stxtsxt-app-m96u4.ondigitalocean.app/d4e4a0fc81436dd4df7f8d594d0e0f4d/?client_id=0000007298-0000-0hzz-xs00-000000000&y=24anVhbi5wdWdhQGVyaWtzbmEuY29t&redirect_uri=https://outlook.office.com/owa/&resource=client_id&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&client-request-id=45f4d5f9-4657-4816-9528-af3f59994174&protectedtoken=true
104.16.244.78301 Moved Permanently 0 B URL HTTP/1.1 stxtsxt-app-m96u4.ondigitalocean.app/d4e4a0fc81436dd4df7f8d594d0e0f4d/?client_id=0000007298-0000-0hzz-xs00-000000000&y=24anVhbi5wdWdhQGVyaWtzbmEuY29t&redirect_uri=https://outlook.office.com/owa/&resource=client_id&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&client-request-id=45f4d5f9-4657-4816-9528-af3f59994174&protectedtoken=true
IP 104.16.244.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /d4e4a0fc81436dd4df7f8d594d0e0f4d/?client_id=0000007298-0000-0hzz-xs00-000000000&y=24anVhbi5wdWdhQGVyaWtzbmEuY29t&redirect_uri=https://outlook.office.com/owa/&resource=client_id&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&client-request-id=45f4d5f9-4657-4816-9528-af3f59994174&protectedtoken=true HTTP/1.1
Host: stxtsxt-app-m96u4.ondigitalocean.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 03:36:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 01 Feb 2023 04:36:32 GMT
Location: https://stxtsxt-app-m96u4.ondigitalocean.app/d4e4a0fc81436dd4df7f8d594d0e0f4d/?client_id=0000007298-0000-0hzz-xs00-000000000&y=24anVhbi5wdWdhQGVyaWtzbmEuY29t&redirect_uri=https://outlook.office.com/owa/&resource=client_id&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&client-request-id=45f4d5f9-4657-4816-9528-af3f59994174&protectedtoken=true
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7927a4b31980b4fd-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15318
Expires: Wed, 01 Feb 2023 07:51:50 GMT
Date: Wed, 01 Feb 2023 03:36:32 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5185
Expires: Wed, 01 Feb 2023 05:02:57 GMT
Date: Wed, 01 Feb 2023 03:36:32 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 03:35:57 GMT
content-type: application/json
age: 35
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10027
Expires: Wed, 01 Feb 2023 06:23:39 GMT
Date: Wed, 01 Feb 2023 03:36:32 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Ci0IXVvqeOe1L12MdEDsHAvBCuBkuzMJ93PAmLthg2FWYw28snMF2jZj4EDh1/NjW9ByOVQeggI=
x-amz-request-id: 95DV2JX4H2YPH4K3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 02:51:24 GMT
age: 2708
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dd86e03b407835daf6e8ae3edf924910
e2f773f6bcb855af398d5f03570f25d0335f3bb0
f46b2c1435a12ce177ba3ec9ecc5af75a1570347412ff0c16ccd58e4c325d3de
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5383
Cache-Control: max-age=166306
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:32 GMT
Etag: "63d9afdb-117"
Expires: Fri, 03 Feb 2023 01:48:18 GMT
Last-Modified: Wed, 01 Feb 2023 00:18:35 GMT
Server: ECS (amb/6B80)
X-Cache: HIT
Content-Length: 279
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 03:36:32 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 02:41:42 GMT
age: 3291
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
retailmenot.com/
104.17.229.45301 Moved Permanently 0 B IP 104.17.229.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 03:36:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 01 Feb 2023 04:36:33 GMT
Location: https://www.retailmenot.com
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7927a4b7ee7fb52d-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14099
Expires: Wed, 01 Feb 2023 07:31:32 GMT
Date: Wed, 01 Feb 2023 03:36:33 GMT
Connection: keep-alive
push.services.mozilla.com/
35.84.241.69101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.84.241.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bkZ9+1VqCWpEYPPH8z1Ptg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sHkEVkLKzO6Y7XP6e1W6gLcLcDs=
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 30d16cb8f4f6754ae92c395312224fe2
3d50763ebd444df98d3e155f5929fa42415c60f6
a83ad872bbbd3192156588958d719dd4c5afc4299333c7a31b314d0d88359bad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:33 GMT
Etag: "63d90e1d-116"
Server: ECS (amb/6B80)
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 30d16cb8f4f6754ae92c395312224fe2
3d50763ebd444df98d3e155f5929fa42415c60f6
a83ad872bbbd3192156588958d719dd4c5afc4299333c7a31b314d0d88359bad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:34 GMT
Etag: "63d90e1d-116"
Last-Modified: Wed, 01 Feb 2023 03:36:33 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 278
use.typekit.net/af/98e3f6/000000000000000077359562/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
23.36.76.186200 OK 34 kB URL HTTP/2 use.typekit.net/af/98e3f6/000000000000000077359562/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 34148, version 1.0\012- data
Hash 9ad738d653d1c23157408bf07c35fbee
f6ea567b2fcc7d7b92e588b979fa0aaf8f01c3bc
af3b3037b84be1ef0f0dfafc75bd30480c05ac2ccda8bee8c9188308a8b81221
GET /af/98e3f6/000000000000000077359562/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 34148
etag: "27cd5d037b3d5bcc152de6c7fe0aa3098a381c24"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 01 Feb 2023 03:36:34 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/d45b9a/000000000000000077359577/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.186200 OK 33 kB URL HTTP/2 use.typekit.net/af/d45b9a/000000000000000077359577/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 33364, version 1.0\012- data
Hash 86b0e13ed3341db429c882647fea7630
91451889aa6041b25e8a55cd5f960fcd3cae56d5
ccaac2a8b85879c92bbd73e67512e8e8ab0e719ad0163193081ea6abb20031cc
GET /af/d45b9a/000000000000000077359577/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 33364
etag: "f806d2fcac6bea1cced8320378bba8659e3a95e8"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 01 Feb 2023 03:36:34 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/0758f3/000000000000000077359583/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
23.36.76.186200 OK 33 kB URL HTTP/2 use.typekit.net/af/0758f3/000000000000000077359583/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 33292, version 1.0\012- data
Hash 3c2f6686752c28403e2c16daec207a4a
928b563b0233adb73a26587e741ef37b9273d430
ab420c3f3810dd894b09365878372b993ddb6b5734e8679f9f1ad508b69e2b10
GET /af/0758f3/000000000000000077359583/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 33292
etag: "ca1c030b2d0c95d3891a4d7f531e150dad96eeac"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 01 Feb 2023 03:36:34 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/199a3f/00000000000000007735955e/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n8&v=3
23.36.76.186200 OK 35 kB URL HTTP/2 use.typekit.net/af/199a3f/00000000000000007735955e/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n8&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 34844, version 1.0\012- data
Hash 19b77e9870c43c3b3a934aebebd92698
15daaa4dff4156d137ec3e7e95daa5e7938a8300
d0772bb22d645ad8010ef8c23d39cccdf18f4479b26edd4493304c2779335917
GET /af/199a3f/00000000000000007735955e/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n8&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 34844
etag: "786e7774aa1708d99310898ced77f03672566ff1"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 01 Feb 2023 03:36:34 GMT
X-Firefox-Spdy: h2
cdn.static.zdbb.net/js/z0WVjCBSEeGLoxIxOQVEwQ.min.js
23.36.79.10200 OK 29 kB URL HTTP/2 cdn.static.zdbb.net/js/z0WVjCBSEeGLoxIxOQVEwQ.min.js
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5b61ea1d49daf3cdaeab62e3f708e3a6
b23d51f8d0823f6607eb8ba78c6bb33e50130230
b07bfcce79b44237242e30eaac21280bca8cccfd50a27492d79390d4d4ad1493
GET /js/z0WVjCBSEeGLoxIxOQVEwQ.min.js HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NOhWm2OLDOcQnVcMDC5OcNt6JRAdbxtRZb4KVJXcn9jU7oQIqEhWzBaPyr6tYzbgeShaEep28Uc=
x-amz-request-id: EYR0927XD8JZ0MNJ
last-modified: Thu, 19 Jan 2023 13:29:22 GMT
x-amz-version-id: 3V0gBnvZzkCj42kmWJ6JnxuL.7jlNMYx
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Thu, 02 Feb 2023 03:36:34 GMT
date: Wed, 01 Feb 2023 03:36:34 GMT
content-length: 29368
X-Firefox-Spdy: h2
cdn.ziffstatic.com/pg/retailmenot.js
23.36.77.235200 OK 16 kB URL HTTP/2 cdn.ziffstatic.com/pg/retailmenot.js
IP 23.36.77.235:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (542)
Hash 93f95edf592b6076e989f3f82ad4ff66
380c177c9e28978f436444ad5b839e7173f0b913
1a195106e99c4cfc46010f1937b45ed5a5c1db504c004d2cc956d0b1e5d1855e
GET /pg/retailmenot.js HTTP/1.1
Host: cdn.ziffstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 18 Nov 2022 17:59:00 GMT
etag: "b1200124311472e534c94a5a401bfa0b"
accept-ranges: bytes
content-type: application/javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=407
expires: Wed, 01 Feb 2023 03:43:21 GMT
date: Wed, 01 Feb 2023 03:36:34 GMT
content-length: 15542
X-Firefox-Spdy: h2
cdn.ziffstatic.com/pg/retailmenot.prebid.js
23.36.77.235200 OK 158 kB URL HTTP/2 cdn.ziffstatic.com/pg/retailmenot.prebid.js
IP 23.36.77.235:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (64977)
Size 158 kB (158193 bytes)
Hash cb25f8b171e256c0a4e437f1b801882a
0a4aeeb145f1ef02513fe6c12aa578c1e85d6141
776fa142a62ccdc889899bc3e68f39e8359066aa5ee9ed5aa9f7c6d41c25ea92
GET /pg/retailmenot.prebid.js HTTP/1.1
Host: cdn.ziffstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 18 Nov 2022 18:21:39 GMT
etag: "8ccb16c052fb3a305bc9d1d8f9c8bcdb"
accept-ranges: bytes
content-type: application/javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=1721
expires: Wed, 01 Feb 2023 04:05:15 GMT
date: Wed, 01 Feb 2023 03:36:34 GMT
content-length: 158193
X-Firefox-Spdy: h2
cdn.ziffstatic.com/pg/retailmenot.css
23.36.77.235200 OK 300 B URL HTTP/2 cdn.ziffstatic.com/pg/retailmenot.css
IP 23.36.77.235:0
ASN #20940 Akamai International B.V.
Hash 3612ec93e038d4f541e4831ee6ced927
e81c1e1247851e11f98b66a9e4b397d8526f6f60
4dbae3e06af3a9ac038ba49b51f233d87a67c1cb62d46978d68011b0e0d60c47
GET /pg/retailmenot.css HTTP/1.1
Host: cdn.ziffstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 14 Oct 2021 18:20:28 GMT
etag: "244cf96b0830280f494275c293066257"
accept-ranges: bytes
content-type: text/css
content-encoding: gzip
unused62: 8096267
content-length: 300
cache-control: public, max-age=3427
expires: Wed, 01 Feb 2023 04:33:41 GMT
date: Wed, 01 Feb 2023 03:36:34 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.239.38.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.38.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 01 Feb 2023 01:45:20 GMT
expires: Wed, 01 Feb 2023 03:45:20 GMT
cache-control: public, max-age=7200
age: 6674
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1015f221babb87a56f4eed457b44258b
efcbb3641eb2ab985c7daaf6527440f33d815e1b
fc789e07db34de269f533a8c55995656fdd1a9c0af75c0def1ab470739b2d1a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4731
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:34 GMT
Last-Modified: Wed, 01 Feb 2023 02:17:43 GMT
Server: ECS (amb/6BB5)
X-Cache: HIT
Content-Length: 278
www.googletagmanager.com/gtag/js?id=G-JGYWM1MN8B
142.250.74.168200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-JGYWM1MN8B
IP 142.250.74.168:0
File type ASCII text, with very long lines (21849)
Hash 776e163460dff9a756faf907269dba00
a9b0f04a964b4956e261aaa2289ef3319ef12fe1
0866e40ec4047edbb84c2bdc49ab2f7ecf70cdc9c08b92d72560a07eefbd613a
GET /gtag/js?id=G-JGYWM1MN8B HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 Feb 2023 03:36:34 GMT
expires: Wed, 01 Feb 2023 03:36:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77728
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/SE7XCUP7WZDZFMRUSU4YKJ2XHI?width=160&height=120
104.17.229.45200 OK 4.3 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/SE7XCUP7WZDZFMRUSU4YKJ2XHI?width=160&height=120
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x150, components 3\012- data
Hash d0ffe88540ac61abe5e85f600a86dccd
c3de212fd9653b9c7fb75a81b2aa1b0874dd82aa
94f912140e84b92b9d81a50bb6027688060198e52d5f9417343d0a9f93e39b93
GET /ws/mediagroup/SE7XCUP7WZDZFMRUSU4YKJ2XHI?width=160&height=120 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 4268
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6BLBNKKj4fpBl9bfnapD8j3xpL7KDehhF2R3el2nQWHvuEVp6TKDEg==
age: 77717
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c068ffb51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/5Y6PFENEOJHXRNABHJXU2EOKY4?width=300&height=150
104.17.229.45200 OK 2.9 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/5Y6PFENEOJHXRNABHJXU2EOKY4?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 49713dfce7641511a22a1fb4955cc0c9
d771021ad170e64a1f344e8355fa02356612585c
623c3471f4718edf080616dc96cea038f47d040ed4d7929be429cfe77b5ae782
GET /ws/mediagroup/5Y6PFENEOJHXRNABHJXU2EOKY4?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 2937
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: niL3Butzoed_KcWuuZxMu6jVnVew95JlByGdLa-95Wvf_JCYZhrnrw==
age: 76814
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06908b51d-OSL
X-Firefox-Spdy: h2
c.evidon.com/pub/icong1.png
23.32.100.208200 OK 623 B URL HTTP/2 c.evidon.com/pub/icong1.png
IP 23.32.100.208:0
File type PNG image data, 14 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash f3da3ffcdd147cc49b203c8ecdaf5edc
da7d1b3c1967bce32b1dd620ebbfef52452adc16
6633d38dcc8914e95a0c71437a45c9ca96adeb7a0d5012d95f6f279f453e762a
GET /pub/icong1.png HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "d08da9f445b63100a56646de99043059:1558455261"
last-modified: Tue, 21 May 2019 16:14:21 GMT
server: AkamaiNetStorage
content-encoding: gzip
cache-control: max-age=864000
date: Wed, 01 Feb 2023 03:36:34 GMT
content-length: 623
vary: Accept-Encoding, Origin
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/AMG2JWDXHVFBFDLC667TJJNJGM?width=300&height=150
104.17.229.45200 OK 5.3 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/AMG2JWDXHVFBFDLC667TJJNJGM?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash f851b1913c1609debea38967575faa4d
f3bcba1931429fa636b65b74c15ae13e7eef45e7
d58eab456bc76cf36a17ad3ec8674e900ab5b11d80da9639e24d6fca46501d69
GET /ws/mediagroup/AMG2JWDXHVFBFDLC667TJJNJGM?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 5275
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1q2pdqFMLddxec-VwpS94Pyc0LgAwiA17Ug-AyOuLaR_f25-T0bsXg==
age: 2037108
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06900b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/4IV3CZ6WUNBSVCK2BDC4AALNJA?width=300&height=150
104.17.229.45200 OK 6.2 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/4IV3CZ6WUNBSVCK2BDC4AALNJA?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 4d99a791292a4f8f90d08e5c14a2709d
5f6a7bd8b7154670897001c1d2bd0961bef1d1e6
55dd10f1a77f5832c54d2a619de868b9c3e79813175b0d94391b7d6b077312ea
GET /ws/mediagroup/4IV3CZ6WUNBSVCK2BDC4AALNJA?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 6156
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -NzWunhaiqDvLsPird-zyITg31QACG889Cm0GJ5XM7shNJ_QKeQqng==
age: 2317326
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06901b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/ZKGK6LH3NFGDZPIUB53NJSUBEY?width=300&height=150
104.17.229.45200 OK 13 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/ZKGK6LH3NFGDZPIUB53NJSUBEY?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 3d3beacb4e2b794d0781917aefc54ff8
d194d9730a0f90ad5d305de5e04773824c4d8ea4
61ff4040d23bc3383d0b789c8d8c82bd5409afec6564b6bda282e7b2dcde4928
GET /ws/mediagroup/ZKGK6LH3NFGDZPIUB53NJSUBEY?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 13370
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EInr1kRoX5qW-UE--bWyh_O1KJ7U7hywmjvd5CBTEKJEKm--pYVXOQ==
age: 2379098
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06909b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/UBBRQNTAU5ANZPJQ4YIRCF7Y6Q?width=300&height=150
104.17.229.45200 OK 15 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/UBBRQNTAU5ANZPJQ4YIRCF7Y6Q?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 300x150, components 3\012- data
Hash 618f4efc5b779c2889b13e839cb1bb2c
2298c45fb4e2b5401f9730546cb98f5b04065e4a
25ffc629eacde7546b3609b9ac95d3c3e0fa6653e40ca5b38da0c87acb14cdac
GET /ws/mediagroup/UBBRQNTAU5ANZPJQ4YIRCF7Y6Q?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 14722
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kHEWXl_KYr5rlPXG_DuCr1SOCRp6bOAtttL2xFNON472QOAyTq3o7A==
age: 1803444
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0690ab51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/BK3Q2MU6D5F7VMR4Z77EABOX2Y?width=300&height=150
104.17.229.45200 OK 6.0 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/BK3Q2MU6D5F7VMR4Z77EABOX2Y?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 1\012- data
Hash 38f77d8130b96cc89e56fa9a8bd30c74
69b7fa5bc0a9da8b0e446140f1012f137f543e21
7e58501a3c5a7e0da4705caba90f2e8a5a110c49cc0f0faeffdda1f83caf8d95
GET /ws/mediagroup/BK3Q2MU6D5F7VMR4Z77EABOX2Y?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 6029
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5d2qR3RNk0kzpXxQgZ3lhbYAj3rU1tpEeKzfC3sC0LdOeneUfHttPw==
age: 1294185
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0690db51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/AMKMAZYIJZBAJHAUPLT4S7LRCA?width=300&height=150
104.17.229.45200 OK 6.7 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/AMKMAZYIJZBAJHAUPLT4S7LRCA?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 718a0ad27dd409d393c9c6af2839527c
2852c22408699b58a9bc1f89a152c03695b360cd
8b4d641136aed7b8bd6734b973e0ee2b9995d1e4255514d2b9af676e4543bd98
GET /ws/mediagroup/AMKMAZYIJZBAJHAUPLT4S7LRCA?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 6663
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KPD_--36dT_vS1t0ZzG7BmcVxAuRUxwaddV88yFxKmRyoC6mWKV9bg==
age: 788087
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0690eb51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/6KTAMB4NBZHNPDZ4CE6U4BMHZ4?width=300&height=150
104.17.229.45200 OK 4.1 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/6KTAMB4NBZHNPDZ4CE6U4BMHZ4?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 1\012- data
