firefox.settings.services.mozilla.com/v1/
54.230.111.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9T7iqFIdb4R5yXrLN2j2E8Mbh-8I5teQYehtEVAw62RYDmBQAvNHwA==
Age: 29404
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eabb7d9ffae717f7305d63c057755470
3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a
ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8233
Expires: Thu, 06 Oct 2022 02:14:35 GMT
Date: Wed, 05 Oct 2022 23:57:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a1073a68ed38c8e3575e889224db944c
ee2a7a3e2da77a8540131f9ffaa0a20d4dd486bd
a9fb1f7ade7c8a79d2ee83e9b7215e66dc89ac733b11079297a8f4b9aceae1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9123
Expires: Thu, 06 Oct 2022 02:29:25 GMT
Date: Wed, 05 Oct 2022 23:57:22 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: x3PB1XTkEepIcaLjoyuYU7Y/h6SJ50ADT5kyleKK+Xljt+SDDJur4f5XmHCJIYtD+McAODadFic=
x-amz-request-id: J3TQYZCF6Y27ZHYH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 05 Oct 2022 22:58:29 GMT
age: 3533
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 23:57:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
panaforte.com/
13.56.33.8301 Moved Permanently 175 B IP 13.56.33.8:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 00b1749e7f34b8de5bde2b4abd5cefef
da5846fe6898511ed9dcf79f12d78042fb649e01
b5aa18241aa2adbec8f48b308a46a386e31040f6bb85ca381e427b399679b56e
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: panaforte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: openresty/1.15.8.2
Date: Wed, 05 Oct 2022 23:57:22 GMT
Content-Type: text/html
Content-Length: 175
Connection: keep-alive
Referrer-Policy: no-referrer
Location: https://www.brandbucket.com/names/panaforte?source=ext
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 05 Oct 2022 23:29:33 GMT
Expires: Wed, 05 Oct 2022 23:55:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: g7dnxFAkGiS_VD7dfb9oEoGoNmmHOz5mb7gImwahy3sgv5clPXo6Gg==
Age: 1670
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3346
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:23 GMT
Last-Modified: Wed, 05 Oct 2022 23:01:37 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.42.148.177101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.148.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VmlCh9ra7SLVxvBzDPj3ww==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AHc5eCCh0IwJJDqZdiAeqx478/I=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6d2e644758758c696c3753c2b3062c4c
582fedf9527ffb72662188143b2e74d0604084c9
0a09eb83511271c81c2aca3a773b29f006520deb969ef5521088c6a6322a0109
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6d2e644758758c696c3753c2b3062c4c
582fedf9527ffb72662188143b2e74d0604084c9
0a09eb83511271c81c2aca3a773b29f006520deb969ef5521088c6a6322a0109
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6d2e644758758c696c3753c2b3062c4c
582fedf9527ffb72662188143b2e74d0604084c9
0a09eb83511271c81c2aca3a773b29f006520deb969ef5521088c6a6322a0109
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
216.58.207.195200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Hash 1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 17:24:34 GMT
expires: Fri, 29 Sep 2023 17:24:34 GMT
cache-control: public, max-age=31536000
age: 541970
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/names/panaforte?source=ext
172.67.4.41200 OK 35 kB URL HTTP/2 www.brandbucket.com/names/panaforte?source=ext
IP 172.67.4.41:0
Hash 7d318d5cd6a3fb4aa13405d94d85f3cd
d81c5935cb89b2c52cadf3cb0aa95a0aa58e72ec
50bab5c43100eba917ff0ebbbdf5e7bc2b4841503dba3da578bbbe794a8c239c
GET /names/panaforte?source=ext HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: text/html
vary: Accept-Encoding
set-cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; path=/
land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; expires=Tue, 03-Jan-2023 23:57:23 GMT; Max-Age=7776000; path=/
land_referrer=1665014243%3B; expires=Tue, 03-Jan-2023 23:57:23 GMT; Max-Age=7776000; path=/
bb_recent=458273; expires=Tue, 25-Oct-2022 23:57:23 GMT; Max-Age=1728000; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-origin: https://js.stripe.com/, https://get.brandbucket.com/, //staging.brandbucket.com/
brandbucket-domain: panaforte.com #458273
x-frame-options: DENY
access-control-allow-credentials: true
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 755a196ac800b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6d2e644758758c696c3753c2b3062c4c
582fedf9527ffb72662188143b2e74d0604084c9
0a09eb83511271c81c2aca3a773b29f006520deb969ef5521088c6a6322a0109
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.brandbucket.com/images2/nice_bk2_thumb.jpg
172.67.4.41200 OK 6.6 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk2_thumb.jpg
IP 172.67.4.41:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 150x96, components 3\012- data
Hash 87c01ad06c8f0f82f63762112b62c261
4c58266d4e8d2d205fbfe88af39d47e96e353733
96d5437cff72a446bada499ea347636473a33dc3f6a09a5bcce71e794bb7b8dd
GET /images2/nice_bk2_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/jpeg
content-length: 6565
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16629
etag: "5ee1f391-40f5"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1992
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19727c8cb50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk1_thumb.jpg
172.67.4.41200 OK 5.8 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk1_thumb.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 150x98, components 3\012- data
Hash b4dad318d2eef70faeb94c1de940b8e9
fd7b8e6d33dfdb9514f59ba26b855ec61f2b21ce
d4f3a8ecf34eb859108c375c36cca14e484d752a87763c58a80e20220e866004
GET /images2/nice_bk1_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/jpeg
content-length: 5793
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16185
etag: "5ee1f38e-3f39"
last-modified: Thu, 11 Jun 2020 09:04:14 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1992
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19727c8bb50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk3_thumb.jpg
172.67.4.41200 OK 6.2 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk3_thumb.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Hash 7c72d58b1656eb337865be3d7945019a
70f88fa2fa40ec3b8e7c98b033f5f48e07dfcf07
81684900b1c4f2f5d1b3e6d9917a02e11cf87160152e784ccece4ee159f9ccbe
GET /images2/nice_bk3_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/jpeg
content-length: 6202
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16805
etag: "5ee1f392-41a5"
last-modified: Thu, 11 Jun 2020 09:04:18 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1992
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19728c8db50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk4_thumb.jpg
172.67.4.41200 OK 6.1 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk4_thumb.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Hash 57aee6ca35013ad9b91ae2583c1831f7
73616462427ff5288ac0e19e54eac477270a7b59
0514463b5d215bf6e91ed3a61d6189e34e89e5921249add1e0f9bbd2e9b41294
GET /images2/nice_bk4_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/jpeg
content-length: 6091
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16406
etag: "5ee1f391-4016"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1992
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19728c8fb50b-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
216.58.207.195200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11072, version 1.0\012- data
Hash e7df3d0942815909add8f9d0c40d00d9
cf5032eea3399a58870e8a05e629b006a8c7c3c7
bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:03 GMT
expires: Thu, 05 Oct 2023 19:34:03 GMT
cache-control: public, max-age=31536000
age: 15801
last-modified: Wed, 11 May 2022 19:24:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-analytics-0.1.js
216.58.211.1200 OK 32 kB URL HTTP/2 cdn.ampproject.org/v0/amp-analytics-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (65534)
Hash 3c3c0b10ff8c4da1f62b3edcc57a28a9
f8c7a0ff5027f5f167bb46511ba8a244f0268c4b
f04c675f874371b02e59e7d05cb8a1d6badcf7288be90a13fbb1d4f5ea4e536b
GET /v0/amp-analytics-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 31967
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "dfda97fe2a1b5ffc"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_plus.png
172.67.4.41200 OK 604 B URL HTTP/2 www.brandbucket.com/images7/icon_plus.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 94865622c5c9f42d952bbea159d15dd6
217ad71873550f450b555bdc83805a1969a2a4b7
70a3df33b31f08827510b14236a8c6320ea413b2b4210b4232416c20bcc751cc
GET /images7/icon_plus.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 604
cf-bgj: imgq:100,h2pri
cf-polished: origSize=743
etag: "5ede24b6-2e7"
last-modified: Mon, 08 Jun 2020 11:44:54 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1991
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19728c91b50b-OSL
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-recaptcha-input-0.1.js
216.58.211.1200 OK 9.2 kB URL HTTP/2 cdn.ampproject.org/v0/amp-recaptcha-input-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (25181)
Hash 2e06ef302e9c52dfac4e9d6aedcad2b6
9e8d64b16dcbd11b96e2d8ab9883dffe40f64dcd
d5ddb58c2f53cadbe23b6c421d156e96b067e8845841dfecb33a3d330152c60e
GET /v0/amp-recaptcha-input-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9201
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "85c529c6628e0599"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk5_thumb.jpg
172.67.4.41200 OK 5.6 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk5_thumb.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Hash bca3c9b14d1a37b805e41f8cbe61be7e
5a3849459df95c9ac261840c9efe5cd265cd755a
f730c29ffb9ba16b6e0bcb09ded50ef3076f7125fc133103ed7d26843f3e57b0
GET /images2/nice_bk5_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/jpeg
content-length: 5617
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16068
etag: "5ee1f391-3ec4"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1992
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19728c90b50b-OSL
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-accordion-0.1.js
216.58.211.1200 OK 5.9 kB URL HTTP/2 cdn.ampproject.org/v0/amp-accordion-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (17551)
Hash 73af6e224d1abd34e60678a28bce1547
52ef6c24d3ab62d7dcfffb011a31aca4d216799f
06a478c0bde49a937f54fed3ff5553a6a1ba660a787e7317180263198421d134
GET /v0/amp-accordion-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5859
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "69fb31f6d65e8437"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-animation-0.1.js
216.58.211.1200 OK 19 kB URL HTTP/2 cdn.ampproject.org/v0/amp-animation-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (65532)
Hash 5302a46408ac363b717df6a6080d981f
43761df48733a61a8aad0f2256e4ffa01c0d88c8
d1e2ec6691f591ba03548e645eae8602ee805d5d3d0070a1632a3cbefc4a5709
GET /v0/amp-animation-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 18998
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "a7ca7ca780c0b602"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-iframe-0.1.js
216.58.211.1200 OK 8.9 kB URL HTTP/2 cdn.ampproject.org/v0/amp-iframe-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (25639)
Hash cf49937db8fb54ba35d1b54f1ae6576e
24ff5df067b508254fd8c49eb129c2f3d335db4a
fce4d0eda9cbb2e937e3779f2c2e814e1b340f37fb3ad89304a75df302d2ab56
GET /v0/amp-iframe-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8933
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "54c74bdafa174c95"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-action-macro-0.1.js
216.58.211.1200 OK 1.5 kB URL HTTP/2 cdn.ampproject.org/v0/amp-action-macro-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (3580)
Hash eb59200d88c7b7642f08e4f9bc271e64
47a581c9a194690341c50f424863102987bdf605
37657866636cd58441b6996972c72e2b84104ce8e879d7ed6311c067cfc786cc
GET /v0/amp-action-macro-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1465
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "4e56ca6e246e19c3"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-mustache-0.2.js
216.58.211.1200 OK 14 kB URL HTTP/2 cdn.ampproject.org/v0/amp-mustache-0.2.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (41887)
Hash 072e1e0ce30ed27c39cb4abc7b46729d
d00feed7e8f19e633e2769f94215a215c633ecb4
98d06b2f83c25622fc240e42b2bf2305980d71820e1945f77bcad04e5ee7beb5
GET /v0/amp-mustache-0.2.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14319
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "4b35e2dbbcca67c0"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/v0/amp-list-0.1.js
216.58.211.1200 OK 13 kB URL HTTP/2 cdn.ampproject.org/v0/amp-list-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (42775)
Hash ea1262a7de183e2ac7915421cf6b2142
010772853ab22be7624aa0ccf8e98d4372f774b2
aafd09196046aa029bb1ae1c87e2ecfd0f7cdc223c58325e1a41b4884afa6868
GET /v0/amp-list-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12916
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "8b5482649e87a1e1"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-bind-0.1.js
216.58.211.1200 OK 16 kB URL HTTP/2 cdn.ampproject.org/v0/amp-bind-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (51032)
Hash 51f66f5179590ed022a8618c96dea0db
e655beea67f1b07b42484864cef1cc00bf7a590a
8a61d79dddf87cdddfeebeaca532d9c35b067a96d59a0b9ddc328e29a22fcece
GET /v0/amp-bind-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 16261
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "9cf879b2a5f2c71c"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-sidebar-0.1.js
216.58.211.1200 OK 9.7 kB URL HTTP/2 cdn.ampproject.org/v0/amp-sidebar-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (31286)
Hash e6596c3b5fe63837c6e59b151a00a549
e7ca62e269709e6531f1e1b1b022d9370e117c8a
