search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
302 Found 344 B URL HTTP/1.1 search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a26f780d50cbc6ab4caa645174e5698d
7513626fa379a755344a34a193a28bba8cfa8388
eae9f894eecf898d0796f1ff68e2e8c3e672f74c00ac97c03c3518c2db14e81b
GET /?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab& HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: private
Content-Type: text/html; charset=utf-8
Date: Tue, 06 Sep 2022 08:33:57 GMT
Location: https://search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel tracking&i_id=packages_2.2&page=newtab&
X-Content-Type-Options: nosniff
Content-Length: 344
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11597
Expires: Tue, 06 Sep 2022 11:47:12 GMT
Date: Tue, 06 Sep 2022 08:33:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 08:04:16 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JHkTpQB4LhiwZ42gdWqW1nr1YgyXdJNWEiGQlKZ6VMrdkhiqdx5Vjw==
Age: 1779
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f-19nFQLcQ5nRGwMjblvqjQQIqOlWC2fevl6VCMvPOookMBXLh7CUg==
age: 26318
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 08:33:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash aed730ea880cfa742f0d73ed0731b229
4c08d4699e9cb86ede00978b19d21c72f93870bb
ceac7c65433b2693bfeb1c9f7b8674fee720367dec274492f448d15ca8316d11
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 08:33:56 GMT
Last-Modified: Tue, 06 Sep 2022 06:52:59 GMT
Server: ECS (dcb/7FA7)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Mc1aYyT_UKQQGe6GwGDW3Q7mzc2ZnsgUAwRwuUF-4xKGL-ST3OCrSQ==
Age: 6057
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 07:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 08:36:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Vu-sYHGAotTfYVSchscCv3Z6HDYlQ6MX-Mqmei9P7qKisb3vs0T0kQ==
Age: 3338
search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
200 OK 12 kB URL HTTP/1.1 search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (621), with CRLF line terminators
Hash 95f4a6835da7a8f01cb46358433bc2c7
f0cf02c95901719f8cbb21a08b980e77d5db34bd
7f06b18c2e64ea13a4ad5d6d23efb9cef84834d56cde3519344fc922eb8e8a81
GET /?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab& HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: private
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Date: Tue, 06 Sep 2022 08:33:50 GMT
Set-Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; domain=packageintransit.com; expires=Wed, 07-Sep-2022 08:33:51 GMT; path=/
nts=t; domain=packageintransit.com; path=/
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Length: 12338
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash b57a9dd04797bf34612c80361f1dffb3
56573166d8b9cd9b8dae19fd905e4f3293af306b
b03552109f1e7d1e482aa14614ffb1e38fb53ae4951152aab307b927674dad98
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5342
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:56 GMT
Last-Modified: Tue, 06 Sep 2022 07:04:54 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
search.packageintransit.com/styles/home/packages_upgraded?v=zLWcpxDqwZPATKGr6fv0oy-Ll7dLziOtBQeNJ3d4WCI1
200 OK 8.1 kB URL HTTP/1.1 search.packageintransit.com/styles/home/packages_upgraded?v=zLWcpxDqwZPATKGr6fv0oy-Ll7dLziOtBQeNJ3d4WCI1
IP
File type ASCII text, with very long lines (420), with CRLF line terminators
Hash 8a147dc0ac47111a197cad921ad0bfa2
c73d80ba6ae2e4695be72647f8b0a4deb4249b23
0db116d12bd1dfc11e891a422e7c6236e2c4b25101ee2c1d99150fa7dae73055
Analyzer Verdict Alert fortinet Malware
GET /styles/home/packages_upgraded?v=zLWcpxDqwZPATKGr6fv0oy-Ll7dLziOtBQeNJ3d4WCI1 HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; nts=t
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: public
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Date: Tue, 06 Sep 2022 08:33:58 GMT
Expires: Wed, 06 Sep 2023 08:33:58 GMT
Last-Modified: Tue, 06 Sep 2022 08:33:58 GMT
Vary: User-Agent,Accept-Encoding
X-Content-Type-Options: nosniff
Content-Length: 8060
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=UA-178002442-1
200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-178002442-1
IP
File type ASCII text, with very long lines (1615)
Hash 035bf729d359a737f558cb2981d54589
23da5954039aa77ed8f7bd7a0c6aab062803e9fe
f93c37ded6bba31d9d3aec591c4ac289af08bd135351645e611acbe195e39a2c
GET /gtag/js?id=UA-178002442-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 08:33:56 GMT
expires: Tue, 06 Sep 2022 08:33:56 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41847
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
search.packageintransit.com/get/js/impression?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&i_id=packages_2.2&cid=app@PackageInTransit
200 OK 677 B URL HTTP/1.1 search.packageintransit.com/get/js/impression?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&i_id=packages_2.2&cid=app@PackageInTransit
IP
File type ASCII text, with CRLF line terminators
Hash 1ba04eecd597a08f04a02514fdf52261
bc4c1a85ff2dced050afef6c51ea9ba1938cddd6
0afef2e25808f18137d3608bea309cd46f28ecf12832406ad75311809b40b9d1
GET /get/js/impression?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&i_id=packages_2.2&cid=app@PackageInTransit HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; nts=t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
Content-Encoding: gzip
Content-Type: text/javascript; charset=utf-8
Date: Tue, 06 Sep 2022 08:33:58 GMT
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Length: 677
Connection: keep-alive
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://search.packageintransit.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 478788
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-219278292-1&l=dataLayer&cx=c
200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-219278292-1&l=dataLayer&cx=c
IP
File type ASCII text, with very long lines (1615)
Hash c7a23fad52b57371c1c5922b2e30fbf7
199fa5291888b05694399dd2d66759ea3f39c57d
1235b7845ebcbe965b1860309dbc0fd4abd1356148cce6792abd19135895dae9
GET /gtag/js?id=UA-219278292-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 08:33:56 GMT
expires: Tue, 06 Sep 2022 08:33:56 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41856
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-713545727&l=dataLayer&cx=c
200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-713545727&l=dataLayer&cx=c
IP
File type ASCII text, with very long lines (1615)
Hash 832699a1d7d40e822a77d378edceb341
0d49a8d2734355df72fb4a8d6ef9d86df9569ffd
