Report - click.email-carpionatogroup.com/?qs=12773b4a0a10c31b3d2de35e3a558f86a6a95ccadfa81c8e88bcc73162464ee4b7ce1c24d86f18d9c2646a69bcdc78cf9830566efb6ca8027326b1670a58915e

Report Overview

Submitted URL
click.email-carpionatogroup.com/?qs=12773b4a0a10c31b3d2de35e3a558f86a6a95ccadfa81c8e88bcc73162464ee4b7ce1c24d86f18d9c2646a69bcdc78cf9830566efb6ca8027326b1670a58915e
IP
13.111.18.12
ASN
#22606 EXACT-7
Submitted
2023-03-27 20:53:20
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-29T06:01:47Z	1.3 kB	21 kB	216.58.207.206
click.email-carpionatogroup.com	unknown	2022-10-18T18:05:56Z	2023-03-27T22:51:17Z	495 B	568 B	13.111.18.12
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-29T05:09:04Z	4.8 kB	9.8 kB	142.250.74.131
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-29T05:16:53Z	1.8 kB	465 kB	104.17.25.14
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-29T09:13:03Z	455 B	167 kB	142.250.74.35
cm.g.doubleclick.net	202	2012-05-22T11:58:28Z	2023-03-29T14:09:49Z	885 B	1.8 kB	142.250.74.34
ocsp.usertrust.com	899	2012-05-21T17:43:18Z	2023-03-29T05:12:11Z	342 B	1.0 kB	104.18.32.68
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-29T11:45:01Z	1.7 kB	4.2 kB	192.229.221.95
eb2.3lift.com	402	2014-09-24T17:03:42Z	2023-03-29T13:40:31Z	439 B	206 B	13.248.245.213
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
pixel.rubiconproject.com	314	2012-10-09T05:17:38Z	2023-03-29T05:57:15Z	460 B	237 B	213.19.162.80
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-29T09:59:29Z	643 B	641 B	142.250.74.163
i.simpli.fi	3482	2012-05-30T02:30:03Z	2023-03-29T14:15:00Z	402 B	1.2 kB	34.90.79.92
ib.adnxs.com	241	2012-05-20T21:01:49Z	2023-03-29T05:36:29Z	878 B	2.0 kB	185.89.210.180
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.2 kB	53 kB	34.120.237.76
pixel.tapad.com	400	2012-10-01T09:23:01Z	2023-03-29T18:17:10Z	960 B	2.0 kB	34.111.113.62
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-29T08:59:28Z	680 B	1.9 kB	172.64.155.188
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	52.43.197.133
fei.pro-market.net	2658	2012-10-30T07:46:59Z	2023-03-29T17:32:16Z	910 B	1.4 kB	107.178.240.89
ocsp.r2m02.amazontrust.com	unknown	2022-10-12T16:01:39Z	2023-03-29T09:11:13Z	350 B	945 B	54.230.80.227
images.chapelgrilleri.com	unknown	2018-09-15T09:13:31Z	2023-02-07T02:26:20Z	2.8 kB	948 kB	34.107.233.73
ocsp.godaddy.com	698	2012-05-20T21:28:57Z	2023-03-29T05:12:39Z	680 B	4.6 kB	192.124.249.22
ppttpckjlopp.pw	unknown	2022-07-27T15:40:59Z	2023-03-27T22:53:17Z	235 B	192 B	216.218.185.162
status.geotrust.com	3662	2017-12-01T09:55:31Z	2023-03-29T05:13:49Z	1.0 kB	2.4 kB	192.229.221.95
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
www.chapelgrilleri.com	unknown	2013-05-03T14:26:12Z	2023-02-07T02:26:21Z	6.3 kB	83 kB	34.102.137.30
um.simpli.fi	744	2012-05-22T07:45:01Z	2023-03-29T11:08:21Z	8.7 kB	21 kB	35.204.74.118
www.googleadservices.com	107	2012-06-26T16:53:06Z	2023-03-29T14:17:45Z	509 B	839 B	142.250.74.34
stags.bluekai.com	471	2012-06-27T21:59:37Z	2023-03-29T11:08:21Z	427 B	598 B	184.24.45.23
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-29T09:11:41Z	1.1 kB	3.0 kB	54.230.80.227
ce.lijit.com	812	2012-05-22T07:45:01Z	2023-03-29T14:15:01Z	425 B	309 B	216.52.2.86
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	2.4 kB	6.2 kB	23.33.119.27
aa.agkn.com	431	2017-01-30T06:01:07Z	2023-03-29T06:04:21Z	448 B	740 B	35.157.191.4
simplifi.partners.tremorhub.com	7073	2019-08-12T17:15:44Z	2023-03-29T14:15:01Z	437 B	201 B	52.6.21.108
bcp.crwdcntrl.net	699	2012-05-21T03:51:26Z	2023-03-29T14:45:02Z	437 B	367 B	54.228.6.120
loadm.exelator.com	1042	2012-05-22T09:59:51Z	2023-03-29T18:12:40Z	443 B	385 B	34.254.143.3
us-u.openx.net	357	2013-08-30T21:43:55Z	2023-03-29T05:57:10Z	436 B	406 B	35.244.159.8
sync.search.spotxchange.com	523	2012-05-22T10:29:33Z	2023-03-29T05:57:10Z	956 B	1.2 kB	185.94.180.125
d.agkn.com	524	2012-05-21T03:51:27Z	2023-03-29T10:59:39Z	487 B	533 B	54.171.219.155
tag.simpli.fi	5216	2016-08-25T23:56:15Z	2023-03-29T14:12:19Z	400 B	4.1 kB	34.90.79.92
sync.intentiq.com	1476	2020-05-06T12:01:11Z	2023-03-29T18:41:05Z	477 B	1.4 kB	143.204.55.22
idsync.rlcdn.com	305	2012-05-22T18:37:38Z	2023-03-29T05:57:10Z	435 B	192 B	35.244.174.68
sync.bfmio.com	1205	2017-01-30T05:50:02Z	2023-03-29T18:20:58Z	427 B	314 B	34.192.9.105
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-27 20:53:28	medium	Client IP	Internal IP	ET DNS Query to a *.pw domain - Likely Hostile
2023-03-27 20:53:28	low	Client IP	216.218.185.162	ET INFO HTTP Request to a *.pw domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-03-27	medium	ppttpckjlopp.pw	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	www.chapelgrilleri.com/includes/js/jquery/jquery-2.1.4.min.js	84 kB	2023-03-07	2024-04-26
Pretty URL www.chapelgrilleri.com/includes/js/jquery/jquery-2.1.4.min.js IP 34.102.137.30 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:48 Last Seen2024-04-26 06:20:04 Times Seen7184 Hash f9c7afd05729f10f55b689f36bb20172 43dc554608df885a59ddeece1598c6ace434d747 f16ab224bb962910558715c82f58c10c3ed20f153ddfaa199029f141b5b0255c Loading...

	www.chapelgrilleri.com/includes/js/gfplatform/gfBase.js	2.3 kB	2023-03-29	2023-03-29
Pretty URL www.chapelgrilleri.com/includes/js/gfplatform/gfBase.js IP 34.102.137.30 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:25:49 Last Seen2023-03-29 23:25:49 Times Seen1 Hash 68902f9447c7bd41f5455b0c5aebbf62 23170bdafdd72d27302d522d26a1aa6864ee7143 7e491217ad27fe30aec0bb73d01ac2aee6e92e401a0dfb0aa4a18c6bc414f46c Loading...

	www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js	415 kB	2023-03-29	2023-09-29
Pretty URL www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:35:31 Last Seen2023-09-29 03:14:46 Times Seen3321 Hash 733e4a30889fa7c9947958423e21e810 16a2cced6035295476141f8ac1cd928114cafebf 7d2c1727a32a92776f9a3078abb845bbeb77e6603c40a318f12ea1e1b5a040d7 Loading...

	i.simpli.fi/p?cid=359644&cb=sifi_att_42656._hp	750 B	2023-03-29	2023-03-29
Pretty URL i.simpli.fi/p?cid=359644&cb=sifi_att_42656._hp IP 34.90.79.92 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:25:49 Last Seen2023-03-29 23:25:49 Times Seen1 Hash ac0aa7e3c5c331b8defb6f2209ff1b31 8f14efc5d4a16c68838bbac137d10126c69ed875 74d728983d44da0af834d65f0b4c001409d62c9965626009ff1e3ec3f077aa39 Loading...

	tag.simpli.fi/sifitag/10f56ce0-6db6-013a-9c63-06b4c2516bae	3.1 kB	2023-03-29	2023-03-29
Pretty URL tag.simpli.fi/sifitag/10f56ce0-6db6-013a-9c63-06b4c2516bae IP 34.90.79.92 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:25:49 Last Seen2023-03-29 23:25:49 Times Seen1 Hash 2af8e3366fde9002f8c92b74041ddd48 49e14594dc85dfa79cf63395a0de3946a492d70c 58217a996919e439370df775b070cc9ea8d30fa4824eedb8dc606e4235461920 Loading...

	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 01:23:46 Times Seen37107390 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.chapelgrilleri.com/assets/js/default.js	5.5 kB	2023-03-29	2023-03-29
Pretty URL www.chapelgrilleri.com/assets/js/default.js IP 34.102.137.30 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:25:49 Last Seen2023-03-29 23:25:49 Times Seen1 Hash b3d6b11752aa3076325565317d346b69 736a51ff13e1396a048704003d86d35ebf185a5d 33bf863cccc9aae5d140852efba49e9e27b8bf90db8550b926cda84bf8f022f1 Loading...

	www.google.com/recaptcha/api.js	850 B	2023-03-29	2023-04-01
Pretty URL www.google.com/recaptcha/api.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:35:56 Last Seen2023-04-01 11:10:22 Times Seen1487 Hash 65f4b0da387ca3fa48d1efb14c9cd385 8a48751f76ea657b8b1c192f07ec5d9624352673 a22e425317dd9d6bb2bcc724ec7179d54c747165c9143505d7a129ad7a549da7 Loading...

	www.chapelgrilleri.com/includes/js/cookie.js	2.2 kB	2023-03-29	2023-05-31
Pretty URL www.chapelgrilleri.com/includes/js/cookie.js IP 34.102.137.30 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:25:49 Last Seen2023-05-31 01:25:48 Times Seen9 Hash 09372fcc1706e37627c1a0b660009c1a 1f9f4ff7623096adba3e12dcdeafa111e57c1195 f2d73d0f97653b787ec661c38526c5af57034733ba36ba3ca5a2d9818ce877fc Loading...