848836c5424a33425b09834e83d94cd12b4788f1b412c803e947467a1f17c4c3
GET /v0/amp-sidebar-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9664
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "b2cba6000b3c8a65"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-form-0.1.js
216.58.211.1200 OK 15 kB URL HTTP/2 cdn.ampproject.org/v0/amp-form-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (50557)
Hash bf4c4fba5f9a2306a4c4d184c683d145
f3b5eff92ed45d70d6fced05ec7ada7659fab3ba
b5fba7c444e34f392c9de87463f3a2328b8375ecf3212ac7487d30cabb20c005
GET /v0/amp-form-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14973
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "0c6fa01c90d735ce"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6d2e644758758c696c3753c2b3062c4c
582fedf9527ffb72662188143b2e74d0604084c9
0a09eb83511271c81c2aca3a773b29f006520deb969ef5521088c6a6322a0109
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.brandbucket.com/images7/menu_corner.png
172.67.4.41200 OK 326 B URL HTTP/2 www.brandbucket.com/images7/menu_corner.png
IP 172.67.4.41:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 46030a6b4d338aa9be62f50203c4ff5b
c88766c7af725f4519b8d26b1001b549bef17a60
a2207a26b24c6f4d985ad4f6da0ee829f6b7c29880ee0f025bdd7f2406133e59
GET /images7/menu_corner.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 326
cf-bgj: imgq:100,h2pri
cf-polished: origSize=415
etag: "5fdf0f81-19f"
last-modified: Sun, 20 Dec 2020 08:46:57 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 269
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975bea7b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bc_search_bigblk.png
172.67.4.41200 OK 2.3 kB URL HTTP/2 www.brandbucket.com/images6/icon_bc_search_bigblk.png
IP 172.67.4.41:0
File type PNG image data, 128 x 128, 8-bit gray+alpha, non-interlaced\012- data
Hash 5df8840f95ca2b57cb4c1a04a450bd18
7d97554537c3d55bcd2dc2525ebf8b6460b3aedf
30c2e6ee83ea286bef75e58172ea15e543b798ffa26154024f1a2a95d89971b9
GET /images6/icon_bc_search_bigblk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 2332
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2940
etag: "5a96c759-b7c"
last-modified: Wed, 28 Feb 2018 15:14:33 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975beaeb50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bc_refine_blk.png
172.67.4.41200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images6/icon_bc_refine_blk.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 21fed69f80de4815a845b554523f1f0b
1f8f3562f2581619b0b12be06996eb7d2efef926
eb56a89bd14ada5dc2498e27f8b074a3a889c47c07f06a73c04d212fb9f48016
GET /images6/icon_bc_refine_blk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 1081
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2074
etag: "5fe9acd4-81a"
last-modified: Mon, 28 Dec 2020 10:00:52 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975beb2b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/head_logo2.png
172.67.4.41200 OK 5.9 kB URL HTTP/2 www.brandbucket.com/images7/head_logo2.png
IP 172.67.4.41:0
File type PNG image data, 580 x 90, 8-bit gray+alpha, non-interlaced\012- data
Hash fb4bff13a9b6f0b181ca99f55e1851bf
2969bbee6ce6f471d131c52ea806070eeb2f75be
372a7875b90613c3706d7bac0792679818354119b0d656e5ef16875ba701a585
GET /images7/head_logo2.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 5907
cf-bgj: imgq:100,h2pri
cf-polished: origSize=10386
etag: "5ee085a5-2892"
last-modified: Wed, 10 Jun 2020 07:03:01 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3258
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975beb3b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_heart.png
172.67.4.41200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images6/icon_heart.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 88e4464632078c7b6cbfbccffd95878a
68c907205dfcfaf600fb84c28c1363f029dc8e78
3051e31080b34dacf5378df68561065fb516b05594c5695b95905e32e8a551af
GET /images6/icon_heart.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 1095
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1405
etag: "5a12dec0-57d"
last-modified: Mon, 20 Nov 2017 13:55:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975ceb6b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_cart_blk.png
172.67.4.41200 OK 594 B URL HTTP/2 www.brandbucket.com/images6/icon_cart_blk.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 0f4bfd7ce7e3cd0031e75eafb5ae5ced
975cf52ea1a8c5a75b1bedbead36161629aba05f
2e924b33b08af08800be44199679ee7f7e46012070bcd2dbf5b916bb99e684dc
GET /images6/icon_cart_blk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 594
cf-bgj: imgq:100,h2pri
cf-polished: origSize=693
etag: "5a12debd-2b5"
last-modified: Mon, 20 Nov 2017 13:55:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975beb4b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_chat.png
172.67.4.41200 OK 374 B URL HTTP/2 www.brandbucket.com/images7/icon_chat.png
IP 172.67.4.41:0
File type PNG image data, 56 x 56, 8-bit gray+alpha, non-interlaced\012- data
Hash 8bd1e7f1a5f9e05fd61373b746e73baa
d8483c30258d4e33a96755dec31b65e892c5c3a8
867f0673ce919e3987de03d8ccb8d26f50721b64624e4ba2fdbd6772c1b5e9a8
GET /images7/icon_chat.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 374
cf-bgj: imgq:100,h2pri
cf-polished: origSize=691
etag: "5ebbcbd0-2b3"
last-modified: Wed, 13 May 2020 10:28:32 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975cebbb50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_cart.png
172.67.4.41200 OK 488 B URL HTTP/2 www.brandbucket.com/images7/icon_cart.png
IP 172.67.4.41:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash ecdbbc8258f81f5cc36944941eb381cd
6a7970f95e21da0a54211e49760bf2ac5738915a
e7501a24075314198d656bed11723ea4beceddd08864f53a31a6eecabc000946
GET /images7/icon_cart.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 488
cf-bgj: imgq:100,h2pri
cf-polished: origSize=851
etag: "5ebbcbcf-353"
last-modified: Wed, 13 May 2020 10:28:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975cebfb50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_heart.png
172.67.4.41200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images7/icon_heart.png
IP 172.67.4.41:0
File type PNG image data, 64 x 56, 8-bit gray+alpha, non-interlaced\012- data
Hash 8c10244caab110d2455d3952b47304af
ea695914fb21e4227c6ed482e84d70c8d145009d
626e178145fb4293ef5ff59a67451883d3c35d6048fab45c1e2f365f8b3a134f
GET /images7/icon_heart.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 1069
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1597
etag: "5ebbcbd2-63d"
last-modified: Wed, 13 May 2020 10:28:34 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975cebdb50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk1_.jpg
172.67.4.41200 OK 184 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk1_.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 1600x1024, components 3\012- data
Size 184 kB (184078 bytes)
Hash a16d81686e7139d223f7abbe22f781e8
bc8d96b0698f2cb7fa9202e77d184eeb861ae9f7
3d4b4be3f8b7b79f2b5ba988c6e4ca6f993db5b87bb7a157f91c0d46276f9cff
GET /images2/nice_bk1_.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/jpeg
content-length: 184078
cf-bgj: imgq:100,h2pri
cf-polished: origSize=202326
etag: "5fdbcc77-31656"
last-modified: Thu, 17 Dec 2020 21:24:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975dec1b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_gift.png
172.67.4.41200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_gift.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash aa034845cd6345549655fd9b8d156ba4
832f87b3f83f315dcd0a86943c63d41a283635a0
56ee437c47ad090ba5204c9583adbbbf933b3f11a9dd64e5aa856bb01ff30b6e
GET /images6/icon_gift.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 1956
cf-bgj: imgq:100,h2pri
cf-polished: origSize=3038
etag: "5a12debf-bde"
last-modified: Mon, 20 Nov 2017 13:55:11 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975eecdb50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_paint.png
172.67.4.41200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_paint.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 738d11479c8f00bbf6becd4f1628484e
92a9972dc97422c334792e7ca593f1aa00d124bf
4f96956134964753a940fcafd693e72f9d153e7e0f02c4c9b29944ad40dfa3d4
GET /images6/icon_paint.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 1961
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2539
etag: "5a12dec1-9eb"
last-modified: Mon, 20 Nov 2017 13:55:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975eecfb50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bills.png
172.67.4.41200 OK 1.5 kB URL HTTP/2 www.brandbucket.com/images6/icon_bills.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 63b9477a8d4f573114ef3a8385e421c1
af618a395be518ed856135aae176cafa600c3766
1791cdebe64eb084b289ade2587c236382055b8a45b9f610ddd0b0a0a5b56d46
GET /images6/icon_bills.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 1464
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1809
etag: "5a12debb-711"
last-modified: Mon, 20 Nov 2017 13:55:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975eed2b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_info.png
172.67.4.41200 OK 1.5 kB URL HTTP/2 www.brandbucket.com/images6/icon_info.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 1ccab99f59c5b67e39a46b1df9ff0e60
9bbef30e63d3a3682c90d3e26fa12fa2466db9cb
e4e75c45fadf08c54284e1ea641a494ff531b87757751653e66dcd99eb1a5212
GET /images6/icon_info.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 1462
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1853
etag: "5a12dec0-73d"
last-modified: Mon, 20 Nov 2017 13:55:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1989
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975eed1b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_delivery.png
172.67.4.41200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_delivery.png
IP 172.67.4.41:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash a3ecd77d0fb534a6077b4d9640e225f6
622ab1f4b324e7e9a5afe55d75d7033a59fcd4d3
39ba61ecabf031e71e239e634d36bb31583fdd9b2d6c69f1e12a81498b860006
GET /images6/icon_delivery.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 1955
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2491
etag: "5a12debe-9bb"
last-modified: Mon, 20 Nov 2017 13:55:10 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1990
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975fed6b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/460037/large_panaforte.png
172.67.4.41200 OK 4.1 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/460037/large_panaforte.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash bfbf8f78be9484574ca5b3ca5a51a968
4e3940bb921e9d2ec0200ca6df566a443c79c9c1
795352c7ac2c5f47278419e8e9e1983b05974c6850e6883cc828aa08f06cbf9a
GET /sites/default/files/logo_uploads/460037/large_panaforte.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: image/png
content-length: 4102
last-modified: Wed, 28 Sep 2022 01:41:17 GMT
etag: "6333a63d-1006"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19727c8ab50b-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 458d9ef1dbe1936b3ea654e132319e10
bb533da649123b8bb7c4ac0abee4f0f5facef518
9393518f98675e8bf542020e1ddd2ef24e915f14ea328e3086f94ff11171d0af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9393518F98675E8BF542020E1DDD2EF24E915F14EA328E3086F94FF11171D0AF"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8166
Expires: Thu, 06 Oct 2022 02:13:30 GMT
Date: Wed, 05 Oct 2022 23:57:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14279
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Wed, 05 Oct 2022 23:57:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14279
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Wed, 05 Oct 2022 23:57:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14279
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Wed, 05 Oct 2022 23:57:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14279
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Wed, 05 Oct 2022 23:57:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14279
Expires: Thu, 06 Oct 2022 03:55:24 GMT
Date: Wed, 05 Oct 2022 23:57:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5958f828ccc16a41b22d9ae812bccfc
f350f295dd70152712162d4be5b3b5f0d12cde57
230d7d8e570e433d18ec53b6ca114e2a206e8c265c0c66d73388c49db5c91c64
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9338
x-amzn-requestid: 4ca2eb3c-eba4-43a4-b79a-89546da3d660
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQBfG7soAMF9cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa09-1b5bd53052718f620b920a00;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6pHftE0vUMqrH2NR_7DzrWlnD0yal7BkAfee7UeVG7DKZNEAYRa9HQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:03:23 GMT
age: 6842
etag: "f350f295dd70152712162d4be5b3b5f0d12cde57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a508ac9cd743bec987b2a24454418265
8c7ecefe6908387e2128dc849a6ba857991ba0ab
afb2c2b51f2ce445ada599068901551beee594b15c152ed7551ab7a8835dde6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10809
x-amzn-requestid: db4d1d2a-05b8-403e-a7ca-8b8a6a0a4087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQb-HrTIAMFtNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfab2-74f184406a48e42c0ecc4ec9;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: tv80OXQUu13gDuuFESnEnXMuFdNBmGc1y592euL7QnfZW5PwJym9-g==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:53:39 GMT
etag: "8c7ecefe6908387e2128dc849a6ba857991ba0ab"
content-type: image/jpeg
age: 7426
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.ampproject.org/v0.js
216.58.211.1200 OK 3.8 kB IP 216.58.211.1:0
Hash 1a1a279f8386262762dcf70621e06ed5
0e1d6cefe5ffe1994f26322962df8b0a13743339
a4146e8a0561009b63c55d0c13673958546b96f684a9c5a43a1f3200782798e9
GET /v0.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 72501