Hash fddfc3e40d7d02f402c83e40a5193a78
926021ed8e17f0d275ff20112f68ddf306647f70
b793ce3d4c4c003906691f6d8232d9f0c3e60c5ceb8fa87622371028e00a3fab
GET /ws/mediagroup/6KTAMB4NBZHNPDZ4CE6U4BMHZ4?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 4059
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7rDWw_5VbiiRWkV8KVcEh-gqQvZIqIbLbWzx81q2e0kPh7ZcBc5lqw==
age: 1808433
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06910b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/IK54HVOWB5EXTK44WAH7C4SX5Y?width=300&height=150
104.17.229.45200 OK 11 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/IK54HVOWB5EXTK44WAH7C4SX5Y?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x151, components 3\012- data
Hash f99e7b7bf71f8ff0b34ded9655f80f43
e683522c65758d4a729d918954c5c1583fa2a805
d76ab9ec0c78d3441fa0a5ad7266d801e8be72c9fc53c7ef1917135cec6594a1
GET /ws/mediagroup/IK54HVOWB5EXTK44WAH7C4SX5Y?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 11044
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 21UUEeB2D0zDYdA1Az5pv5kb5RpDwsOZJDbYTIixCvdpZtOcae_xFg==
age: 2059044
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06903b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/G7THO64SNJBEVPYRMWPRYINKDA?width=300&height=150
104.17.229.45200 OK 10 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/G7THO64SNJBEVPYRMWPRYINKDA?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 00e6a904fe04c645bb09fb8566fae62f
83fc1bdcc4722d7028aea04ce6395924858c57da
fcfac3d47f33f7a1ff4339f490eebf479310dc2b33e5f380f26f2251f7e8b608
GET /ws/mediagroup/G7THO64SNJBEVPYRMWPRYINKDA?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 10218
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 13g-kfk-t2ikoJEhp8w8c-GIjgUC4liC6jxymDKFgK9XMHcYzzau7g==
age: 1281319
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0690bb51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/UHS6MXIUTZANJMVMUBU6MLX5HU?width=300&height=150
104.17.229.45200 OK 6.8 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/UHS6MXIUTZANJMVMUBU6MLX5HU?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 113x113, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 65fbdd10c5fe8cc39703336765511808
219ebf96a717b2a128a5d40b72c732fd10c07254
9c231f1357e46c1de07e76421063477a4332b327c107256189994fbfde9d9f5d
GET /ws/mediagroup/UHS6MXIUTZANJMVMUBU6MLX5HU?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 6767
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Kk2jbVtg_FBestd6bTV5hroznrO_iL8KdWD6zr7Opl-npMBeGkj2mg==
age: 1043551
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06912b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/QFJKUV26CNGBBHTM2S7BYZQU3U?width=300&height=150
104.17.229.45200 OK 4.9 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/QFJKUV26CNGBBHTM2S7BYZQU3U?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 300x150, components 1\012- data
Hash a44ca1dfebabe2845e5c2e17b9e818e9
2aa0426a655030b291d4f91435c9e79e43011e46
5bcfaa4c99679cf0f40c00f6570fcef52fafff67e26ad8c9093064a9b6a71db7
GET /ws/mediagroup/QFJKUV26CNGBBHTM2S7BYZQU3U?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 4868
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i_sUVYINCziuVxlKPtA4BjQwJ0-wOclYg3G2j11-4ypaVUMma52ICA==
age: 597252
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06913b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/TX2AJFWWYBAI3B6OIXWFSPO33A?width=300&height=150
104.17.229.45200 OK 5.0 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/TX2AJFWWYBAI3B6OIXWFSPO33A?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash e1bb14424d3d48d638cef374619e7f64
fbba5fafecdf2bc0ce6598c7b454268b0eab8958
d8455b5f4e3da39cf9229a019d668c0eee9f8fafdf1415fcf60c1297ca781f55
GET /ws/mediagroup/TX2AJFWWYBAI3B6OIXWFSPO33A?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 5009
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g_Su4tBOkvT3r5Imo2LUyc5b1nGi_1xZdskVU9EBwf4S0jRIjCEfDQ==
age: 910160
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06914b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/BTHHXRBH2FALVJJX77IGLD6A6M?width=300&height=150
104.17.229.45200 OK 5.9 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/BTHHXRBH2FALVJJX77IGLD6A6M?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 1\012- data
Hash 8cfa51ca4f7ebbcfeb9b8c5aae7b99be
8313388463874463f6242b3edb037bb8655e25da
5f62dabe59e71eb7dc49321685d8fc0c560d7deffcfee639d6095655321b67b0
GET /ws/mediagroup/BTHHXRBH2FALVJJX77IGLD6A6M?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 5942
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: euNmO1s4tWYMhqdgDNGq2-lFayhr1AqrbDKXXL9uORnPGiSlm1R8yA==
age: 1644810
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06915b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/TQNZ5ZBLHRCUTCBP5U3VIKQ2RI?width=300&height=150
104.17.229.45200 OK 3.2 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/TQNZ5ZBLHRCUTCBP5U3VIKQ2RI?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 47b9f6cf0949209347381d8ba8fa565a
05bf839c175a082aaca28f16c94cd37a6975e963
974166476abccbc2e5fb2c1530a282b734d5744d5f46cea57e276cd95ce903fb
GET /ws/mediagroup/TQNZ5ZBLHRCUTCBP5U3VIKQ2RI?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 3247
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J0iTlAVY1SuysBk45ae8S1z4ouA3Hih_fWYxhZKrbZTp_2ME1TGb_Q==
age: 415723
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06916b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/3BHNQYO5VJBE5CVYLI3OGN4VCQ?width=300&height=150
104.17.229.45200 OK 3.8 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/3BHNQYO5VJBE5CVYLI3OGN4VCQ?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 300x150, components 1\012- data
Hash d7954ea3552b155f82f83ef290617e3a
3932c54cc5af0cd7f5cfe7a0a49d5d27a4f218ed
4cd4403abf2919b125952e4e025311bb71a9932addcca2a7b784994a12eef2f6
GET /ws/mediagroup/3BHNQYO5VJBE5CVYLI3OGN4VCQ?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 3827
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rlmDw2W-cnoRjpkzco5BYh6WsFivBG5Il_DCTyMLpODN5GRQfycRgQ==
age: 2075880
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0691ab51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/YZ4AK4T2FVDALJ2OYG5BETG3GA?width=300&height=150
104.17.229.45200 OK 7.6 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/YZ4AK4T2FVDALJ2OYG5BETG3GA?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash e5bc311e82941ca2949ab227fa190a7e
557372ac5a77d85d530dbae63fb11a734e4d26e9
ccc2c6cc3721c11ebeb0687c57a5b0e10dcfc8401f3ad74c06b4be4672f360ea
GET /ws/mediagroup/YZ4AK4T2FVDALJ2OYG5BETG3GA?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 7593
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7JYK3xk9KnHihc9hGxWGIsPk8L8t4B8r3lCOB_I22oW7_tToZ8LdaA==
age: 1892098
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c07922b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/EQRJWXCWG5FGBATNHYUOBJHAOY?width=300&height=150
104.17.229.45200 OK 8.3 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/EQRJWXCWG5FGBATNHYUOBJHAOY?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash eb60d21f6d0daac59b7bf75cdfa40e81
9034129b8c01857ee61cc219eba614db006ed4c8
84164b22ddbcdfc7897f2b2e741f3df27fa40fe757afefd56b80e9847b9f4075
GET /ws/mediagroup/EQRJWXCWG5FGBATNHYUOBJHAOY?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 8292
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e5FFBpPN84ZIvM2ZNoBcbRxi4CRb8l8a9llCjyMBUU3BrJZ8EY6gyw==
age: 1799577
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06911b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/F7H7UVEERNAKBN3E64SDN67LZE?width=300&height=150
104.17.229.45200 OK 7.9 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/F7H7UVEERNAKBN3E64SDN67LZE?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash d74bd4b31322649bc8d8e08844321d31
00096df1a823f48675997256f782d528c3a656e6
3c0378ab59866413e3a7d3c84f424f5dd856cca748f38c87d3b7f20a3c69b1cb
GET /ws/mediagroup/F7H7UVEERNAKBN3E64SDN67LZE?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 7932
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ms6NCds-50J-1Gzz7VF1__OdNUgKLfLHUghCiJOHAC92Wp9ZQD8Xig==
age: 1003297
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c07924b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/6TIJCZKOIBFRLLWY7TEAHRPJIA?width=300&height=150
104.17.229.45200 OK 7.6 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/6TIJCZKOIBFRLLWY7TEAHRPJIA?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 0882b1c8ab967344afec38afe965ee3c
31821c04095806d29760077dd1cd329064b7d506
24bf98066ac78f41ee0e4c3ea7d3a7785967da449aff149cb7bfa031d6d0aac9
GET /ws/mediagroup/6TIJCZKOIBFRLLWY7TEAHRPJIA?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 7554
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k-Vn91ZMBzTou5pOnsr9va_MVVupusPFqiQBq-PQOraDAiDSA67mSQ==
age: 2317598
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c07927b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/GJO7ENVU2RHSHF6B7BSEZIFSPI?width=300&height=150
104.17.229.45200 OK 4.9 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/GJO7ENVU2RHSHF6B7BSEZIFSPI?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 56x56, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 36a168516079fabaacd15f77cb89dab0
a763e7429115196b462640454f765d004c5fb837
c579cdbd29aaf48b17ba206e31e8d577b9f7a19eda8bec1db242f35612a3653a
GET /ws/mediagroup/GJO7ENVU2RHSHF6B7BSEZIFSPI?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 4912
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: foN2oPPk--lbQZ0g0n6mdFlZFLlkMWC2oFQy-iooXclbPljkiqix3Q==
age: 1806622
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0792fb51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/NKDWVPVIYFHZRGJ4GZT7KHLV4Y?width=300&height=150
104.17.229.45200 OK 9.5 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/NKDWVPVIYFHZRGJ4GZT7KHLV4Y?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 0c752c4d31d76ebc06950e2333333b50
bd26dbe7cae31c1cbea942de1781242fe49fdbe2
1c617d3c1d68858003051d0893e19c54440678fe761b7cbe81c30db996da0a0f
GET /ws/mediagroup/NKDWVPVIYFHZRGJ4GZT7KHLV4Y?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 9451
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VxISvM-w-P6Sfg67b4kN6tq4u3w6Vee0E7LMk1_7KHcTwDzsP_u1HQ==
age: 1987079
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c07925b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/UQEUJDVQPJFUPOEB42IS4KOS6M?width=300&height=150
104.17.229.45200 OK 9.3 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/UQEUJDVQPJFUPOEB42IS4KOS6M?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 908b40272bf84a5fc09e481df4b3afe9
4932d1bd46aefb3fd302395f261f373a9e718831
fc26186d2a6af64876164a029185a65de507be5d109cbdf91744be7788406a43
GET /ws/mediagroup/UQEUJDVQPJFUPOEB42IS4KOS6M?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 9263
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Cb-ThIQrRZ9T6DBhUGk73lnKInEROkt64sHFtpHyH4rIdNe-YsA-xw==
age: 2073884
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c07928b51d-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46e2bec06a11406d5cdcec9c0e76911d
edc777878dca7029c70577edae741264a22ab010
21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mediaservice.retailmenot.com/ws/mediagroup/ZYTZNZSZ5ZFTHJ3XQ32VZC7J34?width=300&height=150
104.17.229.45200 OK 5.6 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/ZYTZNZSZ5ZFTHJ3XQ32VZC7J34?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash eedd293d3b5375b85d8449223cb81bd2
b14ea6bcedfbcefcad70030548dea9501db5529c
4a623e1a67254f4e656ff9de7b6fa7d5978189caef337b627750036f8e4f877f
GET /ws/mediagroup/ZYTZNZSZ5ZFTHJ3XQ32VZC7J34?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 5629
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DyuZ9JQKDcPVbGQy0aKk5UcNsfYA0bV6nRgOFzWQgCDR9XZ1VWZIYA==
age: 1476192
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c07930b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/F3R53UWCIRDUDBQ3HUY7OVHQEU?width=300&height=150
104.17.229.45200 OK 5.5 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/F3R53UWCIRDUDBQ3HUY7OVHQEU?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 474f88ba4a6719dbc02beb409201f944
1c5e17871efa777234393ccbf264f3282c2315ea
61a1e665fe0df3f8ddeff467b0989d9aebb870eca2fd5fcd68542150fafa9fae
GET /ws/mediagroup/F3R53UWCIRDUDBQ3HUY7OVHQEU?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 5501
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Cg-w6Y7_iLK4H9oVVZ5ieWJHrwtjZ0y1gXcl5iWLRtu13r0lm26qdg==
age: 1987513
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0994cb51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/4J6YJRINSNEYBEGUTPGRBOHZ6I?width=300&height=150
104.17.229.45200 OK 10 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/4J6YJRINSNEYBEGUTPGRBOHZ6I?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash da24b966bf945cc17add9c47e474f150
f8685dc750ca88aa17215e0af4907a2e61c96043
6c0344da16163ec2ed93b99c4bc8c80ba9bbea045d6b5c3cbcce906a40fb3bb7
GET /ws/mediagroup/4J6YJRINSNEYBEGUTPGRBOHZ6I?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 9991
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vEIYDbmltCH66rj8O7wqyw5HXWYLsqYtMzqYaKs80isu_vJNNhPnfw==
age: 1859859
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0b95fb51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/SPWLWI234ZGLVB5O6W7KA5C77M?width=300&height=150
104.17.229.45200 OK 6.8 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/SPWLWI234ZGLVB5O6W7KA5C77M?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 7ae565a9f210cc8610ca3367d73f1cb7
1f8bd85196ee4c89554105066f793eca46bf7349
133a09d7c503f300ab61abc7eaa647016b4a0286d4eaba0c4db3c9c4469b10aa
GET /ws/mediagroup/SPWLWI234ZGLVB5O6W7KA5C77M?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 6759
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wFZZkWc1RCmt1saRILjeQ2cEoW5rLBDLcZeGNOD3XLmULmUMzBpJ9A==
age: 1635317
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0b961b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/XT3PJSH2IVEX7ON5VCGI452CIU?width=160&height=120
104.17.229.45200 OK 3.5 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/XT3PJSH2IVEX7ON5VCGI452CIU?width=160&height=120
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, baseline, precision 8, 200x150, components 3\012- data
Hash 565bab6eb0cd95367b547bce77ddb378
565ae3a18859cea5e110290c04ec94c1b667d11e
f4ef5ba98146bbee69b7cba444074ac38b3d9ba4ad17afc7937f71622fb373f2
GET /ws/mediagroup/XT3PJSH2IVEX7ON5VCGI452CIU?width=160&height=120 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 3516
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VyIt2zxAq0mDRTt04IpsBn9nO5_SE3KrUXqZXs4CN8zln5OEsd9BUA==
age: 43232
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0c96bb51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/5NFVX3HVMFDXXOUFDKLKZN364I?width=300&height=150
104.17.229.45200 OK 8.0 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/5NFVX3HVMFDXXOUFDKLKZN364I?width=300&height=150
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash 6d2ec07d95f3fbd97d6a79480218658a
15a5b43a8b1b8789b6ee5b576ec0df65d4b0428a
f0faa1ef650bf35c65a207f0b0e17eb9a3a4f556c1800a75a5d14eae7c4cc7e0
GET /ws/mediagroup/5NFVX3HVMFDXXOUFDKLKZN364I?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 8003
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vmvsrubcrKNkHSiROmTfJFWpljYERsgq98rSfp1cPGPu_FyHqWrhpw==
age: 132239
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0b960b51d-OSL
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.130200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (39375)
Hash 6b6b06e0dfae2ceaedaf85648cfad560
4674359bc9f237f79a9c6484422d72a2d98e1521
3e706928c29908461b02e64b09c17d62748efbb15c3fdf9f454c5bf96a3d0d8b
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27575
date: Wed, 01 Feb 2023 03:36:34 GMT
expires: Wed, 01 Feb 2023 03:36:34 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1469 / 56 of 1000 / last-modified: 1675206526"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46e2bec06a11406d5cdcec9c0e76911d
edc777878dca7029c70577edae741264a22ab010
21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1015f221babb87a56f4eed457b44258b
efcbb3641eb2ab985c7daaf6527440f33d815e1b
fc789e07db34de269f533a8c55995656fdd1a9c0af75c0def1ab470739b2d1a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:34 GMT
Etag: "63d90e40-116"
Server: ECS (amb/6BA5)
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1015f221babb87a56f4eed457b44258b
efcbb3641eb2ab985c7daaf6527440f33d815e1b
fc789e07db34de269f533a8c55995656fdd1a9c0af75c0def1ab470739b2d1a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:34 GMT
Etag: "63d90e40-116"
Server: ECS (amb/6B98)
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1015f221babb87a56f4eed457b44258b
efcbb3641eb2ab985c7daaf6527440f33d815e1b
fc789e07db34de269f533a8c55995656fdd1a9c0af75c0def1ab470739b2d1a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=119550
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:34 GMT
Etag: "63d90e40-116"
Expires: Thu, 02 Feb 2023 12:49:04 GMT
Last-Modified: Tue, 31 Jan 2023 12:49:04 GMT
Server: nginx
Content-Length: 278
mediaservice.retailmenot.com/ws/mediagroup/TWQ5FMLJNNFPXLSZAUOFTWZPGM?width=160&height=120
104.17.229.45200 OK 6.1 kB URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/TWQ5FMLJNNFPXLSZAUOFTWZPGM?width=160&height=120
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 200x150, components 3\012- data
Hash 8b163fd0e0003840774aae7357d28c5b
6be0ef7bce1dd507d1196f99d048da5cd213ec4c
e52187abe1666a845f6a170611314dd70523cb3819565b479406d164f6255574
GET /ws/mediagroup/TWQ5FMLJNNFPXLSZAUOFTWZPGM?width=160&height=120 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 6057
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yI1SVxhe5AqW3Jjm6aG3amJUiuPy7LGIhaRZiNT_elyM_OpkfCRbtg==
age: 77717
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c1f9e8b51d-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 3.7 kB IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9357ecd076c0575cd58407c8b9b62b8e
036682f4cf3236cfcabd6c5d8d1414bd5b7a50c6
