www.bullens.com/
34.89.61.134301 Moved Permanently 162 B IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 28 Dec 2022 09:30:55 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Keep-Alive: timeout=20
Location: https://www.bullens.com/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e717435470c9f4f06b174d7100c6a98f
292150251495b243c384e0c676a258597ba7f4d8
91ce8257662cb8cea9cc3c74cda1d95dba421daa466b0ac231fa433e0c58e6c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "91CE8257662CB8CEA9CC3C74CDA1D95DBA421DAA466B0AC231FA433E0C58E6C6"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4109
Expires: Wed, 28 Dec 2022 10:39:24 GMT
Date: Wed, 28 Dec 2022 09:30:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 78f1f94544ef06b96bb43283f59d100f
fa2f1a3730a98c6fa5ebf976143fb6093a7298be
889af22ee304adea2e23491acbc89ebdcaf322e8c45af2bebf7520e3e9b0a6a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "889AF22EE304ADEA2E23491ACBC89EBDCAF322E8C45AF2BEBF7520E3E9B0A6A9"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2728
Expires: Wed, 28 Dec 2022 10:16:23 GMT
Date: Wed, 28 Dec 2022 09:30:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 28 Dec 2022 08:35:16 GMT
content-type: application/json
age: 3339
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 07e619a5a572fa9bcb54fa70de27f0d4
c0499dcc7551831f517f189465812859d0f48ced
2213c856ce4dd64ebe28e4deff34d449b2c08be98565c0405427453ae948fa74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2213C856CE4DD64EBE28E4DEFF34D449B2C08BE98565C0405427453AE948FA74"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7345
Expires: Wed, 28 Dec 2022 11:33:20 GMT
Date: Wed, 28 Dec 2022 09:30:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WmTKBFaxuptSY584/LTq0GwhiSY71ygYFYVEK3r1M46sjnyQMls0/nZpm3sBpzYsiYdB8ot66fs=
x-amz-request-id: ETZHYMSBBFJ5T0C7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Dec 2022 08:58:14 GMT
age: 1961
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:55 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash aaa1370e3342c33327dfd816c73e1435
8fb6511de801b02b33ba5b922ef11a841acb3e5a
f1b67598100c32a278495882d6b58f11596577e7ecab6a768554bfcca3106aff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5538
Cache-Control: max-age=131184
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:56 GMT
Etag: "63ab549e-117"
Expires: Thu, 29 Dec 2022 21:57:20 GMT
Last-Modified: Tue, 27 Dec 2022 20:25:02 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 52ca073ad56859a4aa27c7711a0280e0
0f9481ab1d4503f6768b94aca521a8e6a1cacc16
3be123f7c76a1cb88f5f06d8359ee810eb5aa11540c89bc747318101e3585145
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c6af90f016d8e2a96c05a34ddb9ebbab
f1440025eeec8413fbe4e8d6a49779d1c8cdd9ef
77c0e58bd42f70ec82dcbc502a00e4cca6bf4c198c049a2a0181ba6008d14441
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
104.17.25.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/css/all.css
IP 104.17.25.14:0
Hash 9f8ae150e614ee49febe1ac6088202e6
5f5d1a1a96289a0fa1d052d8dd59d5a236e5227e
c931e5cbd1bbd7e7e6802ce040c35ce7c1d7425988b767c6a29bedbfa2eb496f
GET /ajax/libs/font-awesome/5.10.2/css/all.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: text/css; charset=utf-8
content-length: 10228
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-111e5"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 8603319
expires: Mon, 18 Dec 2023 09:30:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qjkevOsTjfBNvha57CEuQWxumHBKinHAE52%2BexSpD%2F4gwcCAfio8ddqsG5mSZt6XAA6KQESn61j2xDwMu3SwhPsQ9UXyvTGKWmKrnkct5lZuBWBkNKYzvTt0OxOH9FDuM%2FsuIP91"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 780947b49ca6fac4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.bullens.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
34.89.61.134200 OK 68 B URL HTTP/2 www.bullens.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 68
last-modified: Wed, 05 Oct 2022 09:22:34 GMT
etag: "633d4cda-44"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/home-im-1.jpg
34.89.61.134200 OK 6.0 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/home-im-1.jpg
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 153x153, components 3\012- data
Hash d7e0432c4dbd640e40bcbc37bbadfec6
a3f8b5f612747baf7e7d5f678db6543ee4506a8e
104450953e2d0f9982266daed0ae681067c4bc6627e3a5d9fac79d687db898bf
GET /wp-content/uploads/2017/06/home-im-1.jpg HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/jpeg
content-length: 6018
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-1782"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/home-trust-roundal.jpg
34.89.61.134200 OK 8.2 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/home-trust-roundal.jpg
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 153x153, components 3\012- data
Hash 55bb94d56cb98e01351518add5797a6b
a9da033bf378b6ca7f1ce773d555428aa820c683
a93fc487d70796c7111b15fcb289a2621f0c648ac253f557ae69c1d8b310e24b
GET /wp-content/uploads/2017/06/home-trust-roundal.jpg HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/jpeg
content-length: 8202
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-200a"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/Step-1-1.png
34.89.61.134200 OK 31 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/Step-1-1.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 176 x 176, 8-bit/color RGBA, non-interlaced\012- data
Hash a22765d57670c9c1450c5dfd84f6967e
deea7b73c579cdcb42c0260122f7349e6e01e9d7
4e2ecdf4043e994277cb46aa5c2f646f1f74619b8fe09d6592ec06c9fb7e5dae
GET /wp-content/uploads/2017/06/Step-1-1.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 30894
last-modified: Thu, 01 Sep 2022 14:10:53 GMT
etag: "6310bd6d-78ae"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/Step-2-1.png
34.89.61.134200 OK 33 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/Step-2-1.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 176 x 176, 8-bit/color RGBA, non-interlaced\012- data
Hash 94361114301bc3505f66f6fa616fcee0
d366881f38af852599355ee4474f8a92e3fb5433
1f70aaf253f7ad77c599058467a30f12f1fedb31097adc9e86bab51b77e309e5
GET /wp-content/uploads/2017/06/Step-2-1.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 32908
last-modified: Thu, 01 Sep 2022 14:10:53 GMT
etag: "6310bd6d-808c"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/logo-footer-4.png
34.89.61.134200 OK 3.4 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/logo-footer-4.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 170 x 111, 8-bit colormap, non-interlaced\012- data
Hash ddf837a181299494c6d893edaeee1aed
f3ad424976d0c07901171b58020d0a55393ff20e
f423e8f4b1c2d732b35e87cad142b4628747e8ffe656c6b315888db371dd750f
GET /wp-content/uploads/2017/06/logo-footer-4.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 3414
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-d56"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/logo-footer-5.png
34.89.61.134200 OK 3.2 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/logo-footer-5.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 170 x 111, 8-bit colormap, non-interlaced\012- data
Hash 5f4ee028de90159843c824fac9d6e507
033f7de17b20690bc15ba07950c4242733e5771d
a18f1de08239b34f4e794367bcb683a37608da2b9419db1df8aea4056eb98b98
GET /wp-content/uploads/2017/06/logo-footer-5.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 3159
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-c57"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LcWnqoUAAAAAEIWdT64ZnZCH1a-2CBzw2dKxQRI&ver=3.0
216.58.207.228200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcWnqoUAAAAAEIWdT64ZnZCH1a-2CBzw2dKxQRI&ver=3.0
IP 216.58.207.228:0
File type ASCII text, with very long lines (884), with no line terminators
Hash b55953fa6669655962f97c3b9e0b1a2d
c7bdef7a7b9fa251719fd4d2c3596aa6bb84635e