31b98de3bb439fd55b4a8afbfe7b1063c80368ac586dd3460f246305aaca38a7
GET /gtag/js?id=AW-713545727&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 08:33:56 GMT
expires: Tue, 06 Sep 2022 08:33:56 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46072
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pFhw7d0XPA5mcEn8U45ijQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: syDW4WzUMmXFfz/ENhbkvDF0YVM=
search.packageintransit.com/scripts/home/header_common?v=AAAAH_DbLIleWj0eIMkM9tOvY9PBuu50aQKW3Tf5CW81
200 OK 421 B URL HTTP/1.1 search.packageintransit.com/scripts/home/header_common?v=AAAAH_DbLIleWj0eIMkM9tOvY9PBuu50aQKW3Tf5CW81
IP
File type ASCII text, with very long lines (560), with no line terminators
Hash 50821b2ae2f8b7dd5b80519c11040d2f
6ba789085bf9d1c8a76ce2cf17a8c52a329f367f
2baff6c467b31af830126841e27cf44ca1ca58af27dbf85aa9b27a1fd5160201
Analyzer Verdict Alert fortinet Malware
GET /scripts/home/header_common?v=AAAAH_DbLIleWj0eIMkM9tOvY9PBuu50aQKW3Tf5CW81 HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; nts=t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: public
Content-Encoding: gzip
Content-Type: text/javascript; charset=utf-8
Date: Tue, 06 Sep 2022 08:33:54 GMT
Expires: Wed, 06 Sep 2023 08:33:54 GMT
Last-Modified: Tue, 06 Sep 2022 08:33:54 GMT
Vary: User-Agent,Accept-Encoding
X-Content-Type-Options: nosniff
Content-Length: 421
Connection: keep-alive
search.packageintransit.com/styles/home/monetizedquicklinks_newui?v=otmUZsU2sBVz24nuFVUejS6SXRGxA-bTYy8sctyWSkc1
200 OK 3.0 kB URL HTTP/1.1 search.packageintransit.com/styles/home/monetizedquicklinks_newui?v=otmUZsU2sBVz24nuFVUejS6SXRGxA-bTYy8sctyWSkc1
IP
File type ASCII text, with very long lines (18181), with no line terminators
Hash 8733dfcee1c8457cbf71bdbaf530c2d5
ee2ea9c563ca7a3ffd7279392695a557c33ac81c
b1bbe444c30697e64bb696f79a2695f0016ed503c7602c34601ed3f7e154c8df
GET /styles/home/monetizedquicklinks_newui?v=otmUZsU2sBVz24nuFVUejS6SXRGxA-bTYy8sctyWSkc1 HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; nts=t
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: public
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Date: Tue, 06 Sep 2022 08:33:52 GMT
Expires: Wed, 06 Sep 2023 08:33:52 GMT
Last-Modified: Tue, 06 Sep 2022 08:33:52 GMT
Vary: User-Agent,Accept-Encoding
X-Content-Type-Options: nosniff
Content-Length: 2983
Connection: keep-alive
search.packageintransit.com/styles/home/setting?v=4zdb4ueXjnD1KRFeKu4pG2a0S4xjPxg0WvfkuLV9DDY1
200 OK 936 B URL HTTP/1.1 search.packageintransit.com/styles/home/setting?v=4zdb4ueXjnD1KRFeKu4pG2a0S4xjPxg0WvfkuLV9DDY1
IP
File type ASCII text, with very long lines (1976), with no line terminators
Hash 7db3d6f103920aabd2a91b70b5462629
04405431b5350cff5e35129912fc903443472fb7
0e7938bc70225c1f4d8d5d2267b47fc06dc2193ae0550e23445db5623f720a2e
GET /styles/home/setting?v=4zdb4ueXjnD1KRFeKu4pG2a0S4xjPxg0WvfkuLV9DDY1 HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; nts=t
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: public
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Date: Tue, 06 Sep 2022 08:33:58 GMT
Expires: Wed, 06 Sep 2023 08:33:59 GMT
Last-Modified: Tue, 06 Sep 2022 08:33:59 GMT
Vary: User-Agent,Accept-Encoding
X-Content-Type-Options: nosniff
Content-Length: 936
Connection: keep-alive
search.packageintransit.com/Content/Home/Shared/Images/gear-icon.png
200 OK 1.9 kB URL HTTP/1.1 search.packageintransit.com/Content/Home/Shared/Images/gear-icon.png
IP
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash c191c48cdc9a12101c96bac13a3a672e
b75a7ee6c62fc63201399401ebe1824b95f24ead
19fce2176cb990c4773742094923ccdd17d778fd050b675b0c8ff16b945e95ca
GET /Content/Home/Shared/Images/gear-icon.png HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; nts=t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=86400
Content-Type: image/png
Date: Tue, 06 Sep 2022 08:33:54 GMT
Last-Modified: Wed, 25 Aug 2021 21:17:02 GMT
X-Content-Type-Options: nosniff
Content-Length: 1866
Connection: keep-alive
search.packageintransit.com/Content/Home/Packages/img/packages-upgrade-sprite.png
200 OK 9.8 kB URL HTTP/1.1 search.packageintransit.com/Content/Home/Packages/img/packages-upgrade-sprite.png
IP
File type PNG image data, 192 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 30fb096d0210e67c1cbed981706b02a1
4f807423d636b1832e390cbadb6ba64fa9ec58b1
1ba3fd3b2b2cfce93671c08f1c4f485923773882faf2668c0f5ae75d4a8b1410
GET /Content/Home/Packages/img/packages-upgrade-sprite.png HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/styles/home/packages_upgraded?v=zLWcpxDqwZPATKGr6fv0oy-Ll7dLziOtBQeNJ3d4WCI1
Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; nts=t; _gcl_au=1.1.1227114738.1662453231
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=86400
Content-Type: image/png
Date: Tue, 06 Sep 2022 08:33:58 GMT
Last-Modified: Wed, 25 Aug 2021 21:17:02 GMT
X-Content-Type-Options: nosniff
Content-Length: 9829
Connection: keep-alive
search.packageintransit.com/Content/Home/Email/Sprites/Sprite_Email_V6.png
200 OK 24 kB URL HTTP/1.1 search.packageintransit.com/Content/Home/Email/Sprites/Sprite_Email_V6.png
IP
File type PNG image data, 1000 x 172, 8-bit colormap, non-interlaced\012- data
Hash 2c6d975eb6589294fbfb84009c3ccdba
3c31726a2645066354bff61df290218435abbb47
ea3f816af3b13fa98012e35790d0ae4eef65a570edff5408eed840118b8badc3
GET /Content/Home/Email/Sprites/Sprite_Email_V6.png HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/styles/home/packages_upgraded?v=zLWcpxDqwZPATKGr6fv0oy-Ll7dLziOtBQeNJ3d4WCI1
Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; nts=t; _gcl_au=1.1.1227114738.1662453231
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=86400
Content-Type: image/png
Date: Tue, 06 Sep 2022 08:33:52 GMT
Last-Modified: Wed, 25 Aug 2021 21:17:01 GMT
X-Content-Type-Options: nosniff
Content-Length: 23739
Connection: keep-alive
search.packageintransit.com/Content/img/icons/packagesIcon.png
200 OK 2.0 kB URL HTTP/1.1 search.packageintransit.com/Content/img/icons/packagesIcon.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 42d35d817f2708ff1a17a36027a9c9f8
e4ccbbb8b2e2673d55ae4c7e49612989392f6e64
a1f89e9f303a214721a86e66471a3700df0ff8ae95ea248f27524482879030e4
GET /Content/img/icons/packagesIcon.png HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/styles/home/monetizedquicklinks_newui?v=otmUZsU2sBVz24nuFVUejS6SXRGxA-bTYy8sctyWSkc1
Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; nts=t; _gcl_au=1.1.1227114738.1662453231
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=86400
