r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19174
Expires: Tue, 07 Feb 2023 02:28:51 GMT
Date: Mon, 06 Feb 2023 21:09:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6873
Expires: Mon, 06 Feb 2023 23:03:50 GMT
Date: Mon, 06 Feb 2023 21:09:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2420
Expires: Mon, 06 Feb 2023 21:49:37 GMT
Date: Mon, 06 Feb 2023 21:09:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 20:34:06 GMT
content-type: application/json
age: 2111
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7pKyKklzWPrjz7kyK5DjAgaKGXREHmHsp3ZAI9fQasBTk3M3Xw0Buxj6m1ytrMFWkBtagp8JY3o=
x-amz-request-id: WTH3YVK17T0QV35T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 20:45:18 GMT
age: 1439
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.sunset.com/travel/northwest/top-9-dude-ranch-escapes-00418000072545/
141.193.213.10301 Moved Permanently 162 B URL HTTP/1.1 www.sunset.com/travel/northwest/top-9-dude-ranch-escapes-00418000072545/
IP 141.193.213.10:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /travel/northwest/top-9-dude-ranch-escapes-00418000072545/ HTTP/1.1
Host: www.sunset.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 06 Feb 2023 21:09:17 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.sunset.com/travel/northwest/top-9-dude-ranch-escapes-00418000072545/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=htO9ecukFE15LReD237NZReK0FwsokA5ST1eNIAACmuh5yivOz2gWihW8KWlPcDPaW4ZF03PVctkbUEYaDT2SkXdu%2FDJU%2FjWYlNYl5JtSZ%2F2zkFx4RT66KAyBbDaa025"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7956ddb08b2eb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 21:09:17 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 18d3beb58f3982357d4d7819dff0de66
070f27062e6e4eb61c2384ca52ca3ca88b5db674
0eaf0daaf9f4d1eda87d17da6ee71bb67d48090bcc7c12069877af79d68fecad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5086
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:17 GMT
Last-Modified: Mon, 06 Feb 2023 19:44:32 GMT
Server: ECS (amb/6B9D)
X-Cache: HIT
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 21:07:20 GMT
age: 118
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5088
Expires: Mon, 06 Feb 2023 22:34:06 GMT
Date: Mon, 06 Feb 2023 21:09:18 GMT
Connection: keep-alive
push.services.mozilla.com/
35.165.1.70101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.1.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xeITnhR6L3/ueNtdQ1Nvcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AozPhbSybxBQbbByTgSlIsKp9AY=
www.sunset.com/travel/northwest/top-9-dude-ranch-escapes-00418000072545/
141.193.213.11301 Moved Permanently 0 B URL HTTP/2 www.sunset.com/travel/northwest/top-9-dude-ranch-escapes-00418000072545/
IP 141.193.213.11:0
ASN #209242 Cloudflare London, LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /travel/northwest/top-9-dude-ranch-escapes-00418000072545/ HTTP/1.1
Host: www.sunset.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Mon, 06 Feb 2023 21:09:18 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.sunset.com/travel/northwest/top-9-dude-ranch-escapes
x-powered-by: WP Engine
x-cacheable: non200
cache-control: max-age=600, must-revalidate
x-cache: MISS
x-cache-group: normal
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Myeay6dy7j3up%2B8Numj%2FeNre9KDDDOXlTnX%2FaRXBYL8ia%2B%2Be9jGYG1%2BUEKMWz8Nl%2FJhc19PES8Fwp67fVHjnI4F4zjQYRLSvegqGSgpyLpNFo3fdrGj0WeFewfL%2B4t6o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7956ddb38a750b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 18d3beb58f3982357d4d7819dff0de66
070f27062e6e4eb61c2384ca52ca3ca88b5db674
0eaf0daaf9f4d1eda87d17da6ee71bb67d48090bcc7c12069877af79d68fecad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5087
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:18 GMT
Last-Modified: Mon, 06 Feb 2023 19:44:32 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 94 kB IP 142.250.74.131:0
Hash 48c1b1917d2dc51dca68373bf68a6307
7b5e192dedc12c90d1ecf5c3dec5225a4c3a2e7c
bcb8d98a47ec702cac82a32b5889c61cf0c92103859db991852b827b6be99ba0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ad2d72821808ee5f77c0598fed0f8bd1
adcd92881d1c5ac3cca4687dc6347369240f4726
c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 370e74ead61664d84985db7a9087c0e4
7c55daf6c9231e1586a0c9d48375766e7f02405f
ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5679
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:20 GMT
Last-Modified: Mon, 06 Feb 2023 19:34:41 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ad2d72821808ee5f77c0598fed0f8bd1
adcd92881d1c5ac3cca4687dc6347369240f4726
c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11537
Expires: Tue, 07 Feb 2023 00:21:37 GMT
Date: Mon, 06 Feb 2023 21:09:20 GMT
Connection: keep-alive
d1voyiv1eh2vzr.cloudfront.net/stable/video/index.js?ver=5.8.6
54.230.245.147200 OK 4.7 kB URL HTTP/2 d1voyiv1eh2vzr.cloudfront.net/stable/video/index.js?ver=5.8.6
IP 54.230.245.147:0
Hash 2c14d1a2b925f9d62d24c92aaed63e39
2222f4b7964522369f58649d9adcf6ace1b08bc5
e9ac5950a1e5f18ae3d4132d01ba45c4ad36bdee5124a87fba2e39cb9e153f17
GET /stable/video/index.js?ver=5.8.6 HTTP/1.1
Host: d1voyiv1eh2vzr.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Tue, 22 Feb 2022 15:45:28 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 06 Feb 2023 08:12:38 GMT
etag: W/"0f6e987e51f6f5a3be6afcd0a09b3135"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DoF4K62PIdfq3JSNR_lz_NUvsNN8gfm2TyVDMilCDpDYMaCLSaeocQ==
age: 46603
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11537
Expires: Tue, 07 Feb 2023 00:21:37 GMT
Date: Mon, 06 Feb 2023 21:09:20 GMT
Connection: keep-alive
cdnjs.cloudflare.com/ajax/libs/webcomponentsjs/2.2.10/webcomponents-loader.js
104.17.24.14200 OK 4.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webcomponentsjs/2.2.10/webcomponents-loader.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (16845), with no line terminators
Hash 50a5d3fa59b8bb6def571676acb01a0d
5da885d5ba3d9110ece83def7a9b12d5c2a5c6e2
35349c04449ebe8f7a833eef32424eca94fad78d7f19c1aae2c0e2e68947fc11
GET /ajax/libs/webcomponentsjs/2.2.10/webcomponents-loader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:20 GMT
content-type: application/javascript; charset=utf-8
content-length: 1713
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-1880"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 21164556
expires: Sat, 27 Jan 2024 21:09:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O8TxAh5EIbffvN2%2F2TLlQeiIpd2UsHkFgFOFoViNnl%2Fu91H9Qk5SxQDj%2FaI55GewdfKhLr12aeCC73dfj33%2FYpfwwSZ3Rgpgzt2yTFp4Ch%2Fey%2FG7un2f9ld%2BUySQAQ9WrHRU1xQ2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7956ddc0bb5eb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad2298793399bf73c51c7d60952065c1
816bd4c36ceea2c46489ae72fde0b4a94c7c4bef
dc540d64e5e0835c7007e89ca3b5dd620b43a87e13309f323f3843a5f908a199
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8649
x-amzn-requestid: f85f3c9d-95c1-4db6-af5f-595070fe46c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHzboAMFQCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-6eed72bf20887cac6dc1a56a;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z7HTSLYJmhfIGlCjeG2EeN3q2Cd9vKlq71nqo3iIuhwkgwlEAlRPmQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:51:02 GMT
age: 83898
etag: "816bd4c36ceea2c46489ae72fde0b4a94c7c4bef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11537
Expires: Tue, 07 Feb 2023 00:21:37 GMT
Date: Mon, 06 Feb 2023 21:09:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gcy4nCriTOJhhTqFJBuks649uy0s4r3TVV3-yAcUhImLwqKpn1d2_w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:10:20 GMT
age: 82740
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0c62c5956f36c9f1c5d2f17bc372d98
fca4d7140e4c391b02d734425ccc92acec568a70
eb1b743ede5ed223536358bd92a322ca5231267f4434be1eced98a0fe93b790d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8929
x-amzn-requestid: ea29dd36-d05b-4824-ba18-78f868259f76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQEeTIAMFqGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-7a6ade1c4501a81c0823ce10;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O-QHP886Cczm6dsVDQVMR7SMSxgIhUSuEPAKJvzQTQtkj59Pg-z9QA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:11:05 GMT
age: 82695
etag: "fca4d7140e4c391b02d734425ccc92acec568a70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc8078cc937b7de0b299bcee1496f1b
395f04af71767acc9516387c8b07bde08968fdfe
cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9808
x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiSFZAIAMF65g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:10:54 GMT
age: 82706
etag: "395f04af71767acc9516387c8b07bde08968fdfe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 714723c38877e0d1655c7118a88ec064
809a42ce7c76cea0ce16af8172d852723c3a5f02
6bad7253694d155de31a8f5a3c635545a39aac340ca49d1bc10efb6739d4a356
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8981
x-amzn-requestid: 0054e925-c381-4737-bd92-32b2af3a604e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQHRFoAMFw6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-45ea5ee33d07326c593d21d3;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WPChtMRjKafjMFkXCam-m5lHQ-4E-UZ5VwnfjrBKaz6nuOh70Fkunw==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:02:46 GMT
age: 83194
etag: "809a42ce7c76cea0ce16af8172d852723c3a5f02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
d1voyiv1eh2vzr.cloudfront.net/stable/chunk-7107d76f.js
54.230.245.147200 OK 35 kB URL HTTP/2 d1voyiv1eh2vzr.cloudfront.net/stable/chunk-7107d76f.js
IP 54.230.245.147:0
Hash 229e1d5a7fa7e12f7d8a3d95e7151d54
e0090e1e68d9171b97df09faba9c6c3e7a163894
05d22aa5f20c984da8a4478051dd9d05c8dd557ba273adc86e0099290214466f
GET /stable/chunk-7107d76f.js HTTP/1.1
Host: d1voyiv1eh2vzr.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://d1voyiv1eh2vzr.cloudfront.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 08:30:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Tue, 22 Feb 2022 15:45:27 GMT
etag: W/"38285f635ee83f4d4fbcb9ce6ab714c8"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TyJvvzVzgibczDwYLUSYUsjGRxOf5gZSNh_HgKFDKL3SwSVGxiU_DQ==
age: 45506
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 370e74ead61664d84985db7a9087c0e4
7c55daf6c9231e1586a0c9d48375766e7f02405f
ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5679
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:20 GMT
Last-Modified: Mon, 06 Feb 2023 19:34:41 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 2.6 kB IP 142.250.74.131:0
Hash 436fe9e462d50c69e18ee7c0077ac28d
12900913b26224fb0563e73c528ce8ddc53c2f42
30dc6f6ee3b7002554dc5b9e0e1f1eb9de989dbcdfa2fb3c62950bf3140672cc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d1voyiv1eh2vzr.cloudfront.net/stable/widgets/close-box/index.js
54.230.245.147200 OK 1.2 kB URL HTTP/2 d1voyiv1eh2vzr.cloudfront.net/stable/widgets/close-box/index.js
IP 54.230.245.147:0
Hash 79f51b841004f4dea8c825fa89a6cb08
2e66963197bceb7dd5074cf83489caaaac0cee41
6cb94b12b3516b7cd0ef3dec37a5ea71413295cb37498a0791e856bfb1f0875a
GET /stable/widgets/close-box/index.js HTTP/1.1
Host: d1voyiv1eh2vzr.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Tue, 22 Feb 2022 15:45:28 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 06 Feb 2023 08:26:24 GMT
etag: W/"49b3896a4ea8adb4dd0955a157725835"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1od_rgWcjuNl3KapXXJyAHCqC4vfj22mRHGyr7CEkf0a6IllM8ZI-g==
age: 45776
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2
142.250.74.67200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 18096, version 1.0\012- data
Hash f29503a1895affee5ed85d0246238af8
f474c6e8a3e4e28fb68cf7fb29bd448cdfeb0278
7164a212fb4df27bf1e006342d1686badcba58f5a5d301772c14cc7adf1d4821
GET /s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 09:47:25 GMT
expires: Wed, 31 Jan 2024 09:47:25 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:54:12 GMT
content-type: font/woff2
age: 559315
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dmsans/v11/rP2Ap2ywxg089UriCZawpBqWCXwT.woff2
142.250.74.67200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Ap2ywxg089UriCZawpBqWCXwT.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 19200, version 1.0\012- data
Hash b04ef08ba8e7c6adc660cd64cc768ad1
8674d1ee1e6168420e1bd446f588212098d35aa6
545fbd29c9a2e70f0bffb4cacce1c0da7e4eee940aa690b0b38bf6d41ab631a4
GET /s/dmsans/v11/rP2Ap2ywxg089UriCZawpBqWCXwT.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19200
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:08:30 GMT
expires: Fri, 02 Feb 2024 01:08:30 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:54:14 GMT
content-type: font/woff2
age: 417650
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.sunset.com/travel/northwest/top-9-dude-ranch-escapes
141.193.213.11200 OK 30 kB URL HTTP/2 www.sunset.com/travel/northwest/top-9-dude-ranch-escapes
IP 141.193.213.11:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10788)
Hash d8ae7f6a185540dd2a2cb37a7aef154d
6558f531137f6a982dc74c17396daa2f28fdd560
17b7b15346b2487c58e3c47274c5419a16490c2674a5070d62c30bbb848a9d34
GET /travel/northwest/top-9-dude-ranch-escapes HTTP/1.1
Host: www.sunset.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:19 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
last-modified: Thu, 02 Feb 2023 15:50:58 GMT
link: <https://www.sunset.com/wp-json/>; rel="https://api.w.org/", <https://www.sunset.com/wp-json/wp/v2/posts/6042>; rel="alternate"; type="application/json", <https://www.sunset.com/?p=6042>; rel=shortlink
x-checking-in: 234
x-powered-by: WP Engine
x-cacheable: YES:15552000.000
cache-control: max-age=15552000, must-revalidate
x-cache: MISS
x-cache-group: normal
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HdaOyZMMxLNluA3FMpIluHpCVxSvYoEKT2mWtT0lQCb3Bbc4ADFX2bhyx5WtMeF3gvNxvx3V2i3p2kht1Z9lcWoRaIq12z%2BCILNgpjyBL830aF%2F1RQBLc27PXQ%2FzhxBL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7956ddb93b200b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2
142.250.74.67200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 18212, version 1.0\012- data
Hash ca72fb4e277e59be50b8850190822581
159b97b22006fe2a483da0a13d33cfb3cc5aa031
f3c0fa2cd71bb91d0e3acf5d77b93c49a184e9ad941532ca8c07c82eb0bd6a6c
GET /s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 10:05:58 GMT
expires: Fri, 02 Feb 2024 10:05:58 GMT
cache-control: public, max-age=31536000
age: 385402
last-modified: Thu, 21 Apr 2022 16:54:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.1 kB IP 142.250.74.131:0
Hash a35451d6b5e5f79d83d4fbd5ba53dc77
6f7bea53603cfa44b1b3cfcd4c1c8b9f5e32d9fe
9940123ac5ea397d39b8ca69b0ad2e2b0f1084e545c5adf4a491e41f68719664
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/dmsans/v11/rP2Fp2ywxg089UriCZa4Hz-D.woff2
142.250.74.67200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Fp2ywxg089UriCZa4Hz-D.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 19004, version 1.0\012- data
Hash be2a14878eb61d7c95d5970ff1912539
237450c08a36de2b7d3e4d20b74a062ca2fce816
1e235540dffb208599faa7434fad4050331fcd6916bf44fad58a5d1d65b8d360
GET /s/dmsans/v11/rP2Fp2ywxg089UriCZa4Hz-D.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19004
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 10:06:27 GMT
expires: Sat, 03 Feb 2024 10:06:27 GMT
cache-control: public, max-age=31536000
age: 298973
last-modified: Thu, 21 Apr 2022 16:57:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dmserifdisplay/v11/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2
142.250.74.67200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/dmserifdisplay/v11/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 24532, version 1.0\012- data
Hash 85db9d3b188da5bfdbc66c178a3e33bc
a11c20671ca01da83d46b9f6215885f347d8772c
73e3044bb6912706982542a9e9b15e7472bd53755cea6a0477c5e7c80c24c00d
GET /s/dmserifdisplay/v11/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 13:11:06 GMT
expires: Fri, 02 Feb 2024 13:11:06 GMT
cache-control: public, max-age=31536000
age: 374294
last-modified: Thu, 15 Dec 2022 21:43:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-T2L8FDL
142.250.74.168200 OK 83 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T2L8FDL
IP 142.250.74.168:0
File type Unicode text, UTF-8 text, with very long lines (14743)
Hash 284d6b3012e0eb25abe72716ec189d1c
01da213abab98e5f516581fa6f6238dfad33df7a
44941c9ceb0768aa357f2d2edc938fc9f172a287ac8e9472dab2b42128b561c6
GET /gtm.js?id=GTM-T2L8FDL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 06 Feb 2023 21:09:20 GMT
expires: Mon, 06 Feb 2023 21:09:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82714
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 262283a921f231669fd41486228a6e9a
4b96dcb2cd03f53280d2ecf5ccb249b0b32e6e97
13b8cc87c28e0113401d88f89971eb966afde870a3e4be2602ff34942e81862d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash ff6119ed180fe9372baf38f0ac63c259
08af17c18ee118ff9cb77c3621ec4f788b36da06
fbdda1771dc69e496b7765e1ccf33cb2f339c16f775c55b71dc8e130da165183
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113100
Date: Mon, 06 Feb 2023 21:09:20 GMT
Etag: "63e07463-1d7"
Expires: Wed, 08 Feb 2023 04:34:20 GMT
Last-Modified: Mon, 06 Feb 2023 03:30:43 GMT
Server: ECS (dcb/7F60)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rScGVmeRsO4YnBS1jfv7OFdGAlqpmUsJw0hTGV9THF9uR-FoSJm9SQ==
Age: 3817
www.googletagservices.com/tag/js/gpt.js
142.250.74.34200 OK 27 kB URL HTTP/2 www.googletagservices.com/tag/js/gpt.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (39302)
Hash 40fa065835aaad7d535167b7c36f9ff6
7fe4e89c6256c16dc7efa3ec1c0f118d36ccc422
bc809de9d5f04d384f4f8a58512f616c6c5f57532f88891c1518aa537b6dc9e9
GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27302
date: Mon, 06 Feb 2023 21:09:20 GMT
expires: Mon, 06 Feb 2023 21:09:20 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1475 / 313 of 1000 / last-modified: 1675685220"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 2.0 kB IP 142.250.74.131:0
Hash e6ecc87420a124df4b6c866e01bec4fe
7b0d2aceff24a3f16404b988e3021fbc3e30af1f
476febe4d4eb7635a7491b7048f58d4c3bf86f5dbdeae3e586dfd3a3ab1c645a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img.sunset02.com/sites/default/files/styles/marquee_large_2x/public/image/2011/07/big-sky-country-mountain-sky-ranch-0711-s.jpg
143.204.55.37200 OK 8.0 kB URL HTTP/2 img.sunset02.com/sites/default/files/styles/marquee_large_2x/public/image/2011/07/big-sky-country-mountain-sky-ranch-0711-s.jpg
IP 143.204.55.37:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 150x112, components 3\012- data
Hash 3c83796b705da0ebb0c97c86ceead8ea
97f0d6ac532260cdbca14ed03f99aea16716c07f
ca48c7df47fb5ee3345d60fda3ff9b3085474eeaeb1bf2163800ff5af20c8583
GET /sites/default/files/styles/marquee_large_2x/public/image/2011/07/big-sky-country-mountain-sky-ranch-0711-s.jpg HTTP/1.1
Host: img.sunset02.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8010
date: Mon, 06 Feb 2023 21:09:21 GMT
last-modified: Sun, 11 Mar 2018 18:17:23 GMT
etag: "3c83796b705da0ebb0c97c86ceead8ea"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: arkaUum2BN4SdaweQ3B78_U-VNEPD4owLsVni7YvuRuNw-bFKX6bOw==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 1.4 kB IP 93.184.220.29:0
Hash 0f2b2e29fb0c29954bef4f87432a6b25
6b4b204f3f1c4aa2cdcc41f61e030f8ec44796cc
f6b009bf63b4d58a3ec42f5bba6c11653fff7432c2ab57462a8b41db95b0c5f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1352
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:20 GMT
Etag: "63e048eb-118"
Last-Modified: Mon, 06 Feb 2023 20:46:48 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 280
cdn.jwplayer.com/libraries/WULyWvHs.js
54.230.111.23200 OK 46 kB URL HTTP/2 cdn.jwplayer.com/libraries/WULyWvHs.js