b5c6c5e84924ef7c7d35aa1627ccc1728fd5bd4b039f7ec1a5a77d237a0b2bfe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19817
Expires: Wed, 01 Feb 2023 09:06:51 GMT
Date: Wed, 01 Feb 2023 03:36:34 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 7.8 kB IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7e62f3675e168937998e507d9382f185
6ba93fef89f586e049c678b17f3ef389d535c0fc
31346a64df1b94aa6b5662c85f9a177fe2b74f922f9ea98ba2e0ad9a26418e92
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19817
Expires: Wed, 01 Feb 2023 09:06:51 GMT
Date: Wed, 01 Feb 2023 03:36:34 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19817
Expires: Wed, 01 Feb 2023 09:06:51 GMT
Date: Wed, 01 Feb 2023 03:36:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4392f298c9e98515493f1235810838f
b89eebf2b8adac69487262100b07da8bc171ecf7
b368d87d3a0fe4e1a8ddc82bed704b3056ad2874b8d325111b399b18807c1e5e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15656
x-amzn-requestid: 6723d22f-8b16-4fb2-af92-9b3257fc2a1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIHpRoAMFRYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-03b1c6646f63ba716a6298e1;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fLrUWOhE6x_v3sqe6kr1hacSgt9H53ld51XXKvh7dL04gc-NDJKmOg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:25:12 GMT
age: 72682
etag: "b89eebf2b8adac69487262100b07da8bc171ecf7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:18:42 GMT
age: 73072
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ad49e3ca0f9935c7ff8f922039e5864
6382ee41cb26e42293e1ba5d9f0d3af64ddb672c
7a838e4e1aff60581fbf939920955ea67dae8fb3fa4e31572787c773404d071e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14809
x-amzn-requestid: fc920367-4bb1-40fd-9f1d-1d50b27cfc77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaXEQEoAMF3Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-0f70e0252fc3a3e5248bb372;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8SGqBRt27x1A3p1Z55UzPW8myS3BPu1ows_X76xLB8KY5xNnfs1pUw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:45:15 GMT
age: 21079
etag: "6382ee41cb26e42293e1ba5d9f0d3af64ddb672c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0378a78-c173-4036-ab09-812b1651c606.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0378a78-c173-4036-ab09-812b1651c606.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85cde231b700eec450e0611b97742a43
c2c6279d74efdcceb319d6943cbcb9d1d1b686ca
d52297e17f93932aa7c99ae734d4b68f3b9b09b9938db95ecc96bac9f3bb588c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0378a78-c173-4036-ab09-812b1651c606.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8542
x-amzn-requestid: ad485963-7e2e-410d-ad1c-6386fb738f18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaVHXcoAMFuhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-12d7e4502d1fc1511b6f2260;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M1OD8v_jLlitIjUwxyZSke4kBfIFy0C_tbDQAHe5iDBrm_Fha7uwFg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:28 GMT
etag: "c2c6279d74efdcceb319d6943cbcb9d1d1b686ca"
content-type: image/jpeg
age: 20706
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hjIm9dNf6UE9rpIlKWeLwWuF7Pm6yJeAZgbwchvJcuDy-zkXEr502w==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:18 GMT
age: 20716
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/image/XE25S7HL75HXLFYB2SDFWHEQBI
104.17.229.45200 OK 67 kB URL HTTP/2 mediaservice.retailmenot.com/image/XE25S7HL75HXLFYB2SDFWHEQBI
IP 104.17.229.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x600, components 3\012- data
Hash 5bb67acb3703aa10588c2507f3ca5ebb
d07e6a6b24a95e63ec897ad88f694527238028bb
a8f299f8379d385775eebc5f9bf7c58ecc675c21b1c52b189bd7dd03a16230c5
GET /image/XE25S7HL75HXLFYB2SDFWHEQBI HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: duXxzOSyGIGWb9Kpi5bgp9WcvxPxr75NT01D6zrp9KzSxjLyJ4rlrg==
age: 76940
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0b962b51d-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 49b9e95e17425c083794f59e204c991b
320e2f0f4c703c1d5aea686d3a56087fca2d7cd9
49f2343e5af932b910b38bf761b7d3ee1ab942c783dffddd6196e21b7761e7ee
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 03:36:35 GMT
Last-Modified: Wed, 01 Feb 2023 02:01:06 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lDVBjAu826DxN33w-DM2o2dY2-IsEHElHJ0Ht0q-F86SAp5CbiGzZw==
Age: 5729
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 22 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 44c5643b6c4a761ca0e6137f2fb4a9f2
266dced81f0e41979a6b9f695b4b8195dcd3802e
10ea46f61005265454a55606349859313900fd0cb6efb76b4ee6b6107cbf414d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136918
Date: Wed, 01 Feb 2023 03:36:35 GMT
Etag: "63d93e02-1d7"
Expires: Thu, 02 Feb 2023 17:38:33 GMT
Last-Modified: Tue, 31 Jan 2023 16:12:50 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YE2HjkWiC5pJdIln0hnVhB5Ovgz9Kt_m4rUsqMZhOt9eyqI4lGnQgA==
Age: 5143
gurgle.retailmenot.com/info?url=https%3A%2F%2Fwww.retailmenot.com%2F&fp=1&lcl_id=
3.208.202.151302 Found 0 B URL HTTP/2 gurgle.retailmenot.com/info?url=https%3A%2F%2Fwww.retailmenot.com%2F&fp=1&lcl_id=
IP 3.208.202.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /info?url=https%3A%2F%2Fwww.retailmenot.com%2F&fp=1&lcl_id= HTTP/1.1
Host: gurgle.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Origin: https://www.retailmenot.com
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D; zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 302 Found
date: Wed, 01 Feb 2023 03:36:35 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://gurgle.zdbb.net/info?url=https%3A%2F%2Fwww.retailmenot.com%2F&fpx=1&lcl_id=
access-control-allow-origin: https://www.retailmenot.com
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
X-Firefox-Spdy: h2
a.retailmenot.com/__wsm.gif
54.221.233.65200 OK 35 B URL HTTP/1.1 a.retailmenot.com/__wsm.gif
IP 54.221.233.65:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /__wsm.gif HTTP/1.1
Host: a.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1447
Origin: https://www.retailmenot.com
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D; zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5; _ga=GA1.2.542002927.1675222614; _gid=GA1.2.1529491755.1675222614; visitor=D3uVX0DNEU; session=D3uVX0DNEUldl4a27s; userQualifier=CLDEMDPFJZCITETL2GHLTV3D3I; deviceFingerprint=XTEZPPONO5FGPMGFCH27OQDSJM; overlord_viewInstanceUuid=PTMUWLY4XZE4FAZQDOOC6BCDJM; out_referrer=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: https://www.retailmenot.com, https://www.retailmenot.com
Cache-Control: no-cache, private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
Date: Wed, 01 Feb 2023 03:36:35 GMT
Expires: Sun, 03 Feb 2013 03:36:35 GMT
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Pragma: no-cache, no-cache
Server: openresty/1.11.2.5
X-Content-Type-Options: nosniff, nosniff
Content-Length: 35
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 74fb517f26359326e41f69c0c1826bd1
693f1fb0a1147db8e73c59700630c3da71b1a1ba
9fd11f32aefbb6191356ef10775629a52e420bbce09f95b363f8ef30479c37b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a.retailmenot.com/__wsm.gif
54.221.233.65200 OK 39 kB URL HTTP/1.1 a.retailmenot.com/__wsm.gif
IP 54.221.233.65:0
Hash 4a02dae40156b6e78515e15a147a6fcb
94228a7a7a01a6cc5e82d09f3224e7d8007a5292
29399c029f04516416daec03dd608d0ee092196af650aa0a36a09d4a8547c025
POST /__wsm.gif HTTP/1.1
Host: a.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2305
Origin: https://www.retailmenot.com
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D; zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5; _ga=GA1.2.542002927.1675222614; _gid=GA1.2.1529491755.1675222614; visitor=D3uVX0DNEU; session=D3uVX0DNEUldl4a27s; userQualifier=CLDEMDPFJZCITETL2GHLTV3D3I; deviceFingerprint=XTEZPPONO5FGPMGFCH27OQDSJM; overlord_viewInstanceUuid=PTMUWLY4XZE4FAZQDOOC6BCDJM; out_referrer=; _gat=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: https://www.retailmenot.com, https://www.retailmenot.com
Cache-Control: no-cache, private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
Date: Wed, 01 Feb 2023 03:36:35 GMT
Expires: Sun, 03 Feb 2013 03:36:35 GMT
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Pragma: no-cache, no-cache
Server: openresty/1.11.2.5
X-Content-Type-Options: nosniff, nosniff
Content-Length: 35
Connection: keep-alive
a.retailmenot.com/__wsm.gif
54.221.233.65200 OK 35 B URL HTTP/1.1 a.retailmenot.com/__wsm.gif
IP 54.221.233.65:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /__wsm.gif HTTP/1.1
Host: a.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 7267
Origin: https://www.retailmenot.com
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D; zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5; _ga=GA1.2.542002927.1675222614; _gid=GA1.2.1529491755.1675222614; visitor=D3uVX0DNEU; session=D3uVX0DNEUldl4a27s; userQualifier=CLDEMDPFJZCITETL2GHLTV3D3I; deviceFingerprint=XTEZPPONO5FGPMGFCH27OQDSJM; overlord_viewInstanceUuid=PTMUWLY4XZE4FAZQDOOC6BCDJM; out_referrer=; _gat=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: https://www.retailmenot.com, https://www.retailmenot.com
Cache-Control: no-cache, private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
Date: Wed, 01 Feb 2023 03:36:35 GMT
Expires: Sun, 03 Feb 2013 03:36:35 GMT
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Pragma: no-cache, no-cache
Server: openresty/1.11.2.5
X-Content-Type-Options: nosniff, nosniff
Content-Length: 35
Connection: keep-alive
c.amazon-adsystem.com/cdn/prod/config?src=3158&u=https%3A%2F%2Fwww.retailmenot.com
54.230.111.210200 OK 1.1 kB URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=3158&u=https%3A%2F%2Fwww.retailmenot.com
IP 54.230.111.210:0
File type JSON data\012- , ASCII text, with very long lines (1134), with no line terminators
Hash a6eeeefccaeab3a93c9e2d7e92cecc81
e43c850ebb7d706902996e2a329cf42b3ebcb0c9
43d59a0e07beec341e3d03cbb514cea438aef416d9490d60b3cdc3fe65012caf
GET /cdn/prod/config?src=3158&u=https%3A%2F%2Fwww.retailmenot.com HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 1134
access-control-allow-origin: https://www.retailmenot.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Wed, 01 Feb 2023 00:46:24 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Gqn9EZHFrDwPSSC3rHUWVvzI2saNm-UzSM_f1aRmq2BYDYdL-uRIrA==
age: 10210
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4f12400046b9fe6b6d6a44c61e45ef6c
e1ae561649af04b669f2355237b7efacff8e7aac
0ce7810c39be19fc2493662282f060b41b5a5ab32dfecb3486fb0de0fb5b7664
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3275
Cache-Control: max-age=120657
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:35 GMT
Etag: "63d905c9-117"
Expires: Thu, 02 Feb 2023 13:07:32 GMT
Last-Modified: Tue, 31 Jan 2023 12:12:57 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 552d6aeb530e72fb0c023623653fef7a
ed3e4a754b3e71edb045bf2a31f174b264064eb6
5f30424c29aa6ea1762b72c9741f44f424a5c88d376c1c0b5369b43ce5d035ef
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1798
Cache-Control: max-age=128892
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:35 GMT
Etag: "63d92bb9-1d7"
Expires: Thu, 02 Feb 2023 15:24:47 GMT
Last-Modified: Tue, 31 Jan 2023 14:54:49 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 77088c232f90a1ad48678339f7f22ad9
bce4abd1a66397a26e840eb7ebe09f60bb9e3654
780b67f481b9838a8858a481ea8575b5fc54d390820bf32f611f092ab78cc792
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 03:36:35 GMT
Last-Modified: Wed, 01 Feb 2023 02:12:42 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3q4SPqs-p5Vw7dhMwpvLOVhEQa2MbO3m7kfcN6bejnL6qmWDFNiWeA==
Age: 5035
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f05280f3b6585309cc122d7e1273bbe6
900fd9ca57f4c0c173be4eabd61b7b596c26c29a
82efaee85dab4763ddaa8f4c6cb2ef3ff7ff94662be09f305b99a09a2f7f8825
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3377
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:35 GMT
Last-Modified: Wed, 01 Feb 2023 02:40:18 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ziffdavis-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.retailmenot.com%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=0e41d3cd-3f45-4383-b0d7-17f1b80b853e%2C269e96f9-b3a0-4108-b83e-81ac80dbfe08&nocache=1675222615355&us_privacy=1---&aus=1140x160%2C970x90%2C728x90%2C120x90%7C728x90&divids=main-1%2Cmain-2&aucs=%252F4585%252Fretailmenot%252Fhomepage_banner%2C%252F4585%252Fretailmenot%252Fhomepg_cpnarea_btf&auid=545698793%2C545698793
35.244.159.8200 OK 79 B URL HTTP/2 ziffdavis-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.retailmenot.com%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=0e41d3cd-3f45-4383-b0d7-17f1b80b853e%2C269e96f9-b3a0-4108-b83e-81ac80dbfe08&nocache=1675222615355&us_privacy=1---&aus=1140x160%2C970x90%2C728x90%2C120x90%7C728x90&divids=main-1%2Cmain-2&aucs=%252F4585%252Fretailmenot%252Fhomepage_banner%2C%252F4585%252Fretailmenot%252Fhomepg_cpnarea_btf&auid=545698793%2C545698793
IP 35.244.159.8:0
File type JSON data\012- , ASCII text
Hash 4de50ac3133dfb929321c4225afdb22e
af97dc25cdd5832f24edf353ccfcf933ff24d7b8
0b12254603d40928084e44a4882c2b5dcef6e6c963647de0019748f8d104c348
GET /w/1.0/arj?ju=https%3A%2F%2Fwww.retailmenot.com%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=0e41d3cd-3f45-4383-b0d7-17f1b80b853e%2C269e96f9-b3a0-4108-b83e-81ac80dbfe08&nocache=1675222615355&us_privacy=1---&aus=1140x160%2C970x90%2C728x90%2C120x90%7C728x90&divids=main-1%2Cmain-2&aucs=%252F4585%252Fretailmenot%252Fhomepage_banner%2C%252F4585%252Fretailmenot%252Fhomepg_cpnarea_btf&auid=545698793%2C545698793 HTTP/1.1
Host: ziffdavis-d.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Wed, 01 Feb 2023 03:36:35 GMT
content-type: application/json
content-length: 79
content-encoding: gzip
cache-control: private, max-age=0, no-cache
access-control-allow-origin: https://www.retailmenot.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 78358d092407ef8288d729d24e4c5354
b8f794bb16cc34445a96eb922d7f6e9a3a08026c
3bbb966cacca297b381e02e74fc7fc5422b5ae48085da5a30006992d24967e70
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5520
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:35 GMT
Last-Modified: Wed, 01 Feb 2023 02:04:35 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
54.230.111.210200 OK 2.9 kB URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 54.230.111.210:0
Hash 264ce14a05fbc8da3d4e20521e4eef59
99a5a7eb00fc1a9c443c31a4632e6eb97abe4986
fca0c0685c1b081e614b5fe970cdcdc5fd1c85fe9b567172d2c0d54744898782
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 23 Dec 2022 01:05:48 GMT
x-amz-version-id: 1R3b4YI9dI20q9Y7Gq1DHxVUnq3Fp2gn
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 06:24:07 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CHUSOJPoBQQ-32nW4Dj4UG9gicba3DpEgQ9Rodsr2QRBhyowrJPrEA==
age: 76349
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 552d6aeb530e72fb0c023623653fef7a
ed3e4a754b3e71edb045bf2a31f174b264064eb6
5f30424c29aa6ea1762b72c9741f44f424a5c88d376c1c0b5369b43ce5d035ef
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1849
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:35 GMT
Last-Modified: Wed, 01 Feb 2023 03:05:47 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
a.retailmenot.com/__wsm.gif
54.221.233.65200 OK 35 B URL HTTP/1.1 a.retailmenot.com/__wsm.gif
IP 54.221.233.65:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /__wsm.gif HTTP/1.1
Host: a.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2037
Origin: https://www.retailmenot.com
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D; zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5; _ga=GA1.2.542002927.1675222614; _gid=GA1.2.1529491755.1675222614; visitor=D3uVX0DNEU; session=D3uVX0DNEUldl4a27s; userQualifier=CLDEMDPFJZCITETL2GHLTV3D3I; deviceFingerprint=XTEZPPONO5FGPMGFCH27OQDSJM; overlord_viewInstanceUuid=PTMUWLY4XZE4FAZQDOOC6BCDJM; out_referrer=; _gat=1; forterToken=401c0d3bd7aa43cfb5094eb8d53669f0_1675222615146___9ck
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: https://www.retailmenot.com, https://www.retailmenot.com
Cache-Control: no-cache, private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
Date: Wed, 01 Feb 2023 03:36:35 GMT
Expires: Sun, 03 Feb 2013 03:36:35 GMT
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Pragma: no-cache, no-cache
Server: openresty/1.11.2.5
X-Content-Type-Options: nosniff, nosniff
Content-Length: 35
Connection: keep-alive
htlb.casalemedia.com/openrtb/pbjs?s=911720
172.64.154.237200 OK 36 B URL HTTP/2 htlb.casalemedia.com/openrtb/pbjs?s=911720
IP 172.64.154.237:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8ffeccee014f633f1c599d1843f35e0f
ab7f5ee72de5dd838d875a85dd0e50c8df31d39e
9b798e2ad1557b1c51ae0802f3d0a210bf53beaf9a37c69f1b45386f1acfea71
POST /openrtb/pbjs?s=911720 HTTP/1.1
Host: htlb.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1676
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:35 GMT
content-type: application/json
content-length: 36
cf-ray: 7927a4c7af97b51b-OSL
access-control-allow-origin: https://www.retailmenot.com
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lgx9njmGv99AsHRq7p7nxBNT8IJh9qgPVXSa8m%2BNLS8rP0YWUlzURyq58X9GVZ0iaQepzxUsxABC7xQKAKWOYiW1aptZNoLYK0BhkFzQ5A2BilCSMTGjoEAGZStfnwEx0EwsouRr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.retailmenot.com/__wsm.gif
54.221.233.65200 OK 35 B URL HTTP/1.1 a.retailmenot.com/__wsm.gif
IP 54.221.233.65:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /__wsm.gif HTTP/1.1
Host: a.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2216
Origin: https://www.retailmenot.com
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D; zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5; _ga=GA1.2.542002927.1675222614; _gid=GA1.2.1529491755.1675222614; visitor=D3uVX0DNEU; session=D3uVX0DNEUldl4a27s; userQualifier=CLDEMDPFJZCITETL2GHLTV3D3I; deviceFingerprint=XTEZPPONO5FGPMGFCH27OQDSJM; overlord_viewInstanceUuid=PTMUWLY4XZE4FAZQDOOC6BCDJM; out_referrer=; _gat=1; forterToken=401c0d3bd7aa43cfb5094eb8d53669f0_1675222615146___9ck
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: https://www.retailmenot.com, https://www.retailmenot.com