date: Wed, 05 Oct 2022 23:57:24 GMT
expires: Wed, 05 Oct 2022 23:57:24 GMT
cache-control: private, max-age=3000, stale-while-revalidate=1206600
etag: "b0a9bc3cc165f0cd"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:06:09 GMT
age: 71476
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F585959dc-efc9-453b-bdef-59b834c43800.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F585959dc-efc9-453b-bdef-59b834c43800.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fa6c2f48dc4f2d67c8918e35396e901f
4897d9af4414d827043507c90b992d5c8d8344f1
0b287a86cf539a00b0b0c839c07f0453796ed71b571664bb2ea64363198bd633
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F585959dc-efc9-453b-bdef-59b834c43800.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6363
x-amzn-requestid: d0de2bff-da5b-487b-9058-6f33b35b594d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO8FHWAIAMFbUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84d-736ce6cb2fc072a22e65a803;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: Rlg9tzQaVbL_qon437VaTKEpDWQdmrMPkXXSUu8xZRMeRBmnmx9n6w==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:58:20 GMT
age: 3545
etag: "4897d9af4414d827043507c90b992d5c8d8344f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbffd8689-87c3-4efb-b880-4109e3dc9294.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbffd8689-87c3-4efb-b880-4109e3dc9294.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72ad6f9b79e7a3d11e3ace6b0e969614
a9cd62230d4aabfcc2e8b2494e687d854254113e
1d59cd22b3316da6f1d44076089ba983faed5327d174ddb3cb3d58f487ccae51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbffd8689-87c3-4efb-b880-4109e3dc9294.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7919
x-amzn-requestid: 01497827-07e5-4129-abf2-120b00eed8c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPs5F1LoAMF8Ww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df985-4b0c175142a6ace915d5e5d2;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:39:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: QElSCxuAj2dM9Psp2_fPTSi1goaNKkylf7D9ITOplorOFLIGIV332g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:52:46 GMT
age: 7479
etag: "a9cd62230d4aabfcc2e8b2494e687d854254113e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
q.quora.com/_/ad/b81fc17866594cbbb3efebdd1241e062/pixel?tag=ViewContent
3.209.54.132200 OK 43 B URL HTTP/1.1 q.quora.com/_/ad/b81fc17866594cbbb3efebdd1241e062/pixel?tag=ViewContent
IP 3.209.54.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /_/ad/b81fc17866594cbbb3efebdd1241e062/pixel?tag=ViewContent HTTP/1.1
Host: q.quora.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Wed, 05 Oct 2022 23:57:25 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,2990a927ed8b0926ad65163c016c8bbc,10.0.0.100,22000,91.90.42.154,,66454900967,1,1665014245.131,0.001,,.,0,0,0.000,0.004,-,0,0,197,159,79,10,34729,,,,,,-,
Content-Length: 43
Connection: keep-alive
www.brandbucket.com/images2/nice_bk2.jpg
172.67.4.41200 OK 153 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk2.jpg
IP 172.67.4.41:0
File type JPEG image data, progressive, precision 8, 1600x1024, components 3\012- data
Size 153 kB (153149 bytes)
Hash 2b609e5c7b90f4aa31c19ad4dbb9888b
95d70cc4b3896f11079f94cf2851235551b17281
6730326e166c0ba1f3b8d128d62da81d7578c6beb946139e64d5833fa014de0e
GET /images2/nice_bk2.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:25 GMT
content-type: image/jpeg
content-length: 153149
cf-bgj: imgq:100,h2pri
cf-polished: origSize=158414
etag: "54d4c43d-26ace"
last-modified: Fri, 06 Feb 2015 13:40:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975eec8b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/455090/large_birxa.png
172.67.4.41200 OK 4.1 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/455090/large_birxa.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash be99b23de29428926076eabef055c606
54affa4775af04e31d7cc54ae9ca01fb2fbb6279
a6afe88c8daffcbc1f93cdb462f521ca78051e460d7c51008d1ab1860ef4c9f2
GET /sites/default/files/logo_uploads/455090/large_birxa.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:25 GMT
content-type: image/png
content-length: 4065
last-modified: Mon, 05 Sep 2022 04:57:56 GMT
etag: "631581d4-fe1"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975fedab50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/388229/large_dineux.png
172.67.4.41200 OK 7.1 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/388229/large_dineux.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 2cb2c74bf7f3721a353c959c119a215e
b22544fce9e89c1667db38f40eefdffe5f6fba16
586ab3fce3bd4feb2268865f7e48cc5cf8153bd35b4501506e6c66dbebd424de
GET /sites/default/files/logo_uploads/388229/large_dineux.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:25 GMT
content-type: image/png
content-length: 7148
last-modified: Wed, 03 Nov 2021 05:10:03 GMT
etag: "618219ab-1bec"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19760ee1b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/25149/xlarge_emavo.png
172.67.4.41200 OK 13 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/25149/xlarge_emavo.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d6fffe99c96117600476ffd3bab93cd
2dfffaa6dcd7b4af93ec6fdd130e7208d537dc27
80bbb69083794a93b478c868c0b28079d3a1c9a53ad752585950cf54f87915ee
GET /sites/default/files/logo_uploads/25149/xlarge_emavo.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:25 GMT
content-type: image/png
content-length: 13390
last-modified: Fri, 30 Jun 2017 13:07:49 GMT
etag: "59564d25-344e"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19760ee5b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/420364/large_biosophical.png
172.67.4.41200 OK 5.3 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/420364/large_biosophical.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 55ac52e324d91c49c9a5aaf593f05d6d
4a3dc3bfc2754411eb2905deac42eb4cdc41d4b3
e1b96bbfa583db1ca8464a193cb6577e85876c303d73e558cf3b18e3d4b77f70
GET /sites/default/files/logo_uploads/420364/large_biosophical.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:25 GMT
content-type: image/png
content-length: 5331
last-modified: Sat, 19 Mar 2022 08:38:00 GMT
etag: "62359668-14d3"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19760ee3b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/376987/large_adonio.png
172.67.4.41200 OK 10 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/376987/large_adonio.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash d68c6445c17b85513db200276896039d
6b21af01dbe958e061772259716fbb3e4dd964fc
e6d5f3979c48fab14fe3824277121a3e5b225f43514a13ba08e9afedd3216bfc
GET /sites/default/files/logo_uploads/376987/large_adonio.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:25 GMT
content-type: image/png
content-length: 10544
last-modified: Thu, 09 Sep 2021 19:07:02 GMT
etag: "613a5b56-2930"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a1975fedbb50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/444359/large_yatako_0.png
172.67.4.41200 OK 4.5 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/444359/large_yatako_0.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash ec3aefa3be35764c549e2b028fa19e89
5202c0a55bd6181c7a5ae7244bfe4287178360a5
62b46fea9fa144ab9e942d1caa81c6db928d84d7e3b5bde0b9c82a06570604fa
GET /sites/default/files/logo_uploads/444359/large_yatako_0.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:25 GMT
content-type: image/png
content-length: 4480
last-modified: Tue, 19 Jul 2022 04:55:47 GMT
etag: "62d63953-1180"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19760ee0b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/206087/large_natrify.png
172.67.4.41200 OK 6.1 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/206087/large_natrify.png
IP 172.67.4.41:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash cca476bf0042eed7164753e8e3bc16c8
e3333d194bfc4fa5146734131f877484addc741a
40006ffa6fc609cebaff8fa3aacb05ad6a35fe06748c336acd4e4a5e2cf75e12
GET /sites/default/files/logo_uploads/206087/large_natrify.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:25 GMT
content-type: image/png
content-length: 6071
last-modified: Sun, 03 Mar 2019 21:29:02 GMT
etag: "5c7c471e-17b7"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19760ee8b50b-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/318364/large_sarite.png
172.67.4.41200 OK 22 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/318364/large_sarite.png
IP 172.67.4.41:0
File type PNG image data, 359 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash cd89b3878a9f17356928b515b0eb89cc
73e2794e442de52a889edc8e0d798c0de23761a9
396e67f83e488c8f2006cdf13f092e7e1a819331b30420caea55d54168eca6be
GET /sites/default/files/logo_uploads/318364/large_sarite.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:25 GMT
content-type: image/png
content-length: 21649
last-modified: Sat, 28 Nov 2020 14:47:02 GMT
etag: "5fc262e6-5491"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19760ee6b50b-OSL
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=458273
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=458273
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=458273 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1094320237704740
date: Wed, 05 Oct 2022 23:57:25 GMT
set-cookie: _pinterest_ct_ua="TWc9PSY0UkYvSzgxNC82cmJiLytJbitzd0dwR2h4WVUzS0psUlpmZlZoOWRkQkxRYnNlUW5MRHZzbDY2aW1oVm05UEVCRUVnMnZXa1RsV2FHYjcrMWZzVFNXZmxkdDA1eFpvWTQzQXEwSFpSZmM1OD0mdzVsM0VtR1IxZ1owSmFtdWpTSlNIMVVQRE1zPQ=="; Expires=Thu, 05 Oct 2023 23:57:25 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1665014245.51740316
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.brandbucket.com/favicon.ico
172.67.4.41200 OK 5.4 kB URL HTTP/2 www.brandbucket.com/favicon.ico
IP 172.67.4.41:0
Hash 9b7bc791a453044f49044f08fb2f3162
27707a9cb4f6589676b6b77ee4cf378dbc499bc5
3968e5c8cd706441fcc113401e8ae70bb858e227fb77c148f98b8c5c8711ec46
GET /favicon.ico HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/panaforte?source=ext
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: text/html
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 3254
last-modified: Wed, 05 Oct 2022 23:03:10 GMT
server: cloudflare
cf-ray: 755a19741daab50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.statcounter.com/12800819/0/c563fec3/1/
104.20.229.67200 OK 49 B URL HTTP/2 c.statcounter.com/12800819/0/c563fec3/1/
IP 104.20.229.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /12800819/0/c563fec3/1/ HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:25 GMT
content-type: image/gif
content-length: 49
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc12800819.1665014245.0; SameSite=None; Secure; Expires=Monday, 04-Oct-2027 19:57:25 EDT; Path=/; Domain=.statcounter.com
is_visitor_unique=1665014245917013099; SameSite=None; Secure; Expires=Friday, 04-Oct-2024 19:57:25 EDT; Path=/; Domain=.statcounter.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 755a197b8d8eb517-OSL
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect/?pid=271730&fmt=gif
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect/?pid=271730&fmt=gif
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/?pid=271730&fmt=gif HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJW07XAP5HlxwAAAYOqlSl9MY7jrXTONx87waampx3ODlynR-E--TdyQpR4CNZ5NDl002cPPvbMGw; Max-Age=2592000; Expires=Fri, 04 Nov 2022 23:57:25 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQIGRbL1OMZtsQAAAYOqlSl9Hn0Hjbf3EuLowUQDTZfQxXdVpgRynei7qWcgFlPoPmhJ6ergzZQPOCCQZhQUmw; Max-Age=2592000; Expires=Fri, 04 Nov 2022 23:57:25 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&9cc20d16-1e89-4dc5-893f-a64e823bc9ad"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 05-Oct-2023 23:57:25 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2397:u=1:x=1:i=1665014245:t=1665100645:v=2:sig=AQGZgBtDyICWynS9XhBOmTY67RY8RgbD"; Expires=Thu, 06 Oct 2022 23:57:25 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXqUlap8HZ6Sf2hWpt06Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: F95E3C2B93654DA0BF6F6BC49D517D01 Ref B: OSL30EDGE0222 Ref C: 2022-10-05T23:57:25Z
date: Wed, 05 Oct 2022 23:57:25 GMT
content-length: 0
X-Firefox-Spdy: h2
www.googletagmanager.com/amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fpanaforte%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
142.250.74.168200 OK 1.2 kB URL HTTP/2 www.googletagmanager.com/amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fpanaforte%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 142.250.74.168:0
File type JSON data\012- , ASCII text, with very long lines (10081)
Hash b7623e4d1e7d9e1b6d04d4b028bd3b60
30eb7ec77a7fb3414f870313355f71d20f5fad38
885917f0213d3a07c0b757a66f40c21c1f291f907d73244543039bc87916a721
GET /amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fpanaforte%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Origin: https://www.brandbucket.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.brandbucket.com
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
amp-access-control-allow-source-origin: https://www.brandbucket.com
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
content-disposition: attachment; filename="GTM-NMCQSSJ.json"
content-encoding: br
vary: *
date: Wed, 05 Oct 2022 23:57:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 1156
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
142.250.74.168200 OK 262 B URL HTTP/2 www.googletagmanager.com/gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 142.250.74.168:0
File type JSON data\012- , ASCII text, with very long lines (497), with no line terminators
Hash e2d9a6191d8c718a71ced1d8865928aa
f6e0df35194027da97abe0a08f39411eaea2b679
0c907755f6f201383f6842b97e55c409c8b62676bc62321c291b6c4bc9677886
POST /gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Content-Type: text/plain;charset=utf-8