	www.chapelgrilleri.com/includes/js/blocks/alert/message.js	923 B	2023-03-29	2023-03-29
Pretty URL www.chapelgrilleri.com/includes/js/blocks/alert/message.js IP 34.102.137.30 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:25:49 Last Seen2023-03-29 23:25:49 Times Seen1 Hash 7dec43cbb0c6e04a3d88d8fc6b676b64 2381b288ffc677c4d817a2960702df830361a910 bf56b4f7b9dbe0412219a8e0733591b7403066d0aa8186ba9b55ac51cd7b1807 Loading...

	www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS	389 B	2023-03-29	2023-03-29
Pretty URL www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS IP 34.102.137.30 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:25:49 Last Seen2023-03-29 23:25:49 Times Seen1 Hash bfca47afd396c4969e7537413b9c3920 53301350136c713c6a77fb84c062eb6b1c6550bb c4f349d78118539d7d28f901a80073967be257666cb1a075ef48409b90d2d4ca Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 216.58.207.206 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

HTTP Transactions (126)

URL IP Response Size

click.email-carpionatogroup.com/?qs=12773b4a0a10c31b3d2de35e3a558f86a6a95ccadfa81c8e88bcc73162464ee4b7ce1c24d86f18d9c2646a69bcdc78cf9830566efb6ca8027326b1670a58915e

13.111.18.12

302 Found

262 B

URL HTTP/1.1
click.email-carpionatogroup.com/?qs=12773b4a0a10c31b3d2de35e3a558f86a6a95ccadfa81c8e88bcc73162464ee4b7ce1c24d86f18d9c2646a69bcdc78cf9830566efb6ca8027326b1670a58915e
IP
13.111.18.12:0
ASN
#22606 EXACT-7

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
262 B (262 bytes)
Hash
3adfe17d518c05b62c3fdcb3d3a0f499
64b20f1278f46429b7a111b112a351cf03c6d9fe
7d9c2b5e53a1aa944498b14aa1cb32720fc5244e91fa28aabc65bdf8b2dcb2b7

HTTP Headers

GET /?qs=12773b4a0a10c31b3d2de35e3a558f86a6a95ccadfa81c8e88bcc73162464ee4b7ce1c24d86f18d9c2646a69bcdc78cf9830566efb6ca8027326b1670a58915e HTTP/1.1
Host: click.email-carpionatogroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS
Date: Mon, 27 Mar 2023 20:53:07 GMT
X-Cnection: close
Content-Length: 262

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7262
Expires: Mon, 27 Mar 2023 22:54:10 GMT
Date: Mon, 27 Mar 2023 20:53:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5566
Expires: Mon, 27 Mar 2023 22:25:54 GMT
Date: Mon, 27 Mar 2023 20:53:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5ad3eec59bebbf969f175627757507c1
b176af3a70db378c9e1f219bab24d9d446070d6f
704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17447
Expires: Tue, 28 Mar 2023 01:43:55 GMT
Date: Mon, 27 Mar 2023 20:53:08 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: jJVIhJAhYamgxLKyGySUA5AiKpk52qtpviCpuJwoUlBeeuG9oC/x0t9rNd/dVeV/mAAvX9VP4rQ=
x-amz-request-id: 8Z6MPMSHXX20QQC2
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 27 Mar 2023 20:01:46 GMT
age: 3082
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 27 Mar 2023 20:15:45 GMT
content-type: application/json
age: 2243
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 27 Mar 2023 20:53:08 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/1Qxfdbxi9kA

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/1Qxfdbxi9kA
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8ee9df17a8e20e446da4b20dfb0f7d91
66f4ceea4a4035046630b38cece3612b89fb2d5f
3046ad228fe13f851f4e2693fbfffe2d815a15e0dcb35b335bbff10c3da14e90

HTTP Headers

POST /s/gts1d4/1Qxfdbxi9kA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:08 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 27 Mar 2023 20:17:24 GMT
age: 2144
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
76a0aba3ddb470751c690f5a725159f2
8cb789e8e0dfa336270700ef1e607173f2aee6cd
e76de476654125a06994065d66e30c6fb6c354d0f67fd4e31a3f78679e2bfdcb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E76DE476654125A06994065D66E30C6FB6C354D0F67FD4E31A3F78679E2BFDCB"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8738
Expires: Mon, 27 Mar 2023 23:18:47 GMT
Date: Mon, 27 Mar 2023 20:53:09 GMT
Connection: keep-alive

push.services.mozilla.com/

52.43.197.133

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.197.133:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BYl3P0q8NS941O4dxnz3GQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cWNb24G2gxtli5Vq/AIl4Kn73no=

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4809
Expires: Mon, 27 Mar 2023 22:13:19 GMT
Date: Mon, 27 Mar 2023 20:53:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4809
Expires: Mon, 27 Mar 2023 22:13:19 GMT
Date: Mon, 27 Mar 2023 20:53:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4809
Expires: Mon, 27 Mar 2023 22:13:19 GMT
Date: Mon, 27 Mar 2023 20:53:10 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg

34.120.237.76

200 OK

3.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.6 kB (3589 bytes)
Hash
1ec08d4bd079a92161fc80f41281b5a9
bf61369962342cce85de8f48942b4b150fd2721e
8a8ed12c31d89d71c3cb88f0813ded83939529206461e917dcb0b8bc11abdda4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3589
x-amzn-requestid: 9c09af43-79e8-4734-b28b-4194e0bb1e4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uyE2joAMF50g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6991-7607d33f6301182b591c56e8;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:21 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: pjRA439kqSg5daR_Zuvsf2l45R4oqv3AMWNiMCGQ_C5o2KA8kEd3TQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 21:37:24 GMT
age: 83746
etag: "bf61369962342cce85de8f48942b4b150fd2721e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10405 bytes)
Hash
22905e8a7c8b1741dd51842c114a6517
c5900fe2396e0ca371c4847af4e96149850c3577
1525f9f39c09370fcb1f58f079f2d741a4c6d13fba26e6dd5b79466153d7685e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10405
x-amzn-requestid: 0b8dad7a-2ec1-4eed-9a2c-06079ed46662
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRi69E9xoAMFiJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d4b79-2f606ac041c5db24583c8d51;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:25 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qbbEi0tXZLKo6qjrbJMtTHdhWziYrLrgzY1hzt_LrQJoeDDBbJnZBA==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 05:54:17 GMT
age: 53933
etag: "c5900fe2396e0ca371c4847af4e96149850c3577"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5556 bytes)
Hash
c831201ad81f55c63c1b101ce854a810
0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5
c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5556
x-amzn-requestid: 6b050645-14aa-47f7-b4a5-2e27abbe5115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM69eHE3IAMF0Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b71ef-6ab2948e2bf2578f29798372;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:23:59 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: CgU9j02Bnw0UdIwQ3sRCDvJoPitHIAUTRDhLH_PMXYlAPoAwSbv6Iw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 05:36:52 GMT
age: 54978
etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10591 bytes)
Hash
668a8a17a1bb77ea7db7fa23c9df9690
242108539ff8694a3c557d07b2b000e764a77f24
100952573dc9eeba889a77f4d148b646accb99f277035f0607b1c6918f93a358

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10591
x-amzn-requestid: 8359ddc1-a6c6-4caf-9de3-f2eb4dcb0c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CaIO-F0QIAMF5_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6420ba5f-72ee066911fdddb62c4a201d;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: hfm1xuKZ-Olu263DvYfbYlEnANaiIL9e7jEDUqDAf3ihT5N2HAdyIA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 21:49:30 GMT
age: 83020
etag: "242108539ff8694a3c557d07b2b000e764a77f24"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12017 bytes)
Hash
e999a9d79efe60a30b2942c5f2940294
c3891c43b16521f66eb3a52d83694de2ddd39871
290ed1232883a4ec63ef42c30f40b819983c5544e35261d2d1e0d1e55d0c8b07

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12017
x-amzn-requestid: 4f61a0c7-4b18-4289-b47c-eeeff93d873f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ca6yQGNtoAMFsxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64210b41-350e4e2425d9606e478872b5;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 03:19:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: TCzHm5qTtnAUDSmayc-LLFmDfV7o6PaaYYfVtN_w7cC3o66HCa3DEg==
via: 1.1 b3cdce1c2fc39b89f45c98c417351f26.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 03:34:08 GMT
age: 62342
etag: "c3891c43b16521f66eb3a52d83694de2ddd39871"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4775 bytes)
Hash
8cc79a830964d923d24a45f5ccc9939b
557cc4827414912c41319ad961c14cce71ed4a18
b3b1c73b34057cb6e41920f3d55213ad8c193076525767c051960ec26d17ca3c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4775
x-amzn-requestid: 28d0e56d-ed03-4686-bd49-34f193f1c65a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CK96KF9coAMFvMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641aa9da-122cd32a6f23e8442a52464c;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 07:10:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: psNReeBG7nAuKQXIMl1zwCVmvtZ-xwn6Fx8oAIX4wi4GCNUWNWOGMA==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 22:12:36 GMT
age: 81634
etag: "557cc4827414912c41319ad961c14cce71ed4a18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS

34.102.137.30

200 OK

4.3 kB

URL HTTP/2
www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS
IP
34.102.137.30:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (331), with CRLF, LF line terminators
Size
4.3 kB (4324 bytes)
Hash
59924482efcf509c3515c836d8a4d95b
4dc7d6ca3c78cbf434c02f001641dcfdc103a6b3
1b3739066cabb4ca167fbe3d933dccbd00ea41e09ec5f83724caa51157759e67

HTTP Headers

GET /menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS HTTP/1.1
Host: www.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
server: Apache
content-type: text/html;charset=utf-8
set-cookie: REFERER=;Path=/;Expires=Wed, 26-Mar-2053 04:44:39 UTC;Secure;HttpOnly;SameSite=Strict
ORIGINALREFERER=;Path=/;Expires=Wed, 26-Mar-2053 04:44:39 UTC;Secure;HttpOnly;SameSite=Strict
ISMOBILE=false;Path=/;Expires=Wed, 26-Mar-2053 04:44:39 UTC;Secure;HttpOnly;SameSite=Strict
cfid=78225b1e-94e9-4b14-a46f-5c6c4d5d212c;Path=/;Expires=Sun, 16-Apr-2023 22:31:13 UTC;Secure;HttpOnly;SameSite=Strict
cftoken=0;Path=/;Expires=Sun, 16-Apr-2023 22:31:13 UTC;Secure;HttpOnly;SameSite=Strict
ha_cms_cookie=s11; path=/
vary: Accept-Encoding
content-encoding: gzip
content-length: 4324
cache-control: private
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css

104.17.25.14

200 OK

10 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (59119)
Size
10 kB (10462 bytes)
Hash
14e1692fd4263ccfea0b84299bdbf1f5
7783020a9ced5f32c8d38205357c7d10798be1fd
8ff0cd2d1e7f0b6203a762fb9811256d4445a3ad0d97f07102e038ba0eb3db72