Content-Type: image/png
Date: Tue, 06 Sep 2022 08:33:59 GMT
Last-Modified: Wed, 25 Aug 2021 21:17:03 GMT
X-Content-Type-Options: nosniff
Content-Length: 1955
Connection: keep-alive
search.packageintransit.com/scripts/home/common?v=B7zJOOuKRrdwmvF4UcJQiySHI7Ajpy7ToqWFreccUXs1
200 OK 165 kB URL HTTP/1.1 search.packageintransit.com/scripts/home/common?v=B7zJOOuKRrdwmvF4UcJQiySHI7Ajpy7ToqWFreccUXs1
IP
File type ASCII text, with very long lines (32024), with CRLF line terminators
Size 165 kB (164624 bytes)
Hash 22ff489212a3aaae8c765322231b02c6
1c220a1abfc65da6460ccb39689336f8f3ce41cd
63dc1db4c9e719624eba52210c75aa378c4cc27365df6d3ff4830b1f4fd9ba30
GET /scripts/home/common?v=B7zJOOuKRrdwmvF4UcJQiySHI7Ajpy7ToqWFreccUXs1 HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; nts=t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: public
Content-Encoding: gzip
Content-Type: text/javascript; charset=utf-8
Date: Tue, 06 Sep 2022 08:33:59 GMT
Expires: Wed, 06 Sep 2023 08:33:59 GMT
Last-Modified: Tue, 06 Sep 2022 08:33:59 GMT
Vary: User-Agent,Accept-Encoding
X-Content-Type-Options: nosniff
transfer-encoding: chunked
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash db5ec1b2d1d77edfba66b075ddd39dd8
8b6851171303acef80e72e3ba6f5c8e44c2b72f6
68839d4ffe44c1b63b17d88d5db802e105426c543c21008dc8838fde1055e8f8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 08:33:57 GMT
Last-Modified: Tue, 06 Sep 2022 06:50:18 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DPqgHFgHi-4vDoZzsvmw2w79m64A5qbII1A9uPQMXGeoR3zKnZeIAQ==
Age: 6219
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash db5ec1b2d1d77edfba66b075ddd39dd8
8b6851171303acef80e72e3ba6f5c8e44c2b72f6
68839d4ffe44c1b63b17d88d5db802e105426c543c21008dc8838fde1055e8f8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170616
Date: Tue, 06 Sep 2022 08:33:57 GMT
Etag: "6316ea69-1d7"
Expires: Thu, 08 Sep 2022 07:57:33 GMT
Last-Modified: Tue, 06 Sep 2022 06:36:25 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QXjDZmf0pyEW6kBrNUtuVh-WKBnsJXioEhlMMS3l8eEPuUUqOfQpgQ==
Age: 4868
imp.onesearch.org/impression.do?event=ex_banner_show&user_id=118ee669-6994-45c9-be06-928ac00467c5&source=googledisplay-googledisplay-v1-bb8&traffic_source=appfocus1&subid=20170615&implementation_id=packages_&page=adm&referrer=&offer_id=~app@PackageInTransit
503 Service Unavailable 1.5 kB URL HTTP/2 imp.onesearch.org/impression.do?event=ex_banner_show&user_id=118ee669-6994-45c9-be06-928ac00467c5&source=googledisplay-googledisplay-v1-bb8&traffic_source=appfocus1&subid=20170615&implementation_id=packages_&page=adm&referrer=&offer_id=~app@PackageInTransit
IP
Hash 8d60145a178e166030b14a01b9412d6f
04d1459acb521db6bc03a82810c88ca6927b4eee
78000e7f7995c867764740d3341a8abf15ef42f2f91b1cfc155a35c118e84358
GET /impression.do?event=ex_banner_show&user_id=118ee669-6994-45c9-be06-928ac00467c5&source=googledisplay-googledisplay-v1-bb8&traffic_source=appfocus1&subid=20170615&implementation_id=packages_&page=adm&referrer=&offer_id=~app@PackageInTransit HTTP/1.1
Host: imp.onesearch.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
server: awselb/2.0
date: Tue, 06 Sep 2022 08:33:57 GMT
content-type: text/html
content-length: 162
X-Firefox-Spdy: h2
imp.onesearch.org/impression.do?event=ex_ql_impression&user_id=118ee669-6994-45c9-be06-928ac00467c5&source=googledisplay-googledisplay-v1-bb8&traffic_source=appfocus1&subid=20170615&implementation_id=packages_&page=totalpackagetracker::usps::fedex::myemailsimplified::nationalweatheragency::early_chirp&referrer=&offer_id=~app@PackageInTransit
503 Service Unavailable 162 B URL HTTP/2 imp.onesearch.org/impression.do?event=ex_ql_impression&user_id=118ee669-6994-45c9-be06-928ac00467c5&source=googledisplay-googledisplay-v1-bb8&traffic_source=appfocus1&subid=20170615&implementation_id=packages_&page=totalpackagetracker::usps::fedex::myemailsimplified::nationalweatheragency::early_chirp&referrer=&offer_id=~app@PackageInTransit
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 81df4d3863debf3eceb5cf84251fd472
4ba7843a4cc062123f5f4caacbb9a3fa7d381eac
258c66556e2e065b0d04f6ae39a98fcf182e3e584cd0b7bdb20d0a395796347b
GET /impression.do?event=ex_ql_impression&user_id=118ee669-6994-45c9-be06-928ac00467c5&source=googledisplay-googledisplay-v1-bb8&traffic_source=appfocus1&subid=20170615&implementation_id=packages_&page=totalpackagetracker::usps::fedex::myemailsimplified::nationalweatheragency::early_chirp&referrer=&offer_id=~app@PackageInTransit HTTP/1.1
Host: imp.onesearch.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
server: awselb/2.0
date: Tue, 06 Sep 2022 08:33:57 GMT
content-type: text/html
content-length: 162
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 677f79054e2951e496f256e06510d42a
900f682666acc829d4e9d6a69229c884c41129df
bede26b78951156f13b06b2159f542ccaca8c27ba4c50a1b8c9c6fddc09d2646
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 08:33:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 04:42:22 GMT
Expires: Sat, 10 Sep 2022 04:42:21 GMT
Etag: "900f682666acc829d4e9d6a69229c884c41129df"
Cache-Control: max-age=331103,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7465dcdd0bb0b524-OSL
api.openweathermap.org/data/2.5/weather?appid=beac7c40c6ebee3f7f54a7a3544c9986&lat=59.9452&lon=10.7559&_=1662453231838
200 OK 512 B URL HTTP/1.1 api.openweathermap.org/data/2.5/weather?appid=beac7c40c6ebee3f7f54a7a3544c9986&lat=59.9452&lon=10.7559&_=1662453231838
IP
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (512), with no line terminators
Hash ea1c97407ce752480a53cb4139f19cea
572777076232b0759968664392d840eec60d53af
eb0995ca5cf0cded6af0431be531ad8859d2aa86af1a9be32cbd307de3a1d85b
GET /data/2.5/weather?appid=beac7c40c6ebee3f7f54a7a3544c9986&lat=59.9452&lon=10.7559&_=1662453231838 HTTP/1.1
Host: api.openweathermap.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://search.packageintransit.com
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 06 Sep 2022 08:33:57 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 512
Connection: keep-alive
X-Cache-Key: /data/2.5/weather?_=1662453231838&lat=59.95&lon=10.76
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST
internal_tiles.tiles.ampfeed.com/tiles?partner=internal_tiles&v=1.3&sub1=10058&sub2=packages&results=10&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F71.0.3578.80%20Safari%2F537.36&BOC=1662453231883&callback=admtilecallback
200 OK 46 B URL HTTP/2 internal_tiles.tiles.ampfeed.com/tiles?partner=internal_tiles&v=1.3&sub1=10058&sub2=packages&results=10&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F71.0.3578.80%20Safari%2F537.36&BOC=1662453231883&callback=admtilecallback