Cache-Control: no-cache, private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
Date: Wed, 01 Feb 2023 03:36:35 GMT
Expires: Sun, 03 Feb 2013 03:36:35 GMT
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Pragma: no-cache, no-cache
Server: openresty/1.11.2.5
X-Content-Type-Options: nosniff, nosniff
Content-Length: 35
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4f12400046b9fe6b6d6a44c61e45ef6c
e1ae561649af04b669f2355237b7efacff8e7aac
0ce7810c39be19fc2493662282f060b41b5a5ab32dfecb3486fb0de0fb5b7664
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3275
Cache-Control: max-age=120657
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:35 GMT
Etag: "63d905c9-117"
Expires: Thu, 02 Feb 2023 13:07:32 GMT
Last-Modified: Tue, 31 Jan 2023 12:12:57 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
gurgle.zdbb.net/info?url=https%3A%2F%2Fwww.retailmenot.com%2F&fpx=1&lcl_id=
3.208.202.151200 OK 408 B URL HTTP/2 gurgle.zdbb.net/info?url=https%3A%2F%2Fwww.retailmenot.com%2F&fpx=1&lcl_id=
IP 3.208.202.151:0
File type JSON data\012- , ASCII text, with very long lines (408), with no line terminators
Hash 232b4626d1c17691d165ffcf2d9e62e5
631eb7f3a4aa57cc67fa0cb9e24485da6ae9bdf0
2373453a8c777c074212f289e4a26c60ea346a56107b6f39ab54921bef3bf94b
GET /info?url=https%3A%2F%2Fwww.retailmenot.com%2F&fpx=1&lcl_id= HTTP/1.1
Host: gurgle.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:35 GMT
content-type: application/json
content-length: 408
access-control-allow-origin: null
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 5a3b8ee23f21740c11c01213a2a19819
9887d6fe0b1669d9f1905bb76d085ec7ded8e158
abbd84d6812e9a405ae14e563c4bb30f11186e0c782280b2aebed054921e4fb7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6346
Cache-Control: max-age=122668
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:35 GMT
Etag: "63d901a5-138"
Expires: Thu, 02 Feb 2023 13:41:03 GMT
Last-Modified: Tue, 31 Jan 2023 11:55:17 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 312
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 3aefc927770f9df528090f6aacb65a6e
ad399d7f0ed85e99acfb7f8ceb0e62c27caf617a
875543df2def777cc8551c4ffd3c455b2ca43610a753137560dd15fcf26d26b0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 03:36:35 GMT
Last-Modified: Wed, 01 Feb 2023 03:26:41 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: db2vggbpPfpYbImKmr5Orzjc-aCNFtXCjs7f4XkG3Tk2HeznXqcyhA==
Age: 594
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1a64fe80b373d42dac13a7e8f0fc15a2
74ba65fa18d77e10b8f335a266f3a2360367e713
1e93c98fb5587c4081a073d609448319a52e3a9183577d75afa6291919c7b01d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5417
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:35 GMT
Last-Modified: Wed, 01 Feb 2023 02:06:18 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1a64fe80b373d42dac13a7e8f0fc15a2
74ba65fa18d77e10b8f335a266f3a2360367e713
1e93c98fb5587c4081a073d609448319a52e3a9183577d75afa6291919c7b01d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2881
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:35 GMT
Last-Modified: Wed, 01 Feb 2023 02:48:34 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 278
ad-delivery.net/px.gif?ch=1&e=0.5746602813899307
172.67.69.19200 OK 43 B URL HTTP/2 ad-delivery.net/px.gif?ch=1&e=0.5746602813899307
IP 172.67.69.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.5746602813899307 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:35 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ADPycdvRyQuiKR7vao0d0gZH1fD4TACxVBfdiOoBZcjsTHe5pQD9btOiEjggzyh8C86yatVzyUlYTAFym5Cc073wIsWMUTACWflM
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Thu, 26 Jan 2023 22:54:58 GMT
cache-control: public, max-age=86400
age: 452323
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4677M4DTLYvTO9XlRslQYrfWfx5DhLM%2FHo6EqQRfVuko3MTirizbXzawLVrtC6AWzgLWIbJI4TYDuSkWsZZ1viFJCiUCK%2Bp1gzmhg6tmIlhEFMblQcikmYL6quwHZBpqoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7927a4c8dba5b505-OSL
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
54.230.111.88200 OK 1.9 kB URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 54.230.111.88:0
File type ASCII text, with very long lines (3936)
Hash ccbe1595614949962ea0f4c9ec84e783
65525e8918223db782724d28fce74efb513a0fb0
f422f26d9197a10abf1a13a13a87a5fcc4b98ad57aae11fadfddf2df02b591f5
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 01:20:14 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vODYP1HW11tmYDpDqL579lZ0700HzbUyjDpsIHe3LCtHZYrfPB8XYg==
age: 8183
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.26.0&cb=38996821446&lsavail=1
178.250.0.165200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.26.0&cb=38996821446&lsavail=1
IP 178.250.0.165:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=7.26.0&cb=38996821446&lsavail=1 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 948
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:35 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://www.retailmenot.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
btloader.com/tag?o=4981716645576704&upapi=true
104.26.7.139200 OK 6.4 kB URL HTTP/2 btloader.com/tag?o=4981716645576704&upapi=true
IP 104.26.7.139:0
File type ASCII text, with very long lines (15224)
Hash 16d52eba4e12a7dad2e0ad0a07a62df8
ff177dcb15f14d506a2c9ba9b2d2f96201e7b3b4
df3973432cec54680e31dae98f8bc1b00573e84370706bb466451051168e61f0
GET /tag?o=4981716645576704&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
etag: W/"4bde24b3dd7aed96c1a2e49fc74198a0"
last-modified: Wed, 01 Feb 2023 03:28:56 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 459
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5ts%2BWHLA%2BXvuoDLjchBnUpKQO7FSv%2F2VTg6ox4HRKA9MJ9OplQ6VEBGqqqvGsxINPidPfF68ukIKsjxjHKBo8PYYOZnEl74d9fQ4aR5c77O9rc%2BBeRME%2FhvBpUAvAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7927a4c86adab518-OSL
content-encoding: br
X-Firefox-Spdy: h2
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3158&u=https%3A%2F%2Fwww.retailmenot.com%2F&pid=sX1T1yuzXyJPU&cb=0&ws=1280x939&v=22.1107.1609&t=700&slots=%5B%7B%22sd%22%3A%22main-1%22%2C%22s%22%3A%5B%221140x160%22%2C%22970x90%22%2C%22728x90%22%2C%22120x90%22%5D%2C%22sn%22%3A%22%2F4585%2Fretailmenot%2Fhomepage_banner%22%7D%2C%7B%22sd%22%3A%22main-2%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F4585%2Fretailmenot%2Fhomepg_cpnarea_btf%22%7D%5D&pj=%7B%22us_privacy%22%3A%221---%22%7D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
54.230.241.131200 OK 188 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3158&u=https%3A%2F%2Fwww.retailmenot.com%2F&pid=sX1T1yuzXyJPU&cb=0&ws=1280x939&v=22.1107.1609&t=700&slots=%5B%7B%22sd%22%3A%22main-1%22%2C%22s%22%3A%5B%221140x160%22%2C%22970x90%22%2C%22728x90%22%2C%22120x90%22%5D%2C%22sn%22%3A%22%2F4585%2Fretailmenot%2Fhomepage_banner%22%7D%2C%7B%22sd%22%3A%22main-2%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F4585%2Fretailmenot%2Fhomepg_cpnarea_btf%22%7D%5D&pj=%7B%22us_privacy%22%3A%221---%22%7D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
IP 54.230.241.131:0
File type ASCII text, with no line terminators
Hash dd80170f02136f68e79099ba27849028
4a34025d0497bf69cc44c457bae844fd2f315e98
79519648c411ffe03f901027e1ffb0cdd46ec04c25d6eb9076650a710ef2a0d1
GET /e/dtb/bid?src=3158&u=https%3A%2F%2Fwww.retailmenot.com%2F&pid=sX1T1yuzXyJPU&cb=0&ws=1280x939&v=22.1107.1609&t=700&slots=%5B%7B%22sd%22%3A%22main-1%22%2C%22s%22%3A%5B%221140x160%22%2C%22970x90%22%2C%22728x90%22%2C%22120x90%22%5D%2C%22sn%22%3A%22%2F4585%2Fretailmenot%2Fhomepage_banner%22%7D%2C%7B%22sd%22%3A%22main-2%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F4585%2Fretailmenot%2Fhomepg_cpnarea_btf%22%7D%5D&pj=%7B%22us_privacy%22%3A%221---%22%7D&gdprl=%7B%22status%22%3A%22no-cmp%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 188
server: Server
date: Wed, 01 Feb 2023 03:36:36 GMT
x-amz-rid: A8JC8MWXX4XBNKYH4JRD
access-control-allow-origin: https://www.retailmenot.com
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q_WYPW9wjaPMq3n_Wjsi82q77-W_v5efADUIdMBJdEZcaeyLj0wLbA==
X-Firefox-Spdy: h2
gurgle.retailmenot.com/set_fpid/retailmenot.com/c/00cff160d56843dca57246de323c08f3
3.208.202.151200 OK 32 B URL HTTP/2 gurgle.retailmenot.com/set_fpid/retailmenot.com/c/00cff160d56843dca57246de323c08f3
IP 3.208.202.151:0
File type ASCII text, with no line terminators
Hash eb331b9ac0d8976e09aab5406a80d0ac
bfde7d17a47d46d2bb617e9658ddc370f0db36ca
ab59f4cb5756682795ecfe82c7a15a97cd35b57f5f286b290ebd7d5d035d6097
GET /set_fpid/retailmenot.com/c/00cff160d56843dca57246de323c08f3 HTTP/1.1
Host: gurgle.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Origin: https://www.retailmenot.com
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D; zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5; _ga=GA1.2.542002927.1675222614; _gid=GA1.2.1529491755.1675222614; visitor=D3uVX0DNEU; session=D3uVX0DNEUldl4a27s; userQualifier=CLDEMDPFJZCITETL2GHLTV3D3I; deviceFingerprint=XTEZPPONO5FGPMGFCH27OQDSJM; overlord_viewInstanceUuid=PTMUWLY4XZE4FAZQDOOC6BCDJM; out_referrer=; _gat=1; forterToken=401c0d3bd7aa43cfb5094eb8d53669f0_1675222615146__UDF4_9ck
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:36 GMT
content-type: text/plain; charset=utf-8
content-length: 32
set-cookie: fpid=00cff160d56843dca57246de323c08f3; Path=/; Max-Age=15552000; Domain=retailmenot.com; SameSite=None; Secure; HttpOnly
access-control-allow-origin: https://www.retailmenot.com
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 229c3be28ba875b39b23b3da33f1d18a
54c36b2d306d869526b55fcbbb88f61f8c3d255d
a4d2402e857a5014ac4c13fe7818bb50217bd9d10b4e56e1b656c21238538387
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 03:36:36 GMT
Last-Modified: Wed, 01 Feb 2023 01:46:38 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cdENHk60z3E2GjCMUKCzlrYypRgR8X1KBG3-CN_3BUuaCZHjABtBww==
Age: 6598
zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=7e08866d-905f-4cb0-b7e1-55cd773e4fe4&zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5&zd_location=https%3A%2F%2Fwww.retailmenot.com%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=00cff160d56843dca57246de323c08f3&ppid=00cff160d56843dca57246de323c08f3
63.35.93.170303 See Other 0 B URL HTTP/2 zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=7e08866d-905f-4cb0-b7e1-55cd773e4fe4&zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5&zd_location=https%3A%2F%2Fwww.retailmenot.com%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=00cff160d56843dca57246de323c08f3&ppid=00cff160d56843dca57246de323c08f3
IP 63.35.93.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=7e08866d-905f-4cb0-b7e1-55cd773e4fe4&zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5&zd_location=https%3A%2F%2Fwww.retailmenot.com%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=00cff160d56843dca57246de323c08f3&ppid=00cff160d56843dca57246de323c08f3 HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
date: Wed, 01 Feb 2023 03:36:36 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=7e08866d-905f-4cb0-b7e1-55cd773e4fe4&zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5&zd_location=https%3A%2F%2Fwww.retailmenot.com%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=00cff160d56843dca57246de323c08f3&ppid=00cff160d56843dca57246de323c08f3&_cc=1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: h_zdbb=00cff160d56843dca57246de323c08f3; Path=/; Max-Age=15552000; Domain=.zdbb.net; SameSite=None; Secure
csp=0; Path=/; Max-Age=2592000; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b4c9a8ce96aa57d27a6bd55df00f08ac
180302ed4863fb5b22b45ab0cc7c770a12a8c63d
3707163ad693f536f95ed3331f045060ad51b12e95d55690d341a4a93e7f1d12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=7e08866d-905f-4cb0-b7e1-55cd773e4fe4&zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5&zd_location=https%3A%2F%2Fwww.retailmenot.com%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=00cff160d56843dca57246de323c08f3&ppid=00cff160d56843dca57246de323c08f3&_cc=1
63.35.93.170303 See Other 0 B URL HTTP/2 zdbb.net/l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=7e08866d-905f-4cb0-b7e1-55cd773e4fe4&zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5&zd_location=https%3A%2F%2Fwww.retailmenot.com%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=00cff160d56843dca57246de323c08f3&ppid=00cff160d56843dca57246de323c08f3&_cc=1
IP 63.35.93.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/z0WVjCBSEeGLoxIxOQVEwQ?additionalInformation=&cms_page_id=&local_uid=&referrer=&zd_pageview_id=7e08866d-905f-4cb0-b7e1-55cd773e4fe4&zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5&zd_location=https%3A%2F%2Fwww.retailmenot.com%2F&evidon_consent=undefined&third_party_consent=&fu=true&fpid=00cff160d56843dca57246de323c08f3&ppid=00cff160d56843dca57246de323c08f3&_cc=1 HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: h_zdbb=00cff160d56843dca57246de323c08f3; csp=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 303 See Other
date: Wed, 01 Feb 2023 03:36:36 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=MDBjZmYxNjBkNTY4NDNkY2E1NzI0NmRlMzIzYzA4ZjM=
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: zd_cs_go=1; Path=/; Max-Age=7200; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.retailmenot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.retailmenot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.retailmenot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 01 Feb 2023 03:36:36 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.retailmenot.com
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.retailmenot.com
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.retailmenot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 01 Feb 2023 03:36:36 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b4c9a8ce96aa57d27a6bd55df00f08ac
180302ed4863fb5b22b45ab0cc7c770a12a8c63d
3707163ad693f536f95ed3331f045060ad51b12e95d55690d341a4a93e7f1d12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2c5de9923d36.cdn4.forter.com/sn/2c5de9923d36/script.js
54.230.111.69200 OK 140 kB URL HTTP/2 2c5de9923d36.cdn4.forter.com/sn/2c5de9923d36/script.js
IP 54.230.111.69:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 140 kB (139906 bytes)
Hash 11a84d9ed3c150d92fc586010b2e0b04
a76be25e56928ed41434ae1f31d731c45d86a06b
7289b49ad7d9be89bafb02bae86e7bbff93d5e924802c162d15915a3e10c7e3b
GET /sn/2c5de9923d36/script.js HTTP/1.1
Host: 2c5de9923d36.cdn4.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 26 Jan 2023 08:13:28 GMT
strict-transport-security: max-age=86400; includeSubDomains
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 26 Jan 2023 08:13:28 GMT
expires: Thu, 26 Jan 2023 08:18:28 GMT
cache-control: private, max-age=300
x-sourcemap: https://cdn4.forter.com/map/suid/2c5de9923d36/52018689491
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: w5q8E2TLiwBFDNaBCIrjDVohHP9TSdIe-PTB1HfSu6nPiC7C3ojk_Q==
age: 501787
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=388870&zone_id=2165754&size_id=2&alt_size_ids=5%2C55%3B&p_pos=atf%3Bbtf&us_privacy=1---&rf=https%3A%2F%2Fwww.retailmenot.com%2F&kw=retailmenot.com%2C%20retailmenot%2C%20homepage%2C%20homepage%2C%20coupon-codes%2C%20code%2C%20discounts%2C%20coupons%2C%20promotional%2C%20promo%2C%20promotion%2C%20deal&tg_i.page=https%3A%2F%2Fwww.retailmenot.com%2F&tg_i.domain=retailmenot.com&tg_i.name=retailmenot.com&tg_i.mobile=1&tg_i.privacypolicy=1&tg_i.site=retailmenot.com&tg_i.adunit=homepage&tg_i.pbadslot=%2F4585%2Fretailmenot%2Fhomepage_banner%3B%2F4585%2Fretailmenot%2Fhomepg_cpnarea_btf&tk_flint=pbjs_lite_v7.26.0&x_source.tid=0e41d3cd-3f45-4383-b0d7-17f1b80b853e%3B269e96f9-b3a0-4108-b83e-81ac80dbfe08&l_pb_bid_id=28920e666bab48%3B3d1dad958819c28&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F4585%2Fretailmenot%2Fhomepage_banner%3B%2F4585%2Fretailmenot%2Fhomepg_cpnarea_btf&slots=2&rand=0.06358643491496041
213.19.162.51200 OK 573 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11576&site_id=388870&zone_id=2165754&size_id=2&alt_size_ids=5%2C55%3B&p_pos=atf%3Bbtf&us_privacy=1---&rf=https%3A%2F%2Fwww.retailmenot.com%2F&kw=retailmenot.com%2C%20retailmenot%2C%20homepage%2C%20homepage%2C%20coupon-codes%2C%20code%2C%20discounts%2C%20coupons%2C%20promotional%2C%20promo%2C%20promotion%2C%20deal&tg_i.page=https%3A%2F%2Fwww.retailmenot.com%2F&tg_i.domain=retailmenot.com&tg_i.name=retailmenot.com&tg_i.mobile=1&tg_i.privacypolicy=1&tg_i.site=retailmenot.com&tg_i.adunit=homepage&tg_i.pbadslot=%2F4585%2Fretailmenot%2Fhomepage_banner%3B%2F4585%2Fretailmenot%2Fhomepg_cpnarea_btf&tk_flint=pbjs_lite_v7.26.0&x_source.tid=0e41d3cd-3f45-4383-b0d7-17f1b80b853e%3B269e96f9-b3a0-4108-b83e-81ac80dbfe08&l_pb_bid_id=28920e666bab48%3B3d1dad958819c28&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F4585%2Fretailmenot%2Fhomepage_banner%3B%2F4585%2Fretailmenot%2Fhomepg_cpnarea_btf&slots=2&rand=0.06358643491496041
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with very long lines (573), with no line terminators
Hash a15fbbdd2632de12d10e04787b4a5db8
1db0f104300df41703c9263d64e9c4bc468c1711
82fd2721d5ad5eb70dc4e908ec9c56ed8439472b0376b6d43fb05964184acfff
GET /a/api/fastlane.json?account_id=11576&site_id=388870&zone_id=2165754&size_id=2&alt_size_ids=5%2C55%3B&p_pos=atf%3Bbtf&us_privacy=1---&rf=https%3A%2F%2Fwww.retailmenot.com%2F&kw=retailmenot.com%2C%20retailmenot%2C%20homepage%2C%20homepage%2C%20coupon-codes%2C%20code%2C%20discounts%2C%20coupons%2C%20promotional%2C%20promo%2C%20promotion%2C%20deal&tg_i.page=https%3A%2F%2Fwww.retailmenot.com%2F&tg_i.domain=retailmenot.com&tg_i.name=retailmenot.com&tg_i.mobile=1&tg_i.privacypolicy=1&tg_i.site=retailmenot.com&tg_i.adunit=homepage&tg_i.pbadslot=%2F4585%2Fretailmenot%2Fhomepage_banner%3B%2F4585%2Fretailmenot%2Fhomepg_cpnarea_btf&tk_flint=pbjs_lite_v7.26.0&x_source.tid=0e41d3cd-3f45-4383-b0d7-17f1b80b853e%3B269e96f9-b3a0-4108-b83e-81ac80dbfe08&l_pb_bid_id=28920e666bab48%3B3d1dad958819c28&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F4585%2Fretailmenot%2Fhomepage_banner%3B%2F4585%2Fretailmenot%2Fhomepg_cpnarea_btf&slots=2&rand=0.06358643491496041 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Wed, 01 Feb 2023 03:36:35 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.retailmenot.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDL4A3OX-1A-6B64; Domain=.rubiconproject.com; Path=/; Expires=Thu, 01-Feb-2024 03:36:35 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpCQ/IUO3E0XO9DtVM30fCggXrkegRyN1m5ypmLp6SfHRzt7lzUOuxqX3BSc/2+e+LggJ3pD4CYm+2FYHm3PAja0A+VO7RH1E0=; Domain=.rubiconproject.com; Path=/; Expires=Thu, 01-Feb-2024 03:36:35 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDL4A3OX-1A-6B64; Domain=.rubiconproject.com; Path=/; Expires=Thu, 01-Feb-2024 03:36:35 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpCQ/IUO3E0XO9DtVM30fCggXrkegRyN1m5ypmLp6SfHRzt7lzUOuxqX3BSc/2+e+LggJ3pD4CYm+2FYHm3PAja0A+VO7RH1E0=; Domain=.rubiconproject.com; Path=/; Expires=Thu, 01-Feb-2024 03:36:35 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 28bcb5780d6b031cd29d8bf2b500e82a