IP 54.230.111.23:0
File type Unicode text, UTF-8 text, with very long lines (65143)
Hash 4a57fed3fefc01ab0ec32b5fdc18513e
5e970a6ee0873730d1ee0e55a28c6dafd3982817
97334f2fd9d6c1ff4f577451898f78899a100d7e3f05eabfb2ae07e702dde71c
GET /libraries/WULyWvHs.js HTTP/1.1
Host: cdn.jwplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 45952
access-control-allow-origin: *
cache-control: max-age=180
content-encoding: gzip
date: Mon, 06 Feb 2023 21:09:20 GMT
server: openresty
x-robots-tag: noindex, indexifembedded
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QBOAqA1NRFOqMd0IX84ESfXNKi9CApXSMjk1HDaulYLzn0fQ71J5pw==
X-Firefox-Spdy: h2
ssl.p.jwpcdn.com/player/plugins/inference/v/0.7.1/inference.js
151.101.130.114200 OK 5.5 kB URL HTTP/2 ssl.p.jwpcdn.com/player/plugins/inference/v/0.7.1/inference.js
IP 151.101.130.114:0
File type ASCII text, with very long lines (18780)
Hash 7c699ed8dab806a58d7954184268c291
efd4542c59869378ef540de466ac47bf11ac39b4
f3f69471d3f3285713d1bca1ac3efa2887aa3eb9eaac2c7c96ede9e8e19a3fc9
GET /player/plugins/inference/v/0.7.1/inference.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=31536000,immutable
last-modified: Mon, 04 Oct 2021 07:39:43 GMT
etag: "a777fcd9584e62f04dc53d548d8adb31"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 06 Feb 2023 21:09:20 GMT
via: 1.1 varnish
age: 10848029
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 41550
x-timer: S1675717761.827957,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5464
X-Firefox-Spdy: h2
cdn.subscribers.com/config/681481f7-cfda-44a8-9059-337c324323e5.json
172.67.43.33200 OK 929 B URL HTTP/2 cdn.subscribers.com/config/681481f7-cfda-44a8-9059-337c324323e5.json
IP 172.67.43.33:0
File type JSON data\012- , ASCII text, with very long lines (929), with no line terminators
Hash 8e127ee97f29f723f3d6eafa467aaecb
2bdeae2fddcd4f144e96e3624010cb22d768e58a
ae6b600c36a2ca550183b1dadc2cde507f3c25ca91657c454ef486c06fc1b12e
GET /config/681481f7-cfda-44a8-9059-337c324323e5.json HTTP/1.1
Host: cdn.subscribers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:20 GMT
content-type: text/json
content-length: 929
x-amz-id-2: RUPYBzjBE9+Z8KO7J4kwYPwwbfzpCUCC4hlJ4m0YXbmLrEogjal/IO7hlq9cnm3OZX1dxVz9mgk=
x-amz-request-id: 9A40MGSDHDE02WY1
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3600
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Thu, 08 Sep 2022 09:17:02 GMT
etag: "8e127ee97f29f723f3d6eafa467aaecb"
accept-ranges: bytes
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7956ddc40cbcb52d-OSL
X-Firefox-Spdy: h2
ssl.p.jwpcdn.com/player/v/8.26.5/bidding.js
151.101.130.114200 OK 114 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.26.5/bidding.js
IP 151.101.130.114:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 114 kB (113770 bytes)
Hash 8adfda26f50e1468524ef392dd5c3a16
9d9e4ad25ecd96d53885a399b2ba54ad882f78d4
0cb421891535e4504d5ada2f8534585fe6ae659954752d6d3db3f36dd79ce3f8
GET /player/v/8.26.5/bidding.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=3600, immutable
last-modified: Mon, 06 Feb 2023 20:07:04 GMT
etag: "b2211313943646152e9029e930d36e32"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 06 Feb 2023 21:09:20 GMT
via: 1.1 varnish
age: 136
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 15
x-timer: S1675717761.832256,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 113770
X-Firefox-Spdy: h2
ssl.p.jwpcdn.com/player/v/8.26.5/jwpsrv.js
151.101.130.114200 OK 19 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.26.5/jwpsrv.js
IP 151.101.130.114:0
File type ASCII text, with very long lines (63082)
Hash 23991e20542403b9c96dc382a549f947
178a6dc4e9af4ce35f0d03aecd69274df1b4fdc3
ba0aab9f7253ebb23074ee02226ff08ae7e85c0565cb7914afcd78673cc46598
GET /player/v/8.26.5/jwpsrv.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=900, immutable
last-modified: Fri, 16 Dec 2022 18:56:50 GMT
etag: "fef737c4cc57ed883ecf82f803194198"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 06 Feb 2023 21:09:20 GMT
via: 1.1 varnish
age: 551
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 279
x-timer: S1675717761.833229,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 18865
X-Firefox-Spdy: h2
olytics.omeda.com/olytics/js/v3/p/olytics.min.js
54.230.111.32200 OK 74 kB URL HTTP/2 olytics.omeda.com/olytics/js/v3/p/olytics.min.js
IP 54.230.111.32:0
File type ASCII text, with very long lines (65467)
Hash b3dd051867cff471afa837c39b318888
a247039bbf86d09d74b49b0b08b502c788a0a535
eeea434911f170f41b23b41911c3abb8fc530f334a613af7d13362412eca2c6e
GET /olytics/js/v3/p/olytics.min.js HTTP/1.1
Host: olytics.omeda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: bytes
last-modified: Wed, 12 Oct 2022 19:43:20 GMT
cache-control: max-age=21600
expires: Fri, 03 Feb 2023 14:03:20 GMT
content-encoding: gzip
server: Apache
date: Mon, 06 Feb 2023 20:03:21 GMT
etag: W/"269579-1665603800000"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TpF6Dz1vgZCt5wGQjA2nYu7mzFvG0jXpLqsTKl8rdVLV3jb88NcOAQ==
age: 3962
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
cdn.subscribers.com/assets/subscribers.js
172.67.43.33200 OK 36 kB URL HTTP/2 cdn.subscribers.com/assets/subscribers.js
IP 172.67.43.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 949a3f7fd93b5de912ef8a3ded5210c0
1b400948d8dae8f4a9fd310449724e6486ba0de1
f94ff741de7fb5ae786043903577fbc4f3a45771799dee09a2fd3373c4550c40
GET /assets/subscribers.js HTTP/1.1
Host: cdn.subscribers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:20 GMT
content-type: application/javascript
x-amz-id-2: 3BT1L8j8Kd/9dZNws4zR4YKVF6twmL+9JOALtpvTsd8MyH4YkkxKzupm5sq8ZHDZfLxlnXzS+Vw=
x-amz-request-id: X3MAY8YT6MNTZSCR
last-modified: Tue, 11 Oct 2022 08:45:36 GMT
etag: W/"d22eae3f1faf14ca0d88f138b68dc2f6"
cf-cache-status: HIT
age: 639
vary: Accept-Encoding
server: cloudflare
cf-ray: 7956ddc3c90db517-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ssl.p.jwpcdn.com/player/v/8.26.5/jwplayer.core.controls.js
151.101.130.114200 OK 86 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.26.5/jwplayer.core.controls.js
IP 151.101.130.114:0
File type ASCII text, with very long lines (65143)
Hash 6f86ba5ba6b158c511477a37daf23904
05b156aae6413fc186ff5bc931dfde1bab7176a1
c8f9102b7054d342cffc4b5bbf734a0351222da13aee2bc155097f7aba729553
GET /player/v/8.26.5/jwplayer.core.controls.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Thu, 15 Dec 2022 20:44:12 GMT
etag: "63a963853b34e6de450b5bfdd2e5c05d"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 06 Feb 2023 21:09:20 GMT
via: 1.1 varnish
age: 4521241
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 111878
x-timer: S1675717761.839617,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 86146
X-Firefox-Spdy: h2
entitlements.jwplayer.com/bcShmir5EemaCRK2h_aUzg.json
152.199.22.243200 OK 80 B URL HTTP/2 entitlements.jwplayer.com/bcShmir5EemaCRK2h_aUzg.json
IP 152.199.22.243:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c59fb9d2ff3c05f2e52eb2dc9b4ccc57
c0aa3b5d7b8e9aeca06a78c22eab4e542e89d0a4
8c98bb73a321301e2a1bb5643045d5204af1f46f4851145020d6a5edb3e1b6ea
GET /bcShmir5EemaCRK2h_aUzg.json HTTP/1.1
Host: entitlements.jwplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 11674
cache-control: max-age=1800, s-maxage=17280
content-type: application/json
date: Mon, 06 Feb 2023 21:09:21 GMT
last-modified: Mon, 06 Feb 2023 17:54:47 GMT
server: ECAcc (ska/F6AA)
vary: Accept-Encoding
x-cache: HIT
content-length: 80
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 0f3c73e1cee26a946e3f1dd920010fb4
4b0e4d78035dd508835dff34c9800f937e1c0491
fbccfc2c691f332a00661982ae7a3141d1faa65e2a69f03885c474b4bab9456e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 21:09:21 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 22:39:18 GMT
Expires: Sat, 11 Feb 2023 22:39:17 GMT
Etag: "4b0e4d78035dd508835dff34c9800f937e1c0491"
Cache-Control: max-age=436795,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7956ddc68a7c1c12-OSL
content.jwplatform.com//feeds//epF39wYA.json?page_domain=www.sunset.com
54.230.111.69200 OK 13 kB URL HTTP/2 content.jwplatform.com//feeds//epF39wYA.json?page_domain=www.sunset.com
IP 54.230.111.69:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash bd3f6780665209e615136fcf3898fff6
0e49d2085d8bd82fd71fb479d4f3cc320387f999
ae75d89367da91672245b7be48bec9c5d593184416310f8acb7e9a2145140650
GET //feeds//epF39wYA.json?page_domain=www.sunset.com HTTP/1.1
Host: content.jwplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 12695
access-control-allow-origin: *
cache-control: max-age=180, max-stale=180
content-encoding: gzip
date: Mon, 06 Feb 2023 21:09:21 GMT
expires: Mon, 06 Feb 2023 21:12:21
server: openresty
x-robots-tag: noindex, indexifembedded
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: P6PGuFafuXX_uifCGak9DtuomHaF9YbwzaSwNLvmkGkjS6dQgLQo_Q==
X-Firefox-Spdy: h2
pro.ip-api.com/json?key=pAcPOWCUJWo5Gcp
51.77.64.70200 OK 277 B URL HTTP/1.1 pro.ip-api.com/json?key=pAcPOWCUJWo5Gcp
IP 51.77.64.70:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 82020d94bbcf2db6d97419efa8285c3a
4c582444cd3aed07cc146f84943944384a531260
ce29f494686471ff7bb20a96efeb02abe0f76f557035a637f9a2201f90a2fd3d
GET /json?key=pAcPOWCUJWo5Gcp HTTP/1.1
Host: pro.ip-api.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Date: Mon, 06 Feb 2023 21:09:21 GMT
Content-Length: 277
oqs.omeda.com/oqs/rest/olytics
204.180.130.165200 0 B URL HTTP/1.1 oqs.omeda.com/oqs/rest/olytics
IP 204.180.130.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /oqs/rest/olytics HTTP/1.1
Host: oqs.omeda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 600
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Access-Control-Request-Headers, Content-Type, Origin, Accept, Accept-Encoding, Accept-Language, HOST, User-Agent, Access-Control-Request-Method, Access-Control-Max-Age
Content-Type: text/plain
Content-Length: 0
Date: Mon, 06 Feb 2023 21:09:21 GMT
Keep-Alive: timeout=5
Connection: keep-alive
Server: Apache
ssl.p.jwpcdn.com/player/v/8.26.5/provider.hlsjs.js
151.101.130.114200 OK 113 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.26.5/provider.hlsjs.js
IP 151.101.130.114:0
File type ASCII text, with very long lines (65143)
Size 113 kB (112607 bytes)
Hash cf05518bf91cf1a3107d00af5c256de3
e14ef4408e7bb3b17866a453c42c93f345ff8993
fa2dc8745449b5943626d136bcd36df618f47a2b86334c9267abeb8f5e86e043
GET /player/v/8.26.5/provider.hlsjs.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Thu, 15 Dec 2022 20:44:15 GMT
etag: "6a93d76950d84ee91e0c47324a5df8a8"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 06 Feb 2023 21:09:21 GMT
via: 1.1 varnish
age: 4521240
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 65453
x-timer: S1675717761.210264,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 112607
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-EM9Q5VYLH7>m=45je3210&_p=43289244&cid=1640450592.1675717807&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675717807&sct=1&seg=0&dl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&dt=Top%209%20Dude%20Ranch%20Escapes&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-EM9Q5VYLH7>m=45je3210&_p=43289244&cid=1640450592.1675717807&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675717807&sct=1&seg=0&dl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&dt=Top%209%20Dude%20Ranch%20Escapes&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-EM9Q5VYLH7>m=45je3210&_p=43289244&cid=1640450592.1675717807&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675717807&sct=1&seg=0&dl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&dt=Top%209%20Dude%20Ranch%20Escapes&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.sunset.com
date: Mon, 06 Feb 2023 21:09:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
scripts.webcontentassessor.com/scripts/6ef3543eeeb081604ec9355db349d782a730e7b0ea2d36e898605d74ed0248c7
151.101.194.217200 OK 22 kB URL HTTP/2 scripts.webcontentassessor.com/scripts/6ef3543eeeb081604ec9355db349d782a730e7b0ea2d36e898605d74ed0248c7
IP 151.101.194.217:0
File type ASCII text, with very long lines (58035)
Hash 33ffc827ca75ec2a4333c402b517e74d
6cf8b3d1c5ff4dc4c6d2d172cf1e42d7d4a6f9e7
ccccff2f5e12f791355475cec2bc66270b598715c1cca4bd1f2cab403166f872
GET /scripts/6ef3543eeeb081604ec9355db349d782a730e7b0ea2d36e898605d74ed0248c7 HTTP/1.1
Host: scripts.webcontentassessor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nqQXP9YHaDF+wL41Ken6xmxn5CU9jZ20CGuED9l2afajegntpeZfosMypLNeAdYJLuRTsb8Ku6Y=
x-amz-request-id: 9A46H31HDWWH4ZDN
last-modified: Mon, 06 Feb 2023 21:05:51 GMT
etag: "914d13dcd2665c1d2fbd0cb53e37308d"
cache-control: max-age=3600,stale-if-error=86400,stale-while-revalidate=3600
x-amz-version-id: v5ygoOj42HAk8CJL823NQucrnd153GBy
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
date: Mon, 06 Feb 2023 21:09:21 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1661-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675717761.677622,VS0,VE688
vary: Accept-Encoding
content-length: 21790
X-Firefox-Spdy: h2
widgets.outbrain.com/outbrain.js
2.18.173.74200 OK 76 kB URL HTTP/2 widgets.outbrain.com/outbrain.js
IP 2.18.173.74:0
File type ASCII text, with very long lines (1595)
Hash 0238ccd5a205e422ddbdcab0d150092e
f884ac7cf39f2636df2571219d33b4e968a1616a
9a8228bf72147c7989e0042448dcaf962939c398c08dda94d0be6a3bb7748fbc
GET /outbrain.js HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 76130
x-traceid: 594f74e44c3f1361f423acf6ed3aa674
etag: "2a-8S+gnUjGeaVn+I1CQhayVvlFun0"
last-modified: Mon, 06 Feb 2023 14:45:21 GMT
cache-control: max-age=14400
content-encoding: gzip
vary: Accept-Encoding
date: Mon, 06 Feb 2023 21:09:21 GMT
edge-cache-tag: widget-cheetah
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.78200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 06 Feb 2023 19:45:20 GMT
expires: Mon, 06 Feb 2023 21:45:20 GMT
cache-control: public, max-age=7200
age: 5041
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.parsely.com/keys/sunset.com/p.js
143.204.54.36200 OK 24 kB URL HTTP/2 cdn.parsely.com/keys/sunset.com/p.js
IP 143.204.54.36:0
Hash ba6fad3006b051e302482f9ced6c4d86
7d9bb24d214d1e8d4032323f41fa8e5d5a08ec49
904144f0ba641e186b4aedec112d6342a68066293656eac0cae3d7680ff6ed5b
GET /keys/sunset.com/p.js HTTP/1.1
Host: cdn.parsely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Wed, 10 Feb 2021 19:32:51 GMT
pragma: public
content-encoding: gzip
date: Mon, 06 Feb 2023 09:08:39 GMT
expires: Tue, 07 Feb 2023 09:08:39 GMT
cache-control: max-age=86400, public
etag: W/"602434e3-10710"
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jRNuqorH0azJSF1gJIhOXgzk7xER4bkGRjvVXkVMzE-i5KZ6cERWGw==
age: 43242
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.sunset.com
142.250.74.130200 OK 101 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.sunset.com
IP 142.250.74.130:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5a56d598f3f64a21d253e6da3424b619
403e269b98835f7ae5b4a9e0ea0c7d9baf324a69
c84c9d588b4c4393f86c13575af08e2c617b8256e9bb26fae401b7a86f1d3562
GET /pagead/ppub_config?ippd=www.sunset.com HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Mon, 06 Feb 2023 21:09:21 GMT
expires: Mon, 06 Feb 2023 21:09:21 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 101
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 06-Feb-2023 21:24:21 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: PNR6Niks6CcA+0mynM8Gux1G+8fUdFqMuMqzqz5a7EDaQi2WvPLAuVXlJpvDawdGVuTC5ysmPAovN+9J8Ts3dg==
content-length: 27843
x-fb-trip-id: 1904183273
date: Mon, 06 Feb 2023 21:09:21 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9a60d6016cd998299b6665a91c01695f
6602b5a94afbe5ff3b999196d726e6424db77339
e290f612ebf43358e7d4e0f9f329f6d4b17550c61f7e0e0e62a5e6b57a42f260
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4141
Cache-Control: max-age=162766
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:21 GMT
Etag: "63e13522-1d7"
Expires: Wed, 08 Feb 2023 18:22:07 GMT
Last-Modified: Mon, 06 Feb 2023 17:13:06 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
143.204.55.105200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 143.204.55.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q6M4m7IKsH1zm8XGUW6D46Sm2tpjqo3BZ1X_D0ho_VWO-pfhURwUJQ==
age: 287955
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 7003cd40739815c88db5ab8791d4290a
345a495a06bee75844ee1a16d8e52c7bc1564e18
fa14a362271d32a39c51398de5a1d90f21b1fba2bc57586fc4150c5817097e09
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 06 Feb 2023 21:09:21 GMT
Last-Modified: Mon, 06 Feb 2023 20:54:12 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q5ilpTb6YnK4aG_cn0VmOHHfDcWO_1DaZxt4XRs_7JfhsvIh8DtpWA==
Age: 909
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 7003cd40739815c88db5ab8791d4290a
345a495a06bee75844ee1a16d8e52c7bc1564e18
fa14a362271d32a39c51398de5a1d90f21b1fba2bc57586fc4150c5817097e09
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109021
Date: Mon, 06 Feb 2023 21:09:21 GMT
Etag: "63e071ba-1d7"
Expires: Wed, 08 Feb 2023 03:26:22 GMT
Last-Modified: Mon, 06 Feb 2023 03:19:22 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dCQqGVcJCYin-WOuosn2GpK-TNSKuY8b5Zc6G8RFKmxfIuRl_yZHOQ==
Age: 420
api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0
99.83.154.140200 OK 18 B URL HTTP/2 api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0
IP 99.83.154.140:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /v1/personalize/simple?pageviews=1&isMobile=0 HTTP/1.1
Host: api.sail-personalize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,x-lib-version,x-referring-url
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:21 GMT
content-type: text/plain
content-length: 18
access-control-allow-origin: https://www.sunset.com
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: OPTIONS,GET,POST,PUT,DELETE
access-control-allow-headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Lib-Version,X-Referring-URL
allow: HEAD,GET,OPTIONS
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3b643538a5ffef8b92daec722cd042c0
d416e3a25a9f651d00dbce0768cbdc0f24532cd7
6804376276640b4c372f5a01dd4b5b2dff44edb49369f88da7fa23d8f4e1afed
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6433
Cache-Control: max-age=145993
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:22 GMT
Etag: "63e0eaaa-139"
Expires: Wed, 08 Feb 2023 13:42:35 GMT
Last-Modified: Mon, 06 Feb 2023 11:55:22 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0
99.83.154.140200 OK 197 B URL HTTP/2 api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0
IP 99.83.154.140:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b8c599735deb0d854a39d6041110c30e
70554a24990b0b1238e7f43ca74b673d647835d3
d68580ab7c85684c3713429b0ca9a851420031ebe2c9f43d0c8b576748e09755
GET /v1/personalize/simple?pageviews=1&isMobile=0 HTTP/1.1
Host: api.sail-personalize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
authorization: Bearer 3e0f6e358630cf6358423017a548dba8
content-type: application/json
x-lib-version: v1.0.1
x-referring-url: https://www.sunset.com/travel/northwest/top-9-dude-ranch-escapes
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:22 GMT
content-type: application/json
content-length: 197
access-control-allow-origin: *
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-store
expires: -1
allowedheaders: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin
allowedorigins: *
allowedmethods: GET,OPTIONS
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd4edd53f135794a95a915a483e42996
49ac129dc8d304c7b881f34fa60d7b3399074b5f
598e8a31c9d8018833a7d04e1859821ccdb769b8bda6175e367590cf6dace9dc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4478
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:22 GMT
