tracking.tgmfr.com/aff_c?offer_id=1379&aff_id=1841&source=digital&aff_sub=100&aff_sub2=6405c48ba3b1190001a1f8da&aff_sub3=100_2049
52.16.67.239302 Found 597 B URL HTTP/1.1 tracking.tgmfr.com/aff_c?offer_id=1379&aff_id=1841&source=digital&aff_sub=100&aff_sub2=6405c48ba3b1190001a1f8da&aff_sub3=100_2049
IP 52.16.67.239:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (463)
Hash 11a1a12ac641cfdb700e96d752d66b61
eaf37b009d6d33425645099d08c087f774b7b87d
8bf46c740f609b51f6742cceac576830441a983e4298c5952f870169db193f8e
GET /aff_c?offer_id=1379&aff_id=1841&source=digital&aff_sub=100&aff_sub2=6405c48ba3b1190001a1f8da&aff_sub3=100_2049 HTTP/1.1
Host: tracking.tgmfr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 06 Mar 2023 10:46:55 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 597
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Location: https://samplesavenue.com/battery/?lastname={lastname}&firstname={firstname}&gender={gender}&email={email}&birthdate={birthdate}&phone={phone}&address={address}&postal_code={postal_code}&locality={locality}&administrative_area_level_1={state}&source=digital&aff_sub=100&aff_sub2=6405c48ba3b1190001a1f8da&aff_sub3=100_2049&hoid=10267b93ac2f34d01fd534f585509b
P3p: CP="NOI CUR OUR NOR INT"
Pragma: no-cache
Set-Cookie: enc_aff_session_1379=ENC03f27fbd41ea5b564582e2086b45a7365a589065929dc082a4fb521377e72f06c46759d3049c44646886eacf1306e31dc0f3daf8f60d99ef396c1a7cc59a9ac493c920ff6976e287d3cc2d6b108799ed5b09663653b7eddcb61d506cb4635905e61cf32437cbd48100a3494ee87f712b6febaf35408ea672797dd58ddc28f18697f8a12e877a6abf2faffb1ce31740777c235a1c04e5a28695fd0974102ee9ce4c011c3ed9; expires=Tue, 07 Mar 2023 10:46:55 GMT; path=/; SameSite=None; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImFjY2VwdF9sYW5ndWFnZSI6ImVuLVVTLGVuO3E9MC41IiwiY29ubmVjdGlvbl9zcGVlZCI6ImJyb2FkYmFuZCJ9; expires=Wed, 28 Jan 2026 21:26:55 GMT; path=/; SameSite=None; Secure
Tracking_id: 10267b93ac2f34d01fd534f585509b
X-Robots-Tag: noindex, nofollow
Access-Control-Allow-Origin: *
X-Request-Id: 778287f2de27d21ad4ac62ac12060603
Access-Control-Allow-Headers: Tune-SDK-Version
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf14baed0842431a08367ed54f2346ca
d943be8835b7e4470e3d6fbe09ac39c5464be434
a45fbc8cdddc9f43c0c3c7d73cbb2cdf3cf4c4cd2df20802925b795da5048aa4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A45FBC8CDDDC9F43C0C3C7D73CBB2CDF3CF4C4CD2DF20802925B795DA5048AA4"
Last-Modified: Sun, 05 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19535
Expires: Mon, 06 Mar 2023 16:12:30 GMT
Date: Mon, 06 Mar 2023 10:46:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c8d3b63b0ab9c679c7a50df2ba42b497
7133ccb414f7d8040d0f4a1b1df359485a76c377
4652b9b479b50208073dbff5a0b434fe6e8a1a2c5caa6365a8c5de2ff7fd9865
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4652B9B479B50208073DBFF5A0B434FE6E8A1A2C5CAA6365A8C5DE2FF7FD9865"
Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2826
Expires: Mon, 06 Mar 2023 11:34:01 GMT
Date: Mon, 06 Mar 2023 10:46:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Mar 2023 10:13:20 GMT
content-type: application/json
age: 2015
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5034bcceb9691ad6244be6045742ab53
51e77cdc92833432cd26b13f28875791a187c63c
540637d0d69c1201dcb2dd813b40e64cd07c5bd7685d46a7bad4d437a4e7aeea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "540637D0D69C1201DCB2DD813B40E64CD07C5BD7685D46A7BAD4D437A4E7AEEA"
Last-Modified: Sun, 05 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19513
Expires: Mon, 06 Mar 2023 16:12:08 GMT
Date: Mon, 06 Mar 2023 10:46:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: z1NbbaHNfvUz4rehsxf/D+F/KC8HToX4rFZH1yV05nrurDvcfGvYw4HIrx+ewII0bCi6SzayqyM=
x-amz-request-id: G117RYG7J4JJGQAG
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Mar 2023 10:34:47 GMT
age: 728
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Mar 2023 10:46:55 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash bf8fb0491ae8bb0d9bb92ccbcd643c0d
8af0bf73890d66c0135d2dae8285cc5df9685323
6132a5ca756b3d41b26ea0ba216d772a0d15b8adc8b079bf6385d612a3e96b1f
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170283
Date: Mon, 06 Mar 2023 10:46:55 GMT
Etag: "6403b5d7-1d7"
Expires: Wed, 08 Mar 2023 10:04:58 GMT
Last-Modified: Sat, 04 Mar 2023 21:19:19 GMT
Server: ECAcc (dcb/7351)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tAX-nAY87sayUwQa6Fnd19oBnicTyxf2fBaaRv_YPR7yHcBEFg05Fg==
Age: 132339
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Cache-Control, Expires, Alert, Content-