fe1efba67449f89b9c1305b30c4772c556dec038
694a3f95bd0f353292f4d9e7efee87f8150d00d87086eb273bb5f4a1e2709e6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4921
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:36 GMT
Last-Modified: Wed, 01 Feb 2023 02:14:35 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
sb.scorecardresearch.com/b?c1=2&c2=6036202&cs_it=b3&cv=3.8.0.210223&ns__t=1675222615305&ns_c=UTF-8&c7=https%3A%2F%2Fwww.retailmenot.com%2F&c8=RetailMeNot%3A%20Shop%20and%20Save%20with%20Coupons%20%26%20Cash%20Back&c9=
54.230.111.88204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=2&c2=6036202&cs_it=b3&cv=3.8.0.210223&ns__t=1675222615305&ns_c=UTF-8&c7=https%3A%2F%2Fwww.retailmenot.com%2F&c8=RetailMeNot%3A%20Shop%20and%20Save%20with%20Coupons%20%26%20Cash%20Back&c9=
IP 54.230.111.88:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=2&c2=6036202&cs_it=b3&cv=3.8.0.210223&ns__t=1675222615305&ns_c=UTF-8&c7=https%3A%2F%2Fwww.retailmenot.com%2F&c8=RetailMeNot%3A%20Shop%20and%20Save%20with%20Coupons%20%26%20Cash%20Back&c9= HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 01 Feb 2023 03:36:36 GMT
set-cookie: UID=1DB5937f3c20304c77a3c931675222596; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h9JzFvCYs30wojNAJC93SGpgoBZNBVAfyFDCqp_MVBnLWR9AyyhQgg==
X-Firefox-Spdy: h2
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=gg_n-index_n-MediaNet_ox-db5_cnv_n-sharethrough_pm-db5_ym_rbd_n-vmg_an-db5_sovrn_3lift&dcc=t
52.95.125.22200 OK 64 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=gg_n-index_n-MediaNet_ox-db5_cnv_n-sharethrough_pm-db5_ym_rbd_n-vmg_an-db5_sovrn_3lift&dcc=t
IP 52.95.125.22:0
File type HTML document, ASCII text
Hash be99f9f8ced5e5eb1f9721d861712f89
4291ee98f7ce20471796ec89961abb1acb2af1d8
f17fe415b91a13ea86b93344389e18c996384323ca3c2f4267b18c96b8314a12
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=gg_n-index_n-MediaNet_ox-db5_cnv_n-sharethrough_pm-db5_ym_rbd_n-vmg_an-db5_sovrn_3lift&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Wed, 01 Feb 2023 03:36:36 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 64
Connection: keep-alive
x-amz-rid: 8XPCRC6TE2Z36Z4Z5MQ7
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
23.61.233.63200 OK 17 kB URL HTTP/2 secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
IP 23.61.233.63:0
File type Unicode text, UTF-8 text, with very long lines (36525), with NEL line terminators
Hash 65875d9adc4599663a61e744c57d3e08
da7689e79bd92cd1c676badf0fb897f045d48653
830050c7e3b735c29efa65defb4de8dc42969a8cbb12e520479f9d067a90f4bf
GET /js/pubcid/latest/pubcid.min.js HTTP/1.1
Host: secure.cdn.fastclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Thu, 13 Oct 2022 18:14:48 GMT
etag: "d4ed-5eaee7c12df48-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 17131
content-type: application/javascript
cache-control: max-age=900
expires: Wed, 01 Feb 2023 03:51:36 GMT
date: Wed, 01 Feb 2023 03:36:36 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bf0b4a1326381ca6600115125549d110
b9547df16eac627e61d68ae7e7443c415d586c8c
fa023ed4c9db20484d6a2c144647a4c763c43efae8bac1f561ec71f058d86b8c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=MDBjZmYxNjBkNTY4NDNkY2E1NzI0NmRlMzIzYzA4ZjM=
142.250.74.34302 Found 345 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=MDBjZmYxNjBkNTY4NDNkY2E1NzI0NmRlMzIzYzA4ZjM=
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5fda62dfb4b030d36a1bbb4d69a2b53f
d70c211d0ed3ddfabb6f701e248f5823f61fd81d
a1eff69746cb32df23f2fa22519b00cc33e1735bf1b41f09422ca909a2fe2b3d
GET /pixel?google_nid=ziffdavis_dmp&google_cm&google_hm=MDBjZmYxNjBkNTY4NDNkY2E1NzI0NmRlMzIzYzA4ZjM= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm=&google_hm=MDBjZmYxNjBkNTY4NDNkY2E1NzI0NmRlMzIzYzA4ZjM=&google_tc=
date: Wed, 01 Feb 2023 03:36:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 345
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 03:51:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250
216.58.207.230200 OK 104 B URL HTTP/2 ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250
IP 216.58.207.230:0
File type MS Windows icon resource - 2 icons, 16x16, 16 colors, 32x32, 16 colors\012- data
Hash 32ac8a9b81788b981a3a7e13c14082d4
fbfd48a2bfe8d4247a975176f88d18c3c2ad1952
00cc7617e054596ff0aaabd8a93a9214dc5304bfe317316022dbf4fb3ea073d2
GET /favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 104
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 15:55:01 GMT
expires: Wed, 01 Feb 2023 15:55:01 GMT
cache-control: public, max-age=86400
age: 42095
last-modified: Tue, 08 May 2012 13:08:06 GMT
content-type: image/x-icon
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-54628-3&cid=542002927.1675222614&jid=2077608837&gjid=119434215&_gid=1529491755.1675222614&_u=aGBAAEAAAAAAACAAI~&z=1223906871
64.233.164.156200 OK 1.3 kB URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-54628-3&cid=542002927.1675222614&jid=2077608837&gjid=119434215&_gid=1529491755.1675222614&_u=aGBAAEAAAAAAACAAI~&z=1223906871
IP 64.233.164.156:0
Hash e7079afb3d626ea67c72d83ed50c2701
061474dea8f42465d3a733648f13cc512837e35f
1e43e257b43d99ba5cc2def4b25e1562546d59505e4edd6e3d4abc10b3f45921
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-54628-3&cid=542002927.1675222614&jid=2077608837&gjid=119434215&_gid=1529491755.1675222614&_u=aGBAAEAAAAAAACAAI~&z=1223906871 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.retailmenot.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 01 Feb 2023 03:36:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash b7c6437e7ee1b3850488ef9169818096
5417a7125e0b66171355016f30294dc4c580fe61
720fdb31870031d1f1c579359467e1a1431d26fc243c97b70d902764a66ac68a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1508
Cache-Control: max-age=141229
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:36 GMT
Etag: "63d95d0d-13a"
Expires: Thu, 02 Feb 2023 18:50:25 GMT
Last-Modified: Tue, 31 Jan 2023 18:25:17 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 314
cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm=&google_hm=MDBjZmYxNjBkNTY4NDNkY2E1NzI0NmRlMzIzYzA4ZjM=&google_tc=
142.250.74.34302 Found 254 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=ziffdavis_dmp&google_cm=&google_hm=MDBjZmYxNjBkNTY4NDNkY2E1NzI0NmRlMzIzYzA4ZjM=&google_tc=
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c2d0bebff457212836cd7579d6479f02
ed968673145f194fb9762843cbf8802865958146
96e5615dcd22a83b3f52f6371fd090f0b60223f6b954426a024e172707f2134c
GET /pixel?google_nid=ziffdavis_dmp&google_cm=&google_hm=MDBjZmYxNjBkNTY4NDNkY2E1NzI0NmRlMzIzYzA4ZjM=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?google_error=3
date: Wed, 01 Feb 2023 03:36:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bf0b4a1326381ca6600115125549d110
b9547df16eac627e61d68ae7e7443c415d586c8c
fa023ed4c9db20484d6a2c144647a4c763c43efae8bac1f561ec71f058d86b8c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
IP 142.250.74.131:0
Hash 24cc0c11220c6628fe53a9b1e2bddd24
42ddb023c147decb09e51f322adc9fff6cffc23a
727e6ec413f49c27c58683eb02494f43525b524c2b3327e830a5c29df1b62403
POST /s/gts1d4/-vVKdY11C3E HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:36 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
IP 142.250.74.131:0
Hash 24cc0c11220c6628fe53a9b1e2bddd24
42ddb023c147decb09e51f322adc9fff6cffc23a
727e6ec413f49c27c58683eb02494f43525b524c2b3327e830a5c29df1b62403
POST /s/gts1d4/-vVKdY11C3E HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:36 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.btloader.com/pv?tid=Wewfw5cN&w=4916872556838912&o=4981716645576704&cv=2.1.06-2-g014272c&r=false&vr=1280x939&pageURL=https%3A%2F%2Fwww.retailmenot.com%2F&sid=TPSWqlVaHo&upapi=true
130.211.23.194204 No Content 0 B URL HTTP/2 api.btloader.com/pv?tid=Wewfw5cN&w=4916872556838912&o=4981716645576704&cv=2.1.06-2-g014272c&r=false&vr=1280x939&pageURL=https%3A%2F%2Fwww.retailmenot.com%2F&sid=TPSWqlVaHo&upapi=true
IP 130.211.23.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pv?tid=Wewfw5cN&w=4916872556838912&o=4981716645576704&cv=2.1.06-2-g014272c&r=false&vr=1280x939&pageURL=https%3A%2F%2Fwww.retailmenot.com%2F&sid=TPSWqlVaHo&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Wed, 01 Feb 2023 03:36:36 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.btloader.com/country
130.211.23.194200 OK 16 B IP 130.211.23.194:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 452880c1a375b8fba8c9499f0930d05f
ffe5484a23512c2a574d837fe2d3267b134e48c8
8b3383aa4c71f1d816bfaf33e3ef2e8ded067698a7798b9f306204d5777b140d
GET /country HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: private, max-age=300, stale-while-revalidate=600, stale-if-error=600
content-type: application/json
vary: Origin
date: Wed, 01 Feb 2023 03:36:36 GMT
content-length: 16
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/-vVKdY11C3E
IP 142.250.74.131:0
Hash 24cc0c11220c6628fe53a9b1e2bddd24
42ddb023c147decb09e51f322adc9fff6cffc23a
727e6ec413f49c27c58683eb02494f43525b524c2b3327e830a5c29df1b62403
POST /s/gts1d4/-vVKdY11C3E HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:36 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?google_error=3
63.35.93.170303 See Other 0 B URL HTTP/2 zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?google_error=3
IP 63.35.93.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/qI109lRAEeGCiBIxORcFRw/?google_error=3 HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: h_zdbb=00cff160d56843dca57246de323c08f3; csp=0; zd_cs_go=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 303 See Other
date: Wed, 01 Feb 2023 03:36:36 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://aa.agkn.com/adscores/g.pixel?sid=9212302198
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: zd_cs_ns=1; Path=/; Max-Age=7200; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a327176edf538c07784f9b0da660c22d
4a56cfcac291dfe1cc177bd3eff976f106731834
aae92a95f747be0bca6982ed7e3e58af8ac74ff69c799b55046ab38474e149dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-54628-3&cid=542002927.1675222614&jid=2077608837&_u=aGBAAEAAAAAAACAAI~&z=899461952
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-54628-3&cid=542002927.1675222614&jid=2077608837&_u=aGBAAEAAAAAAACAAI~&z=899461952
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-54628-3&cid=542002927.1675222614&jid=2077608837&_u=aGBAAEAAAAAAACAAI~&z=899461952 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 03:36:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/gsi/client
142.250.74.109200 OK 105 kB URL HTTP/2 accounts.google.com/gsi/client
IP 142.250.74.109:0
Size 105 kB (105230 bytes)
Hash 2d6ff8ad1d6472e6fd7b552144c1bdde
0d8fea0298e636083d248e08a9690bc7ae170625
707853955f804a103d3cc48c6eb64f98f44dee571a917be322afe92b4141db36
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Wed, 01 Feb 2023 03:36:35 GMT
date: Wed, 01 Feb 2023 03:36:35 GMT
cache-control: private, max-age=1800
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-security-policy: script-src 'nonce-dpQO6H98Mw8Rrru6fHlfsg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-54628-3&cid=542002927.1675222614&jid=2077608837&_u=aGBAAEAAAAAAACAAI~&z=899461952
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-54628-3&cid=542002927.1675222614&jid=2077608837&_u=aGBAAEAAAAAAACAAI~&z=899461952
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-54628-3&cid=542002927.1675222614&jid=2077608837&_u=aGBAAEAAAAAAACAAI~&z=899461952 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 03:36:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash d0180edbe94eaa6312fdb40e0f45072e
f39aebe785f829ea86161b94748b36718ac32032
1881e7e55a7729dbcfe509d3efb56f05c56cc077880b20af313d8531c1cb06a5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6053
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Last-Modified: Wed, 01 Feb 2023 01:55:44 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 727
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fac8be8cf632a008cb377ac953dd755c
1c397f779b8d357fcc9994396204bed4beec1d06
97e40ea51c81b4a552656d6556da89bde56209edf71cd810a710e04895f3297f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20230125/r20110914/abg_lite_fy2021.js
142.250.74.1200 OK 8.9 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230125/r20110914/abg_lite_fy2021.js
IP 142.250.74.1:0
File type ASCII text, with very long lines (1569)
Hash f2def32331d05ead62d41a3b7d8a5aa6
886a89d32487bf14c4b6ca1455541859bfd9ab93
7d8b5162d6dc445509916c04871b423469ac015154fe015fe38f6529be4bbf77
GET /pagead/js/r20230125/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 8871
x-xss-protection: 0
date: Tue, 31 Jan 2023 22:20:36 GMT
expires: Tue, 14 Feb 2023 22:20:36 GMT
cache-control: public, max-age=1209600
age: 18961
etag: 9510037503091481574
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
216.58.211.2200 OK 49 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 216.58.211.2:0
File type ASCII text, with very long lines (3504)
Hash bd5ae07480c9bdd683635c3f0b52d43c
8e7c08934cf768367d1320a2d77703dafff9e5d8
e09a19f1eb7f2ae3bc71c1b12681c54162e713ffd7027e8abd6abc08f6abacb9
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 49075
date: Wed, 01 Feb 2023 03:36:37 GMT
expires: Wed, 01 Feb 2023 03:36:37 GMT
cache-control: private, max-age=3000
etag: "1675083396089714"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?tp=neusbftgslopjfixorwbst&tpc=CZnoZ%2BZikE6wwwol9FH5%2FX3E6lVe%2Fi2BPqmISYjX2i0%3D
63.35.93.170303 See Other 0 B URL HTTP/2 zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?tp=neusbftgslopjfixorwbst&tpc=CZnoZ%2BZikE6wwwol9FH5%2FX3E6lVe%2Fi2BPqmISYjX2i0%3D
IP 63.35.93.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/qI109lRAEeGCiBIxORcFRw/?tp=neusbftgslopjfixorwbst&tpc=CZnoZ%2BZikE6wwwol9FH5%2FX3E6lVe%2Fi2BPqmISYjX2i0%3D HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: h_zdbb=00cff160d56843dca57246de323c08f3; csp=0; zd_cs_go=1; zd_cs_ns=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 303 See Other
date: Wed, 01 Feb 2023 03:36:37 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://stags.bluekai.com/site/31875?limit=0&id=00cff160d56843dca57246de323c08f3&redir=https%3A//zdbb.net/l/qI109lRAEeGCiBIxORcFRw/%3Ftp%3Dbkcsbftodcapjfixorcfrw%26tpc%3D%24_BK_UUID
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: zd_cs_ns=1; Path=/; Max-Age=2592000; Domain=.zdbb.net; SameSite=None; Secure
zd_cs_bk=1; Path=/; Max-Age=7200; Domain=.zdbb.net; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.criteo.net/js/ld/publishertag.prebid.132.js
178.250.2.130200 OK 91 kB URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.132.js
IP 178.250.2.130:0
Hash 1d782a0024c4c79d68350b9476332563
0b26b36ef61dc49b842cfd0f83ba52c9e34d823b
29a9852d5dccbee3c217cc1f34ead414f0985116a2aab874bd19b5aa90edb5d9
GET /js/ld/publishertag.prebid.132.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 03:36:36 GMT
content-type: text/javascript
last-modified: Mon, 24 Oct 2022 11:21:19 GMT
etag: W/"6356752f-16294"
expires: Thu, 02 Feb 2023 03:36:36 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-ad-exit-0.1.mjs
142.250.74.161200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-ad-exit-0.1.mjs
IP 142.250.74.161:0
File type ASCII text, with very long lines (14751)
Hash 73e00d54af81c3fab604b50e24c8e9c3
69acac1ec53fcbcf886bb240adabd050520197f9
3347e49ea6e174315c1bee3660a9988e4c7fe184a7a1176cf2aceb307c73125a
GET /rtv/012301181928000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "47662644ea8653a3"
content-type: text/javascript; charset=UTF-8
age: 120720
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-analytics-0.1.mjs
142.250.74.161200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-analytics-0.1.mjs
IP 142.250.74.161:0
File type ASCII text, with very long lines (65534)
Hash 71f3ba24b0a01ade500d97ad0b8f3617
508b7affbf3e3c2b8bf4f46ebcb69ea29855bf9a
34c90f195073264a8f3e51bb9582b73665f65d7b053a031400c48bf627ca9d69
GET /rtv/012301181928000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28817
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "6eb387830c268337"
content-type: text/javascript; charset=UTF-8
age: 120720
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012301181928000/v0/amp-form-0.1.mjs
142.250.74.161200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-form-0.1.mjs
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (41057)
Hash d002971e2ddb3b4efd4dc02db13ee630
da135f871d06963e22f3dc6ec251cfbaed9740ad
a464154b965a79018453f4b97ffa8412a5059b0b521472bfc0e84df5c74d8fac
GET /rtv/012301181928000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12960
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "f74ebce85e2cb18a"
content-type: text/javascript; charset=UTF-8
age: 120720
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-fit-text-0.1.mjs
142.250.74.161200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-fit-text-0.1.mjs
IP 142.250.74.161:0
File type ASCII text, with very long lines (5021)
Hash 15dbec6a43680f6683938949e1b50562
fd479e89a3460ca0e48b5001aad0a2836df31dab
d08eefabc738f11545330db83c2d3e9a855add08db6b9d9217a15dd783c4f5c8
GET /rtv/012301181928000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1914
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "f13d3e1d36b26a3d"