HTTP Headers

GET /ajax/libs/font-awesome/5.15.4/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.chapelgrilleri.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
content-type: text/css; charset=utf-8
content-length: 10462
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "613fa20b-28de"
last-modified: Mon, 13 Sep 2021 19:10:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1546715
expires: Sat, 16 Mar 2024 20:53:11 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z3BQr53UDkg4hbWGeOIPF%2Bu7r%2B13hcwq%2BTLwvrqeDel3IzlsMGPlYR2unuwQfFfWeWSMktsnow6OCgy99pnoM6CQJf%2Bha6S2gZJY6aSxoPGsn1RFvRreVG2V6Xjn3Ug%2BoeUecq3u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7aea857a4cab0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/fontawesome.min.css

104.17.25.14

200 OK

10 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/fontawesome.min.css
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (57687)
Size
10 kB (10266 bytes)
Hash
2df28a5916bf4d00f6530d3c7a77c229
f79d49f3431b6b24585b98b93ad58528c5851f73
4b37ab094f005b15732000c017b5eb5086d0d9125e1624d9688170b53223e931

HTTP Headers

GET /ajax/libs/font-awesome/5.15.4/css/fontawesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.chapelgrilleri.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
content-type: text/css; charset=utf-8
content-length: 10266
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "613fa20b-281a"
last-modified: Mon, 13 Sep 2021 19:10:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 623905
expires: Sat, 16 Mar 2024 20:53:11 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zhjD0xW8sg0OkA3tjd%2BO%2FT%2BefSbabBgl9ut9SG9b7QbQle%2F6HhU9tAP6j7MjKEzmvtXpf5sFlGbY%2BOvb1q7%2BLCmHnpmLJc0HtNUDSKIu2nvQMWPZNAFVVc7PJaeuX7h3%2FJlUsmT7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7aea857a4cb10b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/js/all.min.js

104.17.25.14

200 OK

364 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/js/all.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65350)
Size
364 kB (363853 bytes)
Hash
41957c2845de92e81a41bc54e1d69de1
24baa2b470ab6f5a0f4b99d1255fe7494a9104ff
626fcbd2d284c9dc4e6f492f205a0946fcd756362492081b57baf8103e1fa083

HTTP Headers

GET /ajax/libs/font-awesome/5.15.4/js/all.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.chapelgrilleri.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
content-type: application/javascript; charset=utf-8
content-length: 363853
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "613fa20b-58d4d"
last-modified: Mon, 13 Sep 2021 19:10:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5264147
expires: Sat, 16 Mar 2024 20:53:11 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LzNAT79GSYIcQ0y1KEcFSLFTVp24NkQDLcZkqEiZnWrEdoykPH%2BDjPPdE2pFAO1NW7EIBeYuIrnkP%2Bmqlaup3tSqsebCykfJ%2BpiRo27ygLP7XO0S2t4ixPbzEohSXuns1fLqVNUa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7aea857a4c9f0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/1Qxfdbxi9kA

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/1Qxfdbxi9kA
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8ee9df17a8e20e446da4b20dfb0f7d91
66f4ceea4a4035046630b38cece3612b89fb2d5f
3046ad228fe13f851f4e2693fbfffe2d815a15e0dcb35b335bbff10c3da14e90

HTTP Headers

POST /s/gts1d4/1Qxfdbxi9kA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:11 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ba50d379b2776214995c207b42c083a4
0f1b48c6d01ace326c49acf5bcac222f772e9f6a
6692886530b311f94ac3855df31c774feed6d5135dad4ac24921b6030fcbb8d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.chapelgrilleri.com/assets/css/dest/default-desktop.css

34.102.137.30

200 OK

893 B

URL HTTP/2
www.chapelgrilleri.com/assets/css/dest/default-desktop.css
IP
34.102.137.30:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2832), with no line terminators
Size
893 B (893 bytes)
Hash
17c2c3984e87b273c78068cfd0031d86
bd977f3c6284e612e4296078272229acb7f3f9b1
4ecf225ddd5150d6f03768d77d96b9e893717b8888c18c259addbc1ab3e26686

HTTP Headers

GET /assets/css/dest/default-desktop.css HTTP/1.1
Host: www.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS
Cookie: REFERER=; ORIGINALREFERER=; ISMOBILE=false; cfid=78225b1e-94e9-4b14-a46f-5c6c4d5d212c; cftoken=0; ha_cms_cookie=s11
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
server: Apache
last-modified: Thu, 01 Oct 2020 02:27:26 GMT
etag: "b10-5b092c1d02a46-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 893
content-type: text/css
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.chapelgrilleri.com/assets/js/default.js

34.102.137.30

200 OK

1.8 kB

URL HTTP/2
www.chapelgrilleri.com/assets/js/default.js
IP
34.102.137.30:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
1.8 kB (1794 bytes)
Hash
bd0ba60ebc708ca5860e89b36d689091
983e916e5eb094d9f6d68088594be3ea5ab7dcff
c915aef50a88d34ba050a8b0ff384ea56f01347e9d3c59423b78f7200a23e57f

HTTP Headers

GET /assets/js/default.js HTTP/1.1
Host: www.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS
Cookie: REFERER=; ORIGINALREFERER=; ISMOBILE=false; cfid=78225b1e-94e9-4b14-a46f-5c6c4d5d212c; cftoken=0; ha_cms_cookie=s11
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
server: Apache
last-modified: Thu, 01 Oct 2020 02:27:26 GMT
etag: "1569-5b092c1cd0d77-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1794
content-type: application/javascript
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.chapelgrilleri.com/includes/js/gfplatform/gfBase.js

34.102.137.30

200 OK

944 B

URL HTTP/2
www.chapelgrilleri.com/includes/js/gfplatform/gfBase.js
IP
34.102.137.30:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
944 B (944 bytes)
Hash
c8229ca8ce69d6bb08128cca32796976
d768bdc8cfa636abbbb5b8c0de0724a10dcacf5f
740a59d8948c55bab0598dc0ef6e6db48f404d021051865bd4a5f317c97dfd30

HTTP Headers

GET /includes/js/gfplatform/gfBase.js HTTP/1.1
Host: www.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS
Cookie: REFERER=; ORIGINALREFERER=; ISMOBILE=false; cfid=78225b1e-94e9-4b14-a46f-5c6c4d5d212c; cftoken=0; ha_cms_cookie=s11
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
server: Apache
last-modified: Thu, 01 Oct 2020 02:25:21 GMT
etag: "8fb-5b092ba5bcf2e-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 944
content-type: application/javascript
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.chapelgrilleri.com/includes/js/cookie.js

34.102.137.30

200 OK

952 B

URL HTTP/2
www.chapelgrilleri.com/includes/js/cookie.js
IP
34.102.137.30:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
952 B (952 bytes)
Hash
3fd4c69d290ded6b94882514001ffc16
b93ea8c73de489bc5aa39ecc303cebf5bf691a8a
03f6d023578a39ee7ccfee08d625125fd2e98ec2be75f42e37563d2388765b88

HTTP Headers

GET /includes/js/cookie.js HTTP/1.1
Host: www.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS
Cookie: REFERER=; ORIGINALREFERER=; ISMOBILE=false; cfid=78225b1e-94e9-4b14-a46f-5c6c4d5d212c; cftoken=0; ha_cms_cookie=s11
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
server: Apache
last-modified: Thu, 01 Oct 2020 02:25:21 GMT
etag: "8a3-5b092ba5c09cb-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 952
content-type: application/javascript
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.chapelgrilleri.com/includes/js/blocks/alert/message.js

34.102.137.30

200 OK

454 B

URL HTTP/2
www.chapelgrilleri.com/includes/js/blocks/alert/message.js
IP
34.102.137.30:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
454 B (454 bytes)
Hash
13457e36d7b93250203ba38b057a1929
b180b12ac4ca10b37bb4b1d4b6b82ef648b72e92
74896d7d87ed7fedb3a04531eb0f689bd8dcc46b0e3e445213b1a303acacb381

HTTP Headers

GET /includes/js/blocks/alert/message.js HTTP/1.1
Host: www.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS
Cookie: REFERER=; ORIGINALREFERER=; ISMOBILE=false; cfid=78225b1e-94e9-4b14-a46f-5c6c4d5d212c; cftoken=0; ha_cms_cookie=s11
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
server: Apache
last-modified: Thu, 01 Oct 2020 02:25:21 GMT
etag: "39b-5b092ba5c2905-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 454
content-type: application/javascript
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.chapelgrilleri.com/assets/css/dest/default.css

34.102.137.30

200 OK

7.6 kB

URL HTTP/2
www.chapelgrilleri.com/assets/css/dest/default.css
IP
34.102.137.30:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (30805), with no line terminators
Size
7.6 kB (7624 bytes)
Hash
96b98d8d4c52e3a4e1ea54ce25340a6e
a254514c4061485edd142e09fdd5a3bf5249660a
c4edc43c38c044b98f0cd2fe8090788a8b6ea7fff1c55e7d0bccaeaf1e641d44

HTTP Headers

GET /assets/css/dest/default.css HTTP/1.1
Host: www.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS
Cookie: REFERER=; ORIGINALREFERER=; ISMOBILE=false; cfid=78225b1e-94e9-4b14-a46f-5c6c4d5d212c; cftoken=0; ha_cms_cookie=s11
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
server: Apache
last-modified: Wed, 31 Aug 2022 14:42:23 GMT
etag: "7855-5e78a8139bd57-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7624
content-type: text/css
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.chapelgrilleri.com/assets/images/logo.svg

34.102.137.30

200 OK

14 kB

URL HTTP/2
www.chapelgrilleri.com/assets/images/logo.svg
IP
34.102.137.30:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Size
14 kB (14253 bytes)
Hash
7d88192ddeca94a84f09452a6b0eaa84
bd69e336b83f0c4ae7a995e4f0cf076975a88648
3e28c4014c50a74fe644b1e89a47693f02203c11d79bfaa7979d123f3c8f52a3

HTTP Headers

GET /assets/images/logo.svg HTTP/1.1
Host: www.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS
Cookie: REFERER=; ORIGINALREFERER=; ISMOBILE=false; cfid=78225b1e-94e9-4b14-a46f-5c6c4d5d212c; cftoken=0; ha_cms_cookie=s11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
server: Apache
last-modified: Thu, 01 Oct 2020 02:27:26 GMT
etag: "37ad-5b092c1ce1324"
accept-ranges: bytes
content-length: 14253
content-type: image/svg+xml
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.chapelgrilleri.com/assets/images/line.png