Origin: https://www.brandbucket.com
Content-Length: 379
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.brandbucket.com
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
amp-access-control-allow-source-origin: https://www.brandbucket.com
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
content-disposition: attachment; filename="amp.json"
content-encoding: br
vary: *
date: Wed, 05 Oct 2022 23:57:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 262
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 0f4b86392447de1e99286166c1e3af75
10b884ee0d1be528542c8713a83e9a9a13214962
c70de9948a021e9bf646283a402b1cd43c672ff3da93817ea18a4bfc2b49949e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 23:57:26 GMT
Last-Modified: Wed, 05 Oct 2022 22:54:07 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: odrbMkTE2Qit91_2QO1HlHKteidEVVyt7ev7BtErmnKqC-S9iCv4cQ==
Age: 3799
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&103ac0cb-1469-4e38-890c-20ad7220a712"; Domain=.linkedin.com; Expires=Thu, 05-Oct-2023 23:57:26 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20221005235726747d9952-dae8-4f5a-8384-e981b8acaa63AQHHhALMxEhYBMmE5MWkRCelC3VcdrTr"; Domain=.www.linkedin.com; Expires=Thu, 05-Oct-2023 23:57:26 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjUwMTQyNDY7MjswMjEyRV890+4w8Sgti5z115PgQdsc1N0s+vzWKBix3gktTw==; Domain=.linkedin.com; Expires=Mon, 03 Apr 2023 23:57:26 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2397:u=1:x=1:i=1665014246:t=1665100646:v=2:sig=AQFJBQbsBYtGUDn6GkGznL0NjI23wWA7"; Expires=Thu, 06 Oct 2022 23:57:26 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-source-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXqUlaut+RBaxrW6ORKGg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7277F560FABC4BD68B442DAB24697864 Ref B: OSL30EDGE0222 Ref C: 2022-10-05T23:57:25Z
date: Wed, 05 Oct 2022 23:57:25 GMT
content-length: 0
X-Firefox-Spdy: h2
d.adroll.com/ipixel/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N?name=c49e73cf
3.251.13.39200 OK 42 B URL HTTP/2 d.adroll.com/ipixel/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N?name=c49e73cf
IP 3.251.13.39:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ipixel/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N?name=c49e73cf HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:26 GMT
content-type: image/gif
content-length: 42
server: nginx/1.20.0
cache-control: no-transform,public,max-age=300,s-maxage=900
vary: Cookie
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 935cd648925296dcbbc0393fc885d274
709896db0545f7ff90b3791501fa6c0d46b225dd
666c0dd01c645ff13d71158ae08ddbb93fb5334428e45ba91058341b0319e5d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:26 GMT
Server: ECS (amb/6BA3)
Content-Length: 471
px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
13.107.42.14200 OK 65 B URL HTTP/2 px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 8b0d5b18476ae12e2476f3621d54c4a5
2ad669e9d207fbb37e84dda25766dbaeb66d792c
2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
GET /collect?pid=271730&fmt=gif&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 65
content-type: image/gif
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&dc23e5e7-af44-462c-8093-c8c4bb856e9e"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 05-Oct-2023 23:57:26 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2401:u=1:x=1:i=1665014246:t=1665100646:v=2:sig=AQGXdVmNBvo-Vqf4cOBSs2dgP9F7_IXT"; Expires=Thu, 06 Oct 2022 23:57:26 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXqUlax9ZAVPQTKCD4hLw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5AE6235D79024C9FB2BAAED06F7BF878 Ref B: OSL30EDGE0222 Ref C: 2022-10-05T23:57:26Z
date: Wed, 05 Oct 2022 23:57:25 GMT
X-Firefox-Spdy: h2
www.bizographics.com/collect/?fmt=gif&pid=271730
144.2.12.25301 Moved Permanently 0 B URL HTTP/1.1 www.bizographics.com/collect/?fmt=gif&pid=271730
IP 144.2.12.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/?fmt=gif&pid=271730 HTTP/1.1
Host: www.bizographics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: Play
Location: https://px.ads.linkedin.com/collect?fmt=gif&pid=271730
content-length: 0
Date: Wed, 05 Oct 2022 23:57:26 GMT
Connection: keep-alive
X-Li-Fabric: prod-lva1
Report-To: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
NEL: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAXqUlayZWiYAV5GowNYEg==
Set-Cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=bizographics.com; Secure
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2401:u=1:x=1:i=1665014246:t=1665100646:v=2:sig=AQGXdVmNBvo-Vqf4cOBSs2dgP9F7_IXT"; Expires=Thu, 06 Oct 2022 23:57:26 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
px.ads.linkedin.com/collect?fmt=gif&pid=271730
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?fmt=gif&pid=271730
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?fmt=gif&pid=271730 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKMqKABct2OowAAAYOqlSwxXsVHWkYOenfn9f8h-7VCX_plq_hcS8QpviQFMifk9cpwxQQHPb2bUw; Max-Age=2592000; Expires=Fri, 04 Nov 2022 23:57:26 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJaov98-GmsmwAAAYOqlSwx2OVuDlY5bkMJZ65ryi4SHoHrMUapz8326UPAflNZwPu5TgEb7JYIMuF6aUu8Gg; Max-Age=2592000; Expires=Fri, 04 Nov 2022 23:57:26 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&4fd8521a-cc1c-451d-83d8-4e8b39a92f22"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 05-Oct-2023 23:57:26 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2397:u=1:x=1:i=1665014246:t=1665100646:v=2:sig=AQFJBQbsBYtGUDn6GkGznL0NjI23wWA7"; Expires=Thu, 06 Oct 2022 23:57:26 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXqUla0ezX95Md9NYrMAA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: FC9D81C2B7B24D24ACD66D80F718AFFD Ref B: OSL30EDGE0222 Ref C: 2022-10-05T23:57:26Z
date: Wed, 05 Oct 2022 23:57:26 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3791fae35fa0754166a153c17b4d33c
2416c0ebeb59a5dbb874c88a747242fa03e32bb6
6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6594
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:26 GMT
Last-Modified: Wed, 05 Oct 2022 22:07:32 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3791fae35fa0754166a153c17b4d33c
2416c0ebeb59a5dbb874c88a747242fa03e32bb6
6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4838
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:26 GMT
Last-Modified: Wed, 05 Oct 2022 22:36:48 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
www.facebook.com/tr?noscript=1&ev=PageView&id=1690817644503013
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr?noscript=1&ev=PageView&id=1690817644503013
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /tr?noscript=1&ev=PageView&id=1690817644503013 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 05 Oct 2022 23:57:26 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr?noscript=1&ev=ViewContent&id=1690817644503013&cd[value]=2595&cd[currency]=USD&cd[content_name]=panaforte.com&cd[content_type]=product&cd[content_ids]=458273
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr?noscript=1&ev=ViewContent&id=1690817644503013&cd[value]=2595&cd[currency]=USD&cd[content_name]=panaforte.com&cd[content_type]=product&cd[content_ids]=458273
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /tr?noscript=1&ev=ViewContent&id=1690817644503013&cd[value]=2595&cd[currency]=USD&cd[content_name]=panaforte.com&cd[content_type]=product&cd[content_ids]=458273 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 05 Oct 2022 23:57:26 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3791fae35fa0754166a153c17b4d33c
2416c0ebeb59a5dbb874c88a747242fa03e32bb6
6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4838
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:26 GMT
Last-Modified: Wed, 05 Oct 2022 22:36:48 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?fmt=gif&pid=271730&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&b62b535b-5c3a-4cb0-8bb0-9a9c71bb4e6f"; Domain=.linkedin.com; Expires=Thu, 05-Oct-2023 23:57:26 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022100523572678c9767b-ddd8-4983-86ab-e438b9252aaeAQEiqwARjRRe-EcLWJAGQ6WXednw3_E_"; Domain=.www.linkedin.com; Expires=Thu, 05-Oct-2023 23:57:26 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjUwMTQyNDY7MjswMjEP5uG7wZYlX2i+t886MYXonhfdKc+D205wF8MOcGmHDQ==; Domain=.linkedin.com; Expires=Mon, 03 Apr 2023 23:57:26 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2401:u=1:x=1:i=1665014246:t=1665100646:v=2:sig=AQGXdVmNBvo-Vqf4cOBSs2dgP9F7_IXT"; Expires=Thu, 06 Oct 2022 23:57:26 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXqUla2pom1q0y26qeXmA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D29104469ED44405958129CC151E339F Ref B: OSL30EDGE0222 Ref C: 2022-10-05T23:57:26Z
date: Wed, 05 Oct 2022 23:57:26 GMT
content-length: 0
X-Firefox-Spdy: h2
www.google-analytics.com/r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Panaforte.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1665014246151&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fpanaforte%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.3217206464173218&_r=1&a=9695&z=0.6377186083509075>m=2oubu0
142.250.74.174302 Found 388 B URL HTTP/2 www.google-analytics.com/r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Panaforte.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1665014246151&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fpanaforte%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.3217206464173218&_r=1&a=9695&z=0.6377186083509075>m=2oubu0
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5c56f94a557566f38e2853c69f1466ec
4d159a1086bc601876ff8fdd1bb1e517cf23c530
4eaf395a90dbc508b0f6460c3e04b420c589490d3b6398706b10990df52fab8c
POST /r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Panaforte.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1665014246151&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fpanaforte%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.3217206464173218&_r=1&a=9695&z=0.6377186083509075>m=2oubu0 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075
access-control-allow-origin: https://www.brandbucket.com
date: Wed, 05 Oct 2022 23:57:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 388
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=a1&ds=AMP&aip&_s=2&dt=Panaforte.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1665014246161&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fpanaforte%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=event&jid=&ec=&ea=&el=&ev=0&a=9695&z=0.6810528582802978>m=2oubu0&ec=engagement&ea=view_item&ni=1&pr1id=458273&pr1nm=panaforte.com&pr1pr=2595&pr1va=Com&pr1br=Invented&pr1qt=1&pr1ps=1
142.250.74.174200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=a1&ds=AMP&aip&_s=2&dt=Panaforte.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1665014246161&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fpanaforte%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=event&jid=&ec=&ea=&el=&ev=0&a=9695&z=0.6810528582802978>m=2oubu0&ec=engagement&ea=view_item&ni=1&pr1id=458273&pr1nm=panaforte.com&pr1pr=2595&pr1va=Com&pr1br=Invented&pr1qt=1&pr1ps=1
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /collect?v=1&_v=a1&ds=AMP&aip&_s=2&dt=Panaforte.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1665014246161&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Fpanaforte%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=event&jid=&ec=&ea=&el=&ev=0&a=9695&z=0.6810528582802978>m=2oubu0&ec=engagement&ea=view_item&ni=1&pr1id=458273&pr1nm=panaforte.com&pr1pr=2595&pr1va=Com&pr1br=Invented&pr1qt=1&pr1ps=1 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.brandbucket.com
date: Wed, 05 Oct 2022 23:57:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.redditstatic.com/ads/pixel.js
151.101.85.140200 OK 7.7 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.85.140:0
File type ASCII text, with very long lines (25224)
Hash 95212d33cfff78ad59f5af5b20c48c53
9b99a4091a6eb716bc68f1428e3c86eca068b25b
bd69f250efa08cb2c0a06c35d91fda762779820d87779019c25211f4559ebb1d
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 19 Jul 2022 22:48:09 GMT
etag: "95212d33cfff78ad59f5af5b20c48c53"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 05 Oct 2022 23:57:26 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2
amp.brandbucket.com/amp/tracking/names/panaforte?source=ext&ext=458273&source=ext
172.67.4.41302 Found 11 kB URL HTTP/2 amp.brandbucket.com/amp/tracking/names/panaforte?source=ext&ext=458273&source=ext
IP 172.67.4.41:0
File type gzip compressed data, from Unix\012- data
Hash 80e56978ca1cc6b4e2eaf9bd506d54c8
b57b9bd47889fc46c8e35c0dbd2761c1481c6c69
12fe6295ab15fb21cf0f326e214578043ce073518c170d884fc57905b7e4792e
GET /amp/tracking/names/panaforte?source=ext&ext=458273&source=ext HTTP/1.1
Host: amp.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
date: Wed, 05 Oct 2022 23:57:26 GMT
content-type: text/html
location: https://www.brandbucket.com/amp/tracking/names/panaforte?source=ext&ext=458273&source=ext
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 755a197c0a59b50b-OSL
X-Firefox-Spdy: h2
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075
108.177.14.156302 Found 386 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075
IP 108.177.14.156:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash efd556d5c1190d3d9ef69160673fe509
2e870724a36c823efc56b11c028baa0101c6efc2
c54480b41f840f65b473ea1b05983d04d724e2aa0b477d2c70da3ba73524a8ef
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 05 Oct 2022 23:57:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 386
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?fmt=gif&pid=271730&liSync=true
13.107.42.14200 OK 65 B URL HTTP/2 px.ads.linkedin.com/collect?fmt=gif&pid=271730&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 8b0d5b18476ae12e2476f3621d54c4a5