IP
File type ASCII text, with no line terminators
Hash fe5db27d2eae551ca45d872688cc2bcb
5a99184fde35329d754349c64a45bb5ba64b4252
1f7af0b538726086e9bb5ce0c8fd64ca0a7baab3e6ae4d725979abf1014f48d9
GET /tiles?partner=internal_tiles&v=1.3&sub1=10058&sub2=packages&results=10&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F71.0.3578.80%20Safari%2F537.36&BOC=1662453231883&callback=admtilecallback HTTP/1.1
Host: internal_tiles.tiles.ampfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
server: akka-http/10.0.0
content-type: application/json
content-encoding: gzip
content-length: 46
x-country-check: NO, NO
x-ip-check: 91.90.42.154, 127.0.0.1, 91.90.42.154
date: Tue, 06 Sep 2022 08:33:57 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
imp.onesearch.org/impression.do?event=push_modal_shown&page=search.packageintransit.com&source=googledisplay-googledisplay-v1-bb8&subid=20170615&i_id=packages_
503 Service Unavailable 162 B URL HTTP/2 imp.onesearch.org/impression.do?event=push_modal_shown&page=search.packageintransit.com&source=googledisplay-googledisplay-v1-bb8&subid=20170615&i_id=packages_
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 81df4d3863debf3eceb5cf84251fd472
4ba7843a4cc062123f5f4caacbb9a3fa7d381eac
258c66556e2e065b0d04f6ae39a98fcf182e3e584cd0b7bdb20d0a395796347b
GET /impression.do?event=push_modal_shown&page=search.packageintransit.com&source=googledisplay-googledisplay-v1-bb8&subid=20170615&i_id=packages_ HTTP/1.1
Host: imp.onesearch.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 503 Service Unavailable
server: awselb/2.0
date: Tue, 06 Sep 2022 08:33:57 GMT
content-type: text/html
content-length: 162
X-Firefox-Spdy: h2
internal_banner.tiles.ampfeed.com/tiles?partner=internal_banner&v=1.3&sub1=10055&sub2=packages&results=10&BOC=1662453231883&callback=amp_fn
200 OK 20 B URL HTTP/2 internal_banner.tiles.ampfeed.com/tiles?partner=internal_banner&v=1.3&sub1=10055&sub2=packages&results=10&BOC=1662453231883&callback=amp_fn
IP
File type ASCII text, with no line terminators
Hash 7f3ddf32c69b12d8da247ab32bcf7c0a
e0d8baa7114b5126d38cf731ad44527af3467280
f1a514c273a93178f053ad889969bb58d6d5c44e913cbf3abbbbb667b4acda48
GET /tiles?partner=internal_banner&v=1.3&sub1=10055&sub2=packages&results=10&BOC=1662453231883&callback=amp_fn HTTP/1.1
Host: internal_banner.tiles.ampfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
server: akka-http/10.0.0
content-type: application/json
content-length: 20
x-country-check: NO, NO
x-ip-check: 91.90.42.154, 127.0.0.1, 91.90.42.154
date: Tue, 06 Sep 2022 08:33:57 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 22e885183bfd5ae306a5d132a63c1247
2a58085da23c58ff61c185775e164b652483cddf
910848e61afbb95c4c8f527c87748aa40aec76c94356fed7621b76f82291d16c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=108536
Date: Tue, 06 Sep 2022 08:33:57 GMT
Etag: "63160aed-1d7"
Expires: Wed, 07 Sep 2022 14:42:53 GMT
Last-Modified: Mon, 05 Sep 2022 14:42:53 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yToyDxzfqj4C8Y_BO_u5ExmHypCzhHgrwVAVCnl5oV0JgCE5Hn8aqw==
dailyfeature.net/dailyfeature/df?url=packageintransit.com&uc=20170615&cid=app@PackageInTransit&purpose=hp&type=internal
200 OK 760 B URL HTTP/1.1 dailyfeature.net/dailyfeature/df?url=packageintransit.com&uc=20170615&cid=app@PackageInTransit&purpose=hp&type=internal
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 03c685a7a248580b6c56fb1ad4080814
076d5fa20e2b9451424cf9738a564faf440601de
56fa90b334a0fe9e26c1589fe925c11d732e157b2c831db058e2368c9d7da0c0
GET /dailyfeature/df?url=packageintransit.com&uc=20170615&cid=app@PackageInTransit&purpose=hp&type=internal HTTP/1.1
Host: dailyfeature.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: private
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Date: Tue, 06 Sep 2022 08:33:59 GMT
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Length: 760
Connection: keep-alive
openweathermap.org/img/w/01d.png
200 OK 2.9 kB URL HTTP/1.1 openweathermap.org/img/w/01d.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a956d6298af578c0cbbcb1d785ccf56
3a5decf36ea0d1c420b3e3f5ed680a6b23cdb914
0ceefca755cfe064ca5b7ddc6ec797fd02a770812cb77bbbd0ce52146786f006
GET /img/w/01d.png HTTP/1.1
Host: openweathermap.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty/1.9.7.1
Date: Tue, 06 Sep 2022 08:33:57 GMT
Content-Type: image/png
Content-Length: 2859
Last-Modified: Thu, 22 Sep 2016 11:59:54 GMT
Connection: keep-alive
ETag: "57e3c7ba-b2b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: origin, content-type, accept
Expires: Tue, 13 Sep 2022 08:33:57 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
d3ff8olul1r3ot.cloudfront.net/packages.png
200 OK 4.8 kB URL HTTP/2 d3ff8olul1r3ot.cloudfront.net/packages.png
IP
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 124aa7599ad1f18e508c5841f16aa3e0
69a1bfe0c16930086938e7e34a9400ec5a618a89
9f15c11e33a413d243d31bc16f854b9e8ec15233e5facdf4ac8e3ce7f62a893a
GET /packages.png HTTP/1.1
Host: d3ff8olul1r3ot.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 4797
date: Tue, 06 Sep 2022 05:34:46 GMT
last-modified: Sun, 13 Aug 2017 06:34:57 GMT
etag: "124aa7599ad1f18e508c5841f16aa3e0"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _DoJ0xg3Nh_xllSftIVcDPuK7aHbb5NiAUGdCg8_27-eJFrAgPRcxA==
age: 10752
X-Firefox-Spdy: h2
dap2y8k6nefku.cloudfront.net/quicklinkicons/early_chirp.png
200 OK 11 kB URL HTTP/2 dap2y8k6nefku.cloudfront.net/quicklinkicons/early_chirp.png
IP
File type PNG image data, 361 x 361, 8-bit/color RGB, non-interlaced\012- data
Hash 2d9855aaf48a48f9ed6f205c93ea73ff
109080dd51f9466fcc19a872f8db84fa93848de9
39fd4d8ea8a16bccf296cd5aed492305fab38e4d5d42d99a9c897111ed3d66ef
GET /quicklinkicons/early_chirp.png HTTP/1.1
Host: dap2y8k6nefku.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 10871
last-modified: Thu, 21 Jul 2022 21:16:06 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 07:07:23 GMT
etag: "2d9855aaf48a48f9ed6f205c93ea73ff"
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8nlUNA4C3CfZJk7Ho9XzVhy9h1qPYAvHB1n0tEHg-i25QtWqDeT1CA==
age: 6318
X-Firefox-Spdy: h2
dap2y8k6nefku.cloudfront.net/quicklinkicons/totalpackagetracker.png
200 OK 2.0 kB URL HTTP/2 dap2y8k6nefku.cloudfront.net/quicklinkicons/totalpackagetracker.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 8facfe950eec3fae336ecd9638be6aa0
ddf17eda833161a6c19e80a6f7cf9b7b7fec4db7
6aada99725a75b42eea8dba4dd094a81cd3d33878ef67346c83911027ec48bf2