Last-Modified: Mon, 06 Feb 2023 19:54:44 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 69125d1c42c4d8f4ad34f229bc7f9b24
d153e4e46e206b531587004e6cffd001ba287aff
357198344eea2d2aa7c035eba643b1e0631ec2400ac8deb10cb432f3f9107e2d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=96321
Date: Mon, 06 Feb 2023 21:09:22 GMT
Etag: "63e03acd-1d7"
Expires: Tue, 07 Feb 2023 23:54:43 GMT
Last-Modified: Sun, 05 Feb 2023 23:25:01 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cao_mpjaqtEovpAiLV-oqDd-L1SIHM42Ef7dsxvhMSj3fkXE-8Ynqg==
Age: 1782
bidder.criteo.com/cdb?profileId=207&av=26&wv=3.8.0-pre&cb=11759918839
178.250.0.165204 No Content 0 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=26&wv=3.8.0-pre&cb=11759918839
IP 178.250.0.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdb?profileId=207&av=26&wv=3.8.0-pre&cb=11759918839 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 323
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 06 Feb 2023 21:09:21 GMT
vary: Origin
server: Finatra
timing-allow-origin: *
access-control-allow-origin: https://www.sunset.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash ab85db2b10e7232161492e6df1417759
3881e7f8fe9c3595f02f3abeef32f8b51a0c7e94
e4d30b6f95fc6edf72b47a192fff3c085e6f3ac1129e066e1f41e03b95bbfba3
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 21:09:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 10 Feb 2023 18:59:31 GMT
ETag: "3881e7f8fe9c3595f02f3abeef32f8b51a0c7e94"
Last-Modified: Mon, 06 Feb 2023 18:59:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1259
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7956ddcd2f41b50b-OSL
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=10278&site_id=210096&zone_id=1142674&size_id=2&alt_size_ids=55%2C57&rf=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&tk_flint=pbjs_lite_v3.8.0-pre&x_source.tid=484edbb0-7df1-45c4-816e-459710c900c8&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&slots=1&rand=0.5347855321536158
213.19.162.41200 OK 303 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=10278&site_id=210096&zone_id=1142674&size_id=2&alt_size_ids=55%2C57&rf=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&tk_flint=pbjs_lite_v3.8.0-pre&x_source.tid=484edbb0-7df1-45c4-816e-459710c900c8&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&slots=1&rand=0.5347855321536158
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with very long lines (303), with no line terminators
Hash f8911cc93baf86ca68ba2deddc0e82ef
d16663246e5b3f9133fa76def03267e8963ebb6a
0a203fd5e1078ddc694c7da8fc7c91b98c7f3bd71998418f78347916d4a06816
GET /a/api/fastlane.json?account_id=10278&site_id=210096&zone_id=1142674&size_id=2&alt_size_ids=55%2C57&rf=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&tk_flint=pbjs_lite_v3.8.0-pre&x_source.tid=484edbb0-7df1-45c4-816e-459710c900c8&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&slots=1&rand=0.5347855321536158 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Mon, 06 Feb 2023 21:09:22 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunset.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDTB38E2-15-LWBN; Domain=.rubiconproject.com; Path=/; Expires=Tue, 06-Feb-2024 21:09:22 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qrT7lCm82wiwe9DtVM30fCgtEPhnawWgWZcpdkFKR4LVdusRLU/Ili5cpj76PKZXj8VP5bk8Hqg54MDU26OJstf; Domain=.rubiconproject.com; Path=/; Expires=Tue, 06-Feb-2024 21:09:22 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 303
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 1b2daff25890057703ec1e78f35d4a39
634eb97295e417ce37d24d28bb1d33ff93fb242f
1712e636e369206a8d23e2f17013dcca6b44bc942df0cea5828ccbfd365be469
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=165090
Date: Mon, 06 Feb 2023 21:09:22 GMT
Etag: "63e13809-1d7"
Expires: Wed, 08 Feb 2023 19:00:52 GMT
Last-Modified: Mon, 06 Feb 2023 17:25:29 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qzBU9BZ_q9AdUVhv_YSwvJzpgVwSwH3vkwlzO41G4LwvNo5nx08uOg==
Age: 5723
web.hb.ad.cpe.dotomi.com/s2s/header/24
89.207.16.146204 No Content 0 B URL HTTP/2 web.hb.ad.cpe.dotomi.com/s2s/header/24
IP 89.207.16.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /s2s/header/24 HTTP/1.1
Host: web.hb.ad.cpe.dotomi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 503
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Mon, 06 Feb 2023 21:09:22 GMT
cache-control: no-cache
access-control-allow-origin: https://www.sunset.com
access-control-allow-credentials: true
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
hb.emxdgt.com/?t=3000&ts=1675717808554&src=pbjs
18.198.213.248204 No Content 0 B URL HTTP/2 hb.emxdgt.com/?t=3000&ts=1675717808554&src=pbjs
IP 18.198.213.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /?t=3000&ts=1675717808554&src=pbjs HTTP/1.1
Host: hb.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 552
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 06 Feb 2023 21:09:22 GMT
cache-control: no-cache
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunset.com
access-control-allow-headers: security, Content-Type
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
37.252.171.149200 OK 145 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.149:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 39755ed625e385f05f960fd68601e623
e7c01d92ef0af8fafdd2742d5122b56c0d72499d
a504fbb237ef9ea5ed494a773d055e4093b8d8d2497f5fda5463bc313cf826c0
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 565
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Mon, 06 Feb 2023 21:09:22 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 145
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.sunset.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 358432c4-13ca-436f-8557-8355ec10246a
Set-Cookie: icu=ChgIsetGEAoYASABKAEwgtmFnwY4AUABSAEQgtmFnwYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 07-May-2023 21:09:22 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=5006850265440891401; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 07-May-2023 21:09:22 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 317dc1da0d3ad0ca33234ba83b48179b
45797ea5e5a7126800b8260ff1a9dcf3c840a3da
976e192984138c6b42bfd54a00c27991d0dece89e314d7698540ce89a6facab0
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 06 Feb 2023 21:09:21 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 05 Feb 2023 21:43:57 GMT
Expires: Mon, 06 Feb 2023 21:43:57 GMT
ETag: "45797ea5e5a7126800b8260ff1a9dcf3c840a3da"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3014e98565ecdbc5ca5d5cfc13d77992
16e1497c656b424b290151a0f302a12f5a5f6eef
86e45a3b98a5e41219f9a277833654c9b8c8ef80059465f166476cb091eecb43
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "86E45A3B98A5E41219F9A277833654C9B8C8EF80059465F166476CB091EECB43"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3668
Expires: Mon, 06 Feb 2023 22:10:30 GMT
Date: Mon, 06 Feb 2023 21:09:22 GMT
Connection: keep-alive
ap.lijit.com/rtb/bid?src=prebid_prebid_3.8.0-pre
216.52.2.48200 OK 25 B URL HTTP/1.1 ap.lijit.com/rtb/bid?src=prebid_prebid_3.8.0-pre
IP 216.52.2.48:0
File type JSON data\012- , ASCII text, with no line terminators
Hash eb19978c6cb3b6a60f3f7d5f7a79a5a4
69f8a87a30874c9a8b1b605ff2597d0aee3ba2ea
26d4e440df36f7e05a64579e9370c8834829d9c2e404185af772c71403d09416
POST /rtb/bid?src=prebid_prebid_3.8.0-pre HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 426
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 21:09:22 GMT
Content-Type: application/json
Access-Control-Allow-Origin: https://www.sunset.com
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
Vary: Accept-Encoding, User-Agent
Content-Length: 25
X-Sovrn-Pod: ad_ap5ams1
e.serverbid.com/api/v2
159.89.246.130200 OK 42 B IP 159.89.246.130:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with no line terminators
Hash 6b3ea90ae05ba6e3c5cb69e41bd4f3b0
e30d26c37cfb45eb346edb53f9322a672fdb2368
d1f523b2fc3183afb2614ae37c78a70c1a51374882df736654ba9021eee82960
POST /api/v2 HTTP/1.1
Host: e.serverbid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 455
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.sunset.com
access-control-allow-credentials: true
access-control-allow-headers: origin, content-type, accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 10080
content-type: application/json
content-length: 42
content-encoding: gzip
set-cookie: CONSUMABLEID=09801693968645918016939686c59196; Max-Age=1296000; Expires=Tue, 21 Feb 2023 21:09:22 GMT; Path=/; Domain=.serverbid.com; Secure; SameSite=None
date: Mon, 06 Feb 2023 21:09:22 GMT
X-Firefox-Spdy: h2
cdp.omeda.com/olytics/segments/p
204.180.130.159200 0 B URL HTTP/1.1 cdp.omeda.com/olytics/segments/p
IP 204.180.130.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /olytics/segments/p HTTP/1.1
Host: cdp.omeda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
vary: access-control-request-method,Access-Control-Request-Headers
Access-Control-Max-Age: 1800
Access-Control-Allow-Methods: HEAD,DELETE,POST,GET,OPTIONS,PUT
Access-Control-Allow-Headers: access-control-max-age,accept-language,origin,x-requested-with,access-control-request-headers,host,content-type,access-control-request-method,accept-encoding,accept,user-agent
Content-Length: 0
Date: Mon, 06 Feb 2023 21:09:24 GMT
Keep-Alive: timeout=5
Connection: keep-alive
Server: Apache
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2e90fb4abc4adea51d5da8fca3895c90
9ea128cefd8a4e91bc93a306cdafdcf5c0b99a40
6de37bd6d8e446c4e3b2d739ad311f23c403bb59c6adbfade793b274da3b5f28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 45214010f2ef8a835d723fcd5b485977
346507b6da40928a8c600ef9c52fd6a7e0875344
4b4e5c2038d6fe241aedc738e0bd22052078bf365b6dade88cae752d0f06fa54
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.sunset.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.sunset.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunset.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 06 Feb 2023 21:09:22 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.sunset.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.sunset.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.sunset.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 06 Feb 2023 21:09:22 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2e90fb4abc4adea51d5da8fca3895c90
9ea128cefd8a4e91bc93a306cdafdcf5c0b99a40
6de37bd6d8e446c4e3b2d739ad311f23c403bb59c6adbfade793b274da3b5f28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 45214010f2ef8a835d723fcd5b485977
346507b6da40928a8c600ef9c52fd6a7e0875344
4b4e5c2038d6fe241aedc738e0bd22052078bf365b6dade88cae752d0f06fa54
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.bca0d1c28285412bb689.js
143.204.55.40200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP 143.204.55.40:0
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _SOlNh4mpydcmqshR9XVPlSuegK8QfsZxddKBpn9_D_8n3SoIZuk0g==
age: 287956
X-Firefox-Spdy: h2
cdp.omeda.com/olytics/segments/p
204.180.130.159200 20 B URL HTTP/1.1 cdp.omeda.com/olytics/segments/p
IP 204.180.130.159:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9f6ab2c7ea13dd509c815fe6b8bedcc9
6971ce5e82fc1a7e8a48dbe507cef961edb6557b
a8e427db11a8744bebbcdfd050f7b9d0a84b5a1754d086f1787c40db21955264
POST /olytics/segments/p HTTP/1.1
Host: cdp.omeda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 359
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache
Content-Type: application/json
Date: Mon, 06 Feb 2023 21:09:27 GMT
Keep-Alive: timeout=5
Connection: keep-alive
Server: Apache
Transfer-Encoding: chunked
widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
23.38.201.81200 OK 43 B URL HTTP/2 widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
IP 23.38.201.81:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /widget/detect/px.gif?ch=1 HTTP/1.1
Host: widget-pixels.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-length: 43
content-type: image/gif
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3:1601475749.911431"
last-modified: Wed, 30 Sep 2020 14:22:29 GMT
server: AkamaiNetStorage
cache-control: max-age=2592000
expires: Wed, 08 Mar 2023 21:09:22 GMT
date: Mon, 06 Feb 2023 21:09:22 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2010149/module/notOutbrain.js
23.38.201.81200 OK 21 B URL HTTP/2 widgets.outbrain.com/nanoWidget/2010149/module/notOutbrain.js
IP 23.38.201.81:0
File type very short file (no magic)
Hash b9afc501fc43fbea335a2dc5d43263a1
7290a2dd6afbf39ecfc35b52dfb32a38fc222994
d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
GET /nanoWidget/2010149/module/notOutbrain.js HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "68b329da9893e34099c7d8ad5cb9c940:1675696969.264727"
last-modified: Mon, 06 Feb 2023 14:44:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 21
cache-control: max-age=604800
expires: Mon, 13 Feb 2023 21:09:22 GMT
date: Mon, 06 Feb 2023 21:09:22 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 79e9173e4a016fd69ae486ba8235a9a6
6040bff122b16b1b45b660b0e2f5978ac96918a0
1099ccc6bc2014afd3b55b94b8f17e4ab6bf4a06878d5c4291ca1b78117d4bf1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1099CCC6BC2014AFD3B55B94B8F17E4AB6BF4A06878D5C4291CA1B78117D4BF1"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11318
Expires: Tue, 07 Feb 2023 00:18:00 GMT
Date: Mon, 06 Feb 2023 21:09:22 GMT
Connection: keep-alive
tcheck.outbrainimg.com/tcheck/check/d3d3LnN1bnNldC5jb20=
23.38.201.176200 OK 15 B URL HTTP/1.1 tcheck.outbrainimg.com/tcheck/check/d3d3LnN1bnNldC5jb20=
IP 23.38.201.176:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 529cac05e2a53fd8794eb9e5699d9740
6b22e508bdcfbb35d24e176eefc89179212397a6
39d160e97e2bea07b0cf1c647259ffa4f0bd07069dba4e6c19a22d38b408510f
GET /tcheck/check/d3d3LnN1bnNldC5jb20= HTTP/1.1
Host: tcheck.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 15
X-TraceId: e452985e5d332cc9b001f24501f6cb0a
ETag: W/"f-ayLlCL3PuzXSThdu78iReSEjl6Y"
Cache-Control: max-age=15872
Expires: Tue, 07 Feb 2023 01:33:54 GMT
Date: Mon, 06 Feb 2023 21:09:22 GMT
Connection: keep-alive
Access-Control-Max-Age: 43200
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *
p1.parsely.com/plogger/?rand=1675717808182&plid=53376879&idsite=sunset.com&url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&urlref=&screen=1280x1024%7C1280x1002%7C24&data=%7B%7D&sid=1&surl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&sref=&sts=1675717808178&slts=0&title=Top+9+Dude+Ranch+Escapes&date=Mon+Feb+06+2023+21%3A10%3A08+GMT%2B0000+(Coordinated+Universal+Time)&action=pageview&pvid=885457&u=pid%3D3bed3debaec46d512d4119dcdeca0c27
63.34.81.234200 OK 43 B URL HTTP/1.1 p1.parsely.com/plogger/?rand=1675717808182&plid=53376879&idsite=sunset.com&url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&urlref=&screen=1280x1024%7C1280x1002%7C24&data=%7B%7D&sid=1&surl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&sref=&sts=1675717808178&slts=0&title=Top+9+Dude+Ranch+Escapes&date=Mon+Feb+06+2023+21%3A10%3A08+GMT%2B0000+(Coordinated+Universal+Time)&action=pageview&pvid=885457&u=pid%3D3bed3debaec46d512d4119dcdeca0c27
IP 63.34.81.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /plogger/?rand=1675717808182&plid=53376879&idsite=sunset.com&url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&urlref=&screen=1280x1024%7C1280x1002%7C24&data=%7B%7D&sid=1&surl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&sref=&sts=1675717808178&slts=0&title=Top+9+Dude+Ranch+Escapes&date=Mon+Feb+06+2023+21%3A10%3A08+GMT%2B0000+(Coordinated+Universal+Time)&action=pageview&pvid=885457&u=pid%3D3bed3debaec46d512d4119dcdeca0c27 HTTP/1.1
Host: p1.parsely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 21:09:22 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Monday, 06-Feb-2023 21:09:22 GMT
Cache-Control: no-cache
odb.outbrain.com/utils/get?url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&idx=0&rand=71891&key=NANOWDGT01&widgetJSId=AR_27&va=true&et=true&format=html&adblck=false&abwl=false&px=431&py=5318&vpd=4391&activeTab=true&ab=0&wl=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010149&sig=QSD85s2C&apv=false&&osLang=en-US&winW=1268&winH=939&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&chs=1&ogn=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes
151.101.86.132200 OK 3.9 kB URL HTTP/2 odb.outbrain.com/utils/get?url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&idx=0&rand=71891&key=NANOWDGT01&widgetJSId=AR_27&va=true&et=true&format=html&adblck=false&abwl=false&px=431&py=5318&vpd=4391&activeTab=true&ab=0&wl=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010149&sig=QSD85s2C&apv=false&&osLang=en-US&winW=1268&winH=939&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&chs=1&ogn=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes
IP 151.101.86.132:0
File type ASCII text, with very long lines (11452), with no line terminators
Hash 2e11f559d8da5c39b3442a0a29bbf7d7
b6b9015e7e72195e4db646557b83a4262a7a3de7
1dda0207bbf71577f89f5758cfe80f99641a15939d28ae4089a162d0ef88f881
GET /utils/get?url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&idx=0&rand=71891&key=NANOWDGT01&widgetJSId=AR_27&va=true&et=true&format=html&adblck=false&abwl=false&px=431&py=5318&vpd=4391&activeTab=true&ab=0&wl=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010149&sig=QSD85s2C&apv=false&&osLang=en-US&winW=1268&winH=939&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&chs=1&ogn=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes HTTP/1.1
Host: odb.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-traceid: 04cd09dba07243df4c5a5752970e3f7c
content-encoding: gzip
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Mon, 06 Feb 2023 21:09:22 GMT
x-served-by: cache-lga21954-LGA, cache-bma1636-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675717763.730147,VS0,VE131
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, BMA, Europe1
content-length: 3857
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/xbfe_backfill.js
142.250.74.2200 OK 3.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/xbfe_backfill.js
IP 142.250.74.2:0
File type ASCII text, with very long lines (1531)
Hash 562506238b9215a693454fbc88d0df5a
165f27696f81a017b433ba8d1d0f8c7cdc677041
b906b51be2742b7cfc21fe2d99515aa1aa51a2af3a1b1b4335792138bde40486
GET /pagead/xbfe_backfill.js HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 3003
x-xss-protection: 0
date: Mon, 06 Feb 2023 20:43:33 GMT
expires: Mon, 06 Feb 2023 21:43:33 GMT
cache-control: public, max-age=3600
age: 1549
etag: 2660866305706646737
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
widgets.outbrain.com/images/widgetIcons/ob_logo.svg
2.18.173.74200 OK 7.6 kB URL HTTP/2 widgets.outbrain.com/images/widgetIcons/ob_logo.svg
IP 2.18.173.74:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7647), with no line terminators
Hash b79638966e0374c455e78107aee59bf4
cbc23d2cca41f9f83e5e70283e6dc18ca9c26f53
21a924ac651ba65e51a5c9b5ae4b51453eb9b957d5990001a85960df95603d13
GET /images/widgetIcons/ob_logo.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "b79638966e0374c455e78107aee59bf4:1673369411.171576"
last-modified: Tue, 10 Jan 2023 16:40:08 GMT
server: AkamaiNetStorage
content-length: 7647
cache-control: max-age=2592000
expires: Wed, 08 Mar 2023 21:09:22 GMT
date: Mon, 06 Feb 2023 21:09:22 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/images/widgetIcons/achoice.svg
2.18.173.74200 OK 990 B URL HTTP/2 widgets.outbrain.com/images/widgetIcons/achoice.svg
IP 2.18.173.74:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (990), with no line terminators
Hash 5ab8e16b5f46213840bcd403e349419c
f03f6dc8e2206a94119af76f9a3b3c835390cae7
9ba56f5ffa579747efde1d2a429b325a9fb7220d30f4268e4a44ecbe4a9bf034
GET /images/widgetIcons/achoice.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "5ab8e16b5f46213840bcd403e349419c:1673369393.880194"