2ad669e9d207fbb37e84dda25766dbaeb66d792c
2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
GET /collect?fmt=gif&pid=271730&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 65
content-type: image/gif
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&3d336af8-2f14-4821-8e4e-780fb34d01b4"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 05-Oct-2023 23:57:26 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2397:u=1:x=1:i=1665014246:t=1665100646:v=2:sig=AQFJBQbsBYtGUDn6GkGznL0NjI23wWA7"; Expires=Thu, 06 Oct 2022 23:57:26 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-source-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXqUla5MIcwdX0k2dIWeQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 02C7A1D2C63F4D6B8E1CE0FFA6DF40FE Ref B: OSL30EDGE0222 Ref C: 2022-10-05T23:57:26Z
date: Wed, 05 Oct 2022 23:57:26 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 40a4de06678d96242b71d5318f2fd4ef
546a7d1d92df81916f14155943427b5453ae3924
aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 05 Oct 2022 23:57:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075&slf_rd=1&random=48707760
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57443), with no line terminators
Hash 1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Wed, 05 Oct 2022 23:57:26 GMT
x-served-by: cache-iad-kcgs7200165-IAD, cache-bma1621-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 61ae6934ee47263b9eda9dd080815f9f
3d4f2df2249f1da1f62adf3d554d2722a9224de1
14c120ba267cb3c7f45e81afb8e363e545248601f0575614936db327ce8dcb18
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6260
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:27 GMT
Last-Modified: Wed, 05 Oct 2022 22:13:08 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 313
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=04C2E81E002061E5393DFA2A017760E8; domain=.bing.com; expires=Mon, 30-Oct-2023 23:57:27 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0F1DBA1865114E60960A49D811683A93 Ref B: OSL30EDGE0407 Ref C: 2022-10-05T23:57:26Z
date: Wed, 05 Oct 2022 23:57:26 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d4c3917173bd92c4b3208cdf2c7c345
726a9aa16eef5844afde825f9faf1b505d31e69b
572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075&slf_rd=1&random=48707760
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075&slf_rd=1&random=48707760
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-xbwrjrk8JiPEpD3KsJ9SRw&jid=0.3217206464173218&_v=a1&z=0.6377186083509075&slf_rd=1&random=48707760 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 05 Oct 2022 23:57:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alb.reddit.com/rp.gif?ts=1665014246827&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=af4dd068-ef4e-40eb-8f08-021760a410e5&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
151.101.85.140200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1665014246827&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=af4dd068-ef4e-40eb-8f08-021760a410e5&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
IP 151.101.85.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1665014246827&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=af4dd068-ef4e-40eb-8f08-021760a410e5&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Wed, 05 Oct 2022 23:57:27 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 85d0e74b83c485572f113f8ac7ba4346
5c9a2d6e447c8307980be240986a3ffc54fd8927
184a8ab4db66977d54898ef2fa266304b08fe764c2c0f22d06d2f98a43da80aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5630
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:27 GMT
Last-Modified: Wed, 05 Oct 2022 22:23:37 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d4c3917173bd92c4b3208cdf2c7c345
726a9aa16eef5844afde825f9faf1b505d31e69b
572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
t.co/i/adsct?bci=3&eci=2&event_id=5007cdb3-f1d2-4fe5-9a28-37fe58f5fcbf&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=cbbcb1b2-8ac6-4374-8f03-6e58b85c4cce&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fpanaforte%3Fsource%3Dext%26ext%3D458273%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
104.244.42.5200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=5007cdb3-f1d2-4fe5-9a28-37fe58f5fcbf&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=cbbcb1b2-8ac6-4374-8f03-6e58b85c4cce&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fpanaforte%3Fsource%3Dext%26ext%3D458273%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
IP 104.244.42.5:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=5007cdb3-f1d2-4fe5-9a28-37fe58f5fcbf&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=cbbcb1b2-8ac6-4374-8f03-6e58b85c4cce&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fpanaforte%3Fsource%3Dext%26ext%3D458273%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:26 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=79c4e72b-1948-4665-844e-0312eb4d1269; Max-Age=63072000; Expires=Fri, 04 Oct 2024 23:57:27 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 1fd35da12c6629d6
strict-transport-security: max-age=0
x-response-time: 111
x-connection-hash: f056a0fc139711779fad7d6def477efbe3f3af2e68eee1b0c525f1a494d0c28d
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash cdc3a5f4435a2ea6aa1319e2fef1b3c0
1a6279e47046d313154016819361976826dea094
b2dfb4358184a34a812bc3f340e29b4fb32a5d5bd7c0baf2213f27a99baf461b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4484
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:27 GMT
Last-Modified: Wed, 05 Oct 2022 22:42:43 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 312
gum.criteo.com/syncframe?topUrl=www.brandbucket.com&origin=onetag
178.250.2.146200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=www.brandbucket.com&origin=onetag
IP 178.250.2.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 336d3e015f987a65d205999a49be4805
57a3f572cd89347b5ead196670776134f1f0f69e
9621f1cc5441ed0d364b0fb9986a8c6742af2c5c356e6e4edb432728fe319ff3
GET /syncframe?topUrl=www.brandbucket.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:26 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=f346d883-7c2d-43af-b265-2088bd15f86e; expires=Mon, 30 Oct 2023 23:57:26 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 299653
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=138002826&Ver=2&mid=18a118a6-2ad8-4317-9cae-b5bd29ad111e&sid=76e95d00450911ed9fa373070f77efaa&vid=76e982b0450911ed9cd8c9edfd7537ea&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=All%20names&p=https%3A%2F%2Fwww.brandbucket.com%2F&r=<=1007&evt=pageLoad&ifm=1&sv=1&rn=767747
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=138002826&Ver=2&mid=18a118a6-2ad8-4317-9cae-b5bd29ad111e&sid=76e95d00450911ed9fa373070f77efaa&vid=76e982b0450911ed9cd8c9edfd7537ea&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=All%20names&p=https%3A%2F%2Fwww.brandbucket.com%2F&r=<=1007&evt=pageLoad&ifm=1&sv=1&rn=767747
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=138002826&Ver=2&mid=18a118a6-2ad8-4317-9cae-b5bd29ad111e&sid=76e95d00450911ed9fa373070f77efaa&vid=76e982b0450911ed9cd8c9edfd7537ea&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=All%20names&p=https%3A%2F%2Fwww.brandbucket.com%2F&r=<=1007&evt=pageLoad&ifm=1&sv=1&rn=767747 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2E6412FE4DC566830CE900CA4C926768; domain=.bing.com; expires=Mon, 30-Oct-2023 23:57:27 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BF62ED02A51E4BA68497A4C8141E8491 Ref B: OSL30EDGE0407 Ref C: 2022-10-05T23:57:27Z
date: Wed, 05 Oct 2022 23:57:26 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 09ca26eaf86cfbfac28b54cac6d42d5f
e3272c4faf239c1792aeae0e6fcf5b4eb9ab2d8c
f3ac85d3475c24a00784d37e006fbdc7b393326417f736c4a774c299697a95fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5069
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:27 GMT
Last-Modified: Wed, 05 Oct 2022 22:32:58 GMT
Server: ECS (amb/6BB0)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash b1dcae6ab89e8aa9cc346b11f71f0a0c
f3caca315d677194b460f1f2b6c0bc03859d5c20
d28f23bc02ddb369c08c43f4e9485919711f92924c631144015a82124203fb51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3580
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:27 GMT
Last-Modified: Wed, 05 Oct 2022 22:57:47 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash b1dcae6ab89e8aa9cc346b11f71f0a0c
f3caca315d677194b460f1f2b6c0bc03859d5c20
d28f23bc02ddb369c08c43f4e9485919711f92924c631144015a82124203fb51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4233
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:27 GMT
Last-Modified: Wed, 05 Oct 2022 22:46:54 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 312
bat.bing.com/p/action/138002826.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/138002826.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/138002826.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=1853E44C0FB063401B4EF6780EE762FC; domain=.bing.com; expires=Mon, 30-Oct-2023 23:57:27 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BAD6844F7CDC49D0A4248D04E274B3E5 Ref B: OSL30EDGE0407 Ref C: 2022-10-05T23:57:27Z
date: Wed, 05 Oct 2022 23:57:27 GMT
X-Firefox-Spdy: h2
api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10873&mobile=false&messagesUtk=389dd4947b194239bc019fe6ce1c964c&traceId=389dd4947b194239bc019fe6ce1c964c&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
104.19.155.83200 OK 18 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10873&mobile=false&messagesUtk=389dd4947b194239bc019fe6ce1c964c&traceId=389dd4947b194239bc019fe6ce1c964c&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
IP 104.19.155.83:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10873&mobile=false&messagesUtk=389dd4947b194239bc019fe6ce1c964c&traceId=389dd4947b194239bc019fe6ce1c964c&referrer=https%3A%2F%2Fwww.brandbucket.com%2F HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.brandbucket.com/
Origin: https://www.brandbucket.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:27 GMT
content-type: text/plain; charset=utf-8
content-length: 18
cf-ray: 755a1985ee950b39-OSL
access-control-allow-origin: https://www.brandbucket.com
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: b9a11107-a5dd-4f8e-89bf-b6932e7b6428
x-trace: 2B8B018AE2451C4624861422816DBD5D69D34804B9000000000000000000
set-cookie: __cf_bm=5EuoUh41UWE8Vxxj1w3xah_87Ej9frY9Gc6beFxRt10-1665014247-0-Af80FC5BVtutsTrczrp84fbUzeqPHqlzTUcfPBZARIGGtRXO+3grS3AgxDYo8SZ5bMF9ootizwodpdW+27PM8nE=; path=/; expires=Thu, 06-Oct-22 00:27:27 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G%2FQydUBBHaSsk%2BSMG0yl71lhYNLLnCGij0DKNo5NzpJBOv7Nc63jKCOHAMV3nFkNnNnNYMypnN7iOXM1%2FnPmsXUJJjl0RLYHgQaJqRlxGOVhX51IZpEzrBtrIIF%2Bp6KhsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.usemessages.com/conversations-embed.js
104.17.237.204200 OK 21 kB URL HTTP/2 js.usemessages.com/conversations-embed.js
IP 104.17.237.204:0
File type C source, ASCII text, with very long lines (65536), with no line terminators
Hash 0ac2fcced75644a64675bc500e0b9584
d0cef192139f71a67358014d0973e8bf3cf7765a
d4abab9dc9b3c6991a6f56c7bb954a946151008c0a58a1740f8bce1b1c7e4ad0
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:27 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Sep 2022 03:28:22 UTC
etag: W/"8f72896eff8de085fc34d4ab80d97463"
x-amz-server-side-encryption: AES256
x-amz-version-id: y24q1zYP7BjLwmSbcrvN2WI7ANyjR6Yj
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 68a3b1d5c75429221abc685a453afb60.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: 08ys3UAu7YCwOBIyV3xja-Kr3ypD0W68sC6PFmcWX0TlRhw66y5TbQ==
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.10873/bundles/project.js&cfRay=752e0bcea9b1b4f4-IAD
x-hs-target-asset: conversations-embed/static-1.10873/bundles/project.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 266
server: cloudflare
cf-ray: 755a19855dfcb4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10873&mobile=false&messagesUtk=389dd4947b194239bc019fe6ce1c964c&traceId=389dd4947b194239bc019fe6ce1c964c&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
104.19.155.83200 OK 1.5 kB URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10873&mobile=false&messagesUtk=389dd4947b194239bc019fe6ce1c964c&traceId=389dd4947b194239bc019fe6ce1c964c&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
IP 104.19.155.83:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2996), with no line terminators
Hash bc4213ca7fda321bf0294b7ca34a66e8
cb66733fcf366f842a6182d1645d53cfe82100ed
3314010a261d3f3e2031d4b50597387531dcc279dd8c3155b981fce6a9b84cae
GET /livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10873&mobile=false&messagesUtk=389dd4947b194239bc019fe6ce1c964c&traceId=389dd4947b194239bc019fe6ce1c964c&referrer=https%3A%2F%2Fwww.brandbucket.com%2F HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.brandbucket.com/amp/tracking/names/panaforte?source=ext&ext=458273&source=ext#amp=1
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:27 GMT
content-type: application/json;charset=utf-8
content-length: 1493
cf-ray: 755a1986af0b0b39-OSL
access-control-allow-origin: https://www.brandbucket.com
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 28cd903a-0d00-46ad-b774-12784fc55ca4
x-trace: 2BE38FE5B542DBE94BCAF4D456B23DAECC8168B4EE000000000000000000
set-cookie: __cf_bm=GlLbj9fJs.1LEe4ZwPyYt3E9MPW2MwYlKB6T5gGxwk4-1665014247-0-AYBgokMk8JjPu5l+p18lOYWSNF8OZuLJwyvjxvHt9zOxw2IFr43aaR2ikMOpHTd1D+NPoZJnZjFS4bPFmSCDUpc=; path=/; expires=Thu, 06-Oct-22 00:27:27 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cCwlTdmJ25A3OQJ%2FDfFR%2FKRhN08bviZUoETszCkdr0KRVx5d96YJttw0Q5Z7Z9U8kUCsBePF9cVnKIZAABIjV6MkI20LCkQgMZy3dSENamXgBVSb9RCmaiT4aj9HXIaI2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 453 B IP 178.250.0.157:0
File type JSON data\012- , ASCII text, with very long lines (507), with no line terminators