GET /quicklinkicons/totalpackagetracker.png HTTP/1.1
Host: dap2y8k6nefku.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 1992
last-modified: Wed, 12 Aug 2020 15:39:44 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 05:28:19 GMT
etag: "8facfe950eec3fae336ecd9638be6aa0"
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VMO_3C_UyvhGjDXKRbDD62hMOvtLVDbdd59-q50W9AQTEfE_JDwrKg==
age: 11139
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 07869ddc8aa688fe8a93876ef1264055
636614db9c01c03fcc2d10f5f949b513e1a338c9
ab8f4fcf2e21b2e44d69d6e4a6478a7eb6cf8e451202c7dc2854ef68b8e91b2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5108
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:57 GMT
Last-Modified: Tue, 06 Sep 2022 07:08:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3df811ac19fde08f49ef246c29cef161
e1c8d54b357adaf32e80427028cc884fa35959e0
e2749178e0bf0c4045a96388a58029ddd92d13a866021737864cd68e11317292
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dap2y8k6nefku.cloudfront.net/quicklinkicons/myemailsimplified.png
200 OK 9.5 kB URL HTTP/2 dap2y8k6nefku.cloudfront.net/quicklinkicons/myemailsimplified.png
IP
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 063b92388bbb111681700e7062987557
47103c8f873ca823c5a3b9fcbdd915b68d4f5f57
b4a6b476a91fb8abd5f39ffdd574172963fada2f561b94f5fbb85379f60874c4
GET /quicklinkicons/myemailsimplified.png HTTP/1.1
Host: dap2y8k6nefku.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 9460
date: Mon, 05 Sep 2022 20:01:38 GMT
last-modified: Wed, 05 Jun 2019 15:29:36 GMT
etag: "063b92388bbb111681700e7062987557"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: R94vTINXQ9f-wBze8sloVWnYIYzeVFXnYliEgSYd3M8KtpmF0r7mCA==
age: 45140
X-Firefox-Spdy: h2
dap2y8k6nefku.cloudfront.net/quicklinkicons/fedex.png
200 OK 1.3 kB URL HTTP/2 dap2y8k6nefku.cloudfront.net/quicklinkicons/fedex.png
IP
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 2e24dc26b1c202dd18ae276d2842b127
8fc891454749278663dfd4b7a1300efcd9be518d
3ab812c0dd00e7dbc73d4ad9438c613591f597c062bdb1c9919aeb13e9f84c94
GET /quicklinkicons/fedex.png HTTP/1.1
Host: dap2y8k6nefku.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 1320
date: Tue, 06 Sep 2022 04:13:14 GMT
last-modified: Fri, 07 Aug 2020 13:46:55 GMT
etag: "2e24dc26b1c202dd18ae276d2842b127"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8FJcQlHyXoOkchYyPfEUt3YtsIYnqxr1snbORcHdzdq3NK9g7lR2IQ==
age: 15644
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 06 Sep 2022 06:41:12 GMT
expires: Tue, 06 Sep 2022 08:41:12 GMT
cache-control: public, max-age=7200
age: 6765
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 53e4933126779cbf269a5819d467ad4b
1c3c6b27a0660a44717be304d90834cf2f9cf3ce
ed5ad968f7d95b37c817e86b54062702bef60b1ffd3977248aad23072af06b87
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: XtQqlhja0Fgzc1iIGIjBiXyyb5TcQ14rfN1JH8tA8m7tpKbA1dBchNA+6n43bfq4JMgNlQVwFCcgsNeDl08DDw==
content-length: 26752
x-fb-trip-id: 2074150462
date: Tue, 06 Sep 2022 08:33:57 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dap2y8k6nefku.cloudfront.net/quicklinkicons/nationalweatheragency.png
200 OK 15 kB URL HTTP/2 dap2y8k6nefku.cloudfront.net/quicklinkicons/nationalweatheragency.png
IP
File type PNG image data, 48 x 48, 8-bit/color RGB, non-interlaced\012- data
Hash 8f8b4cbfe11392e4f33d47ab000e6a17
3c36a8ac3a0cc4e7f95e2ce75150a456031f3717
37fc00df7da62179f86c3010973bc56ed486593117deb5c0e9ed6ec6fb57ad06
GET /quicklinkicons/nationalweatheragency.png HTTP/1.1
Host: dap2y8k6nefku.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 15419
date: Tue, 06 Sep 2022 03:47:06 GMT
last-modified: Wed, 05 Jun 2019 15:31:44 GMT
etag: "8f8b4cbfe11392e4f33d47ab000e6a17"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: b4ozGVIN3QMhjb6eTwhm6FpSrE5IjZJb5d4sQ6iJS6MBH1da6ZRnkw==
age: 17212
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP
File type ASCII text, with very long lines (1623)
Hash 4738d969770682feba80f04bf171d65b
be0e0ceb91bf5ed0c64b0f3f2cc2c99c6d4cd6b7
1daca97cf9e8078299f94c50346e45fead45bf908ca97ded912f26986c1c4e9a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 06 Sep 2022 08:33:57 GMT
expires: Tue, 06 Sep 2022 08:33:57 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15579141248118922429
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15687
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dap2y8k6nefku.cloudfront.net/quicklinkicons/usps.png
200 OK 2.1 kB URL HTTP/2 dap2y8k6nefku.cloudfront.net/quicklinkicons/usps.png
IP
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 28cdb48e0623a27a86a3650c0bd65d8c
9008a19ef832dd48f5be8ebcc45dfcf08b9f0fb5
c2384dd10b28bfaf0b03871247560a49aae95208e4c606fca35de74f6b216db6
GET /quicklinkicons/usps.png HTTP/1.1
Host: dap2y8k6nefku.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 2127
date: Tue, 06 Sep 2022 04:13:13 GMT
last-modified: Fri, 07 Aug 2020 13:46:55 GMT
etag: "28cdb48e0623a27a86a3650c0bd65d8c"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XxJVt_5koayCDoNpH1y2xLF1ysn8Ta3m3IVjzsBUArkMNVrWYAuWIg==
age: 15644
X-Firefox-Spdy: h2
dap2y8k6nefku.cloudfront.net/js/term_mappings.json
200 OK 163 kB URL HTTP/2 dap2y8k6nefku.cloudfront.net/js/term_mappings.json
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size 163 kB (163302 bytes)
Hash ad5616114dc91d3881715e52566797b3
312f6d64483c845bafcf351900fc693edede7844
ac1495485cd9445d294d444b352b4c109f5f0e341e92e6451b0853a6759e5948
GET /js/term_mappings.json HTTP/1.1
Host: dap2y8k6nefku.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://search.packageintransit.com/
Origin: https://search.packageintransit.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 163302
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Fri, 30 Apr 2021 12:58:49 GMT
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 18:59:20 GMT
etag: "ad5616114dc91d3881715e52566797b3"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xVA2MOEWZuynFQq10lAJEJe_lWVTcz37xLalS_yCqfRUVz5Fe3VdZA==
age: 48878
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j96&a=1258442860&t=event&_s=2&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=packageintransit.com&ea=HomepageView&el=Firefox%2096.0.0.0&_u=YEBAAUABAAAAAC~&jid=&gjid=&cid=499774226.1662453232&tid=UA-178002442-1&_gid=849431717.1662453232>m=2ou8v0&z=921583914
200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&a=1258442860&t=event&_s=2&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=packageintransit.com&ea=HomepageView&el=Firefox%2096.0.0.0&_u=YEBAAUABAAAAAC~&jid=&gjid=&cid=499774226.1662453232&tid=UA-178002442-1&_gid=849431717.1662453232>m=2ou8v0&z=921583914