3226d47eac091514b27b0c523e990f2c65138fbb880582c40fe0d84c7470037e
GET /recaptcha/api.js?render=6LcWnqoUAAAAAEIWdT64ZnZCH1a-2CBzw2dKxQRI&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 28 Dec 2022 09:30:56 GMT
date: Wed, 28 Dec 2022 09:30:56 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/logo-footer-6.png
34.89.61.134200 OK 5.2 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/logo-footer-6.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 170 x 111, 8-bit colormap, non-interlaced\012- data
Hash bff0537cf7be36a1c5d22f3b2c6c20bd
7fcd002e3d9f3471c8ecb9eab7e091832a7083f9
15114dd16446b18ace4a3cbdfbd9cff7b16c8c9d31d4043d876e29d89fc4de12
GET /wp-content/uploads/2017/06/logo-footer-6.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 5241
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-1479"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash aaa1370e3342c33327dfd816c73e1435
8fb6511de801b02b33ba5b922ef11a841acb3e5a
f1b67598100c32a278495882d6b58f11596577e7ecab6a768554bfcca3106aff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5538
Cache-Control: max-age=131184
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:56 GMT
Etag: "63ab549e-117"
Expires: Thu, 29 Dec 2022 21:57:20 GMT
Last-Modified: Tue, 27 Dec 2022 20:25:02 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
www.bullens.com/wp-content/uploads/2019/09/Footer-logo-uta.jpg
34.89.61.134200 OK 5.5 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2019/09/Footer-logo-uta.jpg
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 185x113, components 3\012- data
Hash 82637dc3361ca81457e5fb8b8629e1b7
b47b86a3f1bd032f472b9200eef6cd7e83f2037f
76b3fc1613b9cca53c2721d1e1eb5cd47b6c05177b6227bcf5a4a2369fbacf4c
GET /wp-content/uploads/2019/09/Footer-logo-uta.jpg HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/jpeg
content-length: 5481
last-modified: Thu, 01 Sep 2022 14:10:52 GMT
etag: "6310bd6c-1569"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/logo-main-footer.png
34.89.61.134200 OK 6.4 kB URL HTTP/2 www.bullens.com/logo-main-footer.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 137 x 171, 8-bit/color RGBA, non-interlaced\012- data
Hash f56e261113f50d64b6575bea7c3042a3
c6dcc286016d580bf2f4cb9d079c8773342a9a94
680db1d8eef48ba67fe849ec0bed9427317bc626c6300bf0efd0ed1c5ffe3369
GET /logo-main-footer.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 6363
last-modified: Thu, 01 Sep 2022 14:10:49 GMT
etag: "6310bd69-18db"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/logo-main-footerx2.png
34.89.61.134200 OK 12 kB URL HTTP/2 www.bullens.com/logo-main-footerx2.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 274 x 342, 8-bit/color RGBA, non-interlaced\012- data
Hash 86659ed6ee7a23d4d85a4114eae4c774
dd3fd4927a70e73fd17cbccb6e06eacf91f4b735
f7b3989130833804865ac9b97487f05bf87a9d9239b4a5c47c6c1ac9e4ef393f
GET /logo-main-footerx2.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 12492
last-modified: Thu, 01 Sep 2022 14:10:49 GMT
etag: "6310bd69-30cc"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2019/10/check-mark.png
34.89.61.134200 OK 526 B URL HTTP/2 www.bullens.com/wp-content/uploads/2019/10/check-mark.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 32 x 32, 8-bit gray+alpha, non-interlaced\012- data
Hash 0778f37617c61511ae1cd14a3e1fcd6b
d125f77f78b80a730243db83aa75ebe4882bd412
453bc304d2fb670576f16c3d346db65211a6a97715338b6b03c8f869eee537b1
GET /wp-content/uploads/2019/10/check-mark.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 526
last-modified: Thu, 01 Sep 2022 14:10:52 GMT
etag: "6310bd6c-20e"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/logo-footer-1.png
34.89.61.134200 OK 3.4 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/logo-footer-1.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 170 x 111, 8-bit colormap, non-interlaced\012- data
Hash bcbae640b903ef70bc553d7e4780cb92
866df81d3555307a55a297ec2aa7feec5f7eb26b
f796c6cd32d7af41195711b0eaddaf3f0da447613ac1c2e5b7318b470ffdf1b1
GET /wp-content/uploads/2017/06/logo-footer-1.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 3429
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-d65"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
bullens.wpengine.com/wp-content/uploads/2017/06/bullen-logo.png
34.89.61.134200 OK 5.4 kB URL HTTP/2 bullens.wpengine.com/wp-content/uploads/2017/06/bullen-logo.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 79, 8-bit/color RGBA, non-interlaced\012- data
Hash df9ac0bfc4ccfaef5c0825fa483d0bb2
4f49e346dc8c5482625385dcea10ba6062a8ab29
73c58f000473d0a0ef7f58d2fc399acb7cdb2f09578cf8f9b13795b2293e3066
GET /wp-content/uploads/2017/06/bullen-logo.png HTTP/1.1
Host: bullens.wpengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 5406
last-modified: Thu, 01 Sep 2022 14:10:53 GMT
etag: "6310bd6d-151e"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/logo-footer-2.png
34.89.61.134200 OK 4.8 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/logo-footer-2.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 170 x 111, 8-bit colormap, non-interlaced\012- data
Hash 06a64a0ef8af6d1475d8179d73c6b83b
0b9149be8f0b9ce2f56730c7c6b4df0b4b5ff15f
c4630da85762bc89a2cb2834b21bb38cc769097d17a6c1a08a72f768b445cd73
GET /wp-content/uploads/2017/06/logo-footer-2.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 4843
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-12eb"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/logo-footer-3.png
34.89.61.134200 OK 5.4 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/logo-footer-3.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 170 x 111, 8-bit colormap, non-interlaced\012- data
Hash 5eba487439c11fe3d07e739a644c7d40
5fc3f61ad1075ead96bad1ee6cb58e5046216b9c
d9d5dcf3a7634cc96b7763fbaa4e6a4951c0a9a1c081417ec02706771e16d51d
GET /wp-content/uploads/2017/06/logo-footer-3.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 5426
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-1532"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/home-circle-3-1.png
34.89.61.134200 OK 56 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/home-circle-3-1.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 153 x 153, 8-bit/color RGBA, non-interlaced\012- data
Hash 0673fa71069e08e785947c81c57298b1
4fdfcd13ca6a7ab12b2743cbb6ab1149a09fbbd7
b0480bf45549a3cdd36386df2e0a0d8cd577c71a35c58f8a249a4491aec86ef8
GET /wp-content/uploads/2017/06/home-circle-3-1.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 55806
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-d9fe"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/07/Circles-home-desktop.jpg
34.89.61.134200 OK 143 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/07/Circles-home-desktop.jpg
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, baseline, precision 8, 1155x1036, components 3\012- data
Size 143 kB (142592 bytes)
Hash 86fef80c99dfad2d97ea2cebd765de36
2e4c4ce6a1ba4afb583f691802a2088b2e17acfb
3c9c619a244e0bd4836a143be59fe04468f878dafc3328a98f97e4016ef76660
GET /wp-content/uploads/2017/07/Circles-home-desktop.jpg HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/jpeg
content-length: 142592
last-modified: Thu, 01 Sep 2022 14:10:53 GMT
etag: "6310bd6d-22d00"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
34.89.61.134200 OK 5.3 kB URL HTTP/2 www.bullens.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (15660)
Hash d63bfe10e8181dde6c6c9fc9716c91ce
2686179b143a7ec4c07a680a646f261e573f2f4a
01abcf2a208f534f6ddaa8531bc5aecdadc2c7503b59a3342990ad467770460f
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
etag: W/"62551487-48b9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0ae0707aeabde36523941c20a68b5254
f882332bd8b3c0147af8ca8788be4a290d155766