Hash a8a0e504e1953bc6faca0c5098c8d421
26dc07fc7f2c89c2742776d712eb3c67a9840f34
36a40d2bc322c26a62651361309bab25225bbbd0423cf10636642f8beba9e54c
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=tyaK8F80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dXZ2dvR3lhd0FBOTN5RHBwVVRNNzZpbWk1OE5haklrU1VLZmZqZGpySHI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:26 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=v5MatV80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dXZ2dvR3lhd0FBOTN5RHBwVVRNNzRiJTJGN2U3a3Z4MHFqODRSVW5SQnk4SA; expires=Mon, 30 Oct 2023 23:57:27 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 298658
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 8cd5811c1a1e7c13b558c18ebaa5527e
582f3259386922eb283d3be82bab3fd94d52e8a3
e761feb6ca14d15eae120fa27f76b6ea109831536a37cdd51cc17aaf340c2a30
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3915
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:27 GMT
Last-Modified: Wed, 05 Oct 2022 22:52:12 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 312
widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-xbwrjrk8JiPEpD3KsJ9SRw%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=E6WSq18yUFZSRiUyRjV2eDhQZXJCS1M1VXZ3TFFSOGJncUJORUNLMW1xdkFlQWRyTFMxTTVMJTJCM3lCVjVISXVpYyUyQmdnJTJCMWJyRmFFckw2JTJCektFTiUyRkRjYVpYRnpOWXRhUnc5Z0xVek9LJTJCUjdWRHlrWjZyZFplNTJPS3k3S2Q5TjZYOVJEM2tWMTdDamIwQ0VWJTJGNkdJMXptdnhxRnFRJTNEJTNE&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fpanaforte%253Fsource%253Dext&dtycbr=70853
74.119.119.150200 OK 21 kB URL HTTP/2 widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-xbwrjrk8JiPEpD3KsJ9SRw%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=E6WSq18yUFZSRiUyRjV2eDhQZXJCS1M1VXZ3TFFSOGJncUJORUNLMW1xdkFlQWRyTFMxTTVMJTJCM3lCVjVISXVpYyUyQmdnJTJCMWJyRmFFckw2JTJCektFTiUyRkRjYVpYRnpOWXRhUnc5Z0xVek9LJTJCUjdWRHlrWjZyZFplNTJPS3k3S2Q5TjZYOVJEM2tWMTdDamIwQ0VWJTJGNkdJMXptdnhxRnFRJTNEJTNE&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fpanaforte%253Fsource%253Dext&dtycbr=70853
IP 74.119.119.150:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (5397)
Hash d096528eacb0d45e9bc557dc43dd616a
f28785c75a95489c18a52c02d53af5a1a350a791
dc8bdd41cf7f9bd0d7d1dcb5e6ec64c73bf00d981f0db94bcb2dd13d3c603758
GET /event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-xbwrjrk8JiPEpD3KsJ9SRw%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=E6WSq18yUFZSRiUyRjV2eDhQZXJCS1M1VXZ3TFFSOGJncUJORUNLMW1xdkFlQWRyTFMxTTVMJTJCM3lCVjVISXVpYyUyQmdnJTJCMWJyRmFFckw2JTJCektFTiUyRkRjYVpYRnpOWXRhUnc5Z0xVek9LJTJCUjdWRHlrWjZyZFplNTJPS3k3S2Q5TjZYOVJEM2tWMTdDamIwQ0VWJTJGNkdJMXptdnhxRnFRJTNEJTNE&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Fpanaforte%253Fsource%253Dext&dtycbr=70853 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:27 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 24618074
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js
54.230.111.92200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js
IP 54.230.111.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 11:33:38 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: B4UNXi6GXWnJayqt.dsf1CI2cQAHIJSF
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 05 Oct 2022 23:52:57 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
Age: 422
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QE3WIE98lLEl_vwKiMiyR_tlOGAkumZnfFxqWmiaTDdwEznCqGu0bQ==
s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js
54.230.111.92302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js
IP 54.230.111.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Wed, 05 Oct 2022 04:41:41 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/pre/index.js
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
Age: 69347
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8QHpEhXK5uqUmzuuW-3cn9MXq5sAy443qrqThs74lUY_eVE_FNhA5A==
s.adroll.com/j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js
54.230.111.92302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js
IP 54.230.111.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Wed, 05 Oct 2022 10:56:13 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/exp/index.js
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
Age: 46874
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uwlYaIng0IzM2e2qq1xJRxO2ouoIroDSvkvESczOT454hmaNLYaJbA==
gem.gbc.criteo.com/newidsd
185.235.84.220200 OK 39 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.220:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 31b46121020c480f7caeb1a33d381650
7d99fa70387fafe8bcaf8d1158be0e9e1aaf0b72
fd94a490cd6027e0dfa249e82afc85ada51d3f3a745ff55b4197862d76dae7ec
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:26 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 107839
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1b1c602f27c73c7746de44fd85adfed0
7ae4cf7607f04cc341d583e48b8ebf28b966d08b
bd43d9f5ef379d4be91763c49540d71920d0662f77e91cb229cf6d505d93206f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD43D9F5EF379D4BE91763C49540D71920D0662F77E91CB229CF6D505D93206F"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7988
Expires: Thu, 06 Oct 2022 02:10:36 GMT
Date: Wed, 05 Oct 2022 23:57:28 GMT
Connection: keep-alive
s.adroll.com/j/exp/index.js
54.230.111.92200 OK 28 B URL HTTP/1.1 s.adroll.com/j/exp/index.js
IP 54.230.111.92:0
File type ASCII text, with no line terminators
Hash 5816cced8568d223aa09d889f300692b
95cab5e474d7391762c3da5c7dc50fcf05df529f
f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52
GET /j/exp/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 28
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 22:19:29 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: U3dsSGRYl2soVpEEAxBIaMUfj33DKRpK
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 05 Oct 2022 00:03:26 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
Age: 86043
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZYV2qWs4er6LTgM9G7XYoPfxWGdzMabkNof03_FeIJxwqnPqTmILCw==
matching.ivitrack.com/sync?realm=criteo&uid=k-mkfEyizOU0iGjuaDN2KXhcNBWEN8WJMPx8wjTA
34.117.157.22200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-mkfEyizOU0iGjuaDN2KXhcNBWEN8WJMPx8wjTA
IP 34.117.157.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-mkfEyizOU0iGjuaDN2KXhcNBWEN8WJMPx8wjTA HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Wed, 05 Oct 2022 23:57:27 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1b1c602f27c73c7746de44fd85adfed0
7ae4cf7607f04cc341d583e48b8ebf28b966d08b
bd43d9f5ef379d4be91763c49540d71920d0662f77e91cb229cf6d505d93206f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD43D9F5EF379D4BE91763C49540D71920D0662F77E91CB229CF6D505D93206F"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7988
Expires: Thu, 06 Oct 2022 02:10:36 GMT
Date: Wed, 05 Oct 2022 23:57:28 GMT
Connection: keep-alive
d.adroll.com/consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fpanaforte%3Fsource%3Dext%26ext%3D458273%26source%3Dext%23amp%3D1&_s=1054e8c7173ace5fbf697c2a1419c3fd&_b=2
3.251.13.39200 OK 447 B URL HTTP/2 d.adroll.com/consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fpanaforte%3Fsource%3Dext%26ext%3D458273%26source%3Dext%23amp%3D1&_s=1054e8c7173ace5fbf697c2a1419c3fd&_b=2
IP 3.251.13.39:0
File type ASCII text, with very long lines (447), with no line terminators
Hash fdacbdfc0676fff96ef8f96cc94ac750
e211321d013201532d1d85b490864bade42b712b
5a16900ccc365cfbfadc6022b35d5b45c65264190d4151c29a2f21ec5d1222a7
GET /consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Fpanaforte%3Fsource%3Dext%26ext%3D458273%26source%3Dext%23amp%3D1&_s=1054e8c7173ace5fbf697c2a1419c3fd&_b=2 HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:28 GMT
content-type: application/javascript
content-length: 447
server: nginx/1.20.0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 67130f286e7b5f79f1d6bc55fdab9bd1
97bc8a1b453c9c1c710042fc2070bce602418950
8e4f56d7caac2d5a8fa9f50326dcb35df2be2f8563a483e6a9e3745b50a3e6bd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 22:32:13 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KFDQTLvhDKJW8qAV0Lw3xBxyibSvSnd6yrWqhKTJ4_T6xEKusKQoKA==
Age: 5115
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 05 Oct 2022 23:57:28 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 618637
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-CuX5yCzOU0iGjuaDN2KXhcNBWENSchTCXfUQEg
23.38.200.22200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-CuX5yCzOU0iGjuaDN2KXhcNBWENSchTCXfUQEg
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-CuX5yCzOU0iGjuaDN2KXhcNBWENSchTCXfUQEg HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3080158483580211000V10; Expires=Thu, 05 Oct 2023 23:57:28 GMT; domain=.media.net; Path=/;
data-c-ts=1665014248;Expires=Fri, 04 Nov 2022 23:57:28 GMT;path=/;domain=.media.net;
data-c=k-CuX5yCzOU0iGjuaDN2KXhcNBWENSchTCXfUQEg~~3;Expires=Fri, 04 Nov 2022 23:57:28 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Wed, 05 Oct 2022 23:57:28 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 05 Oct 2022 23:57:28 GMT
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-YYNSIyzOU0iGjuaDN2KXhcNBWENLzR2bp2ndsA&google_cm&google_hm=ay1ZWU5TSXl6T1UwaUdqdWFETjJLWGhjTkJXRU5MelIyYnAybmRzQQ
216.58.211.2302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-YYNSIyzOU0iGjuaDN2KXhcNBWENLzR2bp2ndsA&google_cm&google_hm=ay1ZWU5TSXl6T1UwaUdqdWFETjJLWGhjTkJXRU5MelIyYnAybmRzQQ
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5458fe961f76c30e7ee253cab1e183d4
8930cfdb601aaa212ceaf89acf8a2908db5f1786
7e16e0172e2053b247f6e80828b0992eb034172d08f9a03a6e4c3d4a2438c699
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-YYNSIyzOU0iGjuaDN2KXhcNBWENLzR2bp2ndsA&google_cm&google_hm=ay1ZWU5TSXl6T1UwaUdqdWFETjJLWGhjTkJXRU5MelIyYnAybmRzQQ HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-YYNSIyzOU0iGjuaDN2KXhcNBWENLzR2bp2ndsA&google_cm=&google_hm=ay1ZWU5TSXl6T1UwaUdqdWFETjJLWGhjTkJXRU5MelIyYnAybmRzQQ&google_tc=
date: Wed, 05 Oct 2022 23:57:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 00:12:28 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-YYNSIyzOU0iGjuaDN2KXhcNBWENLzR2bp2ndsA&google_cm=&google_hm=ay1ZWU5TSXl6T1UwaUdqdWFETjJLWGhjTkJXRU5MelIyYnAybmRzQQ&google_tc=
216.58.211.2302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-YYNSIyzOU0iGjuaDN2KXhcNBWENLzR2bp2ndsA&google_cm=&google_hm=ay1ZWU5TSXl6T1UwaUdqdWFETjJLWGhjTkJXRU5MelIyYnAybmRzQQ&google_tc=
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash a7d8ac30bc7ac1d2f32b67c503f9cee7
6d5098d32c02c60591cc614bb16ce0d440ef1a4c
c3d36844c39b1e83ab48b23648a7455d9771bb9fe1ade3821dd5d652ef7d1dae
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-YYNSIyzOU0iGjuaDN2KXhcNBWENLzR2bp2ndsA&google_cm=&google_hm=ay1ZWU5TSXl6T1UwaUdqdWFETjJLWGhjTkJXRU5MelIyYnAybmRzQQ&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-YYNSIyzOU0iGjuaDN2KXhcNBWENLzR2bp2ndsA&google_error=3
date: Wed, 05 Oct 2022 23:57:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
185.83.142.19307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 185.83.142.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 05 Oct 2022 23:57:28 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: d0d3a3a8-c7d6-48b3-ab75-3d1b1b99727f
Set-Cookie: uuid2=5622320174482371677; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 03-Jan-2023 23:57:28 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 960.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash bca92f383af2d5d4e8b51cc93c18ddd3
52c8028617577ddacc03741af2d98b0032d8ed61
5293690a525e66a5e5cc246e7a947e4d97b0f610bb5f4a9a605862d5ac1a9b53
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 23:57:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 13:56:49 GMT
Expires: Tue, 11 Oct 2022 13:56:48 GMT
Etag: "52c8028617577ddacc03741af2d98b0032d8ed61"
Cache-Control: max-age=481759,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 755a198d3dbbb50c-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8c6614978679602d4fd6b39d662f7baf
9b1077b841ba74164f4d86cd3866e286f234b5b4
b642bbbdbbbb2f4553fcd8240b3a5e857017199302055e1ab05c27228da34ea9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1931
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 23:25:17 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 12f8e1f64bfbef5b5d4a68f554556ef7
0e41ce09b1003ddbc1da39166d752c7b62646b91
60b7a5732f0a14b7779788f03122280be77d71017fcb469db90915fefad8499e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5739
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 22:21:49 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash f92f07e6f176bb545764ed96eda31880
4773db9d00d6090bd87df313edda59ef875bb304
7495a624697cf4273b82976668c4cbe15bed5042f7ea564e050819ee17568ccb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 22:28:06 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ohEIrCl0kjTI47jI5BWqvkMOfaVc5I4OFi5m0n7V4xU5pWjwvNMapw==
Age: 5362
x.bidswitch.net/sync?dsp_id=46&user_id=k-bbQGLSzOU0iGjuaDN2KXhcNBWEOi7-m4_zSUoA&expires=30
3.122.47.104302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?dsp_id=46&user_id=k-bbQGLSzOU0iGjuaDN2KXhcNBWEOi7-m4_zSUoA&expires=30
IP 3.122.47.104:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-bbQGLSzOU0iGjuaDN2KXhcNBWEOi7-m4_zSUoA&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 05 Oct 2022 23:57:28 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-bbQGLSzOU0iGjuaDN2KXhcNBWEOi7-m4_zSUoA&expires=30
Set-Cookie: tuuid=8376edfe-c92f-4ee1-af9d-7e64b8b3836b; path=/; expires=Thu, 05-Oct-2023 23:57:28 GMT; domain=.bidswitch.net; samesite=none; secure
c=1665014248; path=/; expires=Thu, 05-Oct-2023 23:57:28 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1665014248; path=/; expires=Thu, 05-Oct-2023 23:57:28 GMT; domain=.bidswitch.net; samesite=none; secure
c=1665014248; path=/; expires=Thu, 05-Oct-2023 23:57:28 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-Ts6pHizOU0iGjuaDN2KXhcNBWENHswB9-yzIcA&expires=30