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j96&a=1258442860&t=event&_s=2&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=packageintransit.com&ea=HomepageView&el=Firefox%2096.0.0.0&_u=YEBAAUABAAAAAC~&jid=&gjid=&cid=499774226.1662453232&tid=UA-178002442-1&_gid=849431717.1662453232>m=2ou8v0&z=921583914 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Mon, 05 Sep 2022 17:05:55 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 55682
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j96&a=1258442860&t=event&_s=2&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=packageintransit.com&ea=HomepageView&el=Firefox%2096.0.0.0&_u=YEDAAUABAAAAAC~&jid=&gjid=&cid=499774226.1662453232&tid=UA-219278292-1&_gid=849431717.1662453232>m=2ou8v0&z=689758595
200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&a=1258442860&t=event&_s=2&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=packageintransit.com&ea=HomepageView&el=Firefox%2096.0.0.0&_u=YEDAAUABAAAAAC~&jid=&gjid=&cid=499774226.1662453232&tid=UA-219278292-1&_gid=849431717.1662453232>m=2ou8v0&z=689758595
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j96&a=1258442860&t=event&_s=2&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=packageintransit.com&ea=HomepageView&el=Firefox%2096.0.0.0&_u=YEDAAUABAAAAAC~&jid=&gjid=&cid=499774226.1662453232&tid=UA-219278292-1&_gid=849431717.1662453232>m=2ou8v0&z=689758595 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Mon, 05 Sep 2022 17:05:55 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 55682
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 07869ddc8aa688fe8a93876ef1264055
636614db9c01c03fcc2d10f5f949b513e1a338c9
ab8f4fcf2e21b2e44d69d6e4a6478a7eb6cf8e451202c7dc2854ef68b8e91b2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5108
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:57 GMT
Last-Modified: Tue, 06 Sep 2022 07:08:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/j/collect?v=1&_v=j96&a=1258442860&t=pageview&_s=1&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEDAAUABAAAAAC~&jid=673612689&gjid=1297037728&cid=499774226.1662453232&tid=UA-219278292-1&_gid=849431717.1662453232&_r=1>m=2ou8v0&z=571823028
200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=1258442860&t=pageview&_s=1&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEDAAUABAAAAAC~&jid=673612689&gjid=1297037728&cid=499774226.1662453232&tid=UA-219278292-1&_gid=849431717.1662453232&_r=1>m=2ou8v0&z=571823028
IP
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j96&a=1258442860&t=pageview&_s=1&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEDAAUABAAAAAC~&jid=673612689&gjid=1297037728&cid=499774226.1662453232&tid=UA-219278292-1&_gid=849431717.1662453232&_r=1>m=2ou8v0&z=571823028 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://search.packageintransit.com
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://search.packageintransit.com
date: Tue, 06 Sep 2022 08:33:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j96&a=1258442860&t=pageview&_s=1&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAAC~&jid=871888255&gjid=436110550&cid=499774226.1662453232&tid=UA-178002442-1&_gid=849431717.1662453232&_r=1>m=2ou8v0&z=1402432034
200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=1258442860&t=pageview&_s=1&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAAC~&jid=871888255&gjid=436110550&cid=499774226.1662453232&tid=UA-178002442-1&_gid=849431717.1662453232&_r=1>m=2ou8v0&z=1402432034
IP
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j96&a=1258442860&t=pageview&_s=1&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&ul=en-us&de=UTF-8&dt=Package%20In%20Transit&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAAC~&jid=871888255&gjid=436110550&cid=499774226.1662453232&tid=UA-178002442-1&_gid=849431717.1662453232&_r=1>m=2ou8v0&z=1402432034 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://search.packageintransit.com
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://search.packageintransit.com
date: Tue, 06 Sep 2022 08:33:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 80f29cbbe260408ee1418a6fbce5a537
96cfe52bcf90cfdba5cba7907d49a91f44adc032
de264b42b7c59bdadf606387adaca04af680705a947096d048f288c3e5be8517
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 76c6ad39ad355f829170427e9076311a
26a82c7dd26986900a4964464e43d9837dfef1f8
40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 76c6ad39ad355f829170427e9076311a
26a82c7dd26986900a4964464e43d9837dfef1f8
40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/713545727/?random=1662453232485&cv=9&fst=1662453232485&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&auid=1227114738.1662453231&hn=www.google.com&async=1&rfmt=3&fmt=4
200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/713545727/?random=1662453232485&cv=9&fst=1662453232485&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&auid=1227114738.1662453231&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2658), with no line terminators
Hash d1e262c9cf0f7045f6ef60ac63338092
59446c79700772115bd9d7a482c3d5c0fb4ad053
7b94587bda05575c61cdbe30425d2bef5275defd33ef0d5a318bac4c3625dc45
GET /pagead/viewthroughconversion/713545727/?random=1662453232485&cv=9&fst=1662453232485&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&auid=1227114738.1662453231&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 08:33:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1160
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 06-Sep-2022 08:48:57 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/713545727/?random=1662453232487&cv=9&fst=1662453232487&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&ig=0&data=event%3DHomepageView%3Bevent_category%3Dpackages_%3Bevent_label%3DFirefox%2096.0.0.0&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&auid=1227114738.1662453231&hn=www.google.com&async=1&rfmt=3&fmt=4
200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/713545727/?random=1662453232487&cv=9&fst=1662453232487&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&ig=0&data=event%3DHomepageView%3Bevent_category%3Dpackages_%3Bevent_label%3DFirefox%2096.0.0.0&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&auid=1227114738.1662453231&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2786), with no line terminators
Hash a063672553b00971cfaed75dcfb3ce86
f0858af433be6c65d45c5882f2b512cd2d363618