537eefee073333371ff318be540498d3923603b79e282d6dd706cea5670caa8c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bullens.com/wp-content/uploads/2019/01/Untitled-1.jpg
34.89.61.134200 OK 723 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2019/01/Untitled-1.jpg
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, baseline, precision 8, 193x240, components 4\012- data
Size 723 kB (722886 bytes)
Hash 8bc922094b8b1c395ee7b70bacd5beef
17e4155f8c246843042df1a458bbbb9496b452ba
54bb1eae92f5eb938d9750d26ffa85af9d1fb9c0b96e8136299c2a3f7596cea2
GET /wp-content/uploads/2019/01/Untitled-1.jpg HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/jpeg
content-length: 722886
last-modified: Thu, 01 Sep 2022 14:10:53 GMT
etag: "6310bd6d-b07c6"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 4a521d644ccc300f8e4e49dc895be5c8
967006d3f0167fe990fe9b12f2e60417d25d15b1
6a7dbf83497c9be56003f01ab5b082d15774133a7509891d569e793a2e044490
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 09:30:56 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Dec 2022 04:01:05 GMT
Expires: Tue, 03 Jan 2023 04:01:04 GMT
Etag: "967006d3f0167fe990fe9b12f2e60417d25d15b1"
Cache-Control: max-age=498007,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 780947b54ab50b59-OSL
use.typekit.net/pge4omf.js
184.51.252.190200 OK 6.7 kB URL HTTP/2 use.typekit.net/pge4omf.js
IP 184.51.252.190:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (2258)
Hash 40267a6eac10a32fd808547519179b67
68fd442218fa0a61a590f069f9b9846ce0346f55
d888c4c99c957fee875d85667be655dbaea83ee422beb8d2d7d98253eceba0b0
GET /pge4omf.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 6739
date: Wed, 28 Dec 2022 09:30:56 GMT
X-Firefox-Spdy: h2
yoshki.com/TSI/validation/130/0/logo.png
192.166.47.38200 OK 8.1 kB URL HTTP/2 yoshki.com/TSI/validation/130/0/logo.png
IP 192.166.47.38:0
ASN #61323 Ukfast.net Limited
File type PNG image data, 130 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash 1ef5ea86b105f0362afee19c39e0b8e5
3389853373c94efd427fba53b84a6c947982f52d
68cdfb0818c842cdeae2a15eab818d500426840a4191a3fd7c284bcbb1224327
GET /TSI/validation/130/0/logo.png HTTP/1.1
Host: yoshki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/png
expires: Thu, 29 Dec 2022 00:00:00 GMT
last-modified: Tue, 30 Apr 2019 15:13:46 GMT
etag: "RDpcaW5ldHB1Ylx5b3Noa2l3ZWJcVFNJXHZhbGlkYXRpb25cMTMwXDBcbG9nby5wbmc= 30/04/2019 16:13:46"
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Wed, 28 Dec 2022 09:30:56 GMT
content-length: 8096
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 28 Dec 2022 09:08:08 GMT
age: 1368
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.bullens.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
34.89.61.134200 OK 7.1 kB URL HTTP/2 www.bullens.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash ac69abb7f3ac27cbe48715ea3adfc19b
29fad04a0164b65c8ee3d78707e459de8bdb1cce
3d7671f951be625f2301e0fa898c8883b3d02ca87d7337cf9645003ba47a7e0c
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 20 Sep 2022 15:43:29 GMT
etag: W/"6329dfa1-459f"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/webfonts/fa-brands-400.woff2
104.17.25.14200 OK 74 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.10.2/webfonts/fa-brands-400.woff2
IP 104.17.25.14:0
File type Web Open Font Format (Version 2), TrueType, length 74524, version 330.15859\012- data
Hash 3e1b2a654a784ceb385157140b4ccd71
24354ccf21fb13a37b4484dfac21a90e33953fb0
975714c6cb70ba105bfa87d2415df2fddde4a46c1d3ab9d0cf45465e56cba97d
GET /ajax/libs/font-awesome/5.10.2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 74524
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-1231c"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3056992
expires: Mon, 18 Dec 2023 09:30:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ghOWcn6ClOq68XdoJsyURVA59A7Fp516YMKnyzgc4PrXYGc22syVbmH0HXAhWiJ%2F7KNx8uguDWyruUsvOwJXZZX7N2650qIEPIfseZgd63nZOSZWAw4MJnDMyndDOO4urZGj1hMw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 780947b69d8ffac4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yoshki.com/yoshki-library.js
192.166.47.38200 OK 6.8 kB URL HTTP/2 yoshki.com/yoshki-library.js
IP 192.166.47.38:0
ASN #61323 Ukfast.net Limited
File type ASCII text, with very long lines (32001), with CRLF line terminators
Hash 3881e4889661a246f3190cdbe80a5e20
ab3c2e28c80be4fa62845bce14eadaeccc6f2446
b88207e1400a11684ef41802aa47eab65806c4d237924766c670ef7585a35c0d
GET /yoshki-library.js HTTP/1.1
Host: yoshki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 20 Apr 2021 10:08:45 GMT
accept-ranges: bytes
etag: "80f4d425cd35d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Wed, 28 Dec 2022 09:30:56 GMT
content-length: 6798
X-Firefox-Spdy: h2
www.bullens.com/wp-content/plugins/cornerstone/assets/fonts/fa-solid-900.woff2
34.89.61.134200 OK 141 kB URL HTTP/2 www.bullens.com/wp-content/plugins/cornerstone/assets/fonts/fa-solid-900.woff2
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 140996, version 331.-31392\012- data
Size 141 kB (140996 bytes)
Hash 25d740d42658b6e2c293ce7b3322aac7
41cc9ae4b5dd70fd3988059dfb864f20f99ae371
8b5a3ff47c2413e0bf3dd3bb7899a25aeef9b390a055847a1185a39ad48a2da2
GET /wp-content/plugins/cornerstone/assets/fonts/fa-solid-900.woff2 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: font/woff2
content-length: 140996
last-modified: Thu, 01 Sep 2022 14:10:57 GMT
etag: "6310bd71-226c4"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/background-signup-why.png
34.89.61.134200 OK 3.7 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/background-signup-why.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 1439 x 228, 8-bit colormap, non-interlaced\012- data
Hash 516f984829dc194b2d01b2cf567a3213
11e3ad22617d1f7c458525acc60a924ca3ffac48
8c7fd90cf4886ba124cc4cedbb259ded841c8e8994eab566d96ee6a1ed629d7a
GET /wp-content/uploads/2017/06/background-signup-why.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 3716
last-modified: Thu, 01 Sep 2022 14:10:53 GMT
etag: "6310bd6d-e84"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/background-testimonial-1.jpg
34.89.61.134200 OK 27 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/background-testimonial-1.jpg
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1442x549, components 3\012- data
Hash 847367d07004a94e2bdd43e2963145cd
d911012c8519d3fb13cf2698a552d04ea4a833ba
81cdf5816b7250adb2dc666f0c78bdb86137816756a567fb46478d3235765f4b
GET /wp-content/uploads/2017/06/background-testimonial-1.jpg HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/jpeg
content-length: 26879
last-modified: Thu, 01 Sep 2022 14:10:53 GMT
etag: "6310bd6d-68ff"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
34.89.61.134200 OK 4.4 kB URL HTTP/2 www.bullens.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash bfeeab7b3081013a30e404e03e28b688
fd233ae0f40b300cd91ec97b1feb91b1e740a5ef
022b518282b68c4cba8eb549f4360624ea16a0095be8be3cd00ad94d0dec72e5
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 19 Oct 2022 12:40:33 GMT
etag: W/"634ff041-3016"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9050ee54dae26344646b208a231fc770
a19ae5a4a8f9c28bca52aa8ea55c7313f99e0936
8ab388c1272cd2c6c2137a27f8e021744126f6fc7df5043756a04dac50857436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9050ee54dae26344646b208a231fc770
a19ae5a4a8f9c28bca52aa8ea55c7313f99e0936
8ab388c1272cd2c6c2137a27f8e021744126f6fc7df5043756a04dac50857436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Dec 2022 18:52:41 GMT
expires: Tue, 26 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 139095
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-T5PW52Z
142.250.74.168200 OK 83 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T5PW52Z
IP 142.250.74.168:0
File type ASCII text, with very long lines (4611)
Hash 53067bcb4d144b012f4521f2f2eba61f