last-modified: Tue, 10 Jan 2023 16:40:08 GMT
server: AkamaiNetStorage
content-length: 990
cache-control: max-age=2592000
expires: Wed, 08 Mar 2023 21:09:22 GMT
date: Mon, 06 Feb 2023 21:09:22 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2010149/module/streamFeed.js?e=1
2.18.173.74200 OK 13 kB URL HTTP/2 widgets.outbrain.com/nanoWidget/2010149/module/streamFeed.js?e=1
IP 2.18.173.74:0
File type ASCII text, with very long lines (1562)
Hash 71e4cde5eaf66a0b621897f2847a3685
1a7cb7bd5ee90d12dfc558924604f85a7cf28ee2
042eab43bfc5ecf2e9c637764914139318578b97b49c871d0bd8b89265506e4c
GET /nanoWidget/2010149/module/streamFeed.js?e=1 HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "debb34bd3d22579f061250ecf0c03a23:1675696985.868063"
last-modified: Mon, 06 Feb 2023 14:44:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Mon, 13 Feb 2023 21:09:22 GMT
date: Mon, 06 Feb 2023 21:09:22 GMT
content-length: 13011
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-111060904-1&cid=1640450592.1675717807&jid=683135080&gjid=697790680&_gid=2011305926.1675717808&_u=aCDAgEADQAAAAEAAI~&z=213284155
64.233.165.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-111060904-1&cid=1640450592.1675717807&jid=683135080&gjid=697790680&_gid=2011305926.1675717808&_u=aCDAgEADQAAAAEAAI~&z=213284155
IP 64.233.165.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-111060904-1&cid=1640450592.1675717807&jid=683135080&gjid=697790680&_gid=2011305926.1675717808&_u=aCDAgEADQAAAAEAAI~&z=213284155 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.sunset.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 06 Feb 2023 21:09:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?&geo=eu&co=no
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?&geo=eu&co=no
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?&geo=eu&co=no HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Mon, 06 Feb 2023 21:09:23 GMT
Connection: keep-alive
Vary: Accept-Encoding
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 29af19f4d35dda344776c6f6db66c235
164bc64453a7e1e9c960982ff07d116ccf11434f
64ead99aef7098e547907e17edee7de198173e5951a82f91a038a562b50d1486
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157455
Date: Mon, 06 Feb 2023 21:09:23 GMT
Etag: "63e11bdf-1d7"
Expires: Wed, 08 Feb 2023 16:53:38 GMT
Last-Modified: Mon, 06 Feb 2023 15:25:19 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xju7J15ua797XJPBWU8jPRkEtaKtwzHSlLUwRsIv6OUQsdX4d4AzOw==
Age: 5299
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18426)
Hash 07b9c12939bf5c8b0560eda56afe4eea
b8a4ac204e5239b9954ba26f97c6411a340aa69d
a4558308f053c2e5f9af0cff45cb5a27d798ea91fb1f45cd8736ab8e216c00fb
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?&geo=eu&co=no
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Mon, 06 Feb 2023 06:20:12 GMT
Content-Encoding: gzip
Content-Length: 10010
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=33059
Expires: Tue, 07 Feb 2023 06:20:22 GMT
Date: Mon, 06 Feb 2023 21:09:23 GMT
Connection: keep-alive
Vary: Accept-Encoding
googleads.g.doubleclick.net/pagead/adfetch?adk=447567822&adsafe=medium&client=ca-pub-6579838053286784&format=970x250_as&ip=91.90.42.154&output=html&unviewed_position_start=1&url=https://www.sunset.com/travel/northwest/top-9-dude-ranch-escapes&sub_client=bidder-182732&hl=en&aceid=MEJePgBZGLQAOtTmAL9-NAFegDQBTII0ASODNAFZgzQBvoM0AdSDNAE4hDQBOYQ0AVeENAGMhDQBooQ0AeeENAHyhDQB84Q0AfqENAH7hDQB_YQ0Af6ENAEUhTQBGYU0ASaFNAEnhTQBK4U0ATWFNAE8hTQBQIU0AUhzQQHsHdoBEB9cAnAfXALW9ogCJ0KqAihCqgIpQqoCEmiqApRqqgJUkaoCgJuqAoGbqgKCm6oC8qSqAu-lqgKiqKoCsauqAseyqgK3wqoC1cOqAr7gqgKg5aoCj-iqAvrpqgJU8KoC1_GqAqLyqgL09aoCZPiqAuz6qgIl-6oCQvuqAnscqwIMHqsCHCWrAg4mqwKrJqsC3CarAlQoqwKTK6sC-yurAuUvqwLnL6sCzzCrAvowqwKvMasCGDWrAg08qwIjPKsCTTyrAqc8qwK1PKsCDj2rAnE9qwLKPasCqT6rAvY-qwJBP6sC_j-rAupAqwKEQasC9EOrAolEqwKjRKsC0USrAjRGqwJuR6sCSkirAlFIqwKtSasCt0mrAsZJqwKcS6sCsUurAqdOqwJyT6sCj1CrAhNRqwK-UasC51GrAhhTqwJJU6sC6VOrAsJUqwIVVasCLFWrAjVVqwJcVasC0FWrAihWqwIdV6sCPVerArVXqwLXV6sCFVirApt0JATjs8UFqTWgDMPYoQ7Pk_sS0qv7Elm1-xIhxfsSFcj7EjPi-xLr4vsSCej7Eq_v-xKC9fsSXfz7Ev0A_BL-APwS6Qr8EhEL_BLZC_wSTQz8EvhWaxqC9QRY6LW9aQ&awbid_c=AKAmf-CS-ThXGYab4JXoPGKDEbxKsVwGWOUwPD_T2LY4dEOfs62VJdAAutmzpMvEHqb53YzFkEoiyVp36-X_J5JFopwGHQe3NIHY8PMdlyXekOjWyR1dBOtGY4NjBZ5zcbujsiB15SscGgCEsKIhsb3cgl_VNZP7berfXLe_U44OY9VPy28rVm8&awbid_d=AKAmf-BQpAgBaDD-fMRK3h5DUEtfaT44WaPqoBh8qlRKCWLkZobcpLsGpe6ft-fqfU8r8BMdbcHVpZ0hu6PJlJPBW-1Hex5s2wg9teNjnbFLJb2j9JfF7gHq3ym0oZucQbz0ZXNZ19f_vDUqZTAN0vPKaGrB-V-ahKfsvPTickUZwA5e4SZkl4riXnrwUtEmM_uR7qzod4WBLooGo3AaONFHATIDqQ03H63zCxElfT9AKCjOIV9wBRLfBpikfVjZxDmQPwJHcawtQVDSgJsHFD_IJb3Br5PpiJa1_5C5XozpfQLdd6UgaWxiXxrESRK4ySSP4EkBfUeksMJldD5LHICWUXvw-ASjFy0hv-7nmBJGwmikBPnJmXM6urum6cj2IQBLyWrHH17HPQbmVCptmRCciNOJOiWklQgUiB_BWrfKVgqwSKJUEndL4C6B8KVQOBrXYRjqoZVqlDDVLMYaBsWtNq7Ygyfv7tzIBZI0eifmn39n71F7tqErQVPx8-RE3bRtiHpMJtMGw0v0Gb8LP0p1dnUz3NNpbUB2airGV9-TwwI8QJI8tLH2XaOwqbb_IsT6lqNnb3NuTxtLZD50aH_RoWaZoc_IWwrimQkQJuCXYj9j8KPgeDM5Kcz4r2gOI34WGi7jpRS8Ww8ZpM5c4J3kWNrBROLU1m7SiueKUzhh5bdZSKmyOsxKMhCIEsxi0juryMXE4kNMuTV6ZHPOfGksnzjcz63M7ZFj19fTYny5FVienvOzNjgxYiQE23RMQHSxqntmvrh_LnrzxISKb-iD3ujQkZRPbg&cid=CAQSGwDUE5ymiIkanceXFnPYgJSOn92KDG9Szom2_BgBIAo&exk=585798098&rfl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&a_pr=8:72AED4CA67AEF7B9
142.250.74.2200 OK 33 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/adfetch?adk=447567822&adsafe=medium&client=ca-pub-6579838053286784&format=970x250_as&ip=91.90.42.154&output=html&unviewed_position_start=1&url=https://www.sunset.com/travel/northwest/top-9-dude-ranch-escapes&sub_client=bidder-182732&hl=en&aceid=MEJePgBZGLQAOtTmAL9-NAFegDQBTII0ASODNAFZgzQBvoM0AdSDNAE4hDQBOYQ0AVeENAGMhDQBooQ0AeeENAHyhDQB84Q0AfqENAH7hDQB_YQ0Af6ENAEUhTQBGYU0ASaFNAEnhTQBK4U0ATWFNAE8hTQBQIU0AUhzQQHsHdoBEB9cAnAfXALW9ogCJ0KqAihCqgIpQqoCEmiqApRqqgJUkaoCgJuqAoGbqgKCm6oC8qSqAu-lqgKiqKoCsauqAseyqgK3wqoC1cOqAr7gqgKg5aoCj-iqAvrpqgJU8KoC1_GqAqLyqgL09aoCZPiqAuz6qgIl-6oCQvuqAnscqwIMHqsCHCWrAg4mqwKrJqsC3CarAlQoqwKTK6sC-yurAuUvqwLnL6sCzzCrAvowqwKvMasCGDWrAg08qwIjPKsCTTyrAqc8qwK1PKsCDj2rAnE9qwLKPasCqT6rAvY-qwJBP6sC_j-rAupAqwKEQasC9EOrAolEqwKjRKsC0USrAjRGqwJuR6sCSkirAlFIqwKtSasCt0mrAsZJqwKcS6sCsUurAqdOqwJyT6sCj1CrAhNRqwK-UasC51GrAhhTqwJJU6sC6VOrAsJUqwIVVasCLFWrAjVVqwJcVasC0FWrAihWqwIdV6sCPVerArVXqwLXV6sCFVirApt0JATjs8UFqTWgDMPYoQ7Pk_sS0qv7Elm1-xIhxfsSFcj7EjPi-xLr4vsSCej7Eq_v-xKC9fsSXfz7Ev0A_BL-APwS6Qr8EhEL_BLZC_wSTQz8EvhWaxqC9QRY6LW9aQ&awbid_c=AKAmf-CS-ThXGYab4JXoPGKDEbxKsVwGWOUwPD_T2LY4dEOfs62VJdAAutmzpMvEHqb53YzFkEoiyVp36-X_J5JFopwGHQe3NIHY8PMdlyXekOjWyR1dBOtGY4NjBZ5zcbujsiB15SscGgCEsKIhsb3cgl_VNZP7berfXLe_U44OY9VPy28rVm8&awbid_d=AKAmf-BQpAgBaDD-fMRK3h5DUEtfaT44WaPqoBh8qlRKCWLkZobcpLsGpe6ft-fqfU8r8BMdbcHVpZ0hu6PJlJPBW-1Hex5s2wg9teNjnbFLJb2j9JfF7gHq3ym0oZucQbz0ZXNZ19f_vDUqZTAN0vPKaGrB-V-ahKfsvPTickUZwA5e4SZkl4riXnrwUtEmM_uR7qzod4WBLooGo3AaONFHATIDqQ03H63zCxElfT9AKCjOIV9wBRLfBpikfVjZxDmQPwJHcawtQVDSgJsHFD_IJb3Br5PpiJa1_5C5XozpfQLdd6UgaWxiXxrESRK4ySSP4EkBfUeksMJldD5LHICWUXvw-ASjFy0hv-7nmBJGwmikBPnJmXM6urum6cj2IQBLyWrHH17HPQbmVCptmRCciNOJOiWklQgUiB_BWrfKVgqwSKJUEndL4C6B8KVQOBrXYRjqoZVqlDDVLMYaBsWtNq7Ygyfv7tzIBZI0eifmn39n71F7tqErQVPx8-RE3bRtiHpMJtMGw0v0Gb8LP0p1dnUz3NNpbUB2airGV9-TwwI8QJI8tLH2XaOwqbb_IsT6lqNnb3NuTxtLZD50aH_RoWaZoc_IWwrimQkQJuCXYj9j8KPgeDM5Kcz4r2gOI34WGi7jpRS8Ww8ZpM5c4J3kWNrBROLU1m7SiueKUzhh5bdZSKmyOsxKMhCIEsxi0juryMXE4kNMuTV6ZHPOfGksnzjcz63M7ZFj19fTYny5FVienvOzNjgxYiQE23RMQHSxqntmvrh_LnrzxISKb-iD3ujQkZRPbg&cid=CAQSGwDUE5ymiIkanceXFnPYgJSOn92KDG9Szom2_BgBIAo&exk=585798098&rfl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&a_pr=8:72AED4CA67AEF7B9
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 02bb5f91c42996d2afa8d30ae3a95f65
4aa16b5c1d503b09ad717fd48cd04d65f794dc81
e365009794c8e5202a646065ac92b21afc3f9eb4b4605e334b464dd8102214b2
GET /pagead/adfetch?adk=447567822&adsafe=medium&client=ca-pub-6579838053286784&format=970x250_as&ip=91.90.42.154&output=html&unviewed_position_start=1&url=https://www.sunset.com/travel/northwest/top-9-dude-ranch-escapes&sub_client=bidder-182732&hl=en&aceid=MEJePgBZGLQAOtTmAL9-NAFegDQBTII0ASODNAFZgzQBvoM0AdSDNAE4hDQBOYQ0AVeENAGMhDQBooQ0AeeENAHyhDQB84Q0AfqENAH7hDQB_YQ0Af6ENAEUhTQBGYU0ASaFNAEnhTQBK4U0ATWFNAE8hTQBQIU0AUhzQQHsHdoBEB9cAnAfXALW9ogCJ0KqAihCqgIpQqoCEmiqApRqqgJUkaoCgJuqAoGbqgKCm6oC8qSqAu-lqgKiqKoCsauqAseyqgK3wqoC1cOqAr7gqgKg5aoCj-iqAvrpqgJU8KoC1_GqAqLyqgL09aoCZPiqAuz6qgIl-6oCQvuqAnscqwIMHqsCHCWrAg4mqwKrJqsC3CarAlQoqwKTK6sC-yurAuUvqwLnL6sCzzCrAvowqwKvMasCGDWrAg08qwIjPKsCTTyrAqc8qwK1PKsCDj2rAnE9qwLKPasCqT6rAvY-qwJBP6sC_j-rAupAqwKEQasC9EOrAolEqwKjRKsC0USrAjRGqwJuR6sCSkirAlFIqwKtSasCt0mrAsZJqwKcS6sCsUurAqdOqwJyT6sCj1CrAhNRqwK-UasC51GrAhhTqwJJU6sC6VOrAsJUqwIVVasCLFWrAjVVqwJcVasC0FWrAihWqwIdV6sCPVerArVXqwLXV6sCFVirApt0JATjs8UFqTWgDMPYoQ7Pk_sS0qv7Elm1-xIhxfsSFcj7EjPi-xLr4vsSCej7Eq_v-xKC9fsSXfz7Ev0A_BL-APwS6Qr8EhEL_BLZC_wSTQz8EvhWaxqC9QRY6LW9aQ&awbid_c=AKAmf-CS-ThXGYab4JXoPGKDEbxKsVwGWOUwPD_T2LY4dEOfs62VJdAAutmzpMvEHqb53YzFkEoiyVp36-X_J5JFopwGHQe3NIHY8PMdlyXekOjWyR1dBOtGY4NjBZ5zcbujsiB15SscGgCEsKIhsb3cgl_VNZP7berfXLe_U44OY9VPy28rVm8&awbid_d=AKAmf-BQpAgBaDD-fMRK3h5DUEtfaT44WaPqoBh8qlRKCWLkZobcpLsGpe6ft-fqfU8r8BMdbcHVpZ0hu6PJlJPBW-1Hex5s2wg9teNjnbFLJb2j9JfF7gHq3ym0oZucQbz0ZXNZ19f_vDUqZTAN0vPKaGrB-V-ahKfsvPTickUZwA5e4SZkl4riXnrwUtEmM_uR7qzod4WBLooGo3AaONFHATIDqQ03H63zCxElfT9AKCjOIV9wBRLfBpikfVjZxDmQPwJHcawtQVDSgJsHFD_IJb3Br5PpiJa1_5C5XozpfQLdd6UgaWxiXxrESRK4ySSP4EkBfUeksMJldD5LHICWUXvw-ASjFy0hv-7nmBJGwmikBPnJmXM6urum6cj2IQBLyWrHH17HPQbmVCptmRCciNOJOiWklQgUiB_BWrfKVgqwSKJUEndL4C6B8KVQOBrXYRjqoZVqlDDVLMYaBsWtNq7Ygyfv7tzIBZI0eifmn39n71F7tqErQVPx8-RE3bRtiHpMJtMGw0v0Gb8LP0p1dnUz3NNpbUB2airGV9-TwwI8QJI8tLH2XaOwqbb_IsT6lqNnb3NuTxtLZD50aH_RoWaZoc_IWwrimQkQJuCXYj9j8KPgeDM5Kcz4r2gOI34WGi7jpRS8Ww8ZpM5c4J3kWNrBROLU1m7SiueKUzhh5bdZSKmyOsxKMhCIEsxi0juryMXE4kNMuTV6ZHPOfGksnzjcz63M7ZFj19fTYny5FVienvOzNjgxYiQE23RMQHSxqntmvrh_LnrzxISKb-iD3ujQkZRPbg&cid=CAQSGwDUE5ymiIkanceXFnPYgJSOn92KDG9Szom2_BgBIAo&exk=585798098&rfl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&a_pr=8:72AED4CA67AEF7B9 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 06 Feb 2023 21:09:23 GMT
server: cafe
content-length: 32692
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 06-Feb-2023 21:24:23 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 06 Feb 2023 21:09:23 GMT
cache-control: private
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2f48592c9ce931276d6e5e6e7e342cc3
55bfae3bef5fb97c8262eb622a54a0f603d41ec9
36472b536e89d8c01926bcdb2e23240f69f0bd7cde3b39a53a75b0a804291fd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20230202/r20110914/abg_lite.js
216.58.211.1200 OK 11 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230202/r20110914/abg_lite.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1484)
Hash 9e6fe3e6628683ef64bc06403a3cc27a
6a6e19b5fbf77ac7e5db382e2bd9a75f54a1dc1e
fb21e99028d7d97482ff749d998065bc49b8bc01e07d2e17db4c84a799716e21
GET /pagead/js/r20230202/r20110914/abg_lite.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 10959
x-xss-protection: 0
date: Mon, 06 Feb 2023 00:41:57 GMT
expires: Mon, 20 Feb 2023 00:41:57 GMT
cache-control: public, max-age=1209600
age: 73646
etag: 17405429609995134311
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2f48592c9ce931276d6e5e6e7e342cc3
55bfae3bef5fb97c8262eb622a54a0f603d41ec9
36472b536e89d8c01926bcdb2e23240f69f0bd7cde3b39a53a75b0a804291fd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
in.hotjar.com/api/v2/client/sites/2467257/visit-data?sv=7
54.76.60.173200 OK 10 kB URL HTTP/2 in.hotjar.com/api/v2/client/sites/2467257/visit-data?sv=7
IP 54.76.60.173:0
File type JSON data\012- , ASCII text, with no line terminators
Hash dbbc295936f15e27776656ce8a9ddca1
6ceb0c23662cb7fea8ff2026ea7814caca76e729
2149a8936dd103a202570b02f3cb7a8cd2db0265bb0ccfec7095d890c24cf632
POST /api/v2/client/sites/2467257/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 148
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:23 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
beacon-ams3.rubiconproject.com/beacon/d/4b3fc891-566e-43ec-855f-4649904f09e3?oo=0&accountId=17856&siteId=182732&zoneId=892704&sizeId=57&e=6A1E40E384DA563B5E6DF285331BD00752F2266A2D602C3C0A4FE792E85802CD3A7C0864561A8F84E24E059A577DF8ADB8B520C669668569A0932650A821072A98BB0C566949E09FEEE4D6932020324B78E9D79DDC7109823A4045A5D2600CA0C87F5AD77BD8DDB111876CF5FDEE8E1AC429C652B50713BFDACEE504B5A7A62C01B161855D5543C4998234B169F036921898022C5832A72B650EC257F16178F326758368A9B2450B026B7C98065107FC835B6328AB9B484B14ABBE65B7042C39
213.19.162.37200 43 B URL HTTP/1.1 beacon-ams3.rubiconproject.com/beacon/d/4b3fc891-566e-43ec-855f-4649904f09e3?oo=0&accountId=17856&siteId=182732&zoneId=892704&sizeId=57&e=6A1E40E384DA563B5E6DF285331BD00752F2266A2D602C3C0A4FE792E85802CD3A7C0864561A8F84E24E059A577DF8ADB8B520C669668569A0932650A821072A98BB0C566949E09FEEE4D6932020324B78E9D79DDC7109823A4045A5D2600CA0C87F5AD77BD8DDB111876CF5FDEE8E1AC429C652B50713BFDACEE504B5A7A62C01B161855D5543C4998234B169F036921898022C5832A72B650EC257F16178F326758368A9B2450B026B7C98065107FC835B6328AB9B484B14ABBE65B7042C39
IP 213.19.162.37:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /beacon/d/4b3fc891-566e-43ec-855f-4649904f09e3?oo=0&accountId=17856&siteId=182732&zoneId=892704&sizeId=57&e=6A1E40E384DA563B5E6DF285331BD00752F2266A2D602C3C0A4FE792E85802CD3A7C0864561A8F84E24E059A577DF8ADB8B520C669668569A0932650A821072A98BB0C566949E09FEEE4D6932020324B78E9D79DDC7109823A4045A5D2600CA0C87F5AD77BD8DDB111876CF5FDEE8E1AC429C652B50713BFDACEE504B5A7A62C01B161855D5543C4998234B169F036921898022C5832A72B650EC257F16178F326758368A9B2450B026B7C98065107FC835B6328AB9B484B14ABBE65B7042C39 HTTP/1.1
Host: beacon-ams3.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Cache-Control: private, max-age=0, no-cache
Expires: 01 Jan 1970 10:00:00 GMT
Pragma: no-cache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Content-Type: image/avif
Content-Length: 43
Date: Mon, 06 Feb 2023 21:09:22 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1d4/nqT2YDGJ6Wo
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/nqT2YDGJ6Wo
IP 142.250.74.131:0
Hash dcdd1f0e0fa67563631839e53e7bdc83
738d88117e5494b683391c8804e24eeb99eb1f79
2fa0f43b713ff223ae99d27c19eb0f89807f82ba1fc1aad8c469da1a00b0ca8f
POST /s/gts1d4/nqT2YDGJ6Wo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mcdp-nydc1.outbrain.com/l?token=91dd81c1355e2e0cc95fbd108fe0521e_1379_1675717762812&tm=1266&eT=0&widgetWidth=191&widgetHeight=36&widgetX=432&widgetY=5486&wRV=2010149&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&cheq=0&rtt=937&oo=true&lo=4048&odbreq=4525&odbres=5461&to=1675717804049&chs=1&ab=0&wl=0
70.42.32.191200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=91dd81c1355e2e0cc95fbd108fe0521e_1379_1675717762812&tm=1266&eT=0&widgetWidth=191&widgetHeight=36&widgetX=432&widgetY=5486&wRV=2010149&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&cheq=0&rtt=937&oo=true&lo=4048&odbreq=4525&odbres=5461&to=1675717804049&chs=1&ab=0&wl=0
IP 70.42.32.191:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=91dd81c1355e2e0cc95fbd108fe0521e_1379_1675717762812&tm=1266&eT=0&widgetWidth=191&widgetHeight=36&widgetX=432&widgetY=5486&wRV=2010149&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&cheq=0&rtt=937&oo=true&lo=4048&odbreq=4525&odbres=5461&to=1675717804049&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 21:09:23 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: 0d310dcf8e2890a0b5a76aec2a6079ee
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 65a863238a9881c2740e0de2c79ca8ef
cfb7463457401a50f7f0bf8572cf37491e4188b9
c2397575e03745305c3f07631e865f1102fff17895f0ae61cae1d045ea084f2b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148299
Date: Mon, 06 Feb 2023 21:09:23 GMT
Etag: "63e10978-1d7"
Expires: Wed, 08 Feb 2023 14:21:02 GMT
Last-Modified: Mon, 06 Feb 2023 14:06:48 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4st1lYGmP4KD2hCRBKBbf-yBdBKxdOyB4APAdqvlSMptcslwDFeZYw==
Age: 854
tr.blismedia.com/v1/api/sync/rubicon
34.96.105.8204 No Content 0 B URL HTTP/2 tr.blismedia.com/v1/api/sync/rubicon
IP 34.96.105.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/api/sync/rubicon HTTP/1.1
Host: tr.blismedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
set-cookie: b=63E16C832E0CEF7AC00F648DBLIS;Version=1;Domain=blismedia.com;Path=/;Max-Age=31540000;SameSite=None;Secure
date: Mon, 06 Feb 2023 21:09:23 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/nqT2YDGJ6Wo
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/nqT2YDGJ6Wo
IP 142.250.74.131:0
Hash dcdd1f0e0fa67563631839e53e7bdc83
738d88117e5494b683391c8804e24eeb99eb1f79
2fa0f43b713ff223ae99d27c19eb0f89807f82ba1fc1aad8c469da1a00b0ca8f
POST /s/gts1d4/nqT2YDGJ6Wo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 94248447b4d551347808d19f9b685086
561515c65164b2efe5aaec9869c576d3bb86ab2f
2202e84a6d082c614104ce96b420bf27dc289b1abae8a2babba15f9cdc817533
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6379
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:23 GMT
Last-Modified: Mon, 06 Feb 2023 19:23:04 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c0c18b789b296a2b3cc9adb04c94e6f7
a0fa241f813c414178f5dffd30d5c2b82d16669b
95ec61ae9d1384fdbcee256ec441d6db4e3243ed3f8e1801b3607ce3c2e1e3f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
token.rubiconproject.com/token?pid=2249&pt=n
69.173.144.139302 Found 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=2249&pt=n
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=2249&pt=n HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 3bafef7aa4e37890defcd73f0a080481
Location: https://cm.g.doubleclick.net/pixel?google_nid=rubicon&google_hm=
content-length: 0
token.rubiconproject.com/token?pid=25470
69.173.144.139204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=25470
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=25470 HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 4cdacfaa68e4ab216fffbcc107c5b898
www.facebook.com/tr/?id=2056299481110478&ev=PageView&dl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&rl=&if=false&ts=1675717810078&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675717810077.1841835254&it=1675717808310&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2056299481110478&ev=PageView&dl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&rl=&if=false&ts=1675717810078&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675717810077.1841835254&it=1675717808310&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2056299481110478&ev=PageView&dl=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&rl=&if=false&ts=1675717810078&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675717810077.1841835254&it=1675717808310&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 06 Feb 2023 21:09:23 GMT
X-Firefox-Spdy: h2
www.google.com/pagead/drt/ui
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 06 Feb 2023 21:09:23 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 111 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
File type gzip compressed data, from Unix\012- data
Size 111 kB (110893 bytes)
Hash ec301055078d25455e79de45b77d616d
bd99fada3310ad18d358fc4535a26a4643898f38
f8f4386223654ca82c70c4503c8334f5b28ba6eb2ecf459c1b3b76023ae01846
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139586
Date: Mon, 06 Feb 2023 21:09:23 GMT
Etag: "63e0d855-1d7"
Expires: Wed, 08 Feb 2023 11:55:49 GMT
Last-Modified: Mon, 06 Feb 2023 10:37:09 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZphSYS-24HlXR-b6eqVdoJb8piLCu-LX-9nKzgWaV27uD43jvChk8Q==
Age: 4720
aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=
54.239.38.253302 Found 0 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=