02a0a20ef1255a974b7a75eae76e20aafd530063751d9e29c5ff2949f5ed8c9f
GET /pagead/viewthroughconversion/713545727/?random=1662453232487&cv=9&fst=1662453232487&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&ig=0&data=event%3DHomepageView%3Bevent_category%3Dpackages_%3Bevent_label%3DFirefox%2096.0.0.0&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&auid=1227114738.1662453231&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 08:33:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1194
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 06-Sep-2022 08:48:57 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12594
Expires: Tue, 06 Sep 2022 12:03:52 GMT
Date: Tue, 06 Sep 2022 08:33:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12594
Expires: Tue, 06 Sep 2022 12:03:52 GMT
Date: Tue, 06 Sep 2022 08:33:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12594
Expires: Tue, 06 Sep 2022 12:03:52 GMT
Date: Tue, 06 Sep 2022 08:33:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12594
Expires: Tue, 06 Sep 2022 12:03:52 GMT
Date: Tue, 06 Sep 2022 08:33:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg
200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7fe061740ad833cfe7ff0fe078d6810d
15d0fc3fdced758b5797361bae0fd53341e0581d
5409b6775bca5afd03901975c61c27f267efe2c8a8e739f05ebc52a938c5a368
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5459
x-amzn-requestid: a75bf8a5-dc96-4a88-9de5-b79d1d62ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxB_bFMFoAMFkEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631049fc-2685c90962d8af5f4a7b5908;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 05:58:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rZh0s85w1Nt6qZdZybNBcQHEXMWQIJvtAyCbF4oWsYUOlIKuNS5Fpg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:15:34 GMT
age: 37104
etag: "15d0fc3fdced758b5797361bae0fd53341e0581d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-219278292-1&cid=499774226.1662453232&jid=673612689&gjid=1297037728&_gid=849431717.1662453232&_u=YEDAAUABAAAAAC~&z=1605479514
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-219278292-1&cid=499774226.1662453232&jid=673612689&gjid=1297037728&_gid=849431717.1662453232&_u=YEDAAUABAAAAAC~&z=1605479514
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-219278292-1&cid=499774226.1662453232&jid=673612689&gjid=1297037728&_gid=849431717.1662453232&_u=YEDAAUABAAAAAC~&z=1605479514 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://search.packageintransit.com
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://search.packageintransit.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 06 Sep 2022 08:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 76c6ad39ad355f829170427e9076311a
26a82c7dd26986900a4964464e43d9837dfef1f8
40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c23179b2131543088771e3fa84ff231
ae50ae4aecd962b698c19f2863857b51cea7fcec
660900ca69b1787a734c1dbe3d6b9b19656912b4bc4715964c4325edff57f008
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7855
x-amzn-requestid: d7c8054c-d7d3-4b76-815d-36c3a2e1f6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYn6FwzoAMF40g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166e32-3ededbf27f83503978e0d775;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:46:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QFEoJOq9eyhQH3KTlAB_ctOvGWRfAkPMHiZUa34wae07KaezXFodBg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:57:14 GMT
age: 38204
etag: "ae50ae4aecd962b698c19f2863857b51cea7fcec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa31a6b18-0aad-4306-bf7a-223499b33582.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa31a6b18-0aad-4306-bf7a-223499b33582.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94990530555d5605ebac37baa5f78a26
a903701074dc1058738beed11f8ffa4631c3567b
4699ebe34996d93c0d4ebf5afef089632b758c3edf78bb48c3b198ed8bfac190
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa31a6b18-0aad-4306-bf7a-223499b33582.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5250
x-amzn-requestid: 643d09fb-df4b-448e-98e2-be9eeaeb0485
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X6iW8ErwIAMF90g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6314175f-62097ac618c0efca4b5c2cbe;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 03:11:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WVaOiPK0Jm3H4o4b1hLfOE2JWqfLkBuXi-4IsjmkAVe7Qb7MkfpTYw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:37:12 GMT
age: 14206
etag: "a903701074dc1058738beed11f8ffa4631c3567b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78f3c06-9254-405a-8dbf-2fa65b66376b.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78f3c06-9254-405a-8dbf-2fa65b66376b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 022be15c9cc450f4af703fe8b9fcc702
82342473945f187bbf9b4455c440a01f9269c12b
df07001b8e2b79632e1a3100d957a215fcec7550a9802df87d6d3bee42c14696
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78f3c06-9254-405a-8dbf-2fa65b66376b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8322
x-amzn-requestid: 9ea441c6-67b1-4325-96b0-54862e35c2bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYHkFKEIAMFR7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d63-5c6ce0ad219286c66f7280bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6uMJTARUoTKpxJQmsg2jOYLz1-wew33PQECfoW_7FR2s3ccBk8QqIg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:58:51 GMT
etag: "82342473945f187bbf9b4455c440a01f9269c12b"
content-type: image/jpeg
age: 38107
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6287f68a964668d9dcd418f0f55cfa41
998cc906e470e1b8ec9b840ab5c3b93f1618a1e3
d1d6a242e8a5e3fa3166271473faa20fe2825f24f02a5e15c02180a066262b4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13302
x-amzn-requestid: b3cc28ec-5792-4028-b62f-b24dd50a24af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FLgoAMFo9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-3ea9e3b364c0efe24b48e826;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: arLdjfE327MmTML3UwIQK2Y-ptUk35lzGyufht73gjkKYqbAxfUdEA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:42 GMT
etag: "998cc906e470e1b8ec9b840ab5c3b93f1618a1e3"
content-type: image/jpeg
age: 38836
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:31:02 GMT
age: 14576
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash da4692f1529a23a6cfb04391e382c936
7befa8be966f1128ff3c25be47986e7fa7087de9