d2aadacc1eae4ed06d4ba4cbeb3d4d7dd9c4a1e6
6e95eada8bec1c3e58f2a3aea9449be8ee18dbfe6b50c3af0112b8d12092cb22
GET /gtm.js?id=GTM-T5PW52Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Dec 2022 09:30:56 GMT
expires: Wed, 28 Dec 2022 09:30:56 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83278
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b679e7c79765f76fd0c1c33a9233ee85
6542d96f6027699e6e380572c78f6b8dacc80155
3cc09b13f4ed9fc5a713b0f2f1e4b7d00259319c62189b885329afcad5bebf0a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 60b8396db0bbfa5f2ae7e34c9d04ebcc
50b6c68aa2b2a459315a9989f5d3e326e8ad5539
c10a1e0f984b121958a5cfa3b45b746db85d33c9073fcacb019d9bb27ef3b073
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2251
Cache-Control: max-age=87209
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:56 GMT
Etag: "63aab5ae-1d7"
Expires: Thu, 29 Dec 2022 09:44:25 GMT
Last-Modified: Tue, 27 Dec 2022 09:06:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
www.bullens.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
34.89.61.134200 OK 2.5 kB URL HTTP/2 www.bullens.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/gif
content-length: 2545
last-modified: Wed, 05 Oct 2022 09:22:34 GMT
etag: "633d4cda-9f1"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
use.typekit.net/af/437c3d/00000000000000003b9b0932/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3
184.51.252.190200 OK 32 kB URL HTTP/2 use.typekit.net/af/437c3d/00000000000000003b9b0932/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3
IP 184.51.252.190:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 32384, version 1.0\012- data
Hash 8aba0d65966ae522c79c6cd9d5fabd29
b1d04e4c4487e562fe96604efe78a5c891c75961
582f1b5d33e54e95557255c97d79a90d3fda73d7b2b105695446fe643eb737cc
GET /af/437c3d/00000000000000003b9b0932/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 32384
etag: "474f8294a654ddd4e855cc66b1bb647cd40bfa9b"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 28 Dec 2022 09:30:56 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/71f83c/00000000000000003b9b093b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
184.51.252.190200 OK 34 kB URL HTTP/2 use.typekit.net/af/71f83c/00000000000000003b9b093b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP 184.51.252.190:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 33660, version 1.0\012- data
Hash e21953c87f09ca307fea4132455a059a
08b07c629dc5407c6f9dfa375279d53af4bf2727
a2b997da567762896061490c3c08e506b2e5b936978560fc12251dd245140b32
GET /af/71f83c/00000000000000003b9b093b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 33660
etag: "a0f35f91fdc2ca0a90c8288c08c20681c1aecfcf"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 28 Dec 2022 09:30:56 GMT
X-Firefox-Spdy: h2
yoshki.com/TSI/validation/130/0/_logo.png
192.166.47.38200 OK 179 B URL HTTP/2 yoshki.com/TSI/validation/130/0/_logo.png
IP 192.166.47.38:0
ASN #61323 Ukfast.net Limited
File type PNG image data, 130 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash 398c7f6c5a40de12c8dae45b3035ff8e
e0ac18296889659e1f8a2d68f936b448b4c3c540
0fbe4cbd7f975eba41a288ce2d3ecaa3e4816de4215aa3829e044a7780108aee
GET /TSI/validation/130/0/_logo.png HTTP/1.1
Host: yoshki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/png
expires: Thu, 29 Dec 2022 00:00:00 GMT
last-modified: Tue, 30 Apr 2019 15:13:49 GMT
etag: "RDpcaW5ldHB1Ylx5b3Noa2l3ZWJcVFNJXHZhbGlkYXRpb25cMTMwXDBcX2xvZ28ucG5n 30/04/2019 16:13:49"
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Wed, 28 Dec 2022 09:30:56 GMT
content-length: 179
X-Firefox-Spdy: h2
use.typekit.net/af/4838bd/00000000000000003b9b0934/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
184.51.252.190200 OK 33 kB URL HTTP/2 use.typekit.net/af/4838bd/00000000000000003b9b0934/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 184.51.252.190:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 32688, version 1.0\012- data
Hash c654f50b24ad0685a12a2c387542e700
b2cfcca0589023f4371e4a673ec305f8ecace38e
9b99ce50d05750058143cb93936075ad5107f9a3e5b03f2d4872c0ebe753a9f7
GET /af/4838bd/00000000000000003b9b0934/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 32688
etag: "852dacc5cd2685c187708b882b28635465e17bd0"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 28 Dec 2022 09:30:56 GMT
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/home-banner-main-2-1.jpg
34.89.61.134200 OK 91 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/home-banner-main-2-1.jpg
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1604x879, components 3\012- data
Hash 74fa71d00209e5eabe6c7cc397d9bba7
530ff6bceed434ae4e1f48dc2a846009a33c152b
03fd106c2106fc57f3385402d8e86ab40cc2d9ae1c344ed31e843a35497eb98b
GET /wp-content/uploads/2017/06/home-banner-main-2-1.jpg HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/jpeg
content-length: 91154
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-16412"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
use.typekit.net/af/f02b29/00000000000000003b9b0933/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i3&v=3
184.51.252.190200 OK 35 kB URL HTTP/2 use.typekit.net/af/f02b29/00000000000000003b9b0933/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i3&v=3
IP 184.51.252.190:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 34788, version 1.0\012- data
Hash 8df883d39f368e15a99fed0caa5ca72a
ec4d68fd5203cbb5bd3187bfd0c2d29ab8aa4bdc
079f7a3137db89cb4855a0f5a81546b03245d56ea7d3649265523b96e30d81ba
GET /af/f02b29/00000000000000003b9b0933/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 34788
etag: "bd5d9e8bf2a6cf83ffd0682302f21cb10bf236e8"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 28 Dec 2022 09:30:56 GMT
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/ico-bullen-main-1.png
34.89.61.134200 OK 7.2 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/ico-bullen-main-1.png
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 177 x 177, 8-bit/color RGBA, non-interlaced\012- data
Hash 1c88e8b063e3bdb487bb3020e12917e3
5aa24e0ec99e2e9dfa81c4264e7d15ed47e34398
44dc75528926c0dfc9222de7cd439af21b87a03694506254c998aee4bc36bbf5
GET /wp-content/uploads/2017/06/ico-bullen-main-1.png HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/png
content-length: 7188
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-1c14"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
yoshki.com/TSI/validation/130/0/-logo.png?a=121*012801280128@5501-01260=70=70=@=90124@5501$012@=8
192.166.47.38200 OK 4.3 kB URL HTTP/2 yoshki.com/TSI/validation/130/0/-logo.png?a=121*012801280128@5501-01260=70=70=@=90124@5501$012@=8
IP 192.166.47.38:0
ASN #61323 Ukfast.net Limited
File type PNG image data, 130 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash 8339d7318c6aa15d704b65bd4c1395e6
a86e82d397f5299cdeb3984075ce0ad981450a26
a3f096d5a65d1dce66a31518e0df6614df1f3e03270c71c7f290c649501d1cc2
GET /TSI/validation/130/0/-logo.png?a=121*012801280128@5501-01260=70=70=@=90124@5501$012@=8 HTTP/1.1
Host: yoshki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/png
expires: Thu, 29 Dec 2022 00:00:00 GMT
last-modified: Wed, 28 Dec 2022 00:00:54 GMT
etag: "RDpcaW5ldHB1Ylx5b3Noa2l3ZWJcVFNJXHZhbGlkYXRpb25cMTMwXDBcLWxvZ28ucG5n 28/12/2022 00:00:54"
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Wed, 28 Dec 2022 09:30:56 GMT
content-length: 4279
X-Firefox-Spdy: h2
yoshki.com/TSI/validation/130/0/=logo.png?a=121*012801280128@5501-01260=70=70=@=90124@5501$012@=8
192.166.47.38200 OK 8.1 kB URL HTTP/2 yoshki.com/TSI/validation/130/0/=logo.png?a=121*012801280128@5501-01260=70=70=@=90124@5501$012@=8
IP 192.166.47.38:0
ASN #61323 Ukfast.net Limited
File type PNG image data, 130 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash b49872d90d7784e89379eef71b66a735
3f221f3a57c7cbebae4f2d30bba0a9ce4f5d54ad