213.19.162.90204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-Ts6pHizOU0iGjuaDN2KXhcNBWENHswB9-yzIcA&expires=30
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-Ts6pHizOU0iGjuaDN2KXhcNBWENHswB9-yzIcA&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 19600bc21eacf9565125744d917cac10
Content-Type: image/gif
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-UH53byzOU0iGjuaDN2KXhcNBWEPWFqszwdilAg
185.64.190.80200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-UH53byzOU0iGjuaDN2KXhcNBWEPWFqszwdilAg
IP 185.64.190.80:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-UH53byzOU0iGjuaDN2KXhcNBWEPWFqszwdilAg HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 23:57:28 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-UH53byzOU0iGjuaDN2KXhcNBWEPWFqszwdilAg&KRTB&23144-uid:k-UH53byzOU0iGjuaDN2KXhcNBWEPWFqszwdilAg&KRTB&23286-uid:k-UH53byzOU0iGjuaDN2KXhcNBWEPWFqszwdilAg&KRTB&23287-uid:k-UH53byzOU0iGjuaDN2KXhcNBWEPWFqszwdilAg; domain=pubmatic.com; secure; expires=Fri, 04-Nov-2022 23:57:28 GMT; path=/
PugT=1665014248; domain=pubmatic.com; secure; expires=Fri, 04-Nov-2022 23:57:28 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash ff4dd1c94d88ee64ea7ceb8d560a3e6c
ba04253ef33cbc9e5c06ceabd8514db15967cdc1
d291bbaf69e4b7a85e29642b27f69cc6c12294c70cbddde13f55237e7d775ac6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5855
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 22:19:53 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 313
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
185.83.142.19302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 185.83.142.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Wed, 05 Oct 2022 23:57:28 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: b21c837b-e3e3-437d-b62f-4269cb5f08e1
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 960.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash eb40f46471ce91ca79905c7d564c4fab
4541fbe985fbbbf800134e115deeddf726c8fc14
0502355e8408f1d3d4bf76d2d2dc65add2711198099c13003cb34ff9eb0d67d8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6218
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 22:13:50 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-OWPgDyzOU0iGjuaDN2KXhcNBWEOVLV-7vzSkTg
35.156.130.49204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-OWPgDyzOU0iGjuaDN2KXhcNBWEOVLV-7vzSkTg
IP 35.156.130.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-OWPgDyzOU0iGjuaDN2KXhcNBWEOVLV-7vzSkTg HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 05 Oct 2022 23:57:28 GMT
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-R3OCNizOU0iGjuaDN2KXhcNBWEPUbObYcBEs-g
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-R3OCNizOU0iGjuaDN2KXhcNBWEPUbObYcBEs-g
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-R3OCNizOU0iGjuaDN2KXhcNBWEPUbObYcBEs-g HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Wed, 05 Oct 2022 23:57:28 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 05 Oct 2022 23:57:28 GMT
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-bbQGLSzOU0iGjuaDN2KXhcNBWEOi7-m4_zSUoA&expires=30
3.122.47.104200 OK 43 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-bbQGLSzOU0iGjuaDN2KXhcNBWEOi7-m4_zSUoA&expires=30
IP 3.122.47.104:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-bbQGLSzOU0iGjuaDN2KXhcNBWEOi7-m4_zSUoA&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Wed, 05 Oct 2022 23:57:28 GMT
Content-Length: 43
Connection: keep-alive
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 0a0b7e1e9de63fb708410473ff1bde95
3cee2748fc3e9925dc9f2592d1fb4bc7ccd93eb1
aa2c04eb0c110b52c1166c8d26b2f40c6bc0dfa793028b6763edc0c128b3b0a1
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 05 Oct 2022 23:57:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 05 Oct 2022 22:07:51 GMT
Expires: Thu, 06 Oct 2022 22:07:51 GMT
ETag: "3cee2748fc3e9925dc9f2592d1fb4bc7ccd93eb1"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cm.adform.net/pixel?adform_pid=15&adform_pc=k-kPyF7yzOU0iGjuaDN2KXhcNBWEPFEsoAxR_R5A
37.157.4.28200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-kPyF7yzOU0iGjuaDN2KXhcNBWEPFEsoAxR_R5A
IP 37.157.4.28:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-kPyF7yzOU0iGjuaDN2KXhcNBWEPFEsoAxR_R5A HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 23:57:28 GMT
content-type: image/gif
content-length: 43
last-modified: Wed, 10 Apr 2019 10:06:26 GMT
etag: "5cadc022-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-Khe3ZyzOU0iGjuaDN2KXhcNBWEMNxbu0BqYwHQ
185.86.139.115200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-Khe3ZyzOU0iGjuaDN2KXhcNBWEMNxbu0BqYwHQ
IP 185.86.139.115:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-Khe3ZyzOU0iGjuaDN2KXhcNBWEMNxbu0BqYwHQ HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Wed, 05 Oct 2022 23:57:27 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=2326199771589221788; expires=Sun, 05 Nov 2023 23:57:28 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 05 Nov 2023 23:57:28 GMT; domain=smartadserver.com; path=/
csync=79:k-Khe3ZyzOU0iGjuaDN2KXhcNBWEMNxbu0BqYwHQ; expires=Thu, 05 Oct 2023 23:57:28 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5b25a850e73a6a67012c43901ba37e0c
e9864c9e691865e5704c1da228471ad043f33f13
3ba81531971b36a93ff13b3dab5f4584e971fb5fed8ed0874e5eda6b5876a109
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4019
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 22:50:29 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 30a9148a263c32ffd3bb5193b2958c59
6cbfd8d517cf92a76533b7081feba65a5560946a
b11498b76dc0979867097613456af937ebf420b87be5f8888c1713d9c2437cbb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 22:30:49 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wiCO26gg3IvV6SR_b7SPEscGLZuONcliNtZc5GcBfiOcyYjcEXsqaA==
Age: 5199
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-zecJPyzOU0iGjuaDN2KXhcNBWEMz8wwDhI4EZA
185.80.36.245302 Found 0 B URL HTTP/1.1 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-zecJPyzOU0iGjuaDN2KXhcNBWEMz8wwDhI4EZA
IP 185.80.36.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-zecJPyzOU0iGjuaDN2KXhcNBWEMz8wwDhI4EZA HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 05 Oct 2022 23:57:28 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rum?cm_dsp_id=20&external_user_id=k-zecJPyzOU0iGjuaDN2KXhcNBWEMz8wwDhI4EZA&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=Yz4Z6JFpldeeDqCRKW8ccgAA; Path=/; Domain=casalemedia.com; Expires=Thu, 05 Oct 2023 23:57:28 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4434; Path=/; Domain=casalemedia.com; Expires=Tue, 03 Jan 2023 23:57:28 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4434; Path=/; Domain=casalemedia.com; Expires=Tue, 03 Jan 2023 23:57:28 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3611741a8b0890e3af04373f11177251
d43c3d980e05e63794b07ac41e1b6f7f022ad378
e355a561aa302194b26a1ad7c4e2bbf0bfc286a6500cfb6fa540f5e79743ebd5
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4030
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 22:50:18 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ad.yieldlab.net/m?dt_id=8664&ext_id=k-rrE5lyzOU0iGjuaDN2KXhcNBWEOe29y4qpPIrg
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-rrE5lyzOU0iGjuaDN2KXhcNBWEOe29y4qpPIrg
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-rrE5lyzOU0iGjuaDN2KXhcNBWEOe29y4qpPIrg HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Tue, 04 Oct 2022 23:57:28 GMT
Date: Wed, 05 Oct 2022 23:57:28 GMT
Connection: keep-alive
Set-Cookie: id=c32780da-91ef-435b-b4c4-197004cfad20; Path=/; Domain=yieldlab.net; Expires=Thu, 05-Oct-2023 23:57:28 GMT; Max-Age=31536000; Secure; SameSite=None
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 14abd2aa622a0b3ba503c59896605468
52e77d9707d170eddd54d4992a3cdf737755ce6c
4be2b33d74fdbbc01e1e1ef6cbf28f338b00ca9863932351c2762f71eaa7a5cc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1695
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 23:29:13 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-VG6SaizOU0iGjuaDN2KXhcNBWEOTJh6jJ7Szhg
3.120.46.24302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-VG6SaizOU0iGjuaDN2KXhcNBWEOTJh6jJ7Szhg
IP 3.120.46.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-VG6SaizOU0iGjuaDN2KXhcNBWEOTJh6jJ7Szhg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 05 Oct 2022 23:57:28 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-VG6SaizOU0iGjuaDN2KXhcNBWEOTJh6jJ7Szhg
set-cookie: tuuid=b4124fd2-1b2f-4a52-b4f1-7aad19711bc1; Expires=Tue, 03 Jan 2023 23:57:28 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1665014248; Expires=Tue, 03 Jan 2023 23:57:28 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-CCFyCizOU0iGjuaDN2KXhcNBWEMyBO3ec3Ix8w
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-CCFyCizOU0iGjuaDN2KXhcNBWEMyBO3ec3Ix8w
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-CCFyCizOU0iGjuaDN2KXhcNBWEMyBO3ec3Ix8w HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 05 Oct 2022 23:57:28 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-CCFyCizOU0iGjuaDN2KXhcNBWEMyBO3ec3Ix8w&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBOgZPmMCENUcy4nr2-VPD4IBYHVo7AQFEgEBAQFrP2NHYwAAAAAA_eMAAA&S=AQAAArUseELhEuVpLK1Jj-jS1EY; Expires=Fri, 6 Oct 2023 05:57:28 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash f60970d0c9c8770442130cd5605e06f1
1328035a72da27fa4d79713b70ab88c62c08f9d9
e47966585456ba9eab77de58af21536e716486ff276995bcdd3d376b8d36643c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 22:14:50 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fNdvxNbJ6WVDVJM4wo4r85bSC623G-mInRCWSuXROOF5eO-6bmE2RQ==
Age: 6159
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-zecJPyzOU0iGjuaDN2KXhcNBWEMz8wwDhI4EZA&C=1
185.80.36.245200 OK 43 B URL HTTP/1.1 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-zecJPyzOU0iGjuaDN2KXhcNBWEMz8wwDhI4EZA&C=1
IP 185.80.36.245:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-zecJPyzOU0iGjuaDN2KXhcNBWEMz8wwDhI4EZA&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 23:57:28 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
dpm.demdex.net/ibs:dpid=28645&dpuuid=
18.202.164.188302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 18.202.164.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v044-0f7f1a203.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=42265192792849977714574899513965867025; Max-Age=15552000; Expires=Mon, 03 Apr 2023 23:57:28 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: /p/EeyksTsI=
Content-Length: 0
Connection: keep-alive
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-VG6SaizOU0iGjuaDN2KXhcNBWEOTJh6jJ7Szhg
3.120.46.24200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-VG6SaizOU0iGjuaDN2KXhcNBWEOTJh6jJ7Szhg
IP 3.120.46.24:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-VG6SaizOU0iGjuaDN2KXhcNBWEOTJh6jJ7Szhg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:28 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-CCFyCizOU0iGjuaDN2KXhcNBWEMyBO3ec3Ix8w&verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-CCFyCizOU0iGjuaDN2KXhcNBWEMyBO3ec3Ix8w&verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-CCFyCizOU0iGjuaDN2KXhcNBWEMyBO3ec3Ix8w&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 05 Oct 2022 23:57:28 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBOgZPmMCEKJnTr7E-PmXuDgJI-zvGMsFEgEBAQFrP2NHYwAAAAAA_eMAAA&S=AQAAAnPd9ZVal2i4fUzOa4Rhcd0; Expires=Fri, 6 Oct 2023 05:57:28 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=2711&xuid=k-zN6OkyzOU0iGjuaDN2KXhcNBWENjLQgvHbBWkg&dongle=013b
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-zN6OkyzOU0iGjuaDN2KXhcNBWENjLQgvHbBWkg&dongle=013b
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-zN6OkyzOU0iGjuaDN2KXhcNBWENjLQgvHbBWkg&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:28 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 9da6a1368fefc8a90d68aa0cf6d50e69
ad85cffcd4568c991df948de63abc039a854a82c
b78c97a3959a959552c902947687a2204c59443ed2a64d7d17b81405e8f7e6fc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 23:17:47 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ACGCM6D_lEoaj6d7twDPcYf6pbZS6g19ckIogAkYzxPR5BdaVnlPuA==
Age: 2381
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
18.202.164.188200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 18.202.164.188:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v044-0250f6bca.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 9rQyIAV3Sig=
Content-Length: 59
Connection: keep-alive
sync.outbrain.com/cookie-sync?p=criteo&uid=k-so-LESzOU0iGjuaDN2KXhcNBWEMhQtzTCpcN_g
70.42.32.95200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-so-LESzOU0iGjuaDN2KXhcNBWEMhQtzTCpcN_g
IP 70.42.32.95:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-so-LESzOU0iGjuaDN2KXhcNBWEMhQtzTCpcN_g HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 23:57:28 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 6ff131fa3413681aedbc3fbf655bcb27
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 05 Oct 2022 23:57:27 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 760246
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sync-criteo.ads.yieldmo.com/sync?id=k-SzgtfCzOU0iGjuaDN2KXhcNBWEOj0gPfAtlnig&pn_id=criteo&ext=1
54.155.44.87200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-SzgtfCzOU0iGjuaDN2KXhcNBWEOj0gPfAtlnig&pn_id=criteo&ext=1
IP 54.155.44.87:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-SzgtfCzOU0iGjuaDN2KXhcNBWEOj0gPfAtlnig&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:28 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=ga65b567d89ba222dfce%7C1665014248807%7C0%7C; Domain=.yieldmo.com; Expires=Thu, 05-Oct-2023 23:57:28 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-SzgtfCzOU0iGjuaDN2KXhcNBWEOj0gPfAtlnig; Domain=ads.yieldmo.com; Expires=Thu, 05-Oct-2023 23:57:28 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash ff33dc6c29f288dcd51954766c28bf19
