin, Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
js.hs-banner.com/20882931.js
104.18.33.171200 OK 0 B URL HTTP/2 js.hs-banner.com/20882931.js
IP 104.18.33.171:0
GET /20882931.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:42 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: LZQJEIUGZpimRU8u1RpHftmBzqWoKddSEimv1q4KRhb1GfuXfY0vgY9GfW6WrayKUY+ihlNMN4U=
x-amz-request-id: VFEXZ99DDVNKEYDB
last-modified: Tue, 30 Aug 2022 23:09:39 GMT
etag: W/"78ffb10a4b1a78e3dbb2fbc3833d979b"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: wVTF9d3ewW5rPbyGOXdwIXoxBD_CEo_I
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
expires: Tue, 20 Sep 2022 01:14:42 GMT
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad599aca0b55-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1663635900000/20882931.js
104.17.71.176200 OK 0 B URL HTTP/2 js.hs-analytics.net/analytics/1663635900000/20882931.js
IP 104.17.71.176:0
GET /analytics/1663635900000/20882931.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:42 GMT
content-type: text/javascript
x-amz-id-2: Ara9XVuFXKmBtFa9uK4cMfOzr1wPlzb6Uy7xtsJ2LV67RVD7gBSi4MeWY5/0o2ISsJGWb8r5dN4=
x-amz-request-id: YBDEF4HQ1MC860XA
last-modified: Wed, 31 Aug 2022 14:06:50 GMT
etag: W/"ae2f524bc295017dee70bb69092256ec"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
expires: Tue, 20 Sep 2022 01:10:37 GMT
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d6ad5c6c7ab505-OSL
content-encoding: br
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-y9xw1zzeeQH1WlxPEmqwX6MOaarZZxjuRM29VA
54.158.141.148200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-y9xw1zzeeQH1WlxPEmqwX6MOaarZZxjuRM29VA
IP 54.158.141.148:0
GET /sync?UICR=k-y9xw1zzeeQH1WlxPEmqwX6MOaarZZxjuRM29VA HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:43 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.4200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.4:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:42 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 99235
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.128200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.128:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:42 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 77673
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=brandbucket.com&sn=FirefoxSyncframe&so=0&topUrl=www.brandbucket.com&info=7qNJml80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlJrdUNIQ3dQTzZlQmdsd1hhNnBraFFpck04OHFqQW9GbGxUN3ZSdzk1Mg&idsd=-1077012019,1003412737&cw=1&lsw=1
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=brandbucket.com&sn=FirefoxSyncframe&so=0&topUrl=www.brandbucket.com&info=7qNJml80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlJrdUNIQ3dQTzZlQmdsd1hhNnBraFFpck04OHFqQW9GbGxUN3ZSdzk1Mg&idsd=-1077012019,1003412737&cw=1&lsw=1
IP 178.250.2.146:0
GET /sid/json?origin=onetag&domain=brandbucket.com&sn=FirefoxSyncframe&so=0&topUrl=www.brandbucket.com&info=7qNJml80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlJrdUNIQ3dQTzZlQmdsd1hhNnBraFFpck04OHFqQW9GbGxUN3ZSdzk1Mg&idsd=-1077012019,1003412737&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=www.brandbucket.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:41 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 916145
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-lBV4MjzeeQH1WlxPEmqwX6MOaaoXckpUABeD2g&google_error=3
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-lBV4MjzeeQH1WlxPEmqwX6MOaaoXckpUABeD2g&google_error=3
IP 178.250.0.163:0
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-lBV4MjzeeQH1WlxPEmqwX6MOaaoXckpUABeD2g&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 01:09:43 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 220341
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-0kZMMDzeeQH1WlxPEmqwX6MOaappXCXTvVulBw
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-0kZMMDzeeQH1WlxPEmqwX6MOaappXCXTvVulBw
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-0kZMMDzeeQH1WlxPEmqwX6MOaappXCXTvVulBw HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 01:09:43 GMT
x-fastly-to-nlb-rtt: 23024
access-control-allow-credentials: true
X-Firefox-Spdy: h2