fd9c5ed7023d49a031695417284e592946cf87f8fed057c3b8253c856fbef5e4
GET /TSI/validation/130/0/=logo.png?a=121*012801280128@5501-01260=70=70=@=90124@5501$012@=8 HTTP/1.1
Host: yoshki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/png
expires: Thu, 29 Dec 2022 00:00:00 GMT
last-modified: Wed, 28 Dec 2022 00:00:54 GMT
etag: "RDpcaW5ldHB1Ylx5b3Noa2l3ZWJcVFNJXHZhbGlkYXRpb25cMTMwXDBcPWxvZ28ucG5n 28/12/2022 00:00:54"
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Wed, 28 Dec 2022 09:30:56 GMT
content-length: 8099
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8a28df8bb3e4b7542f3b7c9e0b0b280e
5c5a875e2faaa22ce8a14a47765c0beb9df452df
6d6d36834d4db85fcc0a657e32d831f73eda1adc0a0d7ca1d6dc2c7c206c4e24
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2839
Cache-Control: max-age=156176
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:56 GMT
Etag: "63abc0c9-117"
Expires: Fri, 30 Dec 2022 04:53:52 GMT
Last-Modified: Wed, 28 Dec 2022 04:06:33 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
p.typekit.net/p.gif?s=1&k=pge4omf&ht=tk&h=www.bullens.com&f=139.175.5474.5475&a=8299698&js=1.21.0&app=typekit&e=js&_=1672219852189
184.51.252.190200 OK 35 B URL HTTP/2 p.typekit.net/p.gif?s=1&k=pge4omf&ht=tk&h=www.bullens.com&f=139.175.5474.5475&a=8299698&js=1.21.0&app=typekit&e=js&_=1672219852189
IP 184.51.252.190:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 81144d75b3e69e9aa2fa3e9d83a64d03
f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39
GET /p.gif?s=1&k=pge4omf&ht=tk&h=www.bullens.com&f=139.175.5474.5475&a=8299698&js=1.21.0&app=typekit&e=js&_=1672219852189 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
unused62: 8096267
date: Wed, 28 Dec 2022 09:30:56 GMT
X-Firefox-Spdy: h2
www.bullens.com/favicon.ico
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/favicon.ico
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Cookie: _gcl_au=1.1.2053717852.1672219852
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/x-icon
content-length: 0
last-modified: Tue, 20 Dec 2022 22:45:36 GMT
etag: "63a23b10-0"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.148.69.31101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.69.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: snta24T05RVp+G/TWSDkPg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cd/L9dQNHmkGtWxs3YhW77ZSpcM=
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 28 Dec 2022 08:41:11 GMT
expires: Wed, 28 Dec 2022 10:41:11 GMT
cache-control: public, max-age=7200
age: 2985
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
142.250.74.3200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (658)
Size 165 kB (164706 bytes)
Hash 0b7fccb24ee065a01fdde10928c03c3f
9b198014f81844820588c202cc24bf5e03bf3dd7
68756de8f0d6742525ddaca56ab350e34d822777e86939fea27eb704ae013280
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164706
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 08:42:55 GMT
expires: Sat, 23 Dec 2023 08:42:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/javascript
age: 434881
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/gtm/optimize.js?id=GTM-MQGFPQW
142.250.74.110200 OK 47 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-MQGFPQW
IP 142.250.74.110:0
File type ASCII text, with very long lines (3021)
Hash a640c5c2133cb13f95be63369f26999a
c972fe32c244dd0f3545370089e10daa6c6e86eb
fc55bc181d84f5fed4377fdc1b578696ea1faadb25c030a43b9a6e3a6d76d6c4
GET /gtm/optimize.js?id=GTM-MQGFPQW HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Dec 2022 09:30:56 GMT
expires: Wed, 28 Dec 2022 09:30:56 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46573
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js
104.18.2.3200 OK 19 kB URL HTTP/2 cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js
IP 104.18.2.3:0
File type ASCII text, with very long lines (21747)
Hash 5bde1bf29f67bdf35dc8d2cb1ce6921c
790333f0f0e5e532b1270a8c4679a92f8380541c
0797b15facdc259fc2b9c77cf37bc0373d36b76c1846059a4397068cff5f5ec3
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cookie-cdn.cookiepro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
content-md5: bKkFjZE43AfZo3jm8gqLew==
last-modified: Fri, 02 Dec 2022 02:44:42 GMT
x-ms-request-id: 4c8ab55a-601e-0004-6d9f-06b54a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 29325
expires: Thu, 29 Dec 2022 09:30:56 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 780947b94e3cb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/06/home-banner-main-1.jpg
34.89.61.134200 OK 88 kB URL HTTP/2 www.bullens.com/wp-content/uploads/2017/06/home-banner-main-1.jpg
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1604x879, components 3\012- data
Hash 6666928258d1d2e1a239718c14758f77
605a66f27c75c6400407bccfb7fe4dbd9ecfd3c8
d3ef3b37f7c614d3ba3c06da0cee44b498a91ded982fa730db9f6bdd7c85c499
GET /wp-content/uploads/2017/06/home-banner-main-1.jpg HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Cookie: _gcl_au=1.1.2053717852.1672219852
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/jpeg
content-length: 87768
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: "6310bd6e-156d8"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0050029cd95c89afcefa13544ed2370d
92127d7e78d16a6cc8d660f03f8359cf205893a7
236b21306ce2ef6eb433e635da642608ed153c4f18df361546434f5a9f471cec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4284
Cache-Control: max-age=109390
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:57 GMT
Etag: "63ab0463-1d7"
Expires: Thu, 29 Dec 2022 15:54:07 GMT
Last-Modified: Tue, 27 Dec 2022 14:42:43 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 8b26cd4609e2025e51e90573a0fbd6f7
efc2006ae5297ad5ae5e064188b9fba73f6b868f
e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: ISPqupiIlc3BbZVVyGtkZw47P3a8zo+tYQxCqiEd1/XMmTBYHtiWnSgQTrgvbeqMgF/vvfeNWZD6A/08GyB/8Q==
content-length: 27298
x-fb-trip-id: 1904183273
date: Wed, 28 Dec 2022 09:30:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0050029cd95c89afcefa13544ed2370d
92127d7e78d16a6cc8d660f03f8359cf205893a7
236b21306ce2ef6eb433e635da642608ed153c4f18df361546434f5a9f471cec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4284
Cache-Control: max-age=109390
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:57 GMT
Etag: "63ab0463-1d7"
Expires: Thu, 29 Dec 2022 15:54:07 GMT
Last-Modified: Tue, 27 Dec 2022 14:42:43 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
static.hotjar.com/c/hotjar-1407740.js?sv=7
143.204.55.98200 OK 73 kB URL HTTP/2 static.hotjar.com/c/hotjar-1407740.js?sv=7
IP 143.204.55.98:0
File type ASCII text, with very long lines (7679)
Hash 18d309679efadee5a4c2fc3082270ed5
b2ef750e221df1d9fdf904ad58c0cdd7c0d36203
04fbd93f977b4ccc93bb9f5477a91f9eb8a240d72de719c1a8c51b22ae0abbc6
GET /c/hotjar-1407740.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 28 Dec 2022 09:30:57 GMT
cache-control: max-age=60
etag: W/f7ab506e3591b0c72bf9a953736d0ad7
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DYez-Po6bw3cOFjGZ2u3WHE7PkBpv_4FxNxgiw7myxtQXWZgQ75pkA==
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=138003062&tm=gtm002&Ver=2&mid=fab10f08-c130-4e7f-bbf2-506f61699468&sid=528ee4a0869211ed8b8fd7603f20ac3b&vid=528eeb80869211ed9d074b1d5f2d2df1&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Bullen%20Healthcare%20-%20Bullen%20Healthcare&p=https%3A%2F%2Fwww.bullens.com%2F&r=<=1355&evt=pageLoad&sv=1&rn=688317
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=138003062&tm=gtm002&Ver=2&mid=fab10f08-c130-4e7f-bbf2-506f61699468&sid=528ee4a0869211ed8b8fd7603f20ac3b&vid=528eeb80869211ed9d074b1d5f2d2df1&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Bullen%20Healthcare%20-%20Bullen%20Healthcare&p=https%3A%2F%2Fwww.bullens.com%2F&r=<=1355&evt=pageLoad&sv=1&rn=688317