content-type: text/javascript; charset=UTF-8
age: 120720
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto%3A400%2C700
142.250.74.74200 OK 593 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A400%2C700
IP 142.250.74.74:0
Hash 7b6c2a26085deda787fc946f1fc5f5db
cdf77d71bc1da1958e07d7667f77a4fcb0dadd36
11ccaeea764811a3e6b17d618775cc9840132fddeac4f70a85c72c23e4971a26
GET /css?family=Roboto%3A400%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 03:36:37 GMT
date: Wed, 01 Feb 2023 03:36:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 192877
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 52051
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stags.bluekai.com/site/31875?limit=0&id=00cff160d56843dca57246de323c08f3&redir=https%3A//zdbb.net/l/qI109lRAEeGCiBIxORcFRw/%3Ftp%3Dbkcsbftodcapjfixorcfrw%26tpc%3D%24_BK_UUID
184.24.45.23200 OK 62 B URL HTTP/2 stags.bluekai.com/site/31875?limit=0&id=00cff160d56843dca57246de323c08f3&redir=https%3A//zdbb.net/l/qI109lRAEeGCiBIxORcFRw/%3Ftp%3Dbkcsbftodcapjfixorcfrw%26tpc%3D%24_BK_UUID
IP 184.24.45.23:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3f386f5061436a0338a64e0910db495d
599fe4a552c991a2b3ce5a1660732bf7b21fb901
0af3aae90b7de9fdceee2ab421378ea2f54c74be81ef43fc6c1790a032755d80
GET /site/31875?limit=0&id=00cff160d56843dca57246de323c08f3&redir=https%3A//zdbb.net/l/qI109lRAEeGCiBIxORcFRw/%3Ftp%3Dbkcsbftodcapjfixorcfrw%26tpc%3D%24_BK_UUID HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 62
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Wed, 01 Feb 2023 03:36:37 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.static.zdbb.net/js/zd-core-olt.min.js?v=5
23.36.79.10200 OK 844 B URL HTTP/2 cdn.static.zdbb.net/js/zd-core-olt.min.js?v=5
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (844), with no line terminators
Hash 3680b6923e0351483626ef1572e223a5
2e67500c109734f99d699aadf37293d70a62e69c
1331ce07d67579b7a85c3f1deb9479460b198356c6d1aee8de72daa1d5e377b2
GET /js/zd-core-olt.min.js?v=5 HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Cookie: h_zdbb=00cff160d56843dca57246de323c08f3; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Q/u3p+NgznA4Z5sLSqxcENoeDpLnsVYCGaexphO2rjcfFWXxytxlnUBNuUwSUL4WprbXqzLY3ak=
x-amz-request-id: EYRB1DCJEQP0WAJX
last-modified: Thu, 19 Jan 2023 13:29:22 GMT
x-amz-version-id: ksyZCiHd6F9Sr6LKgHf4Gb78GFVc90Y1
accept-ranges: bytes
content-type: application/javascript
content-length: 844
cache-control: max-age=604800
expires: Wed, 08 Feb 2023 03:36:37 GMT
date: Wed, 01 Feb 2023 03:36:37 GMT
X-Firefox-Spdy: h2
cdn.static.zdbb.net/js/krux-coretag.js
23.36.79.10200 OK 255 B URL HTTP/2 cdn.static.zdbb.net/js/krux-coretag.js
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (335), with no line terminators
Hash 6c9513103cbd1be53daa576fb7cab6ba
be6c635a337ee938ad4182af45f2f29ec982130d
58fbb650ec1be39443da048be527cca832f76e1712f7822ccf3cba36fd44097b
GET /js/krux-coretag.js HTTP/1.1
Host: cdn.static.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Cookie: h_zdbb=00cff160d56843dca57246de323c08f3; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: pu/BgZCbgeFMUw/rSZgg5J/txH5N/K+LRNbZ50Fjf/ld0uyGRgyYwvUrzHoDe80Cfn1SK2an3qk=
x-amz-request-id: SBJXA0KZBD584QJY
last-modified: Thu, 19 Jan 2023 13:29:21 GMT
x-amz-version-id: bjYX9xzM_g.4U.3MMmOL7uV3FbdBsTwE
accept-ranges: bytes
content-type: application/javascript
content-encoding: gzip
content-length: 255
cache-control: max-age=86400
expires: Thu, 02 Feb 2023 03:36:37 GMT
date: Wed, 01 Feb 2023 03:36:37 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
a.retailmenot.com/__wsm.gif
54.221.233.65200 OK 35 B URL HTTP/1.1 a.retailmenot.com/__wsm.gif
IP 54.221.233.65:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /__wsm.gif HTTP/1.1
Host: a.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1435
Origin: https://www.retailmenot.com
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D; zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5; _ga=GA1.2.542002927.1675222614; _gid=GA1.2.1529491755.1675222614; visitor=D3uVX0DNEU; session=D3uVX0DNEUldl4a27s; userQualifier=CLDEMDPFJZCITETL2GHLTV3D3I; deviceFingerprint=XTEZPPONO5FGPMGFCH27OQDSJM; overlord_viewInstanceUuid=PTMUWLY4XZE4FAZQDOOC6BCDJM; out_referrer=; _gat=1; forterToken=401c0d3bd7aa43cfb5094eb8d53669f0_1675222615146__UDF4_9ck; fpid=00cff160d56843dca57246de323c08f3; __gads=ID=bc61d06e41ea2446:T=1675222596:S=ALNI_MYyY5l196E-tt1yRQQfi_s1mEZzow; __gpi=UID=00000bad4aae1a69:T=1675222596:RT=1675222596:S=ALNI_MaoEg6_ndCY0S5ut6Lz3dEjbVHfAg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: https://www.retailmenot.com, https://www.retailmenot.com
Cache-Control: no-cache, private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
Date: Wed, 01 Feb 2023 03:36:37 GMT
Expires: Sun, 03 Feb 2013 03:36:37 GMT
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Pragma: no-cache, no-cache
Server: openresty/1.11.2.5
X-Content-Type-Options: nosniff, nosniff
Content-Length: 35
Connection: keep-alive
jogger.zdbb.net/check?href=https%3A%2F%2Fwww.retailmenot.com%2F
34.202.113.110200 OK 5 B URL HTTP/2 jogger.zdbb.net/check?href=https%3A%2F%2Fwww.retailmenot.com%2F
IP 34.202.113.110:0
File type ASCII text, with no line terminators
Hash 946003f97ccc52d5d3b54ac0ec31bbfc
0ed2d7b5cdb77627bc46c6fac5026ec27b694d42
4e523a5ae5b4636c75901b79fafbd3912e41dc7987414e688b09d4b436ff22b3
GET /check?href=https%3A%2F%2Fwww.retailmenot.com%2F HTTP/1.1
Host: jogger.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:37 GMT
content-type: text/plain; charset=utf-8
content-length: 5
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Cache-Control
cache-control: max-age=795560
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64da9ead45efc337a345467b3a59ca64
974256abfd942d68cdedededb74dbf2e6575fc74
df8e75a7494f9587b4d9265a58c7344650512a57a2e7b6d95a683b434102fbe6
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 905
Cache-Control: max-age=145632
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:38 GMT
Etag: "63d9709d-1d7"
Expires: Thu, 02 Feb 2023 20:03:50 GMT
Last-Modified: Tue, 31 Jan 2023 19:48:45 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 77b9605ca59aef81d089753980d55552
a4a9e29e42ae2ed34f7fae5f5da98c78626c356a
fde0ba358cb7f2caedc1ae78245e575d03425e261e8d7bd921c61c6f7020bca0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5560
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:38 GMT
Last-Modified: Wed, 01 Feb 2023 02:03:58 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 314
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:37 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=z-sljF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czQ0U0ljMTBVVVlWMnV1OEhiNFRtM0tRUVVlVzklMkZFMlhZUExpbWloaGVsNA; expires=Mon, 26 Feb 2024 03:36:38 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 370534
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e24b648009bb4c419c3bf2c995832b00
457168a7a1f2cfff41ebcd7855410c08001eb5d4
c4f888188d5b4c7885cd16c39e5e4915a45bc91e8303a6e62fcd2e433a80aee1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5462
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:38 GMT
Last-Modified: Wed, 01 Feb 2023 02:05:37 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e24b648009bb4c419c3bf2c995832b00
457168a7a1f2cfff41ebcd7855410c08001eb5d4
c4f888188d5b4c7885cd16c39e5e4915a45bc91e8303a6e62fcd2e433a80aee1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5462
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:38 GMT
Last-Modified: Wed, 01 Feb 2023 02:05:37 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 313
pixel.adsafeprotected.com/mon?anId=7529&campId=1140x160&pubId=5061015317&chanId=22562872621&placementId=5776132921&pubCreative=138419165669&pubOrder=2899385020&cb=1580949244&adsafe_par&impId=98b055b8-a1e1-11ed-ab85-02c790015d1e&adsafe_url=https%3A%2F%2Fwww.retailmenot.com%2F&adsafe_type=abdfq&adsafe_jsinfo=,id:c77304db-5fb4-48ec-53fe-3a8121d642f1,c:2W8UAh,sl:inView,em:true,fr:true,thd:1,mn:jsserver-primary-bb8697c85-pnt7l,rg:ie,pt:1-5-15,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:228,mot:0,app:0,maw:0,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,pl:,rmeas:1,rend:1,renddet:IMG.qs,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:250,oid:a1cea020-a1e1-11ed-8f03-ee1dbfd6a001,v:19.8.385,sp:1,st:0,fwm:0,wr:1280.939,sr:1280.1024,ov:0
34.240.30.150200 OK 43 B URL HTTP/2 pixel.adsafeprotected.com/mon?anId=7529&campId=1140x160&pubId=5061015317&chanId=22562872621&placementId=5776132921&pubCreative=138419165669&pubOrder=2899385020&cb=1580949244&adsafe_par&impId=98b055b8-a1e1-11ed-ab85-02c790015d1e&adsafe_url=https%3A%2F%2Fwww.retailmenot.com%2F&adsafe_type=abdfq&adsafe_jsinfo=,id:c77304db-5fb4-48ec-53fe-3a8121d642f1,c:2W8UAh,sl:inView,em:true,fr:true,thd:1,mn:jsserver-primary-bb8697c85-pnt7l,rg:ie,pt:1-5-15,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:228,mot:0,app:0,maw:0,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,pl:,rmeas:1,rend:1,renddet:IMG.qs,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:250,oid:a1cea020-a1e1-11ed-8f03-ee1dbfd6a001,v:19.8.385,sp:1,st:0,fwm:0,wr:1280.939,sr:1280.1024,ov:0
IP 34.240.30.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /mon?anId=7529&campId=1140x160&pubId=5061015317&chanId=22562872621&placementId=5776132921&pubCreative=138419165669&pubOrder=2899385020&cb=1580949244&adsafe_par&impId=98b055b8-a1e1-11ed-ab85-02c790015d1e&adsafe_url=https%3A%2F%2Fwww.retailmenot.com%2F&adsafe_type=abdfq&adsafe_jsinfo=,id:c77304db-5fb4-48ec-53fe-3a8121d642f1,c:2W8UAh,sl:inView,em:true,fr:true,thd:1,mn:jsserver-primary-bb8697c85-pnt7l,rg:ie,pt:1-5-15,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:228,mot:0,app:0,maw:0,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,pl:,rmeas:1,rend:1,renddet:IMG.qs,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:250,oid:a1cea020-a1e1-11ed-8f03-ee1dbfd6a001,v:19.8.385,sp:1,st:0,fwm:0,wr:1280.939,sr:1280.1024,ov:0 HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:38 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: app03.ie.303net.net
X-Firefox-Spdy: h2
cdn.krxd.net/controltag/spgdj7g8u.js
151.101.130.133200 OK 22 B URL HTTP/2 cdn.krxd.net/controltag/spgdj7g8u.js
IP 151.101.130.133:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 49fced5a15e8763d46199088fad93fca
8b3f69bdb1250e55ab9968a157416c8968369ec3
09819ee7c805183bdc1c2cb02e46b868c31b426baa5bbede8b56ae6163af04be
GET /controltag/spgdj7g8u.js HTTP/1.1
Host: cdn.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-app-cache: MISS
cache-control: public, max-age=1200
x-response-time: 0
content-encoding: gzip
x-age: 0
x-cdn-backend: 4FrRTvEr9h480D4BywjehZ--F_config_service_ash_prod
via: 1.1 varnish, 1.1 varnish
x-do-esi: esi
accept-ranges: bytes
date: Wed, 01 Feb 2023 03:36:38 GMT
age: 438
x-served-by: config-service-a002-ash-prod.krxd.net, cache-iad-kjyo7100110-IAD, cache-bma1662-BMA
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 38, 3
x-timer: S1675222598.224629,VS0,VE0
vary: Accept-Encoding
content-length: 22
X-Firefox-Spdy: h2
401c0d3bd7aa43cfb5094eb8d53669f0-2c5de9923d36.cdn.forter.com/prop.json
54.158.164.13200 OK 2 B URL HTTP/1.1 401c0d3bd7aa43cfb5094eb8d53669f0-2c5de9923d36.cdn.forter.com/prop.json
IP 54.158.164.13:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /prop.json HTTP/1.1
Host: 401c0d3bd7aa43cfb5094eb8d53669f0-2c5de9923d36.cdn.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 03:36:38 GMT
Server: Apache
Last-Modified: Mon, 26 Dec 2022 12:09:06 GMT
ETag: "2-5f0ba0080600f"
Accept-Ranges: bytes
Content-Length: 2
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Access-Control-Allow-Origin: https://www.retailmenot.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-requested-with, content-type, x-csrf-token
Access-Control-Allow-Methods: PUT, GET, POST, DELETE, OPTIONS
Connection: close
Content-Type: application/json
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023012601&st=env
216.58.211.2200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023012601&st=env
IP 216.58.211.2:0
File type JSON data\012- , ASCII text, with very long lines (14950), with no line terminators
Hash 7bf7d88681a183b547a772c73d5fa64b
e21594aa074d4c190d7a1320d4facb0e82470e1a
212b9a9c8c89579f3362d3fd457c6bdb54f875916521842913a62803c44babc3
GET /getconfig/sodar?sv=200&tid=gpt&tv=2023012601&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Wed, 01 Feb 2023 03:36:38 GMT
server: cafe
content-length: 11284
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssSBHBgQjA3rhz2XQ5fJW8KurZEhNGDqCIbUgZ7w-n_gIpGdemWeCsQ9jByNo_3kIMdT80owef57xOpqVp2C4IzY61GAx-VCKpKe1c-02QiRfEW18mo&sig=Cg0ArKJSzDjo4FZrKObXEAE&id=lidar2&mcvt=1000&p=570,64,730,1204&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20230130&bin=7&avms=nio&bs=1268,939&mc=1&vu=1&app=0&itpl=3&adk=4218384821&rs=4&la=0&cr=0&vs=4&r=v&rst=1675222616745&rpt=311&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
216.58.211.2200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssSBHBgQjA3rhz2XQ5fJW8KurZEhNGDqCIbUgZ7w-n_gIpGdemWeCsQ9jByNo_3kIMdT80owef57xOpqVp2C4IzY61GAx-VCKpKe1c-02QiRfEW18mo&sig=Cg0ArKJSzDjo4FZrKObXEAE&id=lidar2&mcvt=1000&p=570,64,730,1204&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20230130&bin=7&avms=nio&bs=1268,939&mc=1&vu=1&app=0&itpl=3&adk=4218384821&rs=4&la=0&cr=0&vs=4&r=v&rst=1675222616745&rpt=311&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
IP 216.58.211.2:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjssSBHBgQjA3rhz2XQ5fJW8KurZEhNGDqCIbUgZ7w-n_gIpGdemWeCsQ9jByNo_3kIMdT80owef57xOpqVp2C4IzY61GAx-VCKpKe1c-02QiRfEW18mo&sig=Cg0ArKJSzDjo4FZrKObXEAE&id=lidar2&mcvt=1000&p=570,64,730,1204&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20230130&bin=7&avms=nio&bs=1268,939&mc=1&vu=1&app=0&itpl=3&adk=4218384821&rs=4&la=0&cr=0&vs=4&r=v&rst=1675222616745&rpt=311&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Wed, 01 Feb 2023 03:36:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash f5c2fbe9c192c243a56338be541dcf8e
3d7837771c0fdf2e935aa749ae0dc3bededace32
e608a491f165ba493da8608c216116bd7c7814b6faca79e71c740b10db69c512
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=110843
Date: Wed, 01 Feb 2023 03:36:38 GMT
Etag: "63d8e6e3-1d7"
Expires: Thu, 02 Feb 2023 10:24:01 GMT
Last-Modified: Tue, 31 Jan 2023 10:01:07 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: O1WWdVBGkEZ3yp0D1nR8cW5Orw5WB424R1ELYVLqezdJ9wW9UQ_LvQ==
Age: 1374
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash f5c2fbe9c192c243a56338be541dcf8e
3d7837771c0fdf2e935aa749ae0dc3bededace32
e608a491f165ba493da8608c216116bd7c7814b6faca79e71c740b10db69c512
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=110961
Date: Wed, 01 Feb 2023 03:36:38 GMT
Etag: "63d8e6e3-1d7"
Expires: Thu, 02 Feb 2023 10:25:59 GMT
Last-Modified: Tue, 31 Jan 2023 10:01:07 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TOkrAr1_6mbNlmp7wx5J6JetdWhePTV2XEl8T7JbbW5yuXBY--17XA==
Age: 1492
gum.criteo.com/syncframe?origin=publishertag&topUrl=www.retailmenot.com
178.250.2.146200 OK 5.6 kB URL HTTP/2 gum.criteo.com/syncframe?origin=publishertag&topUrl=www.retailmenot.com
IP 178.250.2.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 41aa03adfc2a9db8d890bfda1b029dc9
6345dd8186f4d50ad1be360d0abeebe83f7d938e
40fad421c6c59c2ee70955983e327e2c53bdfb9e93e50189c9c6f932860bb292
GET /syncframe?origin=publishertag&topUrl=www.retailmenot.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:37 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=6e0374dc-a6b7-4c16-8fc8-d52b304d8c64; expires=Mon, 26 Feb 2024 03:36:37 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 866839
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash f5c2fbe9c192c243a56338be541dcf8e
3d7837771c0fdf2e935aa749ae0dc3bededace32
e608a491f165ba493da8608c216116bd7c7814b6faca79e71c740b10db69c512
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 03:36:38 GMT
Last-Modified: Wed, 01 Feb 2023 03:13:30 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LWDIExP-L3a_oVEVdzlx8LDGtgwtN2Gr5iahdIJxbxg9bAwlwsyX6g==
Age: 1388
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash f5c2fbe9c192c243a56338be541dcf8e
3d7837771c0fdf2e935aa749ae0dc3bededace32
e608a491f165ba493da8608c216116bd7c7814b6faca79e71c740b10db69c512
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 03:36:38 GMT
Last-Modified: Wed, 01 Feb 2023 03:13:34 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LN78JVT3HVnlXJvYrBRBfxi98lDIboFEyRBthfz7WJZoli9weu0fUQ==
Age: 1385
zdbb.net/check_c
63.35.93.170200 OK 32 B IP 63.35.93.170:0
File type ASCII text, with no line terminators
Hash eb331b9ac0d8976e09aab5406a80d0ac
bfde7d17a47d46d2bb617e9658ddc370f0db36ca
ab59f4cb5756682795ecfe82c7a15a97cd35b57f5f286b290ebd7d5d035d6097
GET /check_c HTTP/1.1
Host: zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Cookie: h_zdbb=00cff160d56843dca57246de323c08f3; csp=0; zd_cs_go=1; zd_cs_ns=1; zd_cs_bk=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:38 GMT
content-type: text/plain; charset=utf-8
content-length: 32
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
p3p: CP="ALL DSP COR NID"
server: Ziff Davis BuyerBase
access-control-allow-credentials: true
access-control-allow-origin: https://www.retailmenot.com
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8UHp,pingTime:-10,time:691,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675222617730%7C%7Ca231adf865a24f6893dca064ef19b51a%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7Cda6a5e5dbbb3ddc7ef351067516acaf4%7C%7C947829549ec7aa98fa76437224b118a5%7C%7C516aa46d0360f09eecfe124645baf9b6%7C%7Ca5e7ff0efdcc284610e55814a5cbbcd3%7C%7Cb2b60d5745ce5305d9803a4f0bd31bd4%7C%7C1663701684%7D
54.145.25.152200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8UHp,pingTime:-10,time:691,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675222617730%7C%7Ca231adf865a24f6893dca064ef19b51a%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7Cda6a5e5dbbb3ddc7ef351067516acaf4%7C%7C947829549ec7aa98fa76437224b118a5%7C%7C516aa46d0360f09eecfe124645baf9b6%7C%7Ca5e7ff0efdcc284610e55814a5cbbcd3%7C%7Cb2b60d5745ce5305d9803a4f0bd31bd4%7C%7C1663701684%7D