d8460cc7719813509b4e38be06b8d184306f9451695c3e1974c1d06e5c29039c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-178002442-1&cid=499774226.1662453232&jid=871888255&gjid=436110550&_gid=849431717.1662453232&_u=YEBAAUAAAAAAAC~&z=637256738
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-178002442-1&cid=499774226.1662453232&jid=871888255&gjid=436110550&_gid=849431717.1662453232&_u=YEBAAUAAAAAAAC~&z=637256738
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-178002442-1&cid=499774226.1662453232&jid=871888255&gjid=436110550&_gid=849431717.1662453232&_u=YEBAAUAAAAAAAC~&z=637256738 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://search.packageintransit.com
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://search.packageintransit.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 06 Sep 2022 08:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash da4692f1529a23a6cfb04391e382c936
7befa8be966f1128ff3c25be47986e7fa7087de9
d8460cc7719813509b4e38be06b8d184306f9451695c3e1974c1d06e5c29039c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/713545727/?random=1662453232485&cv=9&fst=1662451200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&async=1&fmt=3&is_vtc=1&random=2752597869&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/713545727/?random=1662453232485&cv=9&fst=1662451200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&async=1&fmt=3&is_vtc=1&random=2752597869&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/713545727/?random=1662453232485&cv=9&fst=1662451200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&async=1&fmt=3&is_vtc=1&random=2752597869&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 08:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-219278292-1&cid=499774226.1662453232&jid=673612689&_u=YEDAAUABAAAAAC~&z=1102860727
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-219278292-1&cid=499774226.1662453232&jid=673612689&_u=YEDAAUABAAAAAC~&z=1102860727
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-219278292-1&cid=499774226.1662453232&jid=673612689&_u=YEDAAUABAAAAAC~&z=1102860727 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 08:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-178002442-1&cid=499774226.1662453232&jid=871888255&_u=YEBAAUAAAAAAAC~&z=1631412496
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-178002442-1&cid=499774226.1662453232&jid=871888255&_u=YEBAAUAAAAAAAC~&z=1631412496
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-178002442-1&cid=499774226.1662453232&jid=871888255&_u=YEBAAUAAAAAAAC~&z=1631412496 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 08:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/713545727/?random=1662453232487&cv=9&fst=1662451200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&data=event%3DHomepageView%3Bevent_category%3Dpackages_%3Bevent_label%3DFirefox%2096.0.0.0&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&async=1&fmt=3&is_vtc=1&random=175472698&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/713545727/?random=1662453232487&cv=9&fst=1662451200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&data=event%3DHomepageView%3Bevent_category%3Dpackages_%3Bevent_label%3DFirefox%2096.0.0.0&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&async=1&fmt=3&is_vtc=1&random=175472698&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/713545727/?random=1662453232487&cv=9&fst=1662451200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8v0&sendb=1&data=event%3DHomepageView%3Bevent_category%3Dpackages_%3Bevent_label%3DFirefox%2096.0.0.0&frm=0&url=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&tiba=Package%20In%20Transit&async=1&fmt=3&is_vtc=1&random=175472698&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 08:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash da4692f1529a23a6cfb04391e382c936
7befa8be966f1128ff3c25be47986e7fa7087de9
d8460cc7719813509b4e38be06b8d184306f9451695c3e1974c1d06e5c29039c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 08:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=332720671379986&ev=PageView&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&rl=&if=false&ts=1662453232900&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662453232899.2065020673&it=1662453232494&coo=false&exp=e1&rqm=GET
200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=332720671379986&ev=PageView&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&rl=&if=false&ts=1662453232900&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662453232899.2065020673&it=1662453232494&coo=false&exp=e1&rqm=GET
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=332720671379986&ev=PageView&dl=https%3A%2F%2Fsearch.packageintransit.com%2F%3Fuc%3D20170615%26ap%3Dappfocus1%26source%3Dgoogledisplay-googledisplay-v1-bb8%26uid%3D118ee669-6994-45c9-be06-928ac00467c5%26keyword%3Dparcel%2520tracking%26i_id%3Dpackages_2.2%26page%3Dnewtab%26&rl=&if=false&ts=1662453232900&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662453232899.2065020673&it=1662453232494&coo=false&exp=e1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Tue, 06 Sep 2022 08:33:58 GMT
expires: Tue, 06 Sep 2022 08:33:58 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
search.packageintransit.com/favicon.ico
200 OK 0 B URL HTTP/1.1 search.packageintransit.com/favicon.ico
IP
GET /favicon.ico HTTP/1.1
Host: search.packageintransit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/?uc=20170615&ap=appfocus1&source=googledisplay-googledisplay-v1-bb8&uid=118ee669-6994-45c9-be06-928ac00467c5&keyword=parcel%20tracking&i_id=packages_2.2&page=newtab&
Cookie: user_id=118ee669-6994-45c9-be06-928ac00467c5; nts=t; _gcl_au=1.1.1227114738.1662453231; w=54~01d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Content-Type: image/x-icon
Date: Tue, 06 Sep 2022 08:33:55 GMT
ETag: "342c678ef699d71:0"
Last-Modified: Wed, 25 Aug 2021 21:17:06 GMT
X-Content-Type-Options: nosniff
Content-Length: 112173
Connection: keep-alive
cdn.onesignal.com/sdks/OneSignalSDK.js
200 OK 0 B URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 08:33:56 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 1469
expires: Fri, 09 Sep 2022 08:33:56 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 7465dcd77bfeb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700
IP
GET /css?family=Roboto:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://search.packageintransit.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 08:33:56 GMT
date: Tue, 06 Sep 2022 08:33:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.232.143.185
138.201.197.100
104.110.26.15
93.184.220.29
31.13.72.36
104.18.225.52
37.139.20.5