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=138003062&tm=gtm002&Ver=2&mid=fab10f08-c130-4e7f-bbf2-506f61699468&sid=528ee4a0869211ed8b8fd7603f20ac3b&vid=528eeb80869211ed9d074b1d5f2d2df1&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Bullen%20Healthcare%20-%20Bullen%20Healthcare&p=https%3A%2F%2Fwww.bullens.com%2F&r=<=1355&evt=pageLoad&sv=1&rn=688317 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0C900248450B6B6311D510C044FE6A94; domain=.bing.com; expires=Mon, 22-Jan-2024 09:30:57 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DE1FC2BAAAFD4828B18ED865183861F1 Ref B: OSL30EDGE0521 Ref C: 2022-12-28T09:30:57Z
date: Wed, 28 Dec 2022 09:30:56 GMT
X-Firefox-Spdy: h2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
143.204.55.20200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP 143.204.55.20:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9oEveBK5iL47Lq2hU0PSRhEFQR-rqWOdBIjrsW8Vc2-xKhaXxyB1GQ==
age: 3010851
X-Firefox-Spdy: h2
bat.bing.com/p/action/138003062.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/138003062.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/138003062.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=3835124F85C8670E08B800C7843D66D0; domain=.bing.com; expires=Mon, 22-Jan-2024 09:30:57 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6D6BA5F483B84B50888359CCD48E23D3 Ref B: OSL30EDGE0521 Ref C: 2022-12-28T09:30:57Z
date: Wed, 28 Dec 2022 09:30:56 GMT
X-Firefox-Spdy: h2
cookie-cdn.cookiepro.com/scripttemplates/5.14.0/otBannerSdk.js
104.18.2.3200 OK 63 kB URL HTTP/2 cookie-cdn.cookiepro.com/scripttemplates/5.14.0/otBannerSdk.js
IP 104.18.2.3:0
File type ASCII text, with very long lines (65455)
Hash e65ceb5ca9089549969953ac72b83353
aed7bceb3fe4e865df7301ffe55d1cfee8f984c1
78cf983633cad00b556319a3a62bdef368fc241d14a0deda24fdfee4448d9ee1
GET /scripttemplates/5.14.0/otBannerSdk.js HTTP/1.1
Host: cookie-cdn.cookiepro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Dec 2022 09:30:57 GMT
content-type: application/javascript
content-md5: T5zDS0mI+RyABruzGx0ERQ==
last-modified: Mon, 23 Mar 2020 18:29:05 GMT
x-ms-request-id: 51d2e86a-c01e-008b-196a-de3c20000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 59282
expires: Thu, 29 Dec 2022 09:30:57 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 780947bc191ab4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 7.7 kB IP 142.250.74.131:0
File type gzip compressed data, from Unix\012- data
Hash c4cb3bf0aaf78807dcf3787c64c406b0
8ffb90877cc444784f0a6a67d8899202f90bce55
76d7b1b47565797903fa844e9048ba616f594b185193791de5a58e72894fa236
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cookie-cdn.cookiepro.com/consent/930c8f05-0554-426a-a81d-a781c969ac9d/a3a61427-e568-40bf-9622-35b9a4610308/en.json
104.18.2.3200 OK 5.9 kB URL HTTP/2 cookie-cdn.cookiepro.com/consent/930c8f05-0554-426a-a81d-a781c969ac9d/a3a61427-e568-40bf-9622-35b9a4610308/en.json
IP 104.18.2.3:0
File type HTML document, ASCII text, with very long lines (678)
Hash 9b36d5d5aae834fa70d533f023b45476
ed6e4d65e4dd70136759dce578ca6a3407cc4db0
a97c51aa06655a665f9304f730180b24162a45aa0b67f2c19e783c49b32ec126
GET /consent/930c8f05-0554-426a-a81d-a781c969ac9d/a3a61427-e568-40bf-9622-35b9a4610308/en.json HTTP/1.1
Host: cookie-cdn.cookiepro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bullens.com/
Origin: https://www.bullens.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Dec 2022 09:30:57 GMT
content-type: application/x-javascript
cache-control: public, max-age=86400
content-md5: OVhyG2SeJ7IOJswCZui/3A==
last-modified: Wed, 25 Mar 2020 19:10:52 GMT
x-ms-request-id: a9d606d8-d01e-0011-57a1-19a2f9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 780947bccdeeb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-31173940-1&cid=1055667581.1672219852&jid=177314705&gjid=75575249&_gid=246833382.1672219853&_u=YEDAAEAAQAAAACAAIE~&z=1101787954
209.85.233.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-31173940-1&cid=1055667581.1672219852&jid=177314705&gjid=75575249&_gid=246833382.1672219853&_u=YEDAAEAAQAAAACAAIE~&z=1101787954
IP 209.85.233.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-31173940-1&cid=1055667581.1672219852&jid=177314705&gjid=75575249&_gid=246833382.1672219853&_u=YEDAAEAAQAAAACAAIE~&z=1101787954 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.bullens.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 28 Dec 2022 09:30:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/1407740?s=0.25&r=0.10102395457128444
54.230.111.64204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/1407740?s=0.25&r=0.10102395457128444
IP 54.230.111.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/1407740?s=0.25&r=0.10102395457128444 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Wed, 28 Dec 2022 09:30:57 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jd-SPKWd3f_eQRaATENg2izqpqJBppVAMzB0MDYVgUzmHDdLqeHDSg==
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-R25K34NCB9>m=2oebu0&_p=799014323&cid=1055667581.1672219852&ul=en-us&sr=1280x1024&_s=1&sid=1672219852&sct=1&seg=0&dl=https%3A%2F%2Fwww.bullens.com%2F&dt=Bullen%20Healthcare%20-%20Bullen%20Healthcare&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-R25K34NCB9>m=2oebu0&_p=799014323&cid=1055667581.1672219852&ul=en-us&sr=1280x1024&_s=1&sid=1672219852&sct=1&seg=0&dl=https%3A%2F%2Fwww.bullens.com%2F&dt=Bullen%20Healthcare%20-%20Bullen%20Healthcare&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-R25K34NCB9>m=2oebu0&_p=799014323&cid=1055667581.1672219852&ul=en-us&sr=1280x1024&_s=1&sid=1672219852&sct=1&seg=0&dl=https%3A%2F%2Fwww.bullens.com%2F&dt=Bullen%20Healthcare%20-%20Bullen%20Healthcare&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.bullens.com
date: Wed, 28 Dec 2022 09:30:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c40d80fc68e11fd09a9a5b2a1d31a99c
9b5570c09f3a847e6bf91cb91638c7c806e079b3
6de9c5d54998c01fdedde58137519c2e1032ff13d4053495479a335ee1c32f60
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cookie-cdn.cookiepro.com/scripttemplates/5.14.0/assets/otFloatingRounded.json
104.18.2.3200 OK 2.8 kB URL HTTP/2 cookie-cdn.cookiepro.com/scripttemplates/5.14.0/assets/otFloatingRounded.json
IP 104.18.2.3:0
File type JSON data\012- , ASCII text, with very long lines (6317)
Hash 447e08bdd50460310dc5757e401bef8c
a29528aa1906746545543b8d565c3b3caa8c8315
3d5bd411c50c981d84ce504c27e9a691d194bd1edad099ade551495422d0cab9
GET /scripttemplates/5.14.0/assets/otFloatingRounded.json HTTP/1.1
Host: cookie-cdn.cookiepro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bullens.com/
Origin: https://www.bullens.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Dec 2022 09:30:57 GMT
content-type: application/json
content-md5: okDiA4kDeDaHplaF1LBJLw==
last-modified: Mon, 23 Mar 2020 18:28:59 GMT
x-ms-request-id: 6135903e-901e-002f-4eb9-193586000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Thu, 29 Dec 2022 09:30:57 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 780947be4fa1b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 66bebe7c4a03fcf72b3378dbb0a68518
4027df6b9ff491fa10741749325ad76ac5b974a7
1d8637f2196b92f26c00837d00e3ecaf7fecff7e0a4ff027885f0b6128dcbb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 319b66ff72545535456ca8d75e0ea0e5
962a85ad42330886ab53190594269cbc7693a8b5
643912e22b12a850fe0708e071a6caf427afb1fc064d69c05ade4a281956df7c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109220
Date: Wed, 28 Dec 2022 09:30:57 GMT
Etag: "63ab0e61-1d7"
Expires: Thu, 29 Dec 2022 15:51:17 GMT
Last-Modified: Tue, 27 Dec 2022 15:25:21 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BK95FBp5T81X8NZvH7LpexAwTOOVpCr5AD-am-8pVaQgs4ywmPUolg==
Age: 1556
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-31173940-1&cid=1055667581.1672219852&jid=177314705&_u=YEDAAEAAQAAAACAAIE~&z=1706746340