34.102.137.30

200 OK

18 kB

URL HTTP/2
www.chapelgrilleri.com/assets/images/line.png
IP
34.102.137.30:0
ASN
#15169 GOOGLE

File type
PNG image data, 274 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (18319 bytes)
Hash
0783a088f603e5bc9099af3ff4446829
2f08247aef31a00d48e9e82f7d7bab0be03ccd4e
0dead3c2a9d45ceded5ce8b49eed2ce36720be20aa8f716112bdf6c928bef7cf

HTTP Headers

GET /assets/images/line.png HTTP/1.1
Host: www.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS
Cookie: REFERER=; ORIGINALREFERER=; ISMOBILE=false; cfid=78225b1e-94e9-4b14-a46f-5c6c4d5d212c; cftoken=0; ha_cms_cookie=s11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
server: Apache
last-modified: Thu, 01 Oct 2020 02:27:26 GMT
etag: "478f-5b092c1cf3c06"
accept-ranges: bytes
content-length: 18319
content-type: image/png
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.chapelgrilleri.com/includes/js/jquery/jquery-2.1.4.min.js

34.102.137.30

200 OK

30 kB

URL HTTP/2
www.chapelgrilleri.com/includes/js/jquery/jquery-2.1.4.min.js
IP
34.102.137.30:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32025)
Size
30 kB (29532 bytes)
Hash
1ce403061827e705d00ae98527048513
8d7a7ea67bfda0cc03540a28ac78e39dd8af848a
a88c7688c2780b7591803abd024696304b1421ea233661b2caf04cf5e6f755da

HTTP Headers

GET /includes/js/jquery/jquery-2.1.4.min.js HTTP/1.1
Host: www.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/menus?utm_source=MarketingCloud&utm_medium=email&utm_campaign=Easter+Bunny+Breakfast&utm_content=MENUS
Cookie: REFERER=; ORIGINALREFERER=; ISMOBILE=false; cfid=78225b1e-94e9-4b14-a46f-5c6c4d5d212c; cftoken=0; ha_cms_cookie=s11
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
server: Apache
last-modified: Thu, 01 Oct 2020 02:25:21 GMT
etag: "14979-5b092ba5b4e4c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 29532
content-type: application/javascript
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
eb2978f78249fa2030ff84708ab627b5
0003a93bc57234fba10c90bd0bd80c00d5a90884
b76d3066ba863b1aaf4f5f4fced0a48768bc34de818dc3494e89c045f41f5acf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

images.chapelgrilleri.com/Cranberry-Marg.jpg?w4668-h2334-x0-y132-rs90-mw400-mh200

34.107.233.73

200 OK

11 kB

URL HTTP/1.1
images.chapelgrilleri.com/Cranberry-Marg.jpg?w4668-h2334-x0-y132-rs90-mw400-mh200
IP
34.107.233.73:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x200, components 3\012- data
Size
11 kB (11058 bytes)
Hash
566410fa3cdf0423bc2682a5d606f7c4
b929dc800d78d935ab92163586e3db75abafb987
b733870971947e7201f188db22e14e79d06208484c5d7f900b3d05001037e04a

HTTP Headers

GET /Cranberry-Marg.jpg?w4668-h2334-x0-y132-rs90-mw400-mh200 HTTP/1.1
Host: images.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
Content-Type: image/jpeg
Cache-Control: max-age=31536000
Last-Modified: Fri, 02 Oct 2020 03:39:45 GMT
Content-Length: 11058
Via: 1.1 google

images.chapelgrilleri.com/Beer-Menu.jpg?w2000-h1000-x0-y222-mw400-mh200

34.107.233.73

200 OK

13 kB

URL HTTP/1.1
images.chapelgrilleri.com/Beer-Menu.jpg?w2000-h1000-x0-y222-mw400-mh200
IP
34.107.233.73:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x200, components 3\012- data
Size
13 kB (12581 bytes)
Hash
2361f9ab564d3bce3085eb6b1c57185d
6d0fb2610c208cf938659db689509be7f9f2e751
9be6f785653466a841773a273e697736f31221f8ec9d7deb0cb3121f00e65ac9

HTTP Headers

GET /Beer-Menu.jpg?w2000-h1000-x0-y222-mw400-mh200 HTTP/1.1
Host: images.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Content-Length: 12581
Via: 1.1 google
Date: Mon, 27 Mar 2023 20:51:16 GMT
Cache-Control: max-age=31536000
Last-Modified: Fri, 02 Oct 2020 03:39:45 GMT
Content-Type: image/jpeg
Age: 115

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/webfonts/fa-brands-400.woff2

104.17.25.14

200 OK

77 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/webfonts/fa-brands-400.woff2
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196\012- data
Size
77 kB (76736 bytes)
Hash
ed311c7a0ade9a75bb3ebf5a7670f31d
0613c7ebba55ee47ef302c0f7766324692f899a7
8ea8791754915a898a3100e63e32978a6d1763be6df8e73a39d3a90d691cdeef

HTTP Headers

GET /ajax/libs/font-awesome/5.15.4/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.chapelgrilleri.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 76736
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "613fa20b-12bc0"
last-modified: Mon, 13 Sep 2021 19:10:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 10031719
expires: Sat, 16 Mar 2024 20:53:11 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rJSUqPHLsv7tNbgPLonmDNUP8WJsPPqVEdzCpl1m11WWaOKZAsBblQHdaVSVYb46xvvh1oPE3uu%2BuTn8pkVYV%2FPOnDOelePquJLEDhVwg1Mj7rVa2bvTaMzNmxsRLdmUEqJwIuwF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7aea857c4f360b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

images.chapelgrilleri.com/Easter-Banner-2.png?mw400-mh200

34.107.233.73

200 OK

150 kB

URL HTTP/1.1
images.chapelgrilleri.com/Easter-Banner-2.png?mw400-mh200
IP
34.107.233.73:0
ASN
#15169 GOOGLE

File type
PNG image data, 400 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
150 kB (150425 bytes)
Hash
06b0226a067ff2faf39fe23a1f82aa14
2c75026cb543649002fab36b07480f2d7f3b075b
43540bda2b0f763af968039c36fa77d9b50247527783ec63a01e1bb35c947004

HTTP Headers

GET /Easter-Banner-2.png?mw400-mh200 HTTP/1.1
Host: images.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
Content-Type: image/png
Cache-Control: max-age=31536000
Last-Modified: Mon, 06 Mar 2023 16:04:27 GMT
Content-Length: 150425
Via: 1.1 google

images.chapelgrilleri.com/Beer-Menu-2-3881.jpg?w1800-h900-x52-y224-mw400-mh200

34.107.233.73

200 OK

15 kB

URL HTTP/1.1
images.chapelgrilleri.com/Beer-Menu-2-3881.jpg?w1800-h900-x52-y224-mw400-mh200
IP
34.107.233.73:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x200, components 3\012- data
Size
15 kB (15293 bytes)
Hash
91d9e920518b209b93e6f84bfc40e756
835b7facaeae34ecbe0b2cbe0fa8f0f922641328
e457dc92ff0820a11056f25ef33645fe57be871ea7c18beb8f6f73245742e1c1

HTTP Headers

GET /Beer-Menu-2-3881.jpg?w1800-h900-x52-y224-mw400-mh200 HTTP/1.1
Host: images.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
Content-Type: image/jpeg
Cache-Control: max-age=31536000
Last-Modified: Fri, 02 Oct 2020 03:39:48 GMT
Content-Length: 15293
Via: 1.1 google

images.chapelgrilleri.com/Kids-Menu-Banner.png?mw400-mh200

34.107.233.73

200 OK

147 kB

URL HTTP/1.1
images.chapelgrilleri.com/Kids-Menu-Banner.png?mw400-mh200
IP
34.107.233.73:0
ASN
#15169 GOOGLE

File type
PNG image data, 400 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
147 kB (147258 bytes)
Hash
a0e4c1aaa3a6d2497ac512084e863079
f7c35ba5c285f7b45acb00a17ea4be261f311ac0
47bc0682f772eeeb8aa3b63539c34b1aac7f0d5b1302025fcdbb9cd0b25cf835

HTTP Headers

GET /Kids-Menu-Banner.png?mw400-mh200 HTTP/1.1
Host: images.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
Content-Type: image/png
Cache-Control: max-age=31536000
Last-Modified: Fri, 27 Jan 2023 16:18:25 GMT
Content-Length: 147258
Via: 1.1 google

images.chapelgrilleri.com/Dessert-Menu-Banner.png?mw400-mh200

34.107.233.73

200 OK

124 kB

URL HTTP/1.1
images.chapelgrilleri.com/Dessert-Menu-Banner.png?mw400-mh200
IP
34.107.233.73:0
ASN
#15169 GOOGLE

File type
PNG image data, 400 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
124 kB (123878 bytes)
Hash
d847fe82334ac2ca70a11039789e6539
ce2b159e6d56535b4cc0f79d17390e92a5ea42c5
43817854c59df21d826a73792bd3de1e34f51b47e2d6111eb4e96b4f1e99e3f9

HTTP Headers

GET /Dessert-Menu-Banner.png?mw400-mh200 HTTP/1.1
Host: images.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
Content-Type: image/png
Cache-Control: max-age=31536000
Last-Modified: Fri, 27 Jan 2023 16:29:20 GMT
Content-Length: 123878
Via: 1.1 google

images.chapelgrilleri.com/Prix-Fixe-Menu-Banner.png?mw400-mh200

34.107.233.73

200 OK

142 kB

URL HTTP/1.1
images.chapelgrilleri.com/Prix-Fixe-Menu-Banner.png?mw400-mh200
IP
34.107.233.73:0
ASN
#15169 GOOGLE

File type
PNG image data, 400 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
142 kB (141619 bytes)
Hash
efd80951ea3df4ee096cd33ca4ba3f13
94f14be2ff5aee82de3f1e611d6f1d2508612169
6257880d236f4a612e9e0da890971b242c1744c761195bca782135a7a5b78494

HTTP Headers

GET /Prix-Fixe-Menu-Banner.png?mw400-mh200 HTTP/1.1
Host: images.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
Content-Type: image/png
Cache-Control: max-age=31536000
Last-Modified: Fri, 27 Jan 2023 16:27:06 GMT
Content-Length: 141619
Via: 1.1 google

images.chapelgrilleri.com/Chappy-Hour-Menu-Banner-3.png?mw400-mh200

34.107.233.73

200 OK

166 kB

URL HTTP/1.1
images.chapelgrilleri.com/Chappy-Hour-Menu-Banner-3.png?mw400-mh200
IP
34.107.233.73:0
ASN
#15169 GOOGLE