045d9d044b3168e2a6ea5f8f88fbe1ad1ab9a9c4
4dc7e4fa29c768b6ada4ae58ff44015d0a16706706efb8830faa88669174bdf0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 23:57:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 03:11:53 GMT
Expires: Wed, 12 Oct 2022 03:11:52 GMT
Etag: "045d9d044b3168e2a6ea5f8f88fbe1ad1ab9a9c4"
Cache-Control: max-age=529463,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 755a198e0e32b50c-OSL
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-6SKycSzOU0iGjuaDN2KXhcNBWEOxlDh5hO-BqQ
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-6SKycSzOU0iGjuaDN2KXhcNBWEOxlDh5hO-BqQ
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-6SKycSzOU0iGjuaDN2KXhcNBWEOxlDh5hO-BqQ HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=964d67700aed5545cfb91b148201b329; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Wed, 05 Oct 2022 23:57:28 GMT
content-length: 49
x-envoy-upstream-service-time: 4
server: ayl-lb-fra02
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 36f20287f1dfb86f87ff3b91a868f136
200f7efa09e3b4baa3436a205ab040ac4c9f6fab
62c46bdad16e524bb6085e32cf3751baf9c7e7adc49ba06438588bc932c23a9b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5753
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 23:57:28 GMT
Last-Modified: Wed, 05 Oct 2022 22:21:35 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
34.254.11.145204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 34.254.11.145:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 05 Oct 2022 23:57:28 GMT
set-cookie: _kuid_=PHuRztiO; Expires=Mon, 03-Apr-23 23:57:28 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n010-dub-prod.krxd.net
x-request-time: D=23 t=1665014248
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 05 Oct 2022 23:57:28 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 396944
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 8c979dfd988b251a27136a4f65fb3c97
8df65c0d592fbd90d96347b92891fa4be134e9cc
7ae72f2f9eadf7104c3d931f3dff1d3b72f28d7694ae022615e905e028017a22
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "7AE72F2F9EADF7104C3D931F3DFF1D3B72F28D7694AE022615E905E028017A22"
Last-Modified: Wed, 05 Oct 2022 20:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3211
Expires: Thu, 06 Oct 2022 00:51:00 GMT
Date: Wed, 05 Oct 2022 23:57:29 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
18.219.150.27200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 18.219.150.27:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:29 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 7851c380-4509-11ed-a079-0000ac170350
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
static.hsappstatic.net/head-dlb/static-1.234/bundle.production.js
104.17.9.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/head-dlb/static-1.234/bundle.production.js
IP 104.17.9.210:0
GET /head-dlb/static-1.234/bundle.production.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:29 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Wed, 28 Sep 2022 17:07:56 GMT
etag: W/"af59323cc47b2bf2c3eeb0ed50217041"
x-amz-server-side-encryption: AES256
x-amz-version-id: YWDtvP_ZHgEUkBeD2cA0UllWA7dKrCQJ
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 c7d9288645d6ac47a3da7aa32b297716.cloudfront.net (CloudFront)
x-amz-cf-pop: LAX50-C1
x-amz-cf-id: a5a69UqO45fse30MPHotuBymdWlkY-vuZ76S3pWVtgK9TO0LhuX9kA==
cf-cache-status: HIT
age: 627243
expires: Thu, 05 Oct 2023 23:57:29 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BufwHUq5k8acUtDbQhsFXjeoVfrAOhq1ZM6HmGfXGzp%2Fjz7TYQBWXlA41JDmUq3RpMBLq88Xl%2B9hVF9X9HKfpgapdfskj%2FoEGD6U0OpjZTS%2BwMEFnkXjEPz8%2BjXKZbJhhlaSVWzVhpI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 755a1995f8a9b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hsappstatic.net/hubspot-dlb/static-1.323/bundle.production.js
104.17.9.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/hubspot-dlb/static-1.323/bundle.production.js
IP 104.17.9.210:0
GET /hubspot-dlb/static-1.323/bundle.production.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:29 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Wed, 28 Sep 2022 19:48:57 GMT
etag: W/"935799ee774e355e90f1cbb52fd06f07"
x-amz-server-side-encryption: AES256
x-amz-version-id: Ln.tyCbqyOrowcoF3r7BJeIsSNnld2Qd
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1a8662d51ed58f0336021036df8bf88a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: VbaAAYEQbfHvxGfIkNWB2pS767L3TM1stqVz9FCSRwTlWK-lU0S3PA==
cf-cache-status: HIT
age: 554659
expires: Thu, 05 Oct 2023 23:57:29 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aC18va3q%2Bc%2FjBU%2FV0l3BWygTOPGkdPR6qCeni%2FF9gNfv97SKgV2aMVsKg12gGZjz6WQJlgZ6EnPKmtQHFoFiaQ8uRu5aNyhIUUV72WxFymmEGwgLqQiBaFhGIUE4D4r9THBehcK82mo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 755a1995f8acb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-XnnZ7CzOU0iGjuaDN2KXhcNBWENtWXQ8oo9t4-B6-ZJPQT7g
52.57.198.70200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-XnnZ7CzOU0iGjuaDN2KXhcNBWENtWXQ8oo9t4-B6-ZJPQT7g
IP 52.57.198.70:0
GET /usersync/push?partner=criteo&partnerId=k-XnnZ7CzOU0iGjuaDN2KXhcNBWENtWXQ8oo9t4-B6-ZJPQT7g HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:28 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%2277b53560-4509-11ed-ad90-87221b8c4b97%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 19 Oct 2022 23:57:28 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%2277b53560-4509-11ed-ad90-87221b8c4b97%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 19 Oct 2022 23:57:28 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%2277b53560-4509-11ed-ad90-87221b8c4b97%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 19 Oct 2022 23:57:28 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%2277b53560-4509-11ed-ad90-87221b8c4b97%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 19 Oct 2022 23:57:28 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-XnnZ7CzOU0iGjuaDN2KXhcNBWENtWXQ8oo9t4-B6-ZJPQT7g%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Wed, 19 Oct 2022 23:57:28 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
js.hs-scripts.com/20882931.js
104.17.212.204200 OK 0 B URL HTTP/2 js.hs-scripts.com/20882931.js
IP 104.17.212.204:0
GET /20882931.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:27 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2BED0699E4D25140D2380A1EE51C257F31285D54CC000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: deaf6cc5-2b93-4ff2-b0f9-0ee913ca7f99
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.brandbucket.com
last-modified: Wed, 05 Oct 2022 23:52:56 GMT
cf-cache-status: EXPIRED
expires: Wed, 05 Oct 2022 23:58:27 GMT
server: cloudflare
cf-ray: 755a198239030afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hs-banner.com/20882931.js
172.64.154.85200 OK 0 B URL HTTP/2 js.hs-banner.com/20882931.js
IP 172.64.154.85:0
GET /20882931.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:27 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: LZQJEIUGZpimRU8u1RpHftmBzqWoKddSEimv1q4KRhb1GfuXfY0vgY9GfW6WrayKUY+ihlNMN4U=
x-amz-request-id: VFEXZ99DDVNKEYDB
last-modified: Tue, 30 Aug 2022 23:09:39 GMT
etag: W/"78ffb10a4b1a78e3dbb2fbc3833d979b"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: wVTF9d3ewW5rPbyGOXdwIXoxBD_CEo_I
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
expires: Wed, 05 Oct 2022 23:53:18 GMT
cf-cache-status: HIT
age: 271
vary: Accept-Encoding
server: cloudflare
cf-ray: 755a19854916b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-YYNSIyzOU0iGjuaDN2KXhcNBWENLzR2bp2ndsA&google_error=3
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-YYNSIyzOU0iGjuaDN2KXhcNBWENLzR2bp2ndsA&google_error=3
IP 178.250.0.163:0
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-YYNSIyzOU0iGjuaDN2KXhcNBWENLzR2bp2ndsA&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:28 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 221498
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1665014100000/20882931.js
104.17.70.176200 OK 0 B URL HTTP/2 js.hs-analytics.net/analytics/1665014100000/20882931.js
IP 104.17.70.176:0
GET /analytics/1665014100000/20882931.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:27 GMT
content-type: text/javascript
x-amz-id-2: 10l02PZkotmZ9BRemVmERJuOgQX3qUVGyqevVgfettjiBZ5TEX+v39bTcBhpVjXTYBrVaQnbvIo=
x-amz-request-id: PS2C9XRTH1Y404FW
last-modified: Wed, 31 Aug 2022 14:06:50 GMT
etag: W/"ae2f524bc295017dee70bb69092256ec"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Thu, 06 Oct 2022 00:02:27 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 755a19858fb00afe-OSL
content-encoding: br
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.0.163:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:28 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 402352
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.hsappstatic.net/conversations-visitor-ui/static-1.13325/bundles/visitor.js
104.17.9.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.13325/bundles/visitor.js
IP 104.17.9.210:0
GET /conversations-visitor-ui/static-1.13325/bundles/visitor.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:29 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Sep 2022 15:00:58 GMT
etag: W/"b7314e5c2ccf63c800c5119b6c75b721"
x-amz-server-side-encryption: AES256
x-amz-version-id: alCi0ss_LCvbn4fkk1UpshgP1giGWdic
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 432d52d55ad517cddd9081b248b2f116.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: Q77OVlzgqJmZO26LrIEmmPwCdrEJgiKXviqYcia3pNOUNyBnxJRMOw==
cf-cache-status: HIT
age: 462535
expires: Thu, 05 Oct 2023 23:57:29 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wQ%2FWkajQDWeIMBj4g16O4Vh7VKsLwxXq1MFYTmphRs979i11Sxbdd%2FIOQCnLUYYkjeNTiEbfvpjPRcjFBslh5%2BhgTfKoFCO3faqbHzdKfmwAC%2FcRNJ6BOEDnEgjerKCwGXDq0t8oPA4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 755a1995f8aab4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.brandbucket.com/amp/ga?promo&p=458273&ext&dp=453821.23725.441377.386573.419320.25128.318007.204891.178810.424136.438843.406184.233062.50096.447854.113945.223894.233238.190645.213016&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
172.67.4.41200 OK 0 B URL HTTP/2 www.brandbucket.com/amp/ga?promo&p=458273&ext&dp=453821.23725.441377.386573.419320.25128.318007.204891.178810.424136.438843.406184.233062.50096.447854.113945.223894.233238.190645.213016&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 172.67.4.41:0
GET /amp/ga?promo&p=458273&ext&dp=453821.23725.441377.386573.419320.25128.318007.204891.178810.424136.438843.406184.233062.50096.447854.113945.223894.233238.190645.213016&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/names/panaforte?source=ext
AMP-Same-Origin: true
Connection: keep-alive
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:25 GMT
content-type: application/json
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
amp_run_time: 0.015054s
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 755a197c1a60b50b-OSL
X-Firefox-Spdy: h2
dynamic.criteo.com/js/ld/ld.js?a=23078
178.250.2.140200 OK 0 B URL HTTP/2 dynamic.criteo.com/js/ld/ld.js?a=23078
IP 178.250.2.140:0
GET /js/ld/ld.js?a=23078 HTTP/1.1
Host: dynamic.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:27 GMT
content-type: application/javascript; charset=utf-8
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin, Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.brandbucket.com/amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
172.67.4.41200 OK 0 B URL HTTP/2 www.brandbucket.com/amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 172.67.4.41:0
GET /amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/names/panaforte?source=ext
AMP-Same-Origin: true
Connection: keep-alive
Cookie: PHPSESSID=psurmi95k8m5eeb27amdlpk393; land_URL=1665014243%3B%2Fnames%2Fpanaforte%3Fsource%3Dext; land_referrer=1665014243%3B; bb_recent=458273
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:24 GMT
content-type: application/json
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
set-cookie: cart=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
fav=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
amp_run_time: 0.005904s
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 755a1975bea6b50b-OSL
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-eXQNPCzOU0iGjuaDN2KXhcNBWEOpFCm0Efji4g
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-eXQNPCzOU0iGjuaDN2KXhcNBWEOpFCm0Efji4g
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-eXQNPCzOU0iGjuaDN2KXhcNBWEOpFCm0Efji4g HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 23:57:28 GMT
x-fastly-to-nlb-rtt: 21475
access-control-allow-credentials: true
X-Firefox-Spdy: h2
static.hsappstatic.net/conversations-visitor-ui/static-1.11843/sass/visitor.css
104.17.9.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.11843/sass/visitor.css
IP 104.17.9.210:0
GET /conversations-visitor-ui/static-1.11843/sass/visitor.css HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 23:57:29 GMT
content-type: text/css
x-amz-replication-status: PENDING
last-modified: Mon, 15 Nov 2021 19:50:41 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: LgyvJN0nZOCplqIYlCYJJ1cibXdW_3K_
etag: W/"370a89ea102d7b437eb549729472631f"
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 ef25da0c32f918931915d02ad16016b9.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C1
x-amz-cf-id: sozNdfbKXPQ27W1Gh5_Ogz2KizWAagYWFHGF-Qbcer07dank0z_klg==
cf-cache-status: HIT
age: 1324637
expires: Thu, 05 Oct 2023 23:57:29 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hWqkgpYz8%2BwvIxyrNh9u6Y9nu%2F%2FNO2T9OQlMwRRr0XME%2BVkeBIWZcG29i7p74dNWxvFlUQccjBHLWzHcMwADAR8fXGt0sCJ7o4h6wNWdyK4yU1Iq6Ba5HgCJU2XhIw1RpdWp7aB3qj4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 755a1995e9c8b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2