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-31173940-1&cid=1055667581.1672219852&jid=177314705&_u=YEDAAEAAQAAAACAAIE~&z=1706746340
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-31173940-1&cid=1055667581.1672219852&jid=177314705&_u=YEDAAEAAQAAAACAAIE~&z=1706746340 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Dec 2022 09:30:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 66bebe7c4a03fcf72b3378dbb0a68518
4027df6b9ff491fa10741749325ad76ac5b974a7
1d8637f2196b92f26c00837d00e3ecaf7fecff7e0a4ff027885f0b6128dcbb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 09:30:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2783127a63c78cb5ac02e1a31631bfca
a26af5a37bbb43d4258282640749ced026ba9560
cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5684
Expires: Wed, 28 Dec 2022 11:05:42 GMT
Date: Wed, 28 Dec 2022 09:30:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2783127a63c78cb5ac02e1a31631bfca
a26af5a37bbb43d4258282640749ced026ba9560
cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5684
Expires: Wed, 28 Dec 2022 11:05:42 GMT
Date: Wed, 28 Dec 2022 09:30:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2783127a63c78cb5ac02e1a31631bfca
a26af5a37bbb43d4258282640749ced026ba9560
cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5684
Expires: Wed, 28 Dec 2022 11:05:42 GMT
Date: Wed, 28 Dec 2022 09:30:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2783127a63c78cb5ac02e1a31631bfca
a26af5a37bbb43d4258282640749ced026ba9560
cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5684
Expires: Wed, 28 Dec 2022 11:05:42 GMT
Date: Wed, 28 Dec 2022 09:30:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f83de5-47cd-4586-9dca-ab7c314cbd0e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f83de5-47cd-4586-9dca-ab7c314cbd0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9dcccae2018607dee1459081249c91e
2ecfa42f64013afc536c16fcd2250d8229f81654
41839d89192ec4771a6cd5a431617c0b7855701f93c722d025d3f056f109b552
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f83de5-47cd-4586-9dca-ab7c314cbd0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10839
x-amzn-requestid: 70cc8d68-0917-472f-9d64-1d4f708791e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0yuVGkHoAMFskg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab64c1-2aba103f6a75466c19ddbbd6;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:33:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lScTBikZKapio1FOewnfcSCiGyEpXxtMQztgLj-GROHqQ01VEgAnjw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:51:12 GMT
age: 41986
etag: "2ecfa42f64013afc536c16fcd2250d8229f81654"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d46878b-33b3-4376-b34b-4fce3b5aae99.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d46878b-33b3-4376-b34b-4fce3b5aae99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23fa4f1ff5e70770062647e80c6b1a69
0d8cd5871878956468ccdb4ede3038869b4d2471
b44606410e34542fb5db0aa9382e43db89cd9fcf94eb4f0ec1d8b874c0d681b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d46878b-33b3-4376-b34b-4fce3b5aae99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12122
x-amzn-requestid: 7fae254c-4ff4-459c-a8bc-bccaa94e4bec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: du_QiEZfoAMF5GQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a91269-2cb2cd547899b93f47e3d901;Sampled=0
x-amzn-remapped-date: Mon, 26 Dec 2022 03:18:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: p-sl6pCUlvaycZ2Z5QH4lbWVCL-VgK5gU7K17clcYYWvR4ZB0BPdpQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Dec 2022 03:36:09 GMT
age: 21289
etag: "0d8cd5871878956468ccdb4ede3038869b4d2471"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd91057dd-978b-4fb5-b0a3-5ed8624f726a.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd91057dd-978b-4fb5-b0a3-5ed8624f726a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f810df3c7a9cc088b68a912023460d35
76c0e59325b5c046cf68c0268374df317b81be97
a46f2bc69415ce3b749a2765e98e0c2aad012050fa784d7326a0142a6a41a4dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd91057dd-978b-4fb5-b0a3-5ed8624f726a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6009
x-amzn-requestid: 25333cb9-5ba3-44d1-8862-2cc2658b64fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0z_MGbeoAMFrSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab66c7-23af33ff50839c6834137df3;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:42:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zrKFx2R1kV0xsxMyBEjpW3uSid0Kt6HLP92p7WhRcAQLUTq9mTuTmA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:42:31 GMT
etag: "76c0e59325b5c046cf68c0268374df317b81be97"
content-type: image/jpeg
age: 42507
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe69c29db-caec-401a-8056-6c2c58e33dfd.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe69c29db-caec-401a-8056-6c2c58e33dfd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 369bb708ac21a9219cae15dbf33fd225
64885e8ead4ee24b43274ada628ab47cba6c6703
04ba2c600a01344d2cb3fbd2fb5e1dc17d12d018e685f55870da70cd5a85b1ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe69c29db-caec-401a-8056-6c2c58e33dfd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10914
x-amzn-requestid: 86f79e43-1faa-431d-b88a-6e1baaabb1cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0z9YF1AIAMFyKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab66bb-6b418d8b0ceb68a92ec5cbd9;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:42:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: U_JJ9v1Rh7VMWqzK6YtQvYy48CXwwv3x7CA_kuqpZdxSnc3VscWIiw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:42:20 GMT
etag: "64885e8ead4ee24b43274ada628ab47cba6c6703"
content-type: image/jpeg
age: 42518
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5766e63-8236-4f5e-b290-d3cc496cef8f.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5766e63-8236-4f5e-b290-d3cc496cef8f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 32b1fd0a0ef94de7c3f379703feb1199
76be68129dc2fd7fb5081d8a6f05bd2dae5ab54f
93232fcc2e698d523d43738235a6b0a0a27cd9a0bd2941e1877f52fa53bc0825
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5766e63-8236-4f5e-b290-d3cc496cef8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6128
x-amzn-requestid: 3059b36d-af94-473d-a2dd-42a59a218448
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0ys9FjFIAMFc0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab64b9-7072201c4ac8369d5751196f;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:33:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: de1bUIyBmMXz284nkwaGHKNYUdLWg7jrRpnapy6_G0xsrZh83-_RuA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:52:45 GMT
age: 41893
etag: "76be68129dc2fd7fb5081d8a6f05bd2dae5ab54f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d43b473-21c7-4775-9398-1bdecb4d7d28.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d43b473-21c7-4775-9398-1bdecb4d7d28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b373925ce249ca67e6984c436f5cd2b8
ddbc25025b933587990f8e9c32e91c9773256840
7d3c992b715283efeba9bee2e5c08042267017e76074ca6aad870e1dd45b4564
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d43b473-21c7-4775-9398-1bdecb4d7d28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9007
x-amzn-requestid: 15b3b2e5-d493-4b54-aab4-7374bf892e83
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: drrFbESxIAMFikw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a7beef-37f4ab8e7738b186705bb1db;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 03:09:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Swp663gmExgpgDT8bZUFNOpLEJHZDQWrEeasO7jgP5GClXzyJUTWgw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Dec 2022 03:27:43 GMT
age: 21795
etag: "ddbc25025b933587990f8e9c32e91c9773256840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.bullens.com/wp-content/plugins/postcodes4u-address-finder/includes/js/pc4u_wp_v1_5_17.js?ver=6.1.1