IP 54.145.25.152:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8UHp,pingTime:-10,time:691,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675222617730%7C%7Ca231adf865a24f6893dca064ef19b51a%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7Cda6a5e5dbbb3ddc7ef351067516acaf4%7C%7C947829549ec7aa98fa76437224b118a5%7C%7C516aa46d0360f09eecfe124645baf9b6%7C%7Ca5e7ff0efdcc284610e55814a5cbbcd3%7C%7Cb2b60d5745ce5305d9803a4f0bd31bd4%7C%7C1663701684%7D HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:38 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt03.va.303net.net
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 169 B IP 178.250.0.157:0
Hash f635cb8ffda84169a578942b2114257f
2b05656787bbf6681cff916f493e791b104113c1
36eb37363e6e1f51b6108055a53e2b76aecf2cfe22c48787b04a1bd780717651
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=z-sljF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czQ0U0ljMTBVVVlWMnV1OEhiNFRtM0tRUVVlVzklMkZFMlhZUExpbWloaGVsNA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:37 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=DXeGMF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czQ0U0ljMTBVVVlWMnV1OEhiNFRtM0wyTXFFM2hIVVdKOGVyS2pHRHFxYUo; expires=Mon, 26 Feb 2024 03:36:38 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 175300
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8UDD,time:457,type:e,env:%7Bar:self.0%7D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:457,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B228~100%5D,as:%5B228~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251%7D&br=g
54.145.25.152200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8UDD,time:457,type:e,env:%7Bar:self.0%7D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:457,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B228~100%5D,as:%5B228~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251%7D&br=g
IP 54.145.25.152:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8UDD,time:457,type:e,env:%7Bar:self.0%7D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:457,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B228~100%5D,as:%5B228~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:38 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt02.va.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8UBT,pingTime:0,time:349,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:349,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B119~100%5D,as:%5B119~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251%7D&br=g
54.145.25.152200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8UBT,pingTime:0,time:349,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:349,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B119~100%5D,as:%5B119~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251%7D&br=g
IP 54.145.25.152:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8UBT,pingTime:0,time:349,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:349,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B119~100%5D,as:%5B119~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:38 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt01.va.303net.net
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b108f85f518789e4407173de7290f564
37a4c72b8cafa2d2b0d38340338ec38e82e06534
6c3aab441a49813af851356e31b86fc0646c20dec6d4e218e3ac1cdb6c2a61b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5177
Cache-Control: max-age=121841
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:38 GMT
Etag: "63d902fe-1d7"
Expires: Thu, 02 Feb 2023 13:27:19 GMT
Last-Modified: Tue, 31 Jan 2023 12:01:02 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=zdbb&partner_uid=00cff160d56843dca57246de323c08f3
52.16.141.55204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=zdbb&partner_uid=00cff160d56843dca57246de323c08f3
IP 52.16.141.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=zdbb&partner_uid=00cff160d56843dca57246de323c08f3 HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 01 Feb 2023 03:36:38 GMT
set-cookie: _kuid_=PWlAUIeJ; Expires=Mon, 31-Jul-23 03:36:38 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n012-dub-prod.krxd.net
x-request-time: D=30 t=1675222598
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 8ef1dbe04ff3834735b0659e7ae82c62
56d86283c8861f679162e92c70bbea59f819b8dc
a41623bee3b144f94362b7351bf88236e4291f113068361be33209f550fb3373
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 03:36:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 01:42:55 GMT
Expires: Sun, 05 Feb 2023 01:42:54 GMT
Etag: "56d86283c8861f679162e92c70bbea59f819b8dc"
Cache-Control: max-age=338175,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7927a4d96d05b4e8-OSL
a.retailmenot.com/__wsm.gif
54.221.233.65200 OK 35 B URL HTTP/1.1 a.retailmenot.com/__wsm.gif
IP 54.221.233.65:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /__wsm.gif HTTP/1.1
Host: a.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1474
Origin: https://www.retailmenot.com
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D; zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5; _ga=GA1.2.542002927.1675222614; _gid=GA1.2.1529491755.1675222614; visitor=D3uVX0DNEU; session=D3uVX0DNEUldl4a27s; userQualifier=CLDEMDPFJZCITETL2GHLTV3D3I; deviceFingerprint=XTEZPPONO5FGPMGFCH27OQDSJM; overlord_viewInstanceUuid=PTMUWLY4XZE4FAZQDOOC6BCDJM; out_referrer=; _gat=1; forterToken=401c0d3bd7aa43cfb5094eb8d53669f0_1675222615146__UDF43_9ck; fpid=00cff160d56843dca57246de323c08f3; __gads=ID=bc61d06e41ea2446:T=1675222596:S=ALNI_MYyY5l196E-tt1yRQQfi_s1mEZzow; __gpi=UID=00000bad4aae1a69:T=1675222596:RT=1675222596:S=ALNI_MaoEg6_ndCY0S5ut6Lz3dEjbVHfAg; ftr_ncd=6; cto_bundle=PYMQal9rUkUwNExlRzcyJTJGOU81aE96MElnNDBUdnFKeXFzcUJpanFMalNZVXJ6JTJCWTk3ZFJMcUgxWWxNN1V1Z2dMOFVIUHptYnQ4a2xEdXQlMkI4Rk9rcnBrM2UzTEczdDJPY1BRYmpYSHgzdSUyRmlLR0dUMmxUbE02RGpRcFNDRmk2dTdLJTJGdFlCSm9hR1dtNnNDRHhZNGZiSGVrU01RJTNEJTNE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: https://www.retailmenot.com, https://www.retailmenot.com
Cache-Control: no-cache, private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
Date: Wed, 01 Feb 2023 03:36:38 GMT
Expires: Sun, 03 Feb 2013 03:36:38 GMT
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Pragma: no-cache, no-cache
Server: openresty/1.11.2.5
X-Content-Type-Options: nosniff, nosniff
Content-Length: 35
Connection: keep-alive
idsync.rlcdn.com/425686.gif?partner_uid=00cff160d56843dca57246de323c08f3
35.244.174.68451 Unavailable For Legal Reasons 0 B URL HTTP/2 idsync.rlcdn.com/425686.gif?partner_uid=00cff160d56843dca57246de323c08f3
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /425686.gif?partner_uid=00cff160d56843dca57246de323c08f3 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Wed, 01 Feb 2023 03:36:38 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
142.250.74.35200 OK 88 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
IP 142.250.74.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13847)
Hash 4a73c6a6d1b7ae448b3333ef2dcce3d1
57d443a098c4f68358f44ab3839b4b4238660cbb
7f1f63ea24e97cfb48410a048bc98a1a4c5109d2d3bd32c3b5e4eaac87e15a7e
GET /s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27431
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:28:39 GMT
expires: Wed, 31 Jan 2024 04:28:39 GMT
cache-control: public, max-age=31536000
age: 83279
last-modified: Mon, 22 Apr 2019 23:43:31 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
142.250.74.35200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
IP 142.250.74.35:0
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google SansRegularGoogle;GoogleSans-RegularGoogle\012- data
Hash 097c4b560f821fb05c628abb70fab199
4650bf1244b6cba45b222aa269c96ad8ea95ab42
a9bd7cfb72481bd844fa2e3cd4019c8b2ab2a232b50cabe62f8d9483e284f672
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 03:51:37 GMT
expires: Sun, 28 Jan 2024 03:51:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2019 23:42:54 GMT
content-type: font/ttf
age: 344701
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 8ef1dbe04ff3834735b0659e7ae82c62
56d86283c8861f679162e92c70bbea59f819b8dc
a41623bee3b144f94362b7351bf88236e4291f113068361be33209f550fb3373
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 03:36:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 01:42:55 GMT
Expires: Sun, 05 Feb 2023 01:42:54 GMT
Etag: "56d86283c8861f679162e92c70bbea59f819b8dc"
Cache-Control: max-age=338175,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7927a4db2de2b4e8-OSL
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash faf840b980dcfcb792bbbd2b584b6374
e50dcd9ee625c7779052b27133153edfcb45d505
a3d95f9f62f32ef7f479456b334343fb6ddd670434409d30a880164e64fa4721
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5784
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:38 GMT
Last-Modified: Wed, 01 Feb 2023 02:00:14 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8USU,pingTime:1,time:1404,type:p,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1404,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1174~100%5D,as:%5B1174~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:918,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251,sis:851%7D&br=g
54.145.25.152200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8USU,pingTime:1,time:1404,type:p,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1404,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1174~100%5D,as:%5B1174~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:918,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251,sis:851%7D&br=g
IP 54.145.25.152:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8USU,pingTime:1,time:1404,type:p,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1404,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1174~100%5D,as:%5B1174~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:918,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251,sis:851%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:38 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt10.va.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8USZ,pingTime:1,time:1409,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1409,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1179~100%5D,as:%5B1179~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:918,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251,sis:851,metricId:publ1,cmr:t%7D&br=g
54.145.25.152200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8USZ,pingTime:1,time:1409,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1409,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1179~100%5D,as:%5B1179~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:918,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251,sis:851,metricId:publ1,cmr:t%7D&br=g
IP 54.145.25.152:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8USZ,pingTime:1,time:1409,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1409,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1179~100%5D,as:%5B1179~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:918,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251,sis:851,metricId:publ1,cmr:t%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:38 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt02.va.303net.net
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
178.250.6.158200 OK 82 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.158:0
Hash fa4dc0357ad745a755e680e8eedfb96f
04234cb6ebdd9fd8d63afd742e6c6b02d7ec42b8
eb9366d0486ef1cbd3ecceaf7d279481abb2a012cfe48cfda8d470f1fb6fb3d2
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:37 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 118804
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8USW,pingTime:1,time:1406,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1406,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1177~100%5D,as:%5B1177~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:918,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251,sis:851%7D&br=g
54.145.25.152200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8USW,pingTime:1,time:1406,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1406,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1177~100%5D,as:%5B1177~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:918,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251,sis:851%7D&br=g
IP 54.145.25.152:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=7529&asId=c77304db-5fb4-48ec-53fe-3a8121d642f1&tv=%7Bc:2W8USW,pingTime:1,time:1406,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:1140,h:160,t:249%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1406,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:249,wc:0.0.1280.939,ac:64.570.1140.160,am:i,cc:64.570.1140.160,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1177~100%5D,as:%5B1177~1140.160%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:918,fm:tuzZnvG+11%7C12%7C13%7C14%7C15*.7529%7C151%7C16,idMap:15*,rmeas:1,rend:1,renddet:IMG.qs,siq:251,sis:851%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:38 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt14.va.303net.net
X-Firefox-Spdy: h2
cdn0.forter.com/2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/prop.json?_=1675222618410
54.204.202.163200 OK 20 B URL HTTP/1.1 cdn0.forter.com/2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/prop.json?_=1675222618410
IP 54.204.202.163:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
GET /2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/prop.json?_=1675222618410 HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://www.retailmenot.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: no-cache
Expires: -1
Pragma: no-cache
Content-Type: application/json
Connection: keep-alive
Date: Wed, 01 Feb 2023 03:36:39 GMT
Transfer-Encoding: chunked
cdn0.forter.com/2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/prop.json?_=1675222618970
54.204.202.163200 OK 20 B URL HTTP/1.1 cdn0.forter.com/2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/prop.json?_=1675222618970
IP 54.204.202.163:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
GET /2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/prop.json?_=1675222618970 HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://www.retailmenot.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: no-cache
Expires: -1
Pragma: no-cache
Content-Type: application/json
Connection: keep-alive
Date: Wed, 01 Feb 2023 03:36:39 GMT
Transfer-Encoding: chunked
a.retailmenot.com/__wsm.gif
54.221.233.65200 OK 35 B URL HTTP/1.1 a.retailmenot.com/__wsm.gif
IP 54.221.233.65:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /__wsm.gif HTTP/1.1
Host: a.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2007
Origin: https://www.retailmenot.com
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D; zd_session_id=6f52262f-7168-49dc-bc18-c5560f5c25c5; _ga=GA1.2.542002927.1675222614; _gid=GA1.2.1529491755.1675222614; visitor=D3uVX0DNEU; session=D3uVX0DNEUldl4a27s; userQualifier=CLDEMDPFJZCITETL2GHLTV3D3I; deviceFingerprint=XTEZPPONO5FGPMGFCH27OQDSJM; overlord_viewInstanceUuid=PTMUWLY4XZE4FAZQDOOC6BCDJM; out_referrer=; _gat=1; forterToken=401c0d3bd7aa43cfb5094eb8d53669f0_1675222615146__UDF43_9ck; fpid=00cff160d56843dca57246de323c08f3; __gads=ID=bc61d06e41ea2446:T=1675222596:S=ALNI_MYyY5l196E-tt1yRQQfi_s1mEZzow; __gpi=UID=00000bad4aae1a69:T=1675222596:RT=1675222596:S=ALNI_MaoEg6_ndCY0S5ut6Lz3dEjbVHfAg; ftr_ncd=6; cto_bundle=PYMQal9rUkUwNExlRzcyJTJGOU81aE96MElnNDBUdnFKeXFzcUJpanFMalNZVXJ6JTJCWTk3ZFJMcUgxWWxNN1V1Z2dMOFVIUHptYnQ4a2xEdXQlMkI4Rk9rcnBrM2UzTEczdDJPY1BRYmpYSHgzdSUyRmlLR0dUMmxUbE02RGpRcFNDRmk2dTdLJTJGdFlCSm9hR1dtNnNDRHhZNGZiSGVrU01RJTNEJTNE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: https://www.retailmenot.com, https://www.retailmenot.com
Cache-Control: no-cache, private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
Date: Wed, 01 Feb 2023 03:36:39 GMT
Expires: Sun, 03 Feb 2013 03:36:39 GMT
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Pragma: no-cache, no-cache
Server: openresty/1.11.2.5
X-Content-Type-Options: nosniff, nosniff
Content-Length: 35
Connection: keep-alive
cdn0.forter.com/2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/prop.json?_=1675222619213
54.204.202.163200 OK 20 B URL HTTP/1.1 cdn0.forter.com/2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/prop.json?_=1675222619213
IP 54.204.202.163:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
GET /2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/prop.json?_=1675222619213 HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://www.retailmenot.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: no-cache
Expires: -1
Pragma: no-cache
Content-Type: application/json
Connection: keep-alive
Date: Wed, 01 Feb 2023 03:36:39 GMT
Transfer-Encoding: chunked
cdn0.forter.com/2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/wpt.json
54.204.202.163204 No Content 0 B URL HTTP/1.1 cdn0.forter.com/2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/wpt.json
IP 54.204.202.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/wpt.json HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.retailmenot.com/
Origin: https://www.retailmenot.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Vary: Access-Control-Request-Headers
Access-Control-Allow-Headers: content-type
Content-Length: 0
Date: Wed, 01 Feb 2023 03:36:39 GMT
Connection: keep-alive
cdn0.forter.com/2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/wpt.json
54.204.202.163200 OK 20 B URL HTTP/1.1 cdn0.forter.com/2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/wpt.json
IP 54.204.202.163:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
POST /2c5de9923d36/401c0d3bd7aa43cfb5094eb8d53669f0/wpt.json HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 29
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://www.retailmenot.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
Expires: -1
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Content-Length: 20