File type
PNG image data, 400 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
166 kB (165502 bytes)
Hash
addbc894fe18880f7f2322b8e2badd61
ef3ab45d49c186b89f85ac58aecbf27ae7ae6253
ca70fd1843f051d6c7bc911bcd7536daba924b7edde3cce03473c1c5b82d84ab

HTTP Headers

GET /Chappy-Hour-Menu-Banner-3.png?mw400-mh200 HTTP/1.1
Host: images.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
Content-Type: image/png
Cache-Control: max-age=31536000
Last-Modified: Fri, 27 Jan 2023 16:25:21 GMT
Content-Length: 165502
Via: 1.1 google

images.chapelgrilleri.com/Dinner-Menu-Banner.png?mw400-mh200

34.107.233.73

200 OK

178 kB

URL HTTP/1.1
images.chapelgrilleri.com/Dinner-Menu-Banner.png?mw400-mh200
IP
34.107.233.73:0
ASN
#15169 GOOGLE

File type
PNG image data, 400 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
178 kB (178118 bytes)
Hash
419d21c8edaeac791232150d1e0fa490
11e0c917101c666c80479578b1ec67550b8d36ef
282740d43e7c8f950ff69e4972252add1d74b0e4ed27bf8000ff8f915ad133ff

HTTP Headers

GET /Dinner-Menu-Banner.png?mw400-mh200 HTTP/1.1
Host: images.chapelgrilleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
date: Mon, 27 Mar 2023 20:53:11 GMT
Content-Type: image/png
Cache-Control: max-age=31536000
Last-Modified: Fri, 27 Jan 2023 16:21:04 GMT
Content-Length: 178118
Via: 1.1 google

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7927fa1bac0e5bcc27ed32b6b5107bd3
68da43f59df9c524940efc35f40e3599b9a1995b
f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7e2d8156baac12231cc9cbfdefedacf1
62384d8842fb5b560ac39636bb519953e22dc664
ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

216.58.207.206

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.58.207.206:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 27 Mar 2023 20:05:11 GMT
expires: Mon, 27 Mar 2023 22:05:11 GMT
cache-control: public, max-age=7200
age: 2881
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js

142.250.74.35

200 OK

166 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
HTML document, ASCII text, with very long lines (597)
Size
166 kB (166058 bytes)
Hash
4043af37a3392a9db521ff9ab62d9608
83828688e7a2259ed2f77345851a16122383b422
ee076822f35390ee382cda71759a2eec8f4db2bc18e4e3acd586173c29dab321

HTTP Headers

GET /recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.chapelgrilleri.com
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166058
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Mar 2023 11:09:56 GMT
expires: Tue, 26 Mar 2024 11:09:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 04:02:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 34996
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j99&a=1546595977&t=pageview&_s=1&dl=https%3A%2F%2Fwww.chapelgrilleri.com%2Fmenus%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DEaster%2BBunny%2BBreakfast%26utm_content%3DMENUS&ul=en-us&de=UTF-8&dt=Menus%20-%20Chapel%20Grille%20Restaurant%20-%20Cranston%2C%20Rhode%20Island&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1568980654&gjid=1045108924&cid=1617855493.1679950411&tid=UA-25971874-1&_gid=939099547.1679950411&_r=1&_slc=1&z=1885006481

216.58.207.206

200 OK

3 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1546595977&t=pageview&_s=1&dl=https%3A%2F%2Fwww.chapelgrilleri.com%2Fmenus%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DEaster%2BBunny%2BBreakfast%26utm_content%3DMENUS&ul=en-us&de=UTF-8&dt=Menus%20-%20Chapel%20Grille%20Restaurant%20-%20Cranston%2C%20Rhode%20Island&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1568980654&gjid=1045108924&cid=1617855493.1679950411&tid=UA-25971874-1&_gid=939099547.1679950411&_r=1&_slc=1&z=1885006481
IP
216.58.207.206:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
3 B (3 bytes)
Hash
dec002daa3f9abe33f5ab1a61ba58e91
b286614a767c86a75059fb1d4557be706e7c3812
1cffc2b3146584685cd72751d7f28aa030ab9ae2f1bc78f2c27909f8d8287b26

HTTP Headers

POST /j/collect?v=1&_v=j99&a=1546595977&t=pageview&_s=1&dl=https%3A%2F%2Fwww.chapelgrilleri.com%2Fmenus%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DEaster%2BBunny%2BBreakfast%26utm_content%3DMENUS&ul=en-us&de=UTF-8&dt=Menus%20-%20Chapel%20Grille%20Restaurant%20-%20Cranston%2C%20Rhode%20Island&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1568980654&gjid=1045108924&cid=1617855493.1679950411&tid=UA-25971874-1&_gid=939099547.1679950411&_r=1&_slc=1&z=1885006481 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.chapelgrilleri.com
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.chapelgrilleri.com
date: Mon, 27 Mar 2023 20:53:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7927fa1bac0e5bcc27ed32b6b5107bd3
68da43f59df9c524940efc35f40e3599b9a1995b
f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7e2d8156baac12231cc9cbfdefedacf1
62384d8842fb5b560ac39636bb519953e22dc664
ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tag.simpli.fi/sifitag/10f56ce0-6db6-013a-9c63-06b4c2516bae

34.90.79.92

200 OK

3.1 kB

URL HTTP/2
tag.simpli.fi/sifitag/10f56ce0-6db6-013a-9c63-06b4c2516bae
IP
34.90.79.92:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (3100)
Size
3.1 kB (3101 bytes)
Hash
2af8e3366fde9002f8c92b74041ddd48
49e14594dc85dfa79cf63395a0de3946a492d70c
58217a996919e439370df775b070cc9ea8d30fa4824eedb8dc606e4235461920

HTTP Headers

GET /sifitag/10f56ce0-6db6-013a-9c63-06b4c2516bae HTTP/1.1
Host: tag.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: application/javascript; charset=utf-8
content-length: 3101
set-cookie: suid=55AC96FA4DDB47DE8C0A71407A663B6F; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=55AC96FA4DDB47DE8C0A71407A663B6F; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
x-request-id: F1Bh-yQsf6GVwsoA6xUH
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, private, must-revalidate, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b76c41e7fa6c84786fbcab7d2cb465f4
8847dc11d36d0b4bb3bc84cf978ba5fd492a3123
851b090355da469b1e3c4ea302c7ad7941f2a6b4eb79447791927b792be73ac7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

um.simpli.fi/triplelift

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/triplelift
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /triplelift HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://eb2.3lift.com/xuid?mid=7969&xuid=C23382B8CD3A4416B0B906FA0760F44E&dongle=yf3
set-cookie: suid=C23382B8CD3A4416B0B906FA0760F44E; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=C23382B8CD3A4416B0B906FA0760F44E; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/freewheel

35.204.74.118

200 OK

43 B

URL HTTP/2
um.simpli.fi/freewheel
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /freewheel HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=B0A1DEE4340C4AB99BA69D68951B6A9B; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=B0A1DEE4340C4AB99BA69D68951B6A9B; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/dtnx

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/dtnx
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /dtnx HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://fei.pro-market.net/engine?du=24;csync=B41992E5B5AC4CE995EBA6651DBF35FF;mimetype=img;
set-cookie: suid=B41992E5B5AC4CE995EBA6651DBF35FF; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=B41992E5B5AC4CE995EBA6651DBF35FF; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/exelatem

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/exelatem
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /exelatem HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://loadm.exelator.com/load/?p=204&g=2191&simid=D8FB1FABCE04488487EF8DBDD2A35CC0&j=0
set-cookie: suid=D8FB1FABCE04488487EF8DBDD2A35CC0; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=D8FB1FABCE04488487EF8DBDD2A35CC0; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/yahoo

35.204.74.118

200 OK

43 B

URL HTTP/2
um.simpli.fi/yahoo
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /yahoo HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=E0EA4FD6DA874EA0A508B041FFE3AF68; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=E0EA4FD6DA874EA0A508B041FFE3AF68; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/beachfront

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/beachfront
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /beachfront HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://sync.bfmio.com/sync?pid=141&uid=3598AEB93B574B878F819920BB60E7E8
set-cookie: suid=3598AEB93B574B878F819920BB60E7E8; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=3598AEB93B574B878F819920BB60E7E8; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/bluekai

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/bluekai
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /bluekai HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://stags.bluekai.com/site/29931?id=A11F319BD3004384AD7B6282DFE62BC3
set-cookie: suid=A11F319BD3004384AD7B6282DFE62BC3; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=A11F319BD3004384AD7B6282DFE62BC3; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/crwdcntrl

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/crwdcntrl
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /crwdcntrl HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=D54D422D075A49998BEF15954B299E9D
set-cookie: suid=D54D422D075A49998BEF15954B299E9D; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=D54D422D075A49998BEF15954B299E9D; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/lj_match

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/lj_match
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /lj_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://ce.lijit.com/merge?pid=2&3pid=94849CC966204E9D80216C522852639E
set-cookie: suid=94849CC966204E9D80216C522852639E; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=94849CC966204E9D80216C522852639E; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
24b6b63c575b987ca5887b023df7d2eb
c77d2d86aebb9e8e55cb9be53683ae532535292c
2d484eb2a8975f592d679f557f8bc1cde3ae733f7ff7e6961265391dbcf71e8a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm&google_sc

142.250.74.34

302 Found

296 B

URL HTTP/2
cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm&google_sc
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
296 B (296 bytes)
Hash
0103dd025950e32d5eb84f8e72ddb997
9ddb94b670f62f21ddee3157f2ad97d122bf8248
ad325fee7bf9ae842aa1ea62cadbd134bf6590eaa84413165b1b7c6f4e5afd0d

HTTP Headers

GET /pixel?google_nid=simplifi&google_cm&google_sc HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc=
date: Mon, 27 Mar 2023 20:53:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 296
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 27-Mar-2023 21:08:12 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

um.simpli.fi/liveramp_match

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/liveramp_match
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /liveramp_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://idsync.rlcdn.com/419566.gif?partner_uid=2982036B127744009F596AEDB8DB6F73
set-cookie: suid=2982036B127744009F596AEDB8DB6F73; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=2982036B127744009F596AEDB8DB6F73; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/spotx_match

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/spotx_match
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /spotx_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://sync.search.spotxchange.com/partner?adv_id=7797&uid=E052E61E974E4BCDBD4929E3E95371C6
set-cookie: suid=E052E61E974E4BCDBD4929E3E95371C6; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=E052E61E974E4BCDBD4929E3E95371C6; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/an

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/an
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /an HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://ib.adnxs.com/setuid?entity=66&code=3D7C9FE6165D421FA2A49528FDF975F0
set-cookie: suid=3D7C9FE6165D421FA2A49528FDF975F0; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=3D7C9FE6165D421FA2A49528FDF975F0; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/rb_match