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/plugins/postcodes4u-address-finder/includes/js/pc4u_wp_v1_5_17.js?ver=6.1.1
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/postcodes4u-address-finder/includes/js/pc4u_wp_v1_5_17.js?ver=6.1.1 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Sep 2022 14:10:57 GMT
etag: W/"6310bd71-1a8f1"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-content/themes/x/framework/dist/js/site/x.js?ver=9.1.4
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/themes/x/framework/dist/js/site/x.js?ver=9.1.4
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/themes/x/framework/dist/js/site/x.js?ver=9.1.4 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: W/"6310bd6e-cd42"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400%2C500&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400%2C500&display=swap
IP 142.250.74.74:0
GET /css?family=Roboto:400%2C500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Dec 2022 09:30:56 GMT
date: Wed, 28 Dec 2022 09:30:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.bullens.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: W/"6254194e-194b"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/
34.89.61.134200 OK 0 B IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET / HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:55 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
x-powered-by: WP Engine
link: <https://www.bullens.com/wp-json/>; rel="https://api.w.org/", <https://www.bullens.com/wp-json/wp/v2/pages/105>; rel="alternate"; type="application/json", <https://www.bullens.com/>; rel=shortlink
x-cacheable: SHORT
cache-control: max-age=600, must-revalidate
x-cache: HIT: 1
x-cache-group: normal
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-includes/css/classic-themes.min.css?ver=1
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-includes/css/classic-themes.min.css?ver=1
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:55 GMT
content-type: text/css
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
etag: W/"6357e86c-d9"
cache-control: public, max-age=31536000
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 05 Oct 2022 09:22:35 GMT
etag: W/"633d4cdb-e8bd"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
cookie-cdn.cookiepro.com/scripttemplates/5.14.0/assets/otPcPanel.json
104.18.2.3200 OK 0 B URL HTTP/2 cookie-cdn.cookiepro.com/scripttemplates/5.14.0/assets/otPcPanel.json
IP 104.18.2.3:0
GET /scripttemplates/5.14.0/assets/otPcPanel.json HTTP/1.1
Host: cookie-cdn.cookiepro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bullens.com/
Origin: https://www.bullens.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Dec 2022 09:30:57 GMT
content-type: application/json
content-md5: jMRC2T+4v87bAxMvFRXBSw==
last-modified: Mon, 23 Mar 2020 18:29:00 GMT
x-ms-request-id: 18a1a213-001e-00ab-55a1-194787000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Thu, 29 Dec 2022 09:30:57 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 780947be4fa8b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 19 Oct 2022 12:40:33 GMT
etag: W/"634ff041-3e7"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-content/themes/x-child/style.css?ver=9.1.4
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/themes/x-child/style.css?ver=9.1.4
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/themes/x-child/style.css?ver=9.1.4 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Sep 2022 14:10:54 GMT
etag: W/"6310bd6e-430b"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
cookie-cdn.cookiepro.com/consent/930c8f05-0554-426a-a81d-a781c969ac9d/930c8f05-0554-426a-a81d-a781c969ac9d.json
104.18.2.3200 OK 0 B URL HTTP/2 cookie-cdn.cookiepro.com/consent/930c8f05-0554-426a-a81d-a781c969ac9d/930c8f05-0554-426a-a81d-a781c969ac9d.json
IP 104.18.2.3:0
GET /consent/930c8f05-0554-426a-a81d-a781c969ac9d/930c8f05-0554-426a-a81d-a781c969ac9d.json HTTP/1.1
Host: cookie-cdn.cookiepro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/x-javascript
cache-control: public, max-age=86400
content-md5: u6GOncnqvviRM7agyxNABw==
last-modified: Wed, 25 Mar 2020 19:10:52 GMT
x-ms-request-id: e91509ee-c01e-009b-4a30-17f948000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 780947b9ea89b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 05 Oct 2022 09:22:34 GMT
etag: W/"633d4cda-1f725"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 05 Oct 2022 09:22:34 GMT
etag: W/"633d4cda-5fa2e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,400
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400
IP 142.250.74.74:0
GET /css?family=Open+Sans:300,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Dec 2022 09:30:56 GMT
date: Wed, 28 Dec 2022 09:30:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.bullens.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 19 Oct 2022 12:40:33 GMT
etag: W/"634ff041-26d1"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-content/plugins/cornerstone/assets/js/site/cs.6f62d0f.js
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/plugins/cornerstone/assets/js/site/cs.6f62d0f.js
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/cornerstone/assets/js/site/cs.6f62d0f.js HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Sep 2022 14:10:57 GMT
etag: W/"6310bd71-22403"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/1407740/visit-data?sv=7
54.194.43.128200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/1407740/visit-data?sv=7
IP 54.194.43.128:0
POST /api/v2/client/sites/1407740/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 129
Origin: https://www.bullens.com
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 09:30:57 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: W/"5fb4e3fe-2bd8"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-content/themes/x/framework/dist/css/site/stacks/integrity-light.css?ver=9.1.4
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/themes/x/framework/dist/css/site/stacks/integrity-light.css?ver=9.1.4
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/themes/x/framework/dist/css/site/stacks/integrity-light.css?ver=9.1.4 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Sep 2022 14:10:55 GMT
etag: W/"6310bd6f-2ff49"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
etag: W/"632879b8-15e54"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-content/uploads/2017/07/Circles-home-mobile.jpg
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/uploads/2017/07/Circles-home-mobile.jpg
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/uploads/2017/07/Circles-home-mobile.jpg HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:56 GMT
content-type: image/jpeg
content-length: 135007
last-modified: Thu, 01 Sep 2022 14:10:53 GMT
etag: "6310bd6d-20f5f"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.bullens.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:55 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
etag: W/"636e62ad-172a9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.bullens.com/wp-content/plugins/postcodes4u-address-finder/includes/css/pc4u_styles_v1-1.css?ver=6.1.1
34.89.61.134200 OK 0 B URL HTTP/2 www.bullens.com/wp-content/plugins/postcodes4u-address-finder/includes/css/pc4u_styles_v1-1.css?ver=6.1.1
IP 34.89.61.134:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/postcodes4u-address-finder/includes/css/pc4u_styles_v1-1.css?ver=6.1.1 HTTP/1.1
Host: www.bullens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bullens.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 09:30:55 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Sep 2022 14:10:57 GMT
etag: W/"6310bd71-996"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2