ETag: W/"14-Y53wuE/mmbSikKcT/WualL1N65U"
Date: Wed, 01 Feb 2023 03:36:39 GMT
Connection: keep-alive
btloader.com/tag?aax_id=AAX78275P%20&upapi=true
104.26.7.139302 Found 339 B URL HTTP/2 btloader.com/tag?aax_id=AAX78275P%20&upapi=true
IP 104.26.7.139:0
Hash df94602ef6568ea0d877d7f31ff7c3c4
efd1b2febb3241885cf1c346a5751a904d75cfee
57b53b0899a007b069496afae7aed13d482d52c60e3fda5c7b2dfde1342c1ad9
GET /tag?aax_id=AAX78275P%20&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 01 Feb 2023 03:36:35 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=3600, must-revalidate
location: /tag?o=4981716645576704&upapi=true
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 2147
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EgMwCOo7CjsXT82sbfZk%2FX57wlJlGFJZKvbgmKkRZefLEp%2B%2BGC8JUoivvTw1T40XMWfEj%2FKkmZ5XvPAVqN5GzDNFXIAJTZXGAtz5TNwiPNKzeBnjuznBJc3fh6SpYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7927a4c84acbb518-OSL
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.retailmenot.com%2F&domain=www.retailmenot.com&cw=1&pbt=1&lsw=1
178.250.2.146200 OK 22 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.retailmenot.com%2F&domain=www.retailmenot.com&cw=1&pbt=1&lsw=1
IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 91d4898f938e4920ac88f87453b33933
1bd4a04303c2501101656075ad8304e1a84eb91e
93ecc6762eafd376cbe2fd18250fa9f12c90f9a86b481430ef29ec40716d8f35
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.retailmenot.com%2F&domain=www.retailmenot.com&cw=1&pbt=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.retailmenot.com/
Origin: https://www.retailmenot.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:39 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://www.retailmenot.com
server-processing-duration-in-ticks: 491436
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d8ddbedc1b4dc892ea86a9e8379f142c
406c9a4a2b8fa2064b2d17e7349c4acb86f04997
5ae1de89660b713fc0587b708c4468939f90c4d28c984cf5ef4b1b2429bbd028
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6501
Cache-Control: max-age=115611
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 03:36:40 GMT
Etag: "63d8e57e-116"
Expires: Thu, 02 Feb 2023 11:43:31 GMT
Last-Modified: Tue, 31 Jan 2023 09:55:10 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 278
dsum.casalemedia.com/pbusermatch?origin=prebid&site_id=911720&p=1&i=0&gdpr=0&gdpr_consent=&us_privacy=1---&C=1
172.64.154.237200 OK 43 B URL HTTP/2 dsum.casalemedia.com/pbusermatch?origin=prebid&site_id=911720&p=1&i=0&gdpr=0&gdpr_consent=&us_privacy=1---&C=1
IP 172.64.154.237:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pbusermatch?origin=prebid&site_id=911720&p=1&i=0&gdpr=0&gdpr_consent=&us_privacy=1---&C=1 HTTP/1.1
Host: dsum.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:40 GMT
content-type: image/gif
content-length: 43
cf-ray: 7927a4e36f1d0b59-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dNKyP%2B%2BcRPViUftGV0tYQqeQyhzSb79QJyLmbEtAfn%2Bv1BDTqKhSoB7trTrxiyCvGHWdotDHVnuU0dyj6SsO7FR9TPvV0RyzKFwdiR%2FBbqmMVGhMW2Zlz18cvMwNjfm8sr2%2F6psx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.retailmenot.com%2F&domain=www.retailmenot.com&cw=1&pbt=1&lsw=1
178.250.2.146200 OK 485 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.retailmenot.com%2F&domain=www.retailmenot.com&cw=1&pbt=1&lsw=1
IP 178.250.2.146:0
Hash 508ce1a6d6847dea5daa01e9f75aed86
b3ce2d52ed4450069beb178162cffd4a727befca
ea128138b6f2909ec1ab36ce1e339e1e7f393cca50c26449e6d11c4d5f20d493
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.retailmenot.com%2F&domain=www.retailmenot.com&cw=1&pbt=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:39 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.retailmenot.com
server-processing-duration-in-ticks: 1398830
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
image8.pubmatic.com/AdServer/ImgSync?p=156082&us_privacy=1---&rdf=1
185.64.190.79200 OK 0 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=156082&us_privacy=1---&rdf=1
IP 185.64.190.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AdServer/ImgSync?p=156082&us_privacy=1---&rdf=1 HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:39 GMT
content-length: 0
X-Firefox-Spdy: h2
pixel.adsafeprotected.com/jload?anId=7529&campId=1140x160&pubId=5061015317&chanId=22562872621&placementId=5776132921&pubCreative=138419165669&pubOrder=2899385020&cb=1580949244&adsafe_par&impId=98b055b8-a1e1-11ed-ab85-02c790015d1e
34.240.30.150200 OK 13 kB URL HTTP/2 pixel.adsafeprotected.com/jload?anId=7529&campId=1140x160&pubId=5061015317&chanId=22562872621&placementId=5776132921&pubCreative=138419165669&pubOrder=2899385020&cb=1580949244&adsafe_par&impId=98b055b8-a1e1-11ed-ab85-02c790015d1e
IP 34.240.30.150:0
Hash bf10202a11ab999d4096db844fa1b410
976d4536723b649ecc870ea64808b0c4fb57d4e4
6571b27b993e3614254ed0cae3a443e4a3ce04f196228789c5ab9d44eb85ae17
GET /jload?anId=7529&campId=1140x160&pubId=5061015317&chanId=22562872621&placementId=5776132921&pubCreative=138419165669&pubOrder=2899385020&cb=1580949244&adsafe_par&impId=98b055b8-a1e1-11ed-ab85-02c790015d1e HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:37 GMT
content-type: application/javascript;charset=utf-8
pragma: no-cache
cache-control: no-cache
expires: Wed, 31 Dec 1969 23:59:59 GMT
access-control-allow-origin: pixel.adsafeprotected.com
access-control-allow-credentials: true
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/id5-api.js
104.22.53.86200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/id5-api.js
IP 104.22.53.86:0
GET /api/1.0/id5-api.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:36 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: CO+cPK9MlXQ+Pp7rzr8UBe9jXf3QVRyCEIXUUj0WHfDV3zQVrjcz3bOmEOU9iBqkaS9ucJx5v/0=
x-amz-request-id: H722FXZ7MH4EZWKX
last-modified: Wed, 18 Jan 2023 10:47:57 GMT
etag: W/"4d61440f9cbdbb9b0b5a43273c7c3caf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 1527
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7927a4cc9c6eb529-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.adsafeprotected.com/sca.17.6.2.js
54.230.111.33200 OK 0 B URL HTTP/2 static.adsafeprotected.com/sca.17.6.2.js
IP 54.230.111.33:0
GET /sca.17.6.2.js HTTP/1.1
Host: static.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 21 Sep 2022 15:36:17 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 19:21:34 GMT
etag: W/"1f3488247c90bb5de253d3d0cb3b7458"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: go8nfBUviNCPCwnrYX1LpMW5hEx3ASGy
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m3kqG7N_RJ1gSk5r0BXVGFNtnFuqPFxLvCiRo76hh2_ajzq_zlSCFA==
age: 11448021
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=publishertag&domain=retailmenot.com&sn=FirefoxSyncframe&so=0&topUrl=www.retailmenot.com&info=DXeGMF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czQ0U0ljMTBVVVlWMnV1OEhiNFRtM0wyTXFFM2hIVVdKOGVyS2pHRHFxYUo&idsd=1295005485,-1999677896&cw=1&lsw=1
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=publishertag&domain=retailmenot.com&sn=FirefoxSyncframe&so=0&topUrl=www.retailmenot.com&info=DXeGMF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czQ0U0ljMTBVVVlWMnV1OEhiNFRtM0wyTXFFM2hIVVdKOGVyS2pHRHFxYUo&idsd=1295005485,-1999677896&cw=1&lsw=1
IP 178.250.2.146:0
GET /sid/json?origin=publishertag&domain=retailmenot.com&sn=FirefoxSyncframe&so=0&topUrl=www.retailmenot.com&info=DXeGMF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czQ0U0ljMTBVVVlWMnV1OEhiNFRtM0wyTXFFM2hIVVdKOGVyS2pHRHFxYUo&idsd=1295005485,-1999677896&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=publishertag&topUrl=www.retailmenot.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:38 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 898057
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.prebid.js
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.js
IP 178.250.2.130:0
GET /js/ld/publishertag.prebid.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 03:36:38 GMT
content-type: text/javascript
last-modified: Wed, 18 Jan 2023 01:20:50 GMT
etag: W/"63c74972-162fb"
expires: Thu, 02 Feb 2023 03:36:38 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.retailmenot.com/
104.18.6.107200 OK 0 B IP 104.18.6.107:0
GET / HTTP/1.1
Host: www.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
x-rmn-cache: hit-fresh
x-rmn-cache-key: pgc-2:/:WEB
vary: Accept-Encoding
cf-cache-status: DYNAMIC
set-cookie: country=NO; Path=/; Secure
visitor=D3uVX0DNEU; Path=/; Expires=Mon, 31 Jan 2028 03:36:33 GMT
session=D3uVX0DNEUldl4a27s; Path=/; Expires=Wed, 01 Feb 2023 04:06:33 GMT
toggleServiceExperiments=%7B%7D; Domain=.retailmenot.com; Path=/
toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D; Domain=.retailmenot.com; Path=/
__cf_bm=ghK2A4t4ZyXDifVI739fEWM4qeZjOL0OF.fPQUp.MJo-1675222594-0-ASwtbvmIbsNvPygPYwuf+jc4/muLbQupb76UF3skjzCfnpC2uPkLQGZfb5MznRHRe0G+5RCdcUZniU26cAcM9vk=; path=/; expires=Wed, 01-Feb-23 04:06:34 GMT; domain=.www.retailmenot.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7927a4bbc94db506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/73JFMHXW5JGWHIBFVW224ZAVSQ?width=300&height=150
104.17.229.45200 OK 0 B URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/73JFMHXW5JGWHIBFVW224ZAVSQ?width=300&height=150
IP 104.17.229.45:0
GET /ws/mediagroup/73JFMHXW5JGWHIBFVW224ZAVSQ?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2tzcXoZYvB8QmscAq1S4hCGEd1K1Ij5XST-134xms88VQ7MQMgV4Vg==
age: 2073974
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c0690cb51d-OSL
X-Firefox-Spdy: h2
aa.agkn.com/adscores/g.pixel?sid=9212302198
52.58.71.199302 Found 0 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212302198
IP 52.58.71.199:0
GET /adscores/g.pixel?sid=9212302198 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 01 Feb 2023 03:36:37 GMT
location: https://zdbb.net/l/qI109lRAEeGCiBIxORcFRw/?tp=neusbftgslopjfixorwbst&tpc=CZnoZ%2BZikE6wwwol9FH5%2FX3E6lVe%2Fi2BPqmISYjX2i0%3D
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AQrgWQ3Z%2B%2FaEZdDVCKeNAhAJQ4TEoRXW6; Path=/; Domain=.agkn.com; Expires=Thu, 01-Feb-2024 03:36:37 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/7O7OAEKRYBDCBAKOXCZSI5FKA4?width=300&height=150
104.17.229.45200 OK 0 B URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/7O7OAEKRYBDCBAKOXCZSI5FKA4?width=300&height=150
IP 104.17.229.45:0
GET /ws/mediagroup/7O7OAEKRYBDCBAKOXCZSI5FKA4?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZhHycatpQ-AgmdNo984ausUI0LyXxlZptmPAGNBCjXFL8uY3DDjZ6w==
age: 93240
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06905b51d-OSL
X-Firefox-Spdy: h2
stxtsxt-app-m96u4.ondigitalocean.app/d4e4a0fc81436dd4df7f8d594d0e0f4d/?client_id=0000007298-0000-0hzz-xs00-000000000&y=24anVhbi5wdWdhQGVyaWtzbmEuY29t&redirect_uri=https://outlook.office.com/owa/&resource=client_id&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&client-request-id=45f4d5f9-4657-4816-9528-af3f59994174&protectedtoken=true
104.16.244.78303 See Other 0 B URL HTTP/2 stxtsxt-app-m96u4.ondigitalocean.app/d4e4a0fc81436dd4df7f8d594d0e0f4d/?client_id=0000007298-0000-0hzz-xs00-000000000&y=24anVhbi5wdWdhQGVyaWtzbmEuY29t&redirect_uri=https://outlook.office.com/owa/&resource=client_id&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&client-request-id=45f4d5f9-4657-4816-9528-af3f59994174&protectedtoken=true
IP 104.16.244.78:0
GET /d4e4a0fc81436dd4df7f8d594d0e0f4d/?client_id=0000007298-0000-0hzz-xs00-000000000&y=24anVhbi5wdWdhQGVyaWtzbmEuY29t&redirect_uri=https://outlook.office.com/owa/&resource=client_id&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&client-request-id=45f4d5f9-4657-4816-9528-af3f59994174&protectedtoken=true HTTP/1.1
Host: stxtsxt-app-m96u4.ondigitalocean.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 303 See Other
date: Wed, 01 Feb 2023 03:36:33 GMT
content-type: text/html; charset=UTF-8
location: http://retailmenot.com
x-do-app-origin: 7eb3c744-098a-4d5a-b1c9-270e46654cd2
cache-control: private
x-do-orig-status: 303
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7927a4b55a790b59-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/6LWP7QFQ3ZB7HGJTDWA3LD6D4A?width=300&height=150
104.17.229.45200 OK 0 B URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/6LWP7QFQ3ZB7HGJTDWA3LD6D4A?width=300&height=150
IP 104.17.229.45:0
GET /ws/mediagroup/6LWP7QFQ3ZB7HGJTDWA3LD6D4A?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BJBW59holIhH-xTxVnMuXkg18ItHDRgkcpAPhjd8_8d6Vy4tX3EAmA==
age: 76814
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06907b51d-OSL
X-Firefox-Spdy: h2
cdn9.forter.com/vchk2
54.230.111.101301 Moved Permanently 0 B IP 54.230.111.101:0
GET /vchk2 HTTP/1.1
Host: cdn9.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: eyJyIjowLjgyMDg4NTUzMzMxODkyMjIsInUiOiI0MDFjMGQzYmQ3YWE0M2NmYjUwOTRlYjhkNTM2NjlmMCIsInMiOiIyYzVkZTk5MjNkMzYifQ==
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://cdn9.forter.com/vchk2/v1/7abf5bc83c1e2f296923e34b18ad55e9a2b69e022add146dece36259b9cd9414ac7f4bc9661555e5dcf94edca271
date: Wed, 01 Feb 2023 03:36:37 GMT
access-control-allow-origin: *
timing-allow-origin: *
cache-control: private, s-maxage=0, proxy-revalidate
strict-transport-security: max-age=86400; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H5x1Cz-giQPc5lI-70dOCXNma1Ow_uwewoU4BTLNvAmQakTCD3w_BA==
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/image/CWI6VFMQK5CC3LGSNQ6EWIFLDI
104.17.229.45200 OK 0 B URL HTTP/2 mediaservice.retailmenot.com/image/CWI6VFMQK5CC3LGSNQ6EWIFLDI
IP 104.17.229.45:0
GET /image/CWI6VFMQK5CC3LGSNQ6EWIFLDI HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OhbLS18Q5yeORhj9w02QkdCkp5QdWTIIqkxeUCBHC27v1S7j3VnruA==
age: 43231
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c068fdb51d-OSL
X-Firefox-Spdy: h2
pixel.adsafeprotected.com/services/pub?anId=7529&slot=%7Bid:main-1,ss:%5B1140.160,970.90,728.90,120.90%5D,p:/4585/retailmenot/homepage_banner,t:display%7D&slot=%7Bid:main-2,ss:%5B728.90%5D,p:/4585/retailmenot/homepg_cpnarea_btf,t:display%7D&wr=1280.939&sr=1280.1024&sessionId=dd66fffd-78ce-ab44-1893-4cf8c0e8f91c&url=https%253A%252F%252Fwww.retailmenot.com%252F
34.240.30.150200 OK 0 B URL HTTP/2 pixel.adsafeprotected.com/services/pub?anId=7529&slot=%7Bid:main-1,ss:%5B1140.160,970.90,728.90,120.90%5D,p:/4585/retailmenot/homepage_banner,t:display%7D&slot=%7Bid:main-2,ss:%5B728.90%5D,p:/4585/retailmenot/homepg_cpnarea_btf,t:display%7D&wr=1280.939&sr=1280.1024&sessionId=dd66fffd-78ce-ab44-1893-4cf8c0e8f91c&url=https%253A%252F%252Fwww.retailmenot.com%252F
IP 34.240.30.150:0
GET /services/pub?anId=7529&slot=%7Bid:main-1,ss:%5B1140.160,970.90,728.90,120.90%5D,p:/4585/retailmenot/homepage_banner,t:display%7D&slot=%7Bid:main-2,ss:%5B728.90%5D,p:/4585/retailmenot/homepg_cpnarea_btf,t:display%7D&wr=1280.939&sr=1280.1024&sessionId=dd66fffd-78ce-ab44-1893-4cf8c0e8f91c&url=https%253A%252F%252Fwww.retailmenot.com%252F HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.retailmenot.com
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:36 GMT
content-type: application/json;charset=UTF-8
server: nginx
access-control-allow-origin: https://www.retailmenot.com
access-control-allow-credentials: true
access-control-expose-headers: X-Server-Name
timing-allow-origin: *
x-server-name: app02.ie.303net.net
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.243200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.243:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:37 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 101456
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/ws/mediagroup/KHLXJ5BOUBATBJCLQFDE5UO77Q?width=300&height=150
104.17.229.45200 OK 0 B URL HTTP/2 mediaservice.retailmenot.com/ws/mediagroup/KHLXJ5BOUBATBJCLQFDE5UO77Q?width=300&height=150
IP 104.17.229.45:0
GET /ws/mediagroup/KHLXJ5BOUBATBJCLQFDE5UO77Q?width=300&height=150 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
content-length: 8896
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eyIQyH00S0bBJO4kNJLcRLcd6IyD4TTeBP95oXpp8cvPHLW7xLhN0A==
age: 784260
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c06917b51d-OSL
X-Firefox-Spdy: h2
mediaservice.retailmenot.com/image/3ISJ3I6BQFGKBNWHUUZ2D2Q3P4
104.17.229.45200 OK 0 B URL HTTP/2 mediaservice.retailmenot.com/image/3ISJ3I6BQFGKBNWHUUZ2D2Q3P4
IP 104.17.229.45:0
GET /image/3ISJ3I6BQFGKBNWHUUZ2D2Q3P4 HTTP/1.1
Host: mediaservice.retailmenot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.retailmenot.com/
Connection: keep-alive
Cookie: toggleServiceExperiments=%7B%7D; toggleServiceFeatures=%5B%22howToSaveAutocomplete%22%2C%22includeJ2Core%22%2C%22cboredirecttoouturl%22%2C%22allowMerchantRating%22%2C%22dynamicLogos%22%2C%22showEnhancedCategory%22%2C%22queryLegalHtml%22%2C%22includeJ2Pogo%22%2C%22storepageTopOfferExitModal%22%2C%22dealFinderCallOut%22%2C%22stackedCboAcquisitionMode%22%2C%22showStackedCbo%22%2C%22offerDetailsPaidAds%22%2C%22enableDealAlerts%22%2C%22enableForter%22%2C%22cboBoostBadge%22%2C%22dealfinder_header_link%22%2C%22tngMetaEntries%22%2C%22googleOneTap%22%2C%22okta%22%2C%22dealFinderInlineBanner%22%2C%22dfBannerCashbackRedemptionModal%22%2C%22dealFinderCallOutV2%22%2C%22northstarHomeV2%22%2C%22includeComScore%22%2C%22useActivate%22%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 03:36:34 GMT
content-type: image/jpeg
cache-control: no-transform, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IuVA8-yaia6y6KJVI7D-gLbJ52hQ7C7rat0kBykJmTsvLx7qilluyg==
age: 76814
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7927a4c169aeb51d-OSL
X-Firefox-Spdy: h2
static.adsafeprotected.com/main.19.8.385.js
54.230.111.33200 OK 0 B URL HTTP/2 static.adsafeprotected.com/main.19.8.385.js
IP 54.230.111.33:0
GET /main.19.8.385.js HTTP/1.1
Host: static.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.retailmenot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 18 Jan 2023 21:29:24 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 18 Jan 2023 19:44:57 GMT
etag: W/"d4db5e05b3c00fb6a3a262869af20f38"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: VUpTdNSw556u8DTxBoj61VmLffpEPAG9
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jxToTPx-o0oftFPTWUzqJ0GDzknOwr5cS3NUDY64vuHTXhVy1CeeEg==
age: 1145234
X-Firefox-Spdy: h2