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/rb_match
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /rb_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=D19D7C1CC3324FB99CA6A4A09B553F06&expires=365
set-cookie: suid=D19D7C1CC3324FB99CA6A4A09B553F06; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=D19D7C1CC3324FB99CA6A4A09B553F06; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/ox_match

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/ox_match
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /ox_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://us-u.openx.net/w/1.0/sd?id=537072966&val=19B9DD4BB2664BC4944A41AEC30DCE2F
set-cookie: suid=19B9DD4BB2664BC4944A41AEC30DCE2F; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=19B9DD4BB2664BC4944A41AEC30DCE2F; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/telaria_p

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/telaria_p
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /telaria_p HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://simplifi.partners.tremorhub.com/sync?UISF=7E07EBFC90FE4C559110567557384035
set-cookie: suid=7E07EBFC90FE4C559110567557384035; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=7E07EBFC90FE4C559110567557384035; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/tapad

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/tapad
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /tapad HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=9561C316EB5A419FBD0ED6B8EDE1D27A
set-cookie: suid=9561C316EB5A419FBD0ED6B8EDE1D27A; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=9561C316EB5A419FBD0ED6B8EDE1D27A; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/pubmatic

35.204.74.118

200 OK

43 B

URL HTTP/2
um.simpli.fi/pubmatic
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /pubmatic HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=A379B59BA6CE4DF989112E438EBE93FB; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=A379B59BA6CE4DF989112E438EBE93FB; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/ad_advisor

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/ad_advisor
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /ad_advisor HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=0F26E796DF524080BF1DE8EA799E5FCC
set-cookie: suid=0F26E796DF524080BF1DE8EA799E5FCC; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=0F26E796DF524080BF1DE8EA799E5FCC; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/intentiq

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/intentiq
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /intentiq HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 142
location: https://sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=A187DEA90BD44574BE19981F53A254F3
set-cookie: suid=A187DEA90BD44574BE19981F53A254F3; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=A187DEA90BD44574BE19981F53A254F3; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

www.googleadservices.com/pagead/conversion/1026675585/?random=1679950392431&cv=7&fst=1679950392431&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON

142.250.74.34

302 Found

42 B

URL HTTP/2
www.googleadservices.com/pagead/conversion/1026675585/?random=1679950392431&cv=7&fst=1679950392431&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/conversion/1026675585/?random=1679950392431&cv=7&fst=1679950392431&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 27 Mar 2023 20:53:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1026675585/?random=1246890614&cv=7&fst=1679950392431&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=OAIiZIjcKoOt6wS19aiACQ&sscte=1&crd=
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b76c41e7fa6c84786fbcab7d2cb465f4
8847dc11d36d0b4bb3bc84cf978ba5fd492a3123
851b090355da469b1e3c4ea302c7ad7941f2a6b4eb79447791927b792be73ac7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc=

142.250.74.34

302 Found

248 B

URL HTTP/2
cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc=
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
248 B (248 bytes)
Hash
90f3317c598426fe1c249b0cc4845475
72856fffdc53e9e630c38bbd9b4fe04afb72015a
2d722b67473e8cf5282435d3608e9a9fe2092279aceaf9d88d4b89fecac69c8b

HTTP Headers

GET /pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: https://um.simpli.fi/g_match?id=&google_error=3
date: Mon, 27 Mar 2023 20:53:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 248
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=A187DEA90BD44574BE19981F53A254F3

143.204.55.22

403 Forbidden

986 B

URL HTTP/2
sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=A187DEA90BD44574BE19981F53A254F3
IP
143.204.55.22:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
986 B (986 bytes)
Hash
c0f9b284703c2ced6efeb5de41168f96
0a45ad9de8f6c57de9a9281ff74e2e564a527bab
621fdac22a056b388be445d6d555f0b82ce10e1fda0e878bb387cd3413c24964

HTTP Headers

GET /profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=A187DEA90BD44574BE19981F53A254F3 HTTP/1.1
Host: sync.intentiq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
server: CloudFront
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: text/html
content-length: 986
x-cache: Error from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: h8TDRmTAURDuahpAkSLrXTI8rttRW0cf7vAG_nFgDWbPtY4n42_I2w==
X-Firefox-Spdy: h2

um.simpli.fi/g_match?id=&google_error=3

35.204.74.118

204 No Content

0 B

URL HTTP/2
um.simpli.fi/g_match?id=&google_error=3
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /g_match?id=&google_error=3 HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Mon, 27 Mar 2023 20:53:12 GMT
set-cookie: suid=7C48066885734C2FB028A440D0329696; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=7C48066885734C2FB028A440D0329696; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
expires: Sun, 26 Mar 2023 20:53:12 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

ocsp.usertrust.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
b543a55ff04fb1d1c7b59ae4732ac4f4
fd689de15d876235d9279eb0e052fb9d69523baa
4113d48be8b9133d04c8102ed92df4906d15c5524b91d77722dec1c9135f0919

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 20:53:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 22:10:17 GMT
Expires: Sat, 01 Apr 2023 22:10:16 GMT
Etag: "fd689de15d876235d9279eb0e052fb9d69523baa"
Cache-Control: max-age=601888,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1081
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7aea8583bc0dfab4-OSL

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
43dfc0545b2763ef5c9f4ce5eb0005c5
5d46db4bc91ded50ef36b6165eb6f8f6983fb164
b0e4bfbf3f00a518869e46e86a62ea2a0e29c0a88f4b0767cf85d5899a37fae6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stags.bluekai.com/site/29931?id=A11F319BD3004384AD7B6282DFE62BC3

184.24.45.23

200 OK

62 B

URL HTTP/2
stags.bluekai.com/site/29931?id=A11F319BD3004384AD7B6282DFE62BC3
IP
184.24.45.23:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
62 B (62 bytes)
Hash
3f386f5061436a0338a64e0910db495d
599fe4a552c991a2b3ce5a1660732bf7b21fb901
0af3aae90b7de9fdceee2ab421378ea2f54c74be81ef43fc6c1790a032755d80

HTTP Headers

GET /site/29931?id=A11F319BD3004384AD7B6282DFE62BC3 HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 62
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Mon, 27 Mar 2023 20:53:12 GMT
set-cookie: bku=blx99eQY/ZElejWA; Path=/; Domain=.bluekai.com; Expires=Wed, 27 Sep 2023 20:53:12 GMT; Secure; SameSite=None
bkpa=KJy9nyexd02pSUHknp/8mE1hwtkAwDWh1DRp1EkYHe1y1expmeHOHe5YBM/T1AHsHER0xA1p9y9ZB9rV; Path=/; Domain=.bluekai.com; Expires=Wed, 27 Sep 2023 20:53:12 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
99ed11c41abc88446f2bcc7969b47bd7
d7f4521910f0066c9cac3f07dc87e2e118021537
fa5fa8121ae4bbd44037453596cb0933933259d7cbc2ca378fe4958c07eea091

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2605
Cache-Control: max-age=111404
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:12 GMT
Etag: "64210837-1d7"
Expires: Wed, 29 Mar 2023 03:49:56 GMT
Last-Modified: Mon, 27 Mar 2023 03:06:31 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471

fei.pro-market.net/engine?du=24;csync=B41992E5B5AC4CE995EBA6651DBF35FF;mimetype=img;

107.178.240.89

302 Found

0 B

URL HTTP/2
fei.pro-market.net/engine?du=24;csync=B41992E5B5AC4CE995EBA6651DBF35FF;mimetype=img;
IP
107.178.240.89:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /engine?du=24;csync=B41992E5B5AC4CE995EBA6651DBF35FF;mimetype=img; HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-4.c.datonics-gcp-01.internal
set-cookie: anProfile="1+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(rs760o)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
location: https://fei.pro-market.net/engine?du=24;csync=B41992E5B5AC4CE995EBA6651DBF35FF;mimetype=img;sr
content-type: image/gif
content-length: 0
date: Mon, 27 Mar 2023 20:53:12 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
80f932dd392e205b7866afd0bdd401fb
46220f070214375ccb62f583092f5883f4c983e9
8f3e7795203d128afe5478bd9b8e8d650fc6c681f57bd2c7aba10558f968a163

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=114906
Date: Mon, 27 Mar 2023 20:53:12 GMT
Etag: "642114e8-1d7"
Expires: Wed, 29 Mar 2023 04:48:18 GMT
Last-Modified: Mon, 27 Mar 2023 04:00:40 GMT
Server: ECAcc (nya/7970)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GO_s-SAhLAnSDo9uyUReGj9mg5UPrCTgWR5rpnY118maqMmX5xK2CA==
Age: 2859

pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=9561C316EB5A419FBD0ED6B8EDE1D27A

34.111.113.62

302 Found

0 B

URL HTTP/2
pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=9561C316EB5A419FBD0ED6B8EDE1D27A
IP
34.111.113.62:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /idsync/ex/receive?partner_id=2305&partner_device_id=9561C316EB5A419FBD0ED6B8EDE1D27A HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
date: Mon, 27 Mar 2023 20:53:12 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1679950392973;Expires=Fri, 26 May 2023 20:53:12 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=18a94a66-c3d4-4807-a327-5774689cc71c;Expires=Fri, 26 May 2023 20:53:12 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=9561C316EB5A419FBD0ED6B8EDE1D27A
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fei.pro-market.net/engine?du=24;csync=B41992E5B5AC4CE995EBA6651DBF35FF;mimetype=img;sr

107.178.240.89

200 OK

43 B

URL HTTP/2
fei.pro-market.net/engine?du=24;csync=B41992E5B5AC4CE995EBA6651DBF35FF;mimetype=img;sr
IP
107.178.240.89:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
968c3ad2c1183fee0bf0dd479f7904b7
1d770800ecb05eb9133f9b51620c9e4349656859
3331a0486cb3e8a75c8c2fdf02bf80fd8fe2b811dfe5c7b4aa892d38bfcf604a

HTTP Headers

GET /engine?du=24;csync=B41992E5B5AC4CE995EBA6651DBF35FF;mimetype=img;sr HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-5.c.datonics-gcp-01.internal
set-cookie: anProfile="0+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(rs760o)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
content-type: image/gif
content-length: 43
date: Mon, 27 Mar 2023 20:53:12 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
626943af61ed4ec8dda64aab88b103c2
53cb83507a3fa8d55f22d86393ae21bc58d474ac
f3ea5109c126c3b2da210da8c6c0f0c10b39c81e4ae1d0e453062c4686b310c0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2217
Cache-Control: max-age=149924
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:13 GMT
Etag: "6421a034-1d7"
Expires: Wed, 29 Mar 2023 14:31:57 GMT
Last-Modified: Mon, 27 Mar 2023 13:55:00 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471

eb2.3lift.com/xuid?mid=7969&xuid=C23382B8CD3A4416B0B906FA0760F44E&dongle=yf3

13.248.245.213

200 OK

37 B

URL HTTP/2
eb2.3lift.com/xuid?mid=7969&xuid=C23382B8CD3A4416B0B906FA0760F44E&dongle=yf3
IP
13.248.245.213:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
37 B (37 bytes)
Hash
3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96