IP 54.239.38.253:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id= HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Mon, 06 Feb 2023 21:09:23 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: PB7BG0HTM9X00ERD32PB
Set-Cookie: ad-id=A0fJnvQFi06EvaMXguuYR14|t; Domain=.amazon-adsystem.com; Expires=Sun, 01-Oct-2023 21:09:23 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
i.w55c.net/ping_match.gif?ei=RUBICON&rurl=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4210%26nid%3D1523%26put%3D_wfivefivec_%26expires%3D30
3.65.84.173302 0 B URL HTTP/1.1 i.w55c.net/ping_match.gif?ei=RUBICON&rurl=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4210%26nid%3D1523%26put%3D_wfivefivec_%26expires%3D30
IP 3.65.84.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ping_match.gif?ei=RUBICON&rurl=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4210%26nid%3D1523%26put%3D_wfivefivec_%26expires%3D30 HTTP/1.1
Host: i.w55c.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Cache-Control: no-cache, must-revalidate
Date: Mon, 06 Feb 2023 21:09:22 GMT
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Location: https://pm.w55c.net/ping_match.gif?scc=1&ei=RUBICON&rurl=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4210%26nid%3D1523%26put%3D_wfivefivec_%26expires%3D30
Pragma: no-cache
Server: PingMatch/d601d38#rel-ec2-master i-0faa10e3a614d791a@eu-central-1a@dxedge-app-eu-central-1-prod-asg
Set-Cookie: wfivefivec=CIEhCoxU1Pp8JR5; Domain=.w55c.net; Expires=Fri, 08-Mar-2024 07:09:23 GMT; Path=/; SameSite=None; Secure
Strict-Transport-Security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 66fcd2f27026c61a7868ae6aa930e47e
ed6109aef51364a16b7425c320bb6e33191d35f1
eda1468a06a91a2908ffdaa547702f9dac0bab10f8ef199f7635e571606e896a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1718
Cache-Control: max-age=106717
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:23 GMT
Etag: "63e063aa-1d7"
Expires: Wed, 08 Feb 2023 02:48:00 GMT
Last-Modified: Mon, 06 Feb 2023 02:19:22 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t
54.239.38.253200 OK 43 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t
IP 54.239.38.253:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6851dbf491ae442da3314f19e8aff085
ecfec27263608c4ae7cd4f8e0cebb1b061df2ac3
c21e2c1246fe45a6750ae6208db2b5965ff6ed63eb80d2ecec3be9c83813428e
GET /s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Mon, 06 Feb 2023 21:09:23 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: S4XNGACZTTSV2G0K8AWJ
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
securepubads.g.doubleclick.net/pcs/view?xai=AKAOjsuaK75OiWMO5kCmvzrCLhegncyKrRAJU5T_SDb5ejhgy_v5QtqK74P5xgCO_J49spEVOLX-I53ACd7vTOkbhXCmInFKVt8_4ExItkJuL8JpWa-w4Fd91BJHqggZuorn1GlsSb_4KVnsHjELTkMZG6mr6r1LavXkDCod3-KfVKqWSgxhYlJLOmGmkehhviwmCEpPbmZ6ffrsBM3l4JzqNT5iqrNqGrYQFydlJC2DGx4p5N9vXvSOjzRKIPdZYkFXUB4OHOafvKPuVad7zK_wh0IXWlXIa-L1IPc6KP7COTl-WmAjrxPEI8fcFz6JPgVs7gBvq6D8y2Ql_G8iVxrplcHv9YmKJw&sai=AMfl-YTbyiELIpKER1czCmhxNunJKm4N56co66HSsCTvd_AmIIPXysyWTU0nH-GrLB1rOpX3omMl_5ZXqMszyeEzsu8S37_Jcz64p0Yhf46IK-FrmPsTSoQ88Wkd0AOMfiAWUHXe6JsGtaE4w9KYFDN-&sig=Cg0ArKJSzBnSb52BwiFZEAE&uach_m=[UACH]&urlfix=1&adurl=
142.250.74.130200 OK 0 B URL HTTP/2 securepubads.g.doubleclick.net/pcs/view?xai=AKAOjsuaK75OiWMO5kCmvzrCLhegncyKrRAJU5T_SDb5ejhgy_v5QtqK74P5xgCO_J49spEVOLX-I53ACd7vTOkbhXCmInFKVt8_4ExItkJuL8JpWa-w4Fd91BJHqggZuorn1GlsSb_4KVnsHjELTkMZG6mr6r1LavXkDCod3-KfVKqWSgxhYlJLOmGmkehhviwmCEpPbmZ6ffrsBM3l4JzqNT5iqrNqGrYQFydlJC2DGx4p5N9vXvSOjzRKIPdZYkFXUB4OHOafvKPuVad7zK_wh0IXWlXIa-L1IPc6KP7COTl-WmAjrxPEI8fcFz6JPgVs7gBvq6D8y2Ql_G8iVxrplcHv9YmKJw&sai=AMfl-YTbyiELIpKER1czCmhxNunJKm4N56co66HSsCTvd_AmIIPXysyWTU0nH-GrLB1rOpX3omMl_5ZXqMszyeEzsu8S37_Jcz64p0Yhf46IK-FrmPsTSoQ88Wkd0AOMfiAWUHXe6JsGtaE4w9KYFDN-&sig=Cg0ArKJSzBnSb52BwiFZEAE&uach_m=[UACH]&urlfix=1&adurl=
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsuaK75OiWMO5kCmvzrCLhegncyKrRAJU5T_SDb5ejhgy_v5QtqK74P5xgCO_J49spEVOLX-I53ACd7vTOkbhXCmInFKVt8_4ExItkJuL8JpWa-w4Fd91BJHqggZuorn1GlsSb_4KVnsHjELTkMZG6mr6r1LavXkDCod3-KfVKqWSgxhYlJLOmGmkehhviwmCEpPbmZ6ffrsBM3l4JzqNT5iqrNqGrYQFydlJC2DGx4p5N9vXvSOjzRKIPdZYkFXUB4OHOafvKPuVad7zK_wh0IXWlXIa-L1IPc6KP7COTl-WmAjrxPEI8fcFz6JPgVs7gBvq6D8y2Ql_G8iVxrplcHv9YmKJw&sai=AMfl-YTbyiELIpKER1czCmhxNunJKm4N56co66HSsCTvd_AmIIPXysyWTU0nH-GrLB1rOpX3omMl_5ZXqMszyeEzsu8S37_Jcz64p0Yhf46IK-FrmPsTSoQ88Wkd0AOMfiAWUHXe6JsGtaE4w9KYFDN-&sig=Cg0ArKJSzBnSb52BwiFZEAE&uach_m=[UACH]&urlfix=1&adurl= HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Mon, 06 Feb 2023 21:09:23 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 06-Feb-2023 21:24:23 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 06 Feb 2023 21:09:23 GMT
X-Firefox-Spdy: h2
log.outbrainimg.com/loggerServices/dwce_cheq_events?timestamp=1675717809804&sessionId=d40bc3d6-1090-8ef8-9c17-9271b97e040f&url=www.sunset.com&cheqSource=1&cheqEvent=3&responseTime=1554
70.42.32.191200 OK 4 B URL HTTP/1.1 log.outbrainimg.com/loggerServices/dwce_cheq_events?timestamp=1675717809804&sessionId=d40bc3d6-1090-8ef8-9c17-9271b97e040f&url=www.sunset.com&cheqSource=1&cheqEvent=3&responseTime=1554
IP 70.42.32.191:0
File type ASCII text, with no line terminators
Hash b326b5062b2f0e69046810717534cb09
5ffe533b830f08a0326348a9160afafc8ada44db
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b
GET /loggerServices/dwce_cheq_events?timestamp=1675717809804&sessionId=d40bc3d6-1090-8ef8-9c17-9271b97e040f&url=www.sunset.com&cheqSource=1&cheqEvent=3&responseTime=1554 HTTP/1.1
Host: log.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 21:09:23 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 4
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST
X-TraceId: fa130cacfa5899a640d44c165541ed98
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 7cfe411d1283861c2eb3f909318785e1
6c2644e0cfe352494e9a916ec8b747f015fa37b4
e4da048c624468907a4fe2b47b1cf8534d38ed16430dab96709ebc15bebd5c02
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 06 Feb 2023 21:09:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 06 Feb 2023 18:33:15 GMT
Expires: Tue, 07 Feb 2023 18:33:15 GMT
ETag: "6c2644e0cfe352494e9a916ec8b747f015fa37b4"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
pixel.adsafeprotected.com/mon?anId=926323&campId=970x250&pubId=4757634386&chanId=21675193036&placementId=5107533076&pubCreative=138274735376&pubOrder=2565229334&cb=1567016881&adsafe_par&impId=&custom=1&adsafe_url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&adsafe_type=abdq&adsafe_url=https%3A%2F%2Fwww.sunset.com%2F&adsafe_type=f&adsafe_jsinfo=,id:d68e1059-aa6e-e9da-7dc6-454fc4c4a926,c:3tEGT7,sl:inView,em:true,fr:true,thd:1,mn:jsserver-primary-846cfdc89d-fn6mc,rg:ie,pt:1-5-15,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:183,mot:0,app:0,maw:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,pl:,rmeas:1,rend:1,renddet:DIV.qs.sn,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:200,oid:87c6c537-a662-11ed-861e-22cb420d8191,v:19.8.390,sp:1,st:0,fwm:0,wr:1280.898,sr:1280.1024,ov:0
54.72.146.148200 OK 43 B URL HTTP/2 pixel.adsafeprotected.com/mon?anId=926323&campId=970x250&pubId=4757634386&chanId=21675193036&placementId=5107533076&pubCreative=138274735376&pubOrder=2565229334&cb=1567016881&adsafe_par&impId=&custom=1&adsafe_url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&adsafe_type=abdq&adsafe_url=https%3A%2F%2Fwww.sunset.com%2F&adsafe_type=f&adsafe_jsinfo=,id:d68e1059-aa6e-e9da-7dc6-454fc4c4a926,c:3tEGT7,sl:inView,em:true,fr:true,thd:1,mn:jsserver-primary-846cfdc89d-fn6mc,rg:ie,pt:1-5-15,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:183,mot:0,app:0,maw:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,pl:,rmeas:1,rend:1,renddet:DIV.qs.sn,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:200,oid:87c6c537-a662-11ed-861e-22cb420d8191,v:19.8.390,sp:1,st:0,fwm:0,wr:1280.898,sr:1280.1024,ov:0
IP 54.72.146.148:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /mon?anId=926323&campId=970x250&pubId=4757634386&chanId=21675193036&placementId=5107533076&pubCreative=138274735376&pubOrder=2565229334&cb=1567016881&adsafe_par&impId=&custom=1&adsafe_url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&adsafe_type=abdq&adsafe_url=https%3A%2F%2Fwww.sunset.com%2F&adsafe_type=f&adsafe_jsinfo=,id:d68e1059-aa6e-e9da-7dc6-454fc4c4a926,c:3tEGT7,sl:inView,em:true,fr:true,thd:1,mn:jsserver-primary-846cfdc89d-fn6mc,rg:ie,pt:1-5-15,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:183,mot:0,app:0,maw:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,pl:,rmeas:1,rend:1,renddet:DIV.qs.sn,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:200,oid:87c6c537-a662-11ed-861e-22cb420d8191,v:19.8.390,sp:1,st:0,fwm:0,wr:1280.898,sr:1280.1024,ov:0 HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:23 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: app15.ie.303net.net
X-Firefox-Spdy: h2
match.deepintent.com/usersync/143
169.197.150.7200 OK 0 B URL HTTP/2 match.deepintent.com/usersync/143
IP 169.197.150.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync/143 HTTP/1.1
Host: match.deepintent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Mon, 06 Feb 2023 21:09:23 GMT
server: c
X-Firefox-Spdy: h2
pm.w55c.net/ping_match.gif?scc=1&ei=RUBICON&rurl=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4210%26nid%3D1523%26put%3D_wfivefivec_%26expires%3D30
52.58.82.235204 0 B URL HTTP/1.1 pm.w55c.net/ping_match.gif?scc=1&ei=RUBICON&rurl=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4210%26nid%3D1523%26put%3D_wfivefivec_%26expires%3D30
IP 52.58.82.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ping_match.gif?scc=1&ei=RUBICON&rurl=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4210%26nid%3D1523%26put%3D_wfivefivec_%26expires%3D30 HTTP/1.1
Host: pm.w55c.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204
Cache-Control: no-cache, must-revalidate
Date: Mon, 06 Feb 2023 21:09:22 GMT
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Pragma: no-cache
Server: PingMatch/d601d38#rel-ec2-master i-0faa10e3a614d791a@eu-central-1a@dxedge-app-eu-central-1-prod-asg
Strict-Transport-Security: max-age=2592000; includeSubDomains
Connection: keep-alive
mv.outbrain.com/Multivac/api/get?url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&settings=true&recs=true&widgetJSId=AR_27&key=NANOWDGT01&version=2010149&apv=false&sig=QSD85s2C&format=html&rand=17796&osLang=en-US&seid=null&va=true&et=true&cmpStat=0&ccpaStat=0&scrW=1280&scrH=1024&t=OTFkZDgxYzEzNTVlMmUwY2M5NWZiZDEwOGZlMDUyMWU=&winW=1268&winH=898&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=11741-82208&layeredTestInfo=11741-82208-&dpr=1&cw=191&activeTab=true&ogn=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&obRecsAbtestVars=1174:3820&chs=1
151.101.86.132200 OK 27 kB URL HTTP/2 mv.outbrain.com/Multivac/api/get?url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&settings=true&recs=true&widgetJSId=AR_27&key=NANOWDGT01&version=2010149&apv=false&sig=QSD85s2C&format=html&rand=17796&osLang=en-US&seid=null&va=true&et=true&cmpStat=0&ccpaStat=0&scrW=1280&scrH=1024&t=OTFkZDgxYzEzNTVlMmUwY2M5NWZiZDEwOGZlMDUyMWU=&winW=1268&winH=898&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=11741-82208&layeredTestInfo=11741-82208-&dpr=1&cw=191&activeTab=true&ogn=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&obRecsAbtestVars=1174:3820&chs=1
IP 151.101.86.132:0
File type Unicode text, UTF-8 text, with very long lines (65521), with no line terminators
Hash 216d21d8a774a3a3530c5a4e6c77fb4f
2c9a2ad691e2507d75ec2ac4245337e182cef12c
4514c6a3a009776a08b595249c6d1129055fc071569757b15c83df8d2c4ad509
GET /Multivac/api/get?url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&settings=true&recs=true&widgetJSId=AR_27&key=NANOWDGT01&version=2010149&apv=false&sig=QSD85s2C&format=html&rand=17796&osLang=en-US&seid=null&va=true&et=true&cmpStat=0&ccpaStat=0&scrW=1280&scrH=1024&t=OTFkZDgxYzEzNTVlMmUwY2M5NWZiZDEwOGZlMDUyMWU=&winW=1268&winH=898&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=11741-82208&layeredTestInfo=11741-82208-&dpr=1&cw=191&activeTab=true&ogn=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&obRecsAbtestVars=1174:3820&chs=1 HTTP/1.1
Host: mv.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-traceid: 6fad0975a5708c972bc86a0105df50a0
content-encoding: gzip
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Mon, 06 Feb 2023 21:09:23 GMT
x-served-by: cache-lga21937-LGA, cache-bma1636-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675717763.989052,VS0,VE732
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, BMA, Europe1
content-length: 27374
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2010149/module/reel.js?e=1
2.18.173.74200 OK 8.7 kB URL HTTP/2 widgets.outbrain.com/nanoWidget/2010149/module/reel.js?e=1
IP 2.18.173.74:0
File type ASCII text, with very long lines (1610)
Hash 2ea59b43a591b9b88b29adef6f552127
ab28eb1c1d2914851cd3525d2c0cf05e633f7238
f990026d11f6d46f601d326f238917d9599adac3a50ed6f9173a1894f5a8614a
GET /nanoWidget/2010149/module/reel.js?e=1 HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "f3919a725465d2dc143e28f3c045feea:1675696978.362395"
last-modified: Mon, 06 Feb 2023 14:44:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Mon, 13 Feb 2023 21:09:23 GMT
date: Mon, 06 Feb 2023 21:09:23 GMT
content-length: 8695
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
b1sync.zemanta.com/usersync/rubicon/
64.74.236.191302 Found 109 B URL HTTP/1.1 b1sync.zemanta.com/usersync/rubicon/
IP 64.74.236.191:0
File type HTML document, ASCII text
Hash da91b0bebbbc88996f7fbc89fb2e26ed
b5d4536ac72b8ae1b84f19e04b8fc89b03b9af7d
23465be5cbf42ea06d10032446b2950d4e0993c70f5a7e7af666480d5ce65800
GET /usersync/rubicon/ HTTP/1.1
Host: b1sync.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 109
Cache-Control: no-cache, no-store, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Location: https://pixel.rubiconproject.com/tap.php?v=144598&nid=3992&expires=30&put=
Pragma: no-cache
Date: Mon, 06 Feb 2023 21:09:23 GMT
rock.defybrick.com/placement_invocation?id=65349&idx=0
143.204.55.85200 OK 18 kB URL HTTP/2 rock.defybrick.com/placement_invocation?id=65349&idx=0
IP 143.204.55.85:0
File type ASCII text, with very long lines (49039), with no line terminators
Hash 449a423abeac702cfd7368c5a1ba9822
06ebb32e04680d68e383016ff6b6eb6e326a0a61
4a2f633ca7a84b09da778fcb97cb91163af9ca231efdb0cda7875398c472b040
GET /placement_invocation?id=65349&idx=0 HTTP/1.1
Host: rock.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 18460
content-encoding: gzip
etag: "bf8f-sbLSqLgrhMmD0M6HbtAQ/QtX6WE"
server: Caddy
cache-control: max-age=43200
date: Mon, 06 Feb 2023 19:15:02 GMT
expires: Tue, 07 Feb 2023 07:15:02 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: alKeFn7yFSorjBxoImYIzQoA7Y8jEG-HjBR9jeJ6yXWAhu7AYkkp2g==
age: 6861
X-Firefox-Spdy: h2
images.outbrainimg.com/transform/v3/eyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4
23.38.201.176200 OK 289 kB URL HTTP/2 images.outbrainimg.com/transform/v3/eyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4
IP 23.38.201.176:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 289 kB (288992 bytes)
Hash 41f777fc63273f3e688fc4dd0cba7b38
c9148a68706fa638fa416307b300386d517e8203
d6dfc1b9e8e901ccea3ab76c9d9bf2f0fee0bd2c87fc25e48903a11152c80fa8
GET /transform/v3/eyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4 HTTP/1.1
Host: images.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: video/mp4
content-length: 288992
last-modified: Fri, 11 Nov 2022 22:30:59 GMT
x-traceid: 3468f6ac0e3e7b028843993ea83e7723
cache-control: max-age=2204239
date: Mon, 06 Feb 2023 21:09:23 GMT
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
timing-allow-origin: *, *
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2010149/module/clip.js?e=1
2.18.173.74200 OK 709 B URL HTTP/2 widgets.outbrain.com/nanoWidget/2010149/module/clip.js?e=1
IP 2.18.173.74:0
File type ASCII text, with very long lines (518)
Hash 90341d3748767cd2acea48be6256dddd
7b5778b49a4ea646a92a5eb164d904a1fa4ae9ab
a7c26f57152e0f0112ca7933e5e35e0151f13e740b22870ac33c1040026a13d8
GET /nanoWidget/2010149/module/clip.js?e=1 HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "8f4ffc52d3b74646cc5cedd9f94f523f:1675696960.930791"
last-modified: Mon, 06 Feb 2023 14:44:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Mon, 13 Feb 2023 21:09:23 GMT
date: Mon, 06 Feb 2023 21:09:23 GMT
content-length: 709
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/widgetMonitor/monitor.html?name=obm-ClipError&env=1&message=Error%20loading%20as%20video%3A%20https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&stack=undefined&ver=2010149&errorEleUrl=https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&sId=2618776&dId=779428711&pId=1379
2.18.173.74200 OK 1.6 kB URL HTTP/2 widgets.outbrain.com/widgetMonitor/monitor.html?name=obm-ClipError&env=1&message=Error%20loading%20as%20video%3A%20https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&stack=undefined&ver=2010149&errorEleUrl=https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&sId=2618776&dId=779428711&pId=1379
IP 2.18.173.74:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3599), with no line terminators
Hash 272b28d051411ad1166530ade5d7a836
42b6a8411abea1519ba86aa1077a508d7c03f2d2
5f2e4281a1d67ac435cf8e18cfd45f08bcba2a069dc0714013dbc419eaefc248
GET /widgetMonitor/monitor.html?name=obm-ClipError&env=1&message=Error%20loading%20as%20video%3A%20https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&stack=undefined&ver=2010149&errorEleUrl=https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&sId=2618776&dId=779428711&pId=1379 HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "9e7d58ad34c85761770fc947d9bee792:1617096471.391057"
last-modified: Tue, 30 Mar 2021 09:27:46 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Mon, 13 Feb 2023 21:09:23 GMT
date: Mon, 06 Feb 2023 21:09:23 GMT
content-length: 1602
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
mcdp-nydc1.outbrain.com/l?token=a13e959960e0bc08704394d4d6bd9498_1379_1675717763156&tm=2175&eT=0&widgetWidth=805&widgetHeight=538&widgetX=23&widgetY=5747&wRV=2010149&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6373&cs=5&to=1675717804049&chs=1&ab=0&wl=0
70.42.32.191200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=a13e959960e0bc08704394d4d6bd9498_1379_1675717763156&tm=2175&eT=0&widgetWidth=805&widgetHeight=538&widgetX=23&widgetY=5747&wRV=2010149&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6373&cs=5&to=1675717804049&chs=1&ab=0&wl=0
IP 70.42.32.191:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=a13e959960e0bc08704394d4d6bd9498_1379_1675717763156&tm=2175&eT=0&widgetWidth=805&widgetHeight=538&widgetX=23&widgetY=5747&wRV=2010149&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6373&cs=5&to=1675717804049&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 21:09:23 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: ee60e4e6b6a0eff5fcf409e90860ebee
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 69a39baca83fda54b8676308005206bf
9ad3b8982c67d4e3fcb04a721ad0cebb8afa3417
eaabc521fcf28b9722c95d0528d56c581ae3b23a675c3681d917428970a77f5c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 06 Feb 2023 21:09:23 GMT
Last-Modified: Mon, 06 Feb 2023 20:45:14 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Xw1po2aX0EjUy9ficq70V2Kgpg2ua9SzQdhn4znN1KjpC9_eJuNqpQ==
Age: 1449
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 69a39baca83fda54b8676308005206bf
9ad3b8982c67d4e3fcb04a721ad0cebb8afa3417
eaabc521fcf28b9722c95d0528d56c581ae3b23a675c3681d917428970a77f5c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 06 Feb 2023 21:09:23 GMT
Last-Modified: Mon, 06 Feb 2023 20:45:02 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: d9Txa3bDzJtBXPsPWO3HHbW611L5qpNEEkCMMJniIOOLZt2hJGpuew==
Age: 1461
mcdp-nydc1.outbrain.com/l?token=1846a3136f312fbeaaa6867c6aee9fcf_1379_1675717763395&tm=2200&eT=0&widgetWidth=805&widgetHeight=340&widgetX=23&widgetY=6615&wRV=2010149&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6399&cs=5&to=1675717804049&chs=1&ab=0&wl=0
70.42.32.191200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=1846a3136f312fbeaaa6867c6aee9fcf_1379_1675717763395&tm=2200&eT=0&widgetWidth=805&widgetHeight=340&widgetX=23&widgetY=6615&wRV=2010149&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6399&cs=5&to=1675717804049&chs=1&ab=0&wl=0
IP 70.42.32.191:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=1846a3136f312fbeaaa6867c6aee9fcf_1379_1675717763395&tm=2200&eT=0&widgetWidth=805&widgetHeight=340&widgetX=23&widgetY=6615&wRV=2010149&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6399&cs=5&to=1675717804049&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 21:09:24 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: ffa458b3c8db0dec366377bcd7ad4116
dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEGTB,pingTime:0,time:229,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:230,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B45~100%5D,as:%5B45~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201%7D&br=g
3.220.181.231200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEGTB,pingTime:0,time:229,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:230,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B45~100%5D,as:%5B45~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201%7D&br=g
IP 3.220.181.231:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEGTB,pingTime:0,time:229,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:230,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B45~100%5D,as:%5B45~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:24 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt06.va.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEGTa,pingTime:-8,time:202,type:l,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:202,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B17~100%5D,as:%5B17~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201%7D&br=g
3.220.181.231200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEGTa,pingTime:-8,time:202,type:l,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:202,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B17~100%5D,as:%5B17~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201%7D&br=g
IP 3.220.181.231:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEGTa,pingTime:-8,time:202,type:l,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:202,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B17~100%5D,as:%5B17~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:24 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt05.va.303net.net
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=144598&nid=3992&expires=30&put=
69.173.144.139204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=144598&nid=3992&expires=30&put=
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=144598&nid=3992&expires=30&put= HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 4cdacfaa68e4ab216fffbcc107c5b898
Content-Type: image/gif
dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEGVM,pingTime:-2,time:364,type:a,im:%7Bsf:0,pom:0,prf:%7BbeA:322,beZ:323,mfA:505,cmA:507,inA:507,inZ:510,prA:510,prZ:515,si:522,poA:527,poZ:537,cmZ:537,mfZ:537,loA:569,loZ:579,ltA:686,ltZ:686,mdA:323,mdZ:411%7D%7D,sca:%7Bdfp:%7Bdf:4,sz:970.254,dom:body%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:364,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B179~100%5D,as:%5B179~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,slid:%5Bgoogle_ads_iframe_/114235265/sun/travel/northwest/article_1,google_ads_iframe_/114235265/sun/travel/northwest/article_1__container__,ad-101x1_970x90_970x66_970x250_728x90_ATF%5D,sinceFw:159,readyFired:true%7D&br=g
3.220.181.231200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEGVM,pingTime:-2,time:364,type:a,im:%7Bsf:0,pom:0,prf:%7BbeA:322,beZ:323,mfA:505,cmA:507,inA:507,inZ:510,prA:510,prZ:515,si:522,poA:527,poZ:537,cmZ:537,mfZ:537,loA:569,loZ:579,ltA:686,ltZ:686,mdA:323,mdZ:411%7D%7D,sca:%7Bdfp:%7Bdf:4,sz:970.254,dom:body%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:364,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B179~100%5D,as:%5B179~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,slid:%5Bgoogle_ads_iframe_/114235265/sun/travel/northwest/article_1,google_ads_iframe_/114235265/sun/travel/northwest/article_1__container__,ad-101x1_970x90_970x66_970x250_728x90_ATF%5D,sinceFw:159,readyFired:true%7D&br=g
IP 3.220.181.231:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEGVM,pingTime:-2,time:364,type:a,im:%7Bsf:0,pom:0,prf:%7BbeA:322,beZ:323,mfA:505,cmA:507,inA:507,inZ:510,prA:510,prZ:515,si:522,poA:527,poZ:537,cmZ:537,mfZ:537,loA:569,loZ:579,ltA:686,ltZ:686,mdA:323,mdZ:411%7D%7D,sca:%7Bdfp:%7Bdf:4,sz:970.254,dom:body%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:364,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B179~100%5D,as:%5B179~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,slid:%5Bgoogle_ads_iframe_/114235265/sun/travel/northwest/article_1,google_ads_iframe_/114235265/sun/travel/northwest/article_1__container__,ad-101x1_970x90_970x66_970x250_728x90_ATF%5D,sinceFw:159,readyFired:true%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:24 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt27.va.303net.net
X-Firefox-Spdy: h2
mcdp-nydc1.outbrain.com/l?token=4936cd869f59b28645a10b1c2c3d0d9b_1379_1675717763656&tm=2205&eT=0&widgetWidth=805&widgetHeight=340&widgetX=23&widgetY=7272&wRV=2010149&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6404&cs=5&to=1675717804049&chs=1&ab=0&wl=0
70.42.32.191200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=4936cd869f59b28645a10b1c2c3d0d9b_1379_1675717763656&tm=2205&eT=0&widgetWidth=805&widgetHeight=340&widgetX=23&widgetY=7272&wRV=2010149&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6404&cs=5&to=1675717804049&chs=1&ab=0&wl=0
IP 70.42.32.191:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=4936cd869f59b28645a10b1c2c3d0d9b_1379_1675717763656&tm=2205&eT=0&widgetWidth=805&widgetHeight=340&widgetX=23&widgetY=7272&wRV=2010149&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6404&cs=5&to=1675717804049&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 21:09:24 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: 2b73a038084e22e8872963a96da04c8d
mcdp-nydc1.outbrain.com/l?token=dd313648dda287479d78d38e429892b1_1379_1675717763295&tm=2197&eT=0&widgetWidth=805&widgetHeight=270&widgetX=23&widgetY=6321&wRV=2010149&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6396&cs=5&to=1675717804049&chs=1&ab=0&wl=0
70.42.32.191200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=dd313648dda287479d78d38e429892b1_1379_1675717763295&tm=2197&eT=0&widgetWidth=805&widgetHeight=270&widgetX=23&widgetY=6321&wRV=2010149&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6396&cs=5&to=1675717804049&chs=1&ab=0&wl=0
IP 70.42.32.191:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=dd313648dda287479d78d38e429892b1_1379_1675717763295&tm=2197&eT=0&widgetWidth=805&widgetHeight=270&widgetX=23&widgetY=6321&wRV=2010149&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&rtt=801&oo=true&lo=4048&odbreq=4525&odbres=5461&mvreq=5551&mvres=6353&re=6396&cs=5&to=1675717804049&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 21:09:24 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: cd38f29fd9bac9fd2043a4fe11cde393
static.adsafeprotected.com/main.19.8.390.js
54.230.111.5200 OK 64 kB URL HTTP/2 static.adsafeprotected.com/main.19.8.390.js
IP 54.230.111.5:0
Hash 76da663e2f5abf98c9e48e57ec997988
fbc3f5576fc03661bc2cc5839068c753959c75c0
4015ad1eba348f46aa25ac42ad7e72e04d6829fe33287d393cd9da1fb4f09075
GET /main.19.8.390.js HTTP/1.1
Host: static.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 Feb 2023 15:20:59 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 02 Feb 2023 18:40:44 GMT
etag: W/"022987f281b11cf4cfb9b7bfe65a2517"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: 92LQopFh_7IbkJnbrvXbYa5ocG_FxdQW
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: x9TYDW-q8orsaiOlCvccHZZdXYK9GNU8AbPbAIKvVJIHJZ51apUsrA==
age: 280104
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEH2K,pingTime:-10,time:796,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675717810821%7C%7Cad71a07b6bdb80f1a6147b0e6216ce7d%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7Cbafcb2651851b07961504e4db5e0b93c%7C%7Cceeedb8df37456b2b5edc13eaf3ca0bb%7C%7Cec19d3316dbba6802c00d1747968bf49%7C%7C14f82db44f4d4a8c620180ae9552a387%7C%7C49cfdd8a603867606bffcfd28e0bd006%7C%7C1663701684%7D
3.220.181.231200 OK 6.5 kB URL HTTP/2 dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEH2K,pingTime:-10,time:796,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675717810821%7C%7Cad71a07b6bdb80f1a6147b0e6216ce7d%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7Cbafcb2651851b07961504e4db5e0b93c%7C%7Cceeedb8df37456b2b5edc13eaf3ca0bb%7C%7Cec19d3316dbba6802c00d1747968bf49%7C%7C14f82db44f4d4a8c620180ae9552a387%7C%7C49cfdd8a603867606bffcfd28e0bd006%7C%7C1663701684%7D
IP 3.220.181.231:0
Hash 9753993864b775b1c0e2cd6fa7511e5a
c4fbc9c08dbc7faa75313ef9bc2e022a1d18ab8c
1acf8f3abc3cd01a11d37b75c894fbbdc0e7893e4ad097957a6e6e33dd1e6ad7
GET /dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEH2K,pingTime:-10,time:796,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675717810821%7C%7Cad71a07b6bdb80f1a6147b0e6216ce7d%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7Cbafcb2651851b07961504e4db5e0b93c%7C%7Cceeedb8df37456b2b5edc13eaf3ca0bb%7C%7Cec19d3316dbba6802c00d1747968bf49%7C%7C14f82db44f4d4a8c620180ae9552a387%7C%7C49cfdd8a603867606bffcfd28e0bd006%7C%7C1663701684%7D HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:24 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt15.va.303net.net
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssyGyynLbT1tnrzKuDaeuvyt3eoq8aLdH3EqVk0r8C0kkvSCTjpoqanW5WGUSY-EjgIiOkt0ZMSQVwIalJ2-6Bk9g_nLE6lcvWQF3bGV6XeZC4DPZaRdprN92hOUBNMH7r63QFeIQ&sai=AMfl-YSIWlYegJOjFvsbwye798H-4aNHnVE5gRoP2HhhdEEXpWNVxG0KV_l8N0uVaEqlzaOYZYfOVYx6Lv4c&sig=Cg0ArKJSzLxH94oGXycxEAE&cid=CAQSGwDUE5ymo-AUOznzd0V6wcZBVVp_EGgNLxKAEBgBIAo&id=lidar2&mcvt=1001&p=0,0,250,970&mtos=1001,1001,1001,1001,1001&tos=1001,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=447567822&rs=5&la=1&cr=0&vs=4&r=v&rst=1675717809473&rpt=568&met=mue&wmsd=0&pbe=0&vae=0&spb=0
142.250.74.162200 OK 692 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssyGyynLbT1tnrzKuDaeuvyt3eoq8aLdH3EqVk0r8C0kkvSCTjpoqanW5WGUSY-EjgIiOkt0ZMSQVwIalJ2-6Bk9g_nLE6lcvWQF3bGV6XeZC4DPZaRdprN92hOUBNMH7r63QFeIQ&sai=AMfl-YSIWlYegJOjFvsbwye798H-4aNHnVE5gRoP2HhhdEEXpWNVxG0KV_l8N0uVaEqlzaOYZYfOVYx6Lv4c&sig=Cg0ArKJSzLxH94oGXycxEAE&cid=CAQSGwDUE5ymo-AUOznzd0V6wcZBVVp_EGgNLxKAEBgBIAo&id=lidar2&mcvt=1001&p=0,0,250,970&mtos=1001,1001,1001,1001,1001&tos=1001,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=447567822&rs=5&la=1&cr=0&vs=4&r=v&rst=1675717809473&rpt=568&met=mue&wmsd=0&pbe=0&vae=0&spb=0
IP 142.250.74.162:0
Hash a614344a11c2dd56e8f2a3189d924c90
fd1ea3c6f3d474145755dc082d478a08fb1b0a03
02fd27784fc1059c39608a87dfc711bc1d39453076bd9e5772aa81c9458740e0
GET /pcs/activeview?xai=AKAOjssyGyynLbT1tnrzKuDaeuvyt3eoq8aLdH3EqVk0r8C0kkvSCTjpoqanW5WGUSY-EjgIiOkt0ZMSQVwIalJ2-6Bk9g_nLE6lcvWQF3bGV6XeZC4DPZaRdprN92hOUBNMH7r63QFeIQ&sai=AMfl-YSIWlYegJOjFvsbwye798H-4aNHnVE5gRoP2HhhdEEXpWNVxG0KV_l8N0uVaEqlzaOYZYfOVYx6Lv4c&sig=Cg0ArKJSzLxH94oGXycxEAE&cid=CAQSGwDUE5ymo-AUOznzd0V6wcZBVVp_EGgNLxKAEBgBIAo&id=lidar2&mcvt=1001&p=0,0,250,970&mtos=1001,1001,1001,1001,1001&tos=1001,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=4&adk=447567822&rs=5&la=1&cr=0&vs=4&r=v&rst=1675717809473&rpt=568&met=mue&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 06 Feb 2023 21:09:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
flint.defybrick.com/show_pla?id=65349&url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=54215127855017028515258821080982018877209162189651100879612167075770&nc=0&tsf=0&tsfmi=&pv=0&cb=1675717810745&ref=&pit=1&hl=1&op=0&fs=1280x898&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDk0MDVdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0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&tsfu=&fst=1280x898&dep=0&cpos=%5B%7B%22x%22%3A20%2C%22y%22%3A5699%2C%22w%22%3A810%2C%22h%22%3A1979%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A898%7D%5D&ver=41&cri=ckkcPlfb4n&sdd=%7B%7D&pto=6699
34.199.234.25200 OK 1.3 kB URL HTTP/2 flint.defybrick.com/show_pla?id=65349&url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=54215127855017028515258821080982018877209162189651100879612167075770&nc=0&tsf=0&tsfmi=&pv=0&cb=1675717810745&ref=&pit=1&hl=1&op=0&fs=1280x898&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDk0MDVdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0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&tsfu=&fst=1280x898&dep=0&cpos=%5B%7B%22x%22%3A20%2C%22y%22%3A5699%2C%22w%22%3A810%2C%22h%22%3A1979%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A898%7D%5D&ver=41&cri=ckkcPlfb4n&sdd=%7B%7D&pto=6699
IP 34.199.234.25:0
File type ASCII text, with very long lines (2189), with no line terminators
Hash 35d8e45331bc94318ab4d3ffafaf0e0d
64146be2cee47ff8dcbaf8f549e815b07c9b3721
80cf24b7c7d56b2aa7d2b2e0590046ebadcf36e2c1afaddebf7a1a51a334d391
GET /show_pla?id=65349&url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=54215127855017028515258821080982018877209162189651100879612167075770&nc=0&tsf=0&tsfmi=&pv=0&cb=1675717810745&ref=&pit=1&hl=1&op=0&fs=1280x898&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDk0MDVdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0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&tsfu=&fst=1280x898&dep=0&cpos=%5B%7B%22x%22%3A20%2C%22y%22%3A5699%2C%22w%22%3A810%2C%22h%22%3A1979%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A898%7D%5D&ver=41&cri=ckkcPlfb4n&sdd=%7B%7D&pto=6699 HTTP/1.1
Host: flint.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Mon, 06 Feb 2023 21:09:24 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 1327
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstvV84Ydu1J9t4EO1cEtjfXAXV0Kf6zFYEhEoq00rQnwygJ2JW28FPar3CarGz60jo_JLh8M2fPA_3n4sviDYijJCYYneYy8aa-c9sWXpPRbgdnbLmL&sig=Cg0ArKJSzEiak8XgNjtoEAE&id=lidar2&mcvt=1001&p=51,149,305,1119&mtos=0,1001,1001,1001,1001&tos=0,1001,0,0,0&v=20230201&bin=7&avms=nio&bs=1268,886&mc=0.98&vu=1&app=0&itpl=19&adk=387739164&rs=4&la=1&cr=0&vs=4&r=v&rst=1675717809388&rpt=808&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
142.250.74.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstvV84Ydu1J9t4EO1cEtjfXAXV0Kf6zFYEhEoq00rQnwygJ2JW28FPar3CarGz60jo_JLh8M2fPA_3n4sviDYijJCYYneYy8aa-c9sWXpPRbgdnbLmL&sig=Cg0ArKJSzEiak8XgNjtoEAE&id=lidar2&mcvt=1001&p=51,149,305,1119&mtos=0,1001,1001,1001,1001&tos=0,1001,0,0,0&v=20230201&bin=7&avms=nio&bs=1268,886&mc=0.98&vu=1&app=0&itpl=19&adk=387739164&rs=4&la=1&cr=0&vs=4&r=v&rst=1675717809388&rpt=808&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
IP 142.250.74.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjstvV84Ydu1J9t4EO1cEtjfXAXV0Kf6zFYEhEoq00rQnwygJ2JW28FPar3CarGz60jo_JLh8M2fPA_3n4sviDYijJCYYneYy8aa-c9sWXpPRbgdnbLmL&sig=Cg0ArKJSzEiak8XgNjtoEAE&id=lidar2&mcvt=1001&p=51,149,305,1119&mtos=0,1001,1001,1001,1001&tos=0,1001,0,0,0&v=20230201&bin=7&avms=nio&bs=1268,886&mc=0.98&vu=1&app=0&itpl=19&adk=387739164&rs=4&la=1&cr=0&vs=4&r=v&rst=1675717809388&rpt=808&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 06 Feb 2023 21:09:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
widgetmonitor.outbrain.com/WidgetErrorMonitor/api/report?name=obm-ClipError&version=2010149&message=Error%20loading%20as%20video%3A%20https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&env=1&url=https%3A%2F%2Fwww.sunset.com%2F&referrer=&agent=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&stack=undefined&errorEleUrl=https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&pId=1379&sId=2618776&dId=779428711
70.42.32.191200 OK 2 B URL HTTP/1.1 widgetmonitor.outbrain.com/WidgetErrorMonitor/api/report?name=obm-ClipError&version=2010149&message=Error%20loading%20as%20video%3A%20https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&env=1&url=https%3A%2F%2Fwww.sunset.com%2F&referrer=&agent=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&stack=undefined&errorEleUrl=https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&pId=1379&sId=2618776&dId=779428711
IP 70.42.32.191:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /WidgetErrorMonitor/api/report?name=obm-ClipError&version=2010149&message=Error%20loading%20as%20video%3A%20https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&env=1&url=https%3A%2F%2Fwww.sunset.com%2F&referrer=&agent=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&stack=undefined&errorEleUrl=https%3A%2F%2Fimages.outbrainimg.com%2Ftransform%2Fv3%2FeyJpdSI6IjM5NjQ4NGEzZTk2OGE4ODE5NzU5ODU5YTk5MTUyZWQ1YmFjNWM4MzljOTYyM2UwNDNhZDJjYTFjZGYzMTFjZTkiLCJ3Ijo0NTAsImgiOjMwMCwiZCI6MS41LCJjcyI6MiwiZiI6NX0.mp4&pId=1379&sId=2618776&dId=779428711 HTTP/1.1
Host: widgetmonitor.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://widgets.outbrain.com
Connection: keep-alive
Referer: https://widgets.outbrain.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 21:09:24 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 2
Connection: close
Access-Control-Allow-Origin: *
X-TraceId: abe59cb6cf3dbe60dd72e487ff64cc56
ETag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
flint.defybrick.com/tracker/imp.gif?e=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&cb=1675717811212&cri=ckkcPlfb4n
34.199.234.25200 OK 43 B URL HTTP/2 flint.defybrick.com/tracker/imp.gif?e=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&cb=1675717811212&cri=ckkcPlfb4n
IP 34.199.234.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/imp.gif?e=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&cb=1675717811212&cri=ckkcPlfb4n HTTP/1.1
Host: flint.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Mon, 06 Feb 2023 21:09:24 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHaB,pingTime:1,time:1283,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1284,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1099~100%5D,as:%5B1099~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:205,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,sis:373,metricId:publ1,cmr:t%7D&br=g
3.220.181.231200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHaB,pingTime:1,time:1283,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1284,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1099~100%5D,as:%5B1099~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:205,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,sis:373,metricId:publ1,cmr:t%7D&br=g
IP 3.220.181.231:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHaB,pingTime:1,time:1283,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1284,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1099~100%5D,as:%5B1099~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:205,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,sis:373,metricId:publ1,cmr:t%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:24 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt13.va.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHaD,pingTime:1,time:1285,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1285,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1101~100%5D,as:%5B1101~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:205,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,sis:373,metricId:grpm1,cmr:t%7D&br=g
3.220.181.231200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHaD,pingTime:1,time:1285,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1285,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1101~100%5D,as:%5B1101~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:205,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,sis:373,metricId:grpm1,cmr:t%7D&br=g
IP 3.220.181.231:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHaD,pingTime:1,time:1285,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1285,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1101~100%5D,as:%5B1101~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:205,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,sis:373,metricId:grpm1,cmr:t%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:24 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt14.va.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHay,pingTime:1,time:1280,type:p,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1280,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1095~100%5D,as:%5B1095~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:205,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,sis:373%7D&br=g
3.220.181.231200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHay,pingTime:1,time:1280,type:p,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1280,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1095~100%5D,as:%5B1095~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:205,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,sis:373%7D&br=g
IP 3.220.181.231:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHay,pingTime:1,time:1280,type:p,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1280,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1095~100%5D,as:%5B1095~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:205,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:201,sis:373%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:24 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt28.va.303net.net
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3db72d4c771e205dc57f43ec543554bd
e5ea4c3af20436b10a43f63f81d03c26ffceb27d
a750e2323757b501f9a7b4682539b37f1d1971f2d2079f174ec7338cbb84c8c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A750E2323757B501F9A7B4682539B37F1D1971F2D2079F174EC7338CBB84C8C6"
Last-Modified: Sat, 04 Feb 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7693
Expires: Mon, 06 Feb 2023 23:17:37 GMT
Date: Mon, 06 Feb 2023 21:09:24 GMT
Connection: keep-alive
api.sail-personalize.com/v1/personalize/simple?pageviews=2&isMobile=0&visitorId=5a1704f2-bc30-4076-8e01-f415b216b451&content=12b4a7e5a1cb9d3fff6cf3e43185e3c5
99.83.154.140200 OK 18 B URL HTTP/2 api.sail-personalize.com/v1/personalize/simple?pageviews=2&isMobile=0&visitorId=5a1704f2-bc30-4076-8e01-f415b216b451&content=12b4a7e5a1cb9d3fff6cf3e43185e3c5
IP 99.83.154.140:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /v1/personalize/simple?pageviews=2&isMobile=0&visitorId=5a1704f2-bc30-4076-8e01-f415b216b451&content=12b4a7e5a1cb9d3fff6cf3e43185e3c5 HTTP/1.1
Host: api.sail-personalize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,x-lib-version,x-referring-url
Referer: https://www.sunset.com/
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:24 GMT
content-type: text/plain
content-length: 18
access-control-allow-origin: https://www.sunset.com
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: OPTIONS,GET,POST,PUT,DELETE
access-control-allow-headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Lib-Version,X-Referring-URL
allow: HEAD,GET,OPTIONS
X-Firefox-Spdy: h2
s.ntv.io/serve/load.js
2.18.173.52200 OK 158 kB IP 2.18.173.52:0
File type ASCII text, with very long lines (65474)
Size 158 kB (157817 bytes)
Hash 2ba7536e23a8ef3020f2e494f42895e9
9cac8099150cc7a26fece09e55a868ab332ce567
f291ecf1dd1121c6d064c0af8186a0bcd398de57660044a7895ac3a9e63abd4c
GET /serve/load.js HTTP/1.1
Host: s.ntv.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: n865rdGYyLFbDFdG1qpDqhB2hBy9sphj88yHTAG2SuYz9egiTSv1eY+3S1Nwn0UDJsP9vFL28s8=
x-amz-request-id: A5R7SPP5N1JB7QFH
Last-Modified: Tue, 31 Jan 2023 21:38:16 GMT
ETag: "7326e35e7d49316877005fe34d4bbd4a"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 06 Feb 2023 21:09:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Cache-Control: public, max-age=3600
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3db72d4c771e205dc57f43ec543554bd
e5ea4c3af20436b10a43f63f81d03c26ffceb27d
a750e2323757b501f9a7b4682539b37f1d1971f2d2079f174ec7338cbb84c8c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A750E2323757B501F9A7B4682539B37F1D1971F2D2079F174EC7338CBB84C8C6"
Last-Modified: Sat, 04 Feb 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7692
Expires: Mon, 06 Feb 2023 23:17:37 GMT
Date: Mon, 06 Feb 2023 21:09:25 GMT
Connection: keep-alive
api.sail-personalize.com/v1/personalize/simple?pageviews=2&isMobile=0&visitorId=5a1704f2-bc30-4076-8e01-f415b216b451&content=12b4a7e5a1cb9d3fff6cf3e43185e3c5
99.83.154.140200 OK 197 B URL HTTP/2 api.sail-personalize.com/v1/personalize/simple?pageviews=2&isMobile=0&visitorId=5a1704f2-bc30-4076-8e01-f415b216b451&content=12b4a7e5a1cb9d3fff6cf3e43185e3c5
IP 99.83.154.140:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a6026d934b360b2663726a1949887139
225fde6274c661ba4d1d7e08e234372ebe27f71f
4db9e0f031fcfea058862487d0af2084b3591187334069d3af8e08cca11e70f0
GET /v1/personalize/simple?pageviews=2&isMobile=0&visitorId=5a1704f2-bc30-4076-8e01-f415b216b451&content=12b4a7e5a1cb9d3fff6cf3e43185e3c5 HTTP/1.1
Host: api.sail-personalize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
authorization: Bearer 3e0f6e358630cf6358423017a548dba8
content-type: application/json
x-lib-version: v1.0.1
x-referring-url: https://www.sunset.com/travel/northwest/top-9-dude-ranch-escapes
Origin: https://www.sunset.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:24 GMT
content-type: application/json
content-length: 197
access-control-allow-origin: *
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-store
expires: -1
allowedheaders: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin
allowedorigins: *
allowedmethods: GET,OPTIONS
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023013101&st=env
142.250.74.162200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023013101&st=env
IP 142.250.74.162:0
File type JSON data\012- , ASCII text, with very long lines (14934), with no line terminators
Hash d920528d10abeea6b56323599433f401
849cbe87834067f7a95d79c4c2154653c8c07126
2036f9026cf2637249fcf0331b24ba59c18df73505cb7318661d17ef612b2a07
GET /getconfig/sodar?sv=200&tid=gpt&tv=2023013101&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Mon, 06 Feb 2023 21:09:25 GMT
server: cafe
content-length: 11274
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.adsafeprotected.com/skeleton.js
54.230.111.5200 OK 17 B URL HTTP/2 static.adsafeprotected.com/skeleton.js
IP 54.230.111.5:0
File type ASCII text, with no line terminators
Hash 53fab767ecbd3bf07990b10246befbd4
49044085bb137d175d261b5fb9617c6f0f302c49
bdeed1e1c0751610c8f3dc2a5c78c93f841c366b36a7f7a54f5e6752c2656c05
GET /skeleton.js HTTP/1.1
Host: static.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 17
x-amz-replication-status: COMPLETED
last-modified: Mon, 17 Aug 2020 23:54:35 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: nylqTweorRThFHMBJSrf_fHcWx3KVKN3
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 02:31:16 GMT
cache-control: max-age=315360000
etag: "53fab767ecbd3bf07990b10246befbd4"
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nS2KTt2sn0H_3OaHo36IoH3mxSrB-xVLlphbSQ88svpsZMjIBgZTsw==
age: 8104683
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 6b7c91f95728f6549976db1cd49abd5f
70f3ed55ce0a116f2010ee6e809779d636b44705
5501229f5493d40e9e722f96841d6678737af053dc8d45e7b72aac0f1ce18547
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1429
Cache-Control: max-age=164382
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:25 GMT
Etag: "63e1460e-138"
Expires: Wed, 08 Feb 2023 18:49:07 GMT
Last-Modified: Mon, 06 Feb 2023 18:25:18 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 312
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A1C38F8E2CEE4C9B82FABF99FABAE53D Ref B: OSL30EDGE0320 Ref C: 2023-02-06T21:09:25Z
date: Mon, 06 Feb 2023 21:09:24 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25011251&tm=gtm002&Ver=2&mid=a1189f5e-d36b-415d-bf5e-dcd6a39371bb&sid=a4a51810a66211edbaab2b81ab0e0e5c&vid=a4a55810a66211ed9bfa9f8204879f2c&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Top%209%20Dude%20Ranch%20Escapes&kw=northwest,%20travel&p=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&r=<=7375&evt=pageLoad&sv=1&rn=283219
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25011251&tm=gtm002&Ver=2&mid=a1189f5e-d36b-415d-bf5e-dcd6a39371bb&sid=a4a51810a66211edbaab2b81ab0e0e5c&vid=a4a55810a66211ed9bfa9f8204879f2c&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Top%209%20Dude%20Ranch%20Escapes&kw=northwest,%20travel&p=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&r=<=7375&evt=pageLoad&sv=1&rn=283219
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25011251&tm=gtm002&Ver=2&mid=a1189f5e-d36b-415d-bf5e-dcd6a39371bb&sid=a4a51810a66211edbaab2b81ab0e0e5c&vid=a4a55810a66211ed9bfa9f8204879f2c&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Top%209%20Dude%20Ranch%20Escapes&kw=northwest,%20travel&p=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&r=<=7375&evt=pageLoad&sv=1&rn=283219 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2485FA5E4CC566C10CFBE8EE4D92673B; domain=.bing.com; expires=Sat, 02-Mar-2024 21:09:25 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 94B1A85E9D7F4772B23C7B409889AAB1 Ref B: OSL30EDGE0320 Ref C: 2023-02-06T21:09:25Z
date: Mon, 06 Feb 2023 21:09:24 GMT
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1035248069/?random=1675717811433&cv=11&fst=1675717200000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&label=C9lJCIGAoAEQxcPS7QM&frm=0&url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&tiba=Top%209%20Dude%20Ranch%20Escapes&fmt=3&is_vtc=1&random=4292782124&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1035248069/?random=1675717811433&cv=11&fst=1675717200000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&label=C9lJCIGAoAEQxcPS7QM&frm=0&url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&tiba=Top%209%20Dude%20Ranch%20Escapes&fmt=3&is_vtc=1&random=4292782124&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1035248069/?random=1675717811433&cv=11&fst=1675717200000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&label=C9lJCIGAoAEQxcPS7QM&frm=0&url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&tiba=Top%209%20Dude%20Ranch%20Escapes&fmt=3&is_vtc=1&random=4292782124&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 21:09:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bat.bing.com/p/action/25011251.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25011251.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25011251.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 5A440ED2A8F34750ACCFAC3012FC4384 Ref B: OSL30EDGE0320 Ref C: 2023-02-06T21:09:25Z
date: Mon, 06 Feb 2023 21:09:24 GMT
X-Firefox-Spdy: h2
warmquiver.com/v2/0/zurGVb8Ui0mJQjf_Zy-GW2bYK3QaPH_Vh9vOmLUrqYZwvqcmgGXspcVkvsay60tvdUS
34.111.134.78200 OK 51 kB URL HTTP/2 warmquiver.com/v2/0/zurGVb8Ui0mJQjf_Zy-GW2bYK3QaPH_Vh9vOmLUrqYZwvqcmgGXspcVkvsay60tvdUS
IP 34.111.134.78:0
File type ASCII text, with very long lines (61924), with no line terminators
Hash 7efce3f98007c688991bfab4725babec
28a813bf82ed663f1d7d2b4ebbfc735cd2ae50bd
949b1618afed5fae87682544ed0cee33acc48c94fb0d8daecd099143becec1d3
GET /v2/0/zurGVb8Ui0mJQjf_Zy-GW2bYK3QaPH_Vh9vOmLUrqYZwvqcmgGXspcVkvsay60tvdUS HTTP/1.1
Host: warmquiver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private, must-revalidate, max-age=21600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "461ef5f4bf5f2b39b190c523457dee702d4427ce69a4ebad7dca94b1a092b937"
strict-transport-security: max-age=15724800; preload
timing-allow-origin: *
vary: Accept-Encoding, Accept-Language
x-buildname: hoothoot
x-buildnumber: 757822166
x-datacenter: gce-europe-west1
x-hostname: fen-hoothoot-europe-west1-test-s3rt
date: Mon, 06 Feb 2023 21:09:24 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 1be7a655f1b35901daf79211f06eeeee
17615064102aa533bfac2a6885d376ddcd7db063
13d425eb8f3d6063c204a75d782babe49046349a2ad61a1a07e155c27dee8381
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 06 Feb 2023 21:09:25 GMT
Last-Modified: Mon, 06 Feb 2023 20:03:47 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tSBDDF9LM2hmJVwdWVKaemkmi6Kbl757FZZ3yzEbxDhNliL0aGSl9g==
Age: 3938
jadserve.postrelease.com/t?ntv_url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes
34.251.191.149200 OK 844 B URL HTTP/2 jadserve.postrelease.com/t?ntv_url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes
IP 34.251.191.149:0
File type ASCII text, with very long lines (1693), with no line terminators
Hash 72c59a4cf4fbac9392685cb85ee685f8
02b3bfd1606a881118ac9ea74045c3c1b99ea900
aa5c0ae3262d4bd72a90e16d5d340ef70edc43343ab6f77b4244b4a022c8da1e
GET /t?ntv_url=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes HTTP/1.1
Host: jadserve.postrelease.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:25 GMT
content-type: text/javascript;charset=UTF-8
content-length: 844
server: nginx/1.12.2
expires: Mon, 1 Jan 1990 12:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
set-cookie: opt_out=1; Domain=.postrelease.com; Expires=Tue, 06-Feb-2024 21:09:25 GMT; Path=/; Secure; SameSite=None;
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=publishertag&topUrl=www.sunset.com
178.250.0.157200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?origin=publishertag&topUrl=www.sunset.com
IP 178.250.0.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 2cf12a61c5f3f23abe6f26d2181f908c
7cc44e27a14d87f3a8180a7b3a99f6fbc52f99c8
f0b7a85374c53a3a5e3dc9074aa1587df2e43cbd4835cb777f23ae7492cf2041
GET /syncframe?origin=publishertag&topUrl=www.sunset.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:25 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=ce885404-e330-481d-ba44-9d91ee3f4c08; expires=Sat, 02 Mar 2024 21:09:24 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 1426798
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2bf6a7486f16ee5cc402bd3d2dac509a
8c48186db87fc9f41db6740c88dc9555e677b324
db3b20589afcd8efd3e38701278355032e60f847acc36b2bab754716798b3c89
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB3B20589AFCD8EFD3E38701278355032E60F847ACC36B2BAB754716798B3C89"
Last-Modified: Sun, 05 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11957
Expires: Tue, 07 Feb 2023 00:28:42 GMT
Date: Mon, 06 Feb 2023 21:09:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 05aa05f22704cbc8b64c815899a13c94
632b64f54509fc72c4729f97c8e73bad306020db
949f9947acaf797fd2b3c6fd770c2d317c661cf9838fc7ddb9704741ed7b9332
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5478
Cache-Control: max-age=151098
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:25 GMT
Etag: "63e10259-139"
Expires: Wed, 08 Feb 2023 15:07:43 GMT
Last-Modified: Mon, 06 Feb 2023 13:36:25 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c549d2a9adf23fe0810b4ae5023a1774
ba99f2abf602dc08da1ce3573b99247bc310286d
2e0b0fa347a85ab56d9034611e600278e309ac1d92de8f1fe67c2afc042a5b56
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2E0B0FA347A85AB56D9034611E600278E309AC1D92DE8F1FE67C2AFC042A5B56"
Last-Modified: Sun, 05 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 07 Feb 2023 03:09:25 GMT
Date: Mon, 06 Feb 2023 21:09:25 GMT
Connection: keep-alive
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
147.75.85.234302 Found 0 B URL HTTP/2 prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Mon, 06 Feb 2023 21:09:24 GMT
location: https://ads.servenobid.com/sync?pid=327&uid=68fab8da-859b-41b3-aebd-44dea4d4f56d&gdpr=0&gdpr_consent=&us_privacy=
server: envoy
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:25 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=QjRHFl80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3pDSlZpbzhJaUxvUTlTdjJKdWM3eVJZTDRlblZNMjUyTGZSV09Xc295enc; expires=Sat, 02 Mar 2024 21:09:25 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 152466
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
suggestionbridge.com/v2uttv0K55S2H5wvq34p6YpxyGNvkWIIzq6v47-v4DBMogWRO6LifLCtBkgqYOqwkF5STjl89
34.149.234.220200 OK 206 B URL HTTP/2 suggestionbridge.com/v2uttv0K55S2H5wvq34p6YpxyGNvkWIIzq6v47-v4DBMogWRO6LifLCtBkgqYOqwkF5STjl89
IP 34.149.234.220:0
File type JSON data\012- , ASCII text
Hash 6f1df5715b04cf20cd1972baa700ba5d
946656530a8f5abd799098b5325fe064cb7cfdcb
dfed191dda2e05ea46e465d07dbd30d47433ce8ec5e1a147b79fd6c580e20031
POST /v2uttv0K55S2H5wvq34p6YpxyGNvkWIIzq6v47-v4DBMogWRO6LifLCtBkgqYOqwkF5STjl89 HTTP/1.1
Host: suggestionbridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.sunset.com
Content-Length: 331
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Cookie
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: https://www.sunset.com
cache-control: no-cache, no-store, must-revalidate
content-type: application/json; charset=utf-8
expires: Mon, 06 Feb 2023 21:09:24 GMT
strict-transport-security: max-age=15724800; preload
timing-allow-origin: *
vary: Accept-Encoding, Origin
x-buildname: hoothoot
x-buildnumber: 757822166
x-datacenter: gce-europe-west1
x-hostname: fen-hoothoot-europe-west1-test-s3rt
date: Mon, 06 Feb 2023 21:09:25 GMT
content-length: 206
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=327&uid=68fab8da-859b-41b3-aebd-44dea4d4f56d&gdpr=0&gdpr_consent=&us_privacy=
99.81.245.193200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=327&uid=68fab8da-859b-41b3-aebd-44dea4d4f56d&gdpr=0&gdpr_consent=&us_privacy=
IP 99.81.245.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=327&uid=68fab8da-859b-41b3-aebd-44dea4d4f56d&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:25 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_327=68fab8da-859b-41b3-aebd-44dea4d4f56d; domain=servenobid.com; SameSite=None; Expires=Mon, 13 Feb 2023 21:09:25 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 56 kB IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with very long lines (549)
Hash b0993d72a8ca200420ad866a959e1ad3
d8062cfbd03c2135abc0baa46e4ad2b87dfc57a0
f51e8c75631a405d8c8c49c77fd8bcb131716f72c96d75bcf3601dcaa6ba0667
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=QjRHFl80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3pDSlZpbzhJaUxvUTlTdjJKdWM3eVJZTDRlblZNMjUyTGZSV09Xc295enc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:25 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=kHRII180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3pDSlZpbzhJaUxvUTlTdjJKdWM3eVFpRHdNaWxnSnFPd0VXaVRmUUdPZ1k; expires=Sat, 02 Mar 2024 21:09:25 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 357824
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
jadserve.postrelease.com/trk.gif?ntv_at=394&ntv_usid=7934162&ntv_pl=1092899
34.251.191.149200 OK 43 B URL HTTP/2 jadserve.postrelease.com/trk.gif?ntv_at=394&ntv_usid=7934162&ntv_pl=1092899
IP 34.251.191.149:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /trk.gif?ntv_at=394&ntv_usid=7934162&ntv_pl=1092899 HTTP/1.1
Host: jadserve.postrelease.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:25 GMT
content-type: image/gif
content-length: 43
server: nginx/1.12.2
expires: Mon, 1 Jan 1990 12:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-origin: *
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
set-cookie: opt_out=1; Domain=.postrelease.com; Expires=Tue, 06-Feb-2024 21:09:25 GMT; Path=/; Secure; SameSite=None;
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c549d2a9adf23fe0810b4ae5023a1774
ba99f2abf602dc08da1ce3573b99247bc310286d
2e0b0fa347a85ab56d9034611e600278e309ac1d92de8f1fe67c2afc042a5b56
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2E0B0FA347A85AB56D9034611E600278E309AC1D92DE8F1FE67C2AFC042A5B56"
Last-Modified: Sun, 05 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 07 Feb 2023 03:09:25 GMT
Date: Mon, 06 Feb 2023 21:09:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 92b631f7b55d843abd5dc7d324fce950
b3b95b87af1a860eaa2838893a4dae9437d2a1d8
8e86b9dd457844961a5e97c418053d33e41622d1bc9c8ffaef3bd5760b23f652
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5421
Cache-Control: max-age=117967
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:25 GMT
Etag: "63e08127-138"
Expires: Wed, 08 Feb 2023 05:55:32 GMT
Last-Modified: Mon, 06 Feb 2023 04:25:11 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 92b631f7b55d843abd5dc7d324fce950
b3b95b87af1a860eaa2838893a4dae9437d2a1d8
8e86b9dd457844961a5e97c418053d33e41622d1bc9c8ffaef3bd5760b23f652
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5421
Cache-Control: max-age=117967
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:25 GMT
Etag: "63e08127-138"
Expires: Wed, 08 Feb 2023 05:55:32 GMT
Last-Modified: Mon, 06 Feb 2023 04:25:11 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 312
ap.lijit.com/pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&location=http%3A%2F%2Flocalhost%3A8282%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D
216.52.2.48204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&location=http%3A%2F%2Flocalhost%3A8282%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D
IP 216.52.2.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&location=http%3A%2F%2Flocalhost%3A8282%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Mon, 06 Feb 2023 21:09:25 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap5ams1
suggestionbridge.com/v2dkk5fD-FGFkCk69J75nh33Idq8NYvq3H2gdAsBDsIQQG2zqNVd5VKlDDokOx-ej7Ix_1KFI
34.149.234.220200 OK 1.3 kB URL HTTP/2 suggestionbridge.com/v2dkk5fD-FGFkCk69J75nh33Idq8NYvq3H2gdAsBDsIQQG2zqNVd5VKlDDokOx-ej7Ix_1KFI
IP 34.149.234.220:0
File type JSON data\012- , ASCII text, with very long lines (1264)
Hash 22f2995398f32479acc57a1b4a8ee07d
cab3e6f88ee6c4e3ccbc4e46fdfd66e998b580bf
0b6481e1ae87b1a40ff8f1ffa63b928b6c7d1d7b8f144d52c7bdfe6615dbb1a0
POST /v2dkk5fD-FGFkCk69J75nh33Idq8NYvq3H2gdAsBDsIQQG2zqNVd5VKlDDokOx-ej7Ix_1KFI HTTP/1.1
Host: suggestionbridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.sunset.com
Content-Length: 210
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Cookie
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: https://www.sunset.com
content-type: application/json; charset=utf-8
strict-transport-security: max-age=15724800; preload
timing-allow-origin: *
vary: Accept-Encoding, Origin
x-buildname: hoothoot
x-buildnumber: 757822166
x-datacenter: gce-europe-west1
x-hostname: fen-hoothoot-europe-west1-test-s3rt
date: Mon, 06 Feb 2023 21:09:25 GMT
content-length: 1265
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 42a0bd8919ea05b0f344ed1eda7e8572
770dc507181b58116ba5c72a988ed47a2f42adb7
51cc9a349e3092d68a48cc630b6b322788c5b5b3747ba6ba4d863910c6c7ee9b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2840
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 21:09:25 GMT
Last-Modified: Mon, 06 Feb 2023 20:22:05 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26cbimg%3D10141%26uid%3D%24UID
37.252.171.149307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26cbimg%3D10141%26uid%3D%24UID
IP 37.252.171.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26cbimg%3D10141%26uid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Mon, 06 Feb 2023 21:09:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526cbimg%253D10141%2526uid%253D%2524UID
AN-X-Request-Uuid: 76548d24-337c-4668-9a2f-9c2834affeff
Set-Cookie: uuid2=4815628872919785040; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 07-May-2023 21:09:25 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
37.252.171.149307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
IP 37.252.171.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Mon, 06 Feb 2023 21:09:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
AN-X-Request-Uuid: 209d66d6-6533-457b-a932-da2d10daeb1f
Set-Cookie: uuid2=1844293451117886308; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 07-May-2023 21:09:25 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
image8.pubmatic.com/AdServer/ImgSync?p=162412&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D162412%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D316%2526uid%253D%2523PMUID
185.64.190.79302 Found 268 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=162412&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D162412%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D316%2526uid%253D%2523PMUID
IP 185.64.190.79:0
File type HTML document, ASCII text
Hash 89582764592196f603fe9209358c516b
45553fc8a0637177932a7a935f50df94f114e514
beb920f8736cc87d2dd3f1fdc2c8c6315132d5ba019be36cf59e91c7573ba756
GET /AdServer/ImgSync?p=162412&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D162412%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D316%2526uid%253D%2523PMUID HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
location: /AdServer/ImgSync?p=162412&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D162412%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D316%2526uid%253D%2523PMUID&rdf=1
set-cookie: KTPCACOOKIE=YES; domain=pubmatic.com; path=/; max-age=86400; secure;
date: Mon, 06 Feb 2023 21:09:23 GMT
content-length: 268
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
37.252.171.149302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
IP 37.252.171.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Mon, 06 Feb 2023 21:09:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ads.servenobid.com/sync?pid=312&uid=0
AN-X-Request-Uuid: 9152fd33-b7a6-463a-a278-964a02bb94a1
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
image8.pubmatic.com/AdServer/ImgSync?p=162412&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D162412%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D316%2526uid%253D%2523PMUID&rdf=1
185.64.190.79200 OK 0 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=162412&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D162412%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D316%2526uid%253D%2523PMUID&rdf=1
IP 185.64.190.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AdServer/ImgSync?p=162412&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D162412%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D316%2526uid%253D%2523PMUID&rdf=1 HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:25 GMT
content-length: 0
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526cbimg%253D10141%2526uid%253D%2524UID
37.252.171.149302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526cbimg%253D10141%2526uid%253D%2524UID
IP 37.252.171.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526cbimg%253D10141%2526uid%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Mon, 06 Feb 2023 21:09:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ads.servenobid.com/sync?pid=312&cbimg=10141&uid=0
AN-X-Request-Uuid: 1da6f685-b81d-4d77-b289-10360a4b2cdd
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ads.servenobid.com/sync?pid=312&uid=0
99.81.245.193200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=312&uid=0
IP 99.81.245.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=312&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Connection: keep-alive
Cookie: pid_327=68fab8da-859b-41b3-aebd-44dea4d4f56d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:25 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_312=0; domain=servenobid.com; SameSite=None; Expires=Mon, 13 Feb 2023 21:09:25 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=312&cbimg=10141&uid=0
99.81.245.193200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=312&cbimg=10141&uid=0
IP 99.81.245.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=312&cbimg=10141&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Connection: keep-alive
Cookie: pid_327=68fab8da-859b-41b3-aebd-44dea4d4f56d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:25 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_312=0; domain=servenobid.com; SameSite=None; Expires=Mon, 13 Feb 2023 21:09:25 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
s-jsonp.moatads.com/ocr/NATIVOINVCONTENT1/level3/13796?t=202316212
23.38.201.146200 OK 0 B URL HTTP/1.1 s-jsonp.moatads.com/ocr/NATIVOINVCONTENT1/level3/13796?t=202316212
IP 23.38.201.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ocr/NATIVOINVCONTENT1/level3/13796?t=202316212 HTTP/1.1
Host: s-jsonp.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: K9e6sL21GYaRAKrJofu96DG3br+2HAMSo4GAZfSnI0ZD3zrHKaIptVf4cNgq4CQ9KrKhvUiRrwg=
x-amz-request-id: PVZZF6RM1WD87PE2
Last-Modified: Tue, 18 Nov 2014 20:18:12 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 0
Server: AmazonS3
Cache-Control: max-age=3039
Date: Mon, 06 Feb 2023 21:09:26 GMT
Connection: keep-alive
dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHC7,pingTime:-1,time:2989,type:u,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,ndt:7,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:2989,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B2804~100%5D,as:%5B2804~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:113,metricIdList:%5Bpubl1,grpm1%5D,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,lt:3,siq:201,sis:373%7D&br=g
3.220.181.231200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHC7,pingTime:-1,time:2989,type:u,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,ndt:7,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:2989,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B2804~100%5D,as:%5B2804~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:113,metricIdList:%5Bpubl1,grpm1%5D,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,lt:3,siq:201,sis:373%7D&br=g
IP 3.220.181.231:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=926323&asId=d68e1059-aa6e-e9da-7dc6-454fc4c4a926&tv=%7Bc:3tEHC7,pingTime:-1,time:2989,type:u,clog:%5B%7Bpiv:100,vs:i,r:,w:970,h:250,t:199%7D%5D,ndt:7,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:2989,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:199,wc:0.0.1280.898,ac:149.51.970.250,am:i,cc:149.51.970.250,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B2804~100%5D,as:%5B2804~970.250%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:113,metricIdList:%5Bpubl1,grpm1%5D,fm:tv7v9Pk+11%7C12%7C13%7C14*.926323%7C1411%7C1412%7C142%7C143,idMap:14*,rmeas:1,rend:1,renddet:DIV.qs.sn,lt:3,siq:201,sis:373%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:26 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt20.va.303net.net
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2023013101.js
142.250.74.130200 OK 0 B URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2023013101.js
IP 142.250.74.130:0
GET /gpt/pubads_impl_2023013101.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 132970
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 11:49:44 GMT
expires: Wed, 31 Jan 2024 11:49:44 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 31 Jan 2023 09:37:24 GMT
content-type: text/javascript
age: 551977
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pixel.adsafeprotected.com/jload?anId=926323&campId=970x250&pubId=4757634386&chanId=21675193036&placementId=5107533076&pubCreative=138274735376&pubOrder=2565229334&cb=1567016881&adsafe_par&impId=&custom=1
54.72.146.148200 OK 0 B URL HTTP/2 pixel.adsafeprotected.com/jload?anId=926323&campId=970x250&pubId=4757634386&chanId=21675193036&placementId=5107533076&pubCreative=138274735376&pubOrder=2565229334&cb=1567016881&adsafe_par&impId=&custom=1
IP 54.72.146.148:0
GET /jload?anId=926323&campId=970x250&pubId=4757634386&chanId=21675193036&placementId=5107533076&pubCreative=138274735376&pubOrder=2565229334&cb=1567016881&adsafe_par&impId=&custom=1 HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:23 GMT
content-type: application/javascript;charset=utf-8
pragma: no-cache
cache-control: no-cache
expires: Wed, 31 Dec 1969 23:59:59 GMT
access-control-allow-origin: pixel.adsafeprotected.com
access-control-allow-credentials: true
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
static.adsafeprotected.com/sca.17.6.2.js
54.230.111.5200 OK 0 B URL HTTP/2 static.adsafeprotected.com/sca.17.6.2.js
IP 54.230.111.5:0
GET /sca.17.6.2.js HTTP/1.1
Host: static.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 21 Sep 2022 15:36:17 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 19:21:34 GMT
etag: W/"1f3488247c90bb5de253d3d0cb3b7458"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: go8nfBUviNCPCwnrYX1LpMW5hEx3ASGy
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FWrrEUv3o7WbTcjmtmKcV9Zpbnc69QBx88aEPiT9ClnDNyRcit9sTw==
age: 11943187
X-Firefox-Spdy: h2
ak.sail-horizon.com/spm/spm.v1.min.js?ver=5.8.6
143.204.55.93200 OK 0 B URL HTTP/2 ak.sail-horizon.com/spm/spm.v1.min.js?ver=5.8.6
IP 143.204.55.93:0
GET /spm/spm.v1.min.js?ver=5.8.6 HTTP/1.1
Host: ak.sail-horizon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 16:08:40 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 06 Feb 2023 21:00:40 GMT
cache-control: max-age=600; must-revalidate
etag: W/"be0aea74754407f0a826a84e140dd5ea"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: s2PZhWNLYtJA18059TB53qvDbQ5d9S8gj4RlrY8eLKnC0kUt14nZCw==
age: 520
X-Firefox-Spdy: h2
ads.servenobid.com/adreq?cb=10348
99.81.245.193200 OK 0 B URL HTTP/2 ads.servenobid.com/adreq?cb=10348
IP 99.81.245.193:0
POST /adreq?cb=10348 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 340
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:22 GMT
content-type: application/json
access-control-allow-origin: https://www.sunset.com
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=DM+Serif+Display:ital@0;1&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=DM+Serif+Display:ital@0;1&display=swap
IP 142.250.74.74:0
GET /css2?family=DM+Serif+Display:ital@0;1&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 06 Feb 2023 21:09:20 GMT
date: Mon, 06 Feb 2023 21:09:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17856&site_id=182732&zone_id=892704&size_id=2&alt_size_ids=55%2C57&rf=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&tk_flint=pbjs_lite_v3.8.0-pre&x_source.tid=484edbb0-7df1-45c4-816e-459710c900c8&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&slots=1&rand=0.1379116446414037
213.19.162.41200 OK 0 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17856&site_id=182732&zone_id=892704&size_id=2&alt_size_ids=55%2C57&rf=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&tk_flint=pbjs_lite_v3.8.0-pre&x_source.tid=484edbb0-7df1-45c4-816e-459710c900c8&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&slots=1&rand=0.1379116446414037
IP 213.19.162.41:0
GET /a/api/fastlane.json?account_id=17856&site_id=182732&zone_id=892704&size_id=2&alt_size_ids=55%2C57&rf=https%3A%2F%2Fwww.sunset.com%2Ftravel%2Fnorthwest%2Ftop-9-dude-ranch-escapes&tk_flint=pbjs_lite_v3.8.0-pre&x_source.tid=484edbb0-7df1-45c4-816e-459710c900c8&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&slots=1&rand=0.1379116446414037 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Mon, 06 Feb 2023 21:09:22 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.sunset.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDTB38E2-25-5159; Domain=.rubiconproject.com; Path=/; Expires=Tue, 06-Feb-2024 21:09:22 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qopO3BMyrhaR+9DtVM30fCgtEPhnawWgWZcpdkFKR4LVdusRLU/Ili5cpj76PKZXj/hk5WIOeCMzBIyXufpvxXp; Domain=.rubiconproject.com; Path=/; Expires=Tue, 06-Feb-2024 21:09:22 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-encoding: gzip
X-Firefox-Spdy: h2
unpkg.com/web-vitals@3.1.1/dist/web-vitals.iife.js
104.16.124.175200 OK 0 B URL HTTP/2 unpkg.com/web-vitals@3.1.1/dist/web-vitals.iife.js
IP 104.16.124.175:0
GET /web-vitals@3.1.1/dist/web-vitals.iife.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sunset.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:24 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1b24-GqgswdM7opiZOqFSwUlHVut+Xpk"
via: 1.1 fly.io
fly-request-id: 01GPEV7JRQP4WDYKQQ42QPREJ3-ams
cf-cache-status: HIT
age: 2329680
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7956ddde8e010b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.prebid.js
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.js
IP 178.250.2.130:0
GET /js/ld/publishertag.prebid.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sunset.com
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 21:09:25 GMT
content-type: text/javascript
last-modified: Wed, 18 Jan 2023 01:20:50 GMT
etag: W/"63c74972-162fb"
expires: Tue, 07 Feb 2023 21:09:25 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=DM+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=DM+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap
IP 142.250.74.74:0
GET /css2?family=DM+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 06 Feb 2023 21:09:20 GMT
date: Mon, 06 Feb 2023 21:09:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.24200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.24:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:25 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 87583
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ak.sail-horizon.com/spm/spm.v1.min.js
143.204.55.93200 OK 0 B URL HTTP/2 ak.sail-horizon.com/spm/spm.v1.min.js
IP 143.204.55.93:0
GET /spm/spm.v1.min.js HTTP/1.1
Host: ak.sail-horizon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 16:08:40 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 06 Feb 2023 21:00:40 GMT
cache-control: max-age=600; must-revalidate
etag: W/"be0aea74754407f0a826a84e140dd5ea"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VbHG2K8LxX6I-vhYFTeeOORVI072YZudRBRX4Bi9qu3RAymi-G6FyQ==
age: 521
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2467257.js?sv=7
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2467257.js?sv=7
IP 54.230.111.113:0
GET /c/hotjar-2467257.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 06 Feb 2023 21:09:21 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/51f342f860f9f89ddfc1414776f88945
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zNodsa_lBFH9idRbB4ZZXUh6VQp3E0Dz5AqVH_asthUsg124Gl3lgQ==
X-Firefox-Spdy: h2
unpkg.com/web-vitals/dist/web-vitals.iife.js
104.16.124.175302 Found 0 B URL HTTP/2 unpkg.com/web-vitals/dist/web-vitals.iife.js
IP 104.16.124.175:0
GET /web-vitals/dist/web-vitals.iife.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sunset.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 06 Feb 2023 21:09:24 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /web-vitals@3.1.1/dist/web-vitals.iife.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRM8DK3ZY4X8GFCH0JDC7H1F-ams
cf-cache-status: HIT
age: 596
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7956ddde7dee0b65-OSL
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.40200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.40:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 21:09:25 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 58040
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2