HTTP Headers

GET /xuid?mid=7969&xuid=C23382B8CD3A4416B0B906FA0760F44E&dongle=yf3 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:13 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ac2ae69afc70f2a8941ed6b658f4bd0e
5bac1a2c66dd04024217bd79173e2d00098ea987
1565e942701c0c33f8b78d2d64049fea418ee9b2466b3294db350ed57dd3881d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 20:53:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 26 Mar 2023 20:38:00 GMT
Expires: Sun, 02 Apr 2023 20:37:59 GMT
Etag: "5bac1a2c66dd04024217bd79173e2d00098ea987"
Cache-Control: max-age=516886,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aea858338aeb4f1-OSL

pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=9561C316EB5A419FBD0ED6B8EDE1D27A

34.111.113.62

200 OK

95 B

URL HTTP/2
pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=9561C316EB5A419FBD0ED6B8EDE1D27A
IP
34.111.113.62:0
ASN
#15169 GOOGLE

File type
PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Size
95 B (95 bytes)
Hash
71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517

HTTP Headers

GET /idsync/ex/receive/check?partner_id=2305&partner_device_id=9561C316EB5A419FBD0ED6B8EDE1D27A HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:13 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1679950393019;Expires=Fri, 26 May 2023 20:53:13 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=1639e49e-2e96-416d-bacb-d0a28565613c;Expires=Fri, 26 May 2023 20:53:13 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_3WAY_SYNCS=;Expires=Fri, 26 May 2023 20:53:13 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
content-type: image/png
content-length: 95
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

status.geotrust.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
status.geotrust.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
92f03dc9e93ac3c0764d4e93392e022a
95b309097b7ae0fd097def9b9029911346b57bc4
f69dd43513ec26f7f1b24a0e9752458cdb7342437045c4c37535e2fa6696782b

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3449
Cache-Control: max-age=151143
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:13 GMT
Etag: "6421a027-1d7"
Expires: Wed, 29 Mar 2023 14:52:16 GMT
Last-Modified: Mon, 27 Mar 2023 13:54:47 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471

ib.adnxs.com/setuid?entity=66&code=3D7C9FE6165D421FA2A49528FDF975F0

185.89.210.180

307 Redirection

0 B

URL HTTP/1.1
ib.adnxs.com/setuid?entity=66&code=3D7C9FE6165D421FA2A49528FDF975F0
IP
185.89.210.180:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /setuid?entity=66&code=3D7C9FE6165D421FA2A49528FDF975F0 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Mon, 27 Mar 2023 20:53:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3D3D7C9FE6165D421FA2A49528FDF975F0
AN-X-Request-Uuid: d49f50c5-1b87-476d-8f73-ec2a19dddbbe
Set-Cookie: uuid2=862291249296135826; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 25-Jun-2023 20:53:13 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 958.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ae27b2934388782f5bb0328d23f7a245
639e25c96475a42f0c6d7ef3a7769ca84511c194
1156c03113a597bd9a7c17479d1d91b0bf7f4b192f6cae8103ab41e97a1abf48

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5116
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:13 GMT
Last-Modified: Mon, 27 Mar 2023 19:27:57 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 471

loadm.exelator.com/load/?p=204&g=2191&simid=D8FB1FABCE04488487EF8DBDD2A35CC0&j=0

34.254.143.3

204 No Content

0 B

URL HTTP/2
loadm.exelator.com/load/?p=204&g=2191&simid=D8FB1FABCE04488487EF8DBDD2A35CC0&j=0
IP
34.254.143.3:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /load/?p=204&g=2191&simid=D8FB1FABCE04488487EF8DBDD2A35CC0&j=0 HTTP/1.1
Host: loadm.exelator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Mon, 27 Mar 2023 20:53:13 GMT
cache-control: no-cache
x-powered-by: Undertow/1
access-control-allow-credentials: true
p3p: policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA, policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7ba0b9730b8fb55610287ac3588f8aa1
b2e1c8b30219467965ebcc541bb2a33d5fe7bf59
764aff4d087b3a8e798a0eda5080a1d6026ca912568b7b9d44681c44daf207e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
e06415f455cd15acd71f1d9c1b0d4f21
785f771c30cb69210923868a310cb30a17b755f8
1f9177581b4ea3a59f6f603af1a9d15710d050fcfc82c69ec51ded8d676a8e48

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 27 Mar 2023 20:53:13 GMT
Last-Modified: Mon, 27 Mar 2023 19:13:10 GMT
Server: ECAcc (bsa/EA8F)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CC7zm3t7Llm0wsH5F2JV0RbYwaa_pV3mtucyWZx38pGaBYgj6Tx-ag==
Age: 6003

idsync.rlcdn.com/419566.gif?partner_uid=2982036B127744009F596AEDB8DB6F73

35.244.174.68

451 Unavailable For Legal Reasons

0 B

URL HTTP/2
idsync.rlcdn.com/419566.gif?partner_uid=2982036B127744009F596AEDB8DB6F73
IP
35.244.174.68:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /419566.gif?partner_uid=2982036B127744009F596AEDB8DB6F73 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 451 Unavailable For Legal Reasons
date: Mon, 27 Mar 2023 20:53:13 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
4833aef4521cf85140e562e259c96853
c851595ee721027d22b2601a02a59242c04283af
9777236efd284cb7b6ab237fc7b75ee9bac2e3aebf0855df3ab681d00f616749

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1677
Cache-Control: max-age=119136
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:13 GMT
Etag: "64212a0c-2d7"
Expires: Wed, 29 Mar 2023 05:58:49 GMT
Last-Modified: Mon, 27 Mar 2023 05:30:52 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 727

pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=D19D7C1CC3324FB99CA6A4A09B553F06&expires=365

213.19.162.80

204 No Content

0 B

URL HTTP/1.1
pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=D19D7C1CC3324FB99CA6A4A09B553F06&expires=365
IP
213.19.162.80:0
ASN
#26667 RUBICONPROJECT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tap.php?v=6286&nid=2132&put=D19D7C1CC3324FB99CA6A4A09B553F06&expires=365 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 1da0c96602e9a1076eae4f5554c05cf3
Content-Type: image/gif

ocsp.godaddy.com/

192.124.249.22

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.22:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1777 bytes)
Hash
e1bcca1e78ca457fe75994b5ae862f24
7bfde5daf5f949cb17b286dd7afb29de498acde7
76f39ddd66e3166e558781c377c5c0c4f9220ec5e7560922cbeb3bf1f1c4f53f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 27 Mar 2023 20:53:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 26 Mar 2023 22:39:31 GMT
Expires: Mon, 27 Mar 2023 22:39:31 GMT
ETag: "7bfde5daf5f949cb17b286dd7afb29de498acde7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ocsp.godaddy.com/

192.124.249.22

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.22:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
a63e35d9b1e51dbc3f66b2ee5343a48e
b6e56b071b2588cfd421d94596bf834cb621c574
38caeff2a51a07132906a0a78fc982371dca4fdac22be6205a26bfce09488a0c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 27 Mar 2023 20:53:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 27 Mar 2023 20:31:48 GMT
Expires: Tue, 28 Mar 2023 20:31:48 GMT
ETag: "b6e56b071b2588cfd421d94596bf834cb621c574"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

us-u.openx.net/w/1.0/sd?id=537072966&val=19B9DD4BB2664BC4944A41AEC30DCE2F

35.244.159.8

200 OK

43 B

URL HTTP/2
us-u.openx.net/w/1.0/sd?id=537072966&val=19B9DD4BB2664BC4944A41AEC30DCE2F
IP
35.244.159.8:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /w/1.0/sd?id=537072966&val=19B9DD4BB2664BC4944A41AEC30DCE2F HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Mon, 27 Mar 2023 20:53:13 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3D3D7C9FE6165D421FA2A49528FDF975F0

185.89.210.180

200 OK

43 B

URL HTTP/1.1
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3D3D7C9FE6165D421FA2A49528FDF975F0
IP
185.89.210.180:0
ASN
#29990 ASN-APPNEX

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef

HTTP Headers

GET /bounce?%2Fsetuid%3Fentity%3D66%26code%3D3D7C9FE6165D421FA2A49528FDF975F0 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Mon, 27 Mar 2023 20:53:13 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: ccaf2c1d-9e73-4f9a-94e9-f1fb7b056431
Set-Cookie: anj=dTM7k!M4.FE:2jUF']wIg2ImPE(=F4!@wnfH8KW.dG5<#Z0w^!rZQ1QG4d0pqA.78pnUVBFS^`oEHza4Esh2NEl#AfZ14`@#DI2Z#DIgl#XsebB</hq; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 25-Jun-2023 20:53:13 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 958.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
99ed11c41abc88446f2bcc7969b47bd7
d7f4521910f0066c9cac3f07dc87e2e118021537
fa5fa8121ae4bbd44037453596cb0933933259d7cbc2ca378fe4958c07eea091

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1371
Cache-Control: max-age=110169
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:13 GMT
Etag: "64210837-1d7"
Expires: Wed, 29 Mar 2023 03:29:22 GMT
Last-Modified: Mon, 27 Mar 2023 03:06:31 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471

status.geotrust.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
status.geotrust.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bf004190df3132d6a2ffa03a0ae326b8
f76cbac7bca9e893acdeb7fc7d15db58df7e2444
9a55e9b3a49654ac92cd7c5fc011daec6a7fff96711d0741b32e9a8c49aacfe6

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1382
Cache-Control: max-age=96174
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:13 GMT
Etag: "6420d181-1d7"
Expires: Tue, 28 Mar 2023 23:36:07 GMT
Last-Modified: Sun, 26 Mar 2023 23:13:05 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471

www.google.no/pagead/1p-conversion/1026675585/?random=1246890614&cv=7&fst=1679950392431&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=OAIiZIjcKoOt6wS19aiACQ&random=2710143864&ipr=y&prhg=0

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-conversion/1026675585/?random=1246890614&cv=7&fst=1679950392431&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=OAIiZIjcKoOt6wS19aiACQ&random=2710143864&ipr=y&prhg=0
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-conversion/1026675585/?random=1246890614&cv=7&fst=1679950392431&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=OAIiZIjcKoOt6wS19aiACQ&random=2710143864&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 27 Mar 2023 20:53:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ce.lijit.com/merge?pid=2&3pid=94849CC966204E9D80216C522852639E

216.52.2.86

204 No Content

0 B

URL HTTP/1.1
ce.lijit.com/merge?pid=2&3pid=94849CC966204E9D80216C522852639E
IP
216.52.2.86:0
ASN
#29791 VOXEL-DOT-NET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /merge?pid=2&3pid=94849CC966204E9D80216C522852639E HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Date: Mon, 27 Mar 2023 20:53:13 GMT
X-MERGE: GDPR Optout true
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
Expires: Fri, 20 Mar 2009 00:00:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap4ams1

bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=D54D422D075A49998BEF15954B299E9D

54.228.6.120

404 Not Found

49 B

URL HTTP/2
bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=D54D422D075A49998BEF15954B299E9D
IP
54.228.6.120:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
49 B (49 bytes)
Hash
56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef

HTTP Headers

GET /map/c=7625/tp=SIMP/tpid=D54D422D075A49998BEF15954B299E9D HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Mon, 27 Mar 2023 20:53:13 GMT
content-type: image/gif
content-length: 49
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.23.19
access-control-allow-origin: *
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2

status.geotrust.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
status.geotrust.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
92f03dc9e93ac3c0764d4e93392e022a
95b309097b7ae0fd097def9b9029911346b57bc4
f69dd43513ec26f7f1b24a0e9752458cdb7342437045c4c37535e2fa6696782b

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4829
Cache-Control: max-age=152523
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:13 GMT
Etag: "6421a027-1d7"
Expires: Wed, 29 Mar 2023 15:15:16 GMT
Last-Modified: Mon, 27 Mar 2023 13:54:47 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471

sync.search.spotxchange.com/partner?adv_id=7797&uid=E052E61E974E4BCDBD4929E3E95371C6

185.94.180.125

302 Found

0 B

URL HTTP/1.1
sync.search.spotxchange.com/partner?adv_id=7797&uid=E052E61E974E4BCDBD4929E3E95371C6
IP
185.94.180.125:0
ASN
#35220 SpotXchange, INC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /partner?adv_id=7797&uid=E052E61E974E4BCDBD4929E3E95371C6 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Mon, 27 Mar 2023 20:53:13 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=63bb22b1-cce1-11ed-a253-14c817940506; expires=Mon, 24-Apr-2023 20:53:13 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7797&uid=E052E61E974E4BCDBD4929E3E95371C6&__user_check__=1&sync_id=63bb2316-cce1-11ed-a253-14c817940506
X-fe: 33
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0

sync.search.spotxchange.com/partner?adv_id=7797&uid=E052E61E974E4BCDBD4929E3E95371C6&__user_check__=1&sync_id=63bb2316-cce1-11ed-a253-14c817940506

185.94.180.125

200 OK

43 B

URL HTTP/1.1
sync.search.spotxchange.com/partner?adv_id=7797&uid=E052E61E974E4BCDBD4929E3E95371C6&__user_check__=1&sync_id=63bb2316-cce1-11ed-a253-14c817940506
IP
185.94.180.125:0
ASN
#35220 SpotXchange, INC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e

HTTP Headers

GET /partner?adv_id=7797&uid=E052E61E974E4BCDBD4929E3E95371C6&__user_check__=1&sync_id=63bb2316-cce1-11ed-a253-14c817940506 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 20:53:13 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=63c14991-cce1-11ed-af6e-16877d160306; expires=Mon, 24-Apr-2023 20:53:13 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 61
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7ba0b9730b8fb55610287ac3588f8aa1
b2e1c8b30219467965ebcc541bb2a33d5fe7bf59
764aff4d087b3a8e798a0eda5080a1d6026ca912568b7b9d44681c44daf207e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:53:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.r2m02.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
025ae4d38a332b8e2f90de5eff2a4bb8
9014639121313127a75c0322e322f9a6233ceb5c
4c0caef6811852c46f5ea32b9d6c63f057d447dbdabeeba1995feeb37337b07a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 27 Mar 2023 20:53:13 GMT
Last-Modified: Mon, 27 Mar 2023 20:40:31 GMT
Server: ECAcc (bsa/EB2E)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wzB0r9EcV2D5BCn-NwC_5fxNLJ6pFHxuCspgqP0sKEpeQM6bFl1TpQ==
Age: 762

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
fea1971b41d8151ec0e9d2e7c9de92a8
82de62fe2d96b721067687c65b9a79f1127d1273
30534412c3e5e7dc6a328b8adee40dbe57e9d369126d2de430b14664ffe032e1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=169955
Date: Mon, 27 Mar 2023 20:53:13 GMT
Etag: "6421ed9c-1d7"
Expires: Wed, 29 Mar 2023 20:05:48 GMT
Last-Modified: Mon, 27 Mar 2023 19:25:16 GMT
Server: ECAcc (nya/789D)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lh_MdM2H-PKPpKQwkL23mP-nEQYgyJae6FN1R56_9X6Rnhq_9OHMGw==
Age: 2432

sync.bfmio.com/sync?pid=141&uid=3598AEB93B574B878F819920BB60E7E8

34.192.9.105

204

0 B

URL HTTP/1.1
sync.bfmio.com/sync?pid=141&uid=3598AEB93B574B878F819920BB60E7E8
IP
34.192.9.105:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?pid=141&uid=3598AEB93B574B878F819920BB60E7E8 HTTP/1.1
Host: sync.bfmio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 
Date: Mon, 27 Mar 2023 20:53:12 GMT
Set-Cookie: __141_cid=3598AEB93B574B878F819920BB60E7E8; Domain=.bfmio.com; Expires=Tue, 26-Mar-2024 20:53:13 GMT; Path=/
__io_cid=dfa87aa47cab679165ddd753d0a3e4f7ac8c1272; Domain=.bfmio.com; Expires=Tue, 26-Mar-2024 20:53:13 GMT; Path=/
Connection: keep-alive

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ac2ae69afc70f2a8941ed6b658f4bd0e
5bac1a2c66dd04024217bd79173e2d00098ea987
1565e942701c0c33f8b78d2d64049fea418ee9b2466b3294db350ed57dd3881d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 20:53:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 26 Mar 2023 20:38:00 GMT
Expires: Sun, 02 Apr 2023 20:37:59 GMT
Etag: "5bac1a2c66dd04024217bd79173e2d00098ea987"
Cache-Control: max-age=516885,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aea8584fb71b4f1-OSL

d.agkn.com/pixel/10751/?che=1679950393105&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216613104468005397008

54.171.219.155

302

0 B

URL HTTP/1.1
d.agkn.com/pixel/10751/?che=1679950393105&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216613104468005397008
IP
54.171.219.155:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/10751/?che=1679950393105&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216613104468005397008 HTTP/1.1
Host: d.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 
Cache-Control: no-cache, must-revalidate
Date: Mon, 27 Mar 2023 20:53:12 GMT
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://um.simpli.fi/aa_px?sk=216613104468005397008
P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Set-Cookie: ab=0001%3AwAR3MDRb2dUl2dhlmKpTmA5kzRupCm0Y;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
u=C|0AAArtL65K7S-uQAAAAAA;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
Content-Length: 0
Connection: keep-alive

um.simpli.fi/aa_px?sk=216613104468005397008

35.204.74.118

302 Found

142 B

URL HTTP/2
um.simpli.fi/aa_px?sk=216613104468005397008
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /aa_px?sk=216613104468005397008 HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Mon, 27 Mar 2023 20:53:13 GMT
content-type: text/html
content-length: 142
set-cookie: suid=2B500A557B374460895CC67D53E3888D; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:13 GMT; SameSite=none; Secure;
suid_legacy=2B500A557B374460895CC67D53E3888D; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:13 GMT; Secure;
location: /empty.gif
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/empty.gif

35.204.74.118

200 OK

43 B

URL HTTP/2
um.simpli.fi/empty.gif
IP
35.204.74.118:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /empty.gif HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:13 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=7C7E9FC6682E4A57BFA54B51AD6483FF; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:13 GMT; SameSite=none; Secure;
suid_legacy=7C7E9FC6682E4A57BFA54B51AD6483FF; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:13 GMT; Secure;
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

ppttpckjlopp.pw/

216.218.185.162

200 OK

0 B

URL HTTP/1.1
ppttpckjlopp.pw/
IP
216.218.185.162:0
ASN
#6939 HURRICANE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

NIDS	Severity	Alert
suricata	low	ET INFO HTTP Request to a *.pw domain

HTTP Headers

GET / HTTP/1.1
Host: ppttpckjlopp.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 27 Mar 2023 20:53:09 GMT
Content-Type: application/octet-stream
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20

i.simpli.fi/p?cid=359644&cb=sifi_att_42656._hp

34.90.79.92

200 OK

0 B

URL HTTP/2
i.simpli.fi/p?cid=359644&cb=sifi_att_42656._hp
IP
34.90.79.92:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p?cid=359644&cb=sifi_att_42656._hp HTTP/1.1
Host: i.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chapelgrilleri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:12 GMT
content-type: application/javascript; charset=UTF-8
set-cookie: suid=F5253E5598EE48E2A9CF71F731B15177; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; SameSite=none; Secure;
suid_legacy=F5253E5598EE48E2A9CF71F731B15177; Path=/; domain=simpli.fi; Expires=Wed, 27-Mar-24 20:53:12 GMT; Secure;
uid_syncd=true; path=/; expires=Mon, 03 Apr 2023 20:53:12 GMT; domain=.simpli.fi; secure
uid_syncd_secure=true; path=/; expires=Mon, 03 Apr 2023 20:53:12 GMT; domain=.simpli.fi; samesite=none; secure
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2

aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=0F26E796DF524080BF1DE8EA799E5FCC

35.157.191.4

302 Found

0 B

URL HTTP/2
aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=0F26E796DF524080BF1DE8EA799E5FCC
IP
35.157.191.4:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /adscores/g.pixel?sid=9201915418&sifi_uid=0F26E796DF524080BF1DE8EA799E5FCC HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Mon, 27 Mar 2023 20:53:13 GMT
location: https://d.agkn.com/pixel/10751/?che=1679950393105&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D216613104468005397008
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AVkx0vT76tw4Jwfo6W0OmM13eFF%2F%2BRkdi; Path=/; Domain=.agkn.com; Expires=Wed, 27-Mar-2024 20:53:13 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2

simplifi.partners.tremorhub.com/sync?UISF=7E07EBFC90FE4C559110567557384035

52.6.21.108

200 OK

0 B

URL HTTP/2
simplifi.partners.tremorhub.com/sync?UISF=7E07EBFC90FE4C559110567557384035
IP
52.6.21.108:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sync?UISF=7E07EBFC90FE4C559110567557384035 HTTP/1.1
Host: simplifi.partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.chapelgrilleri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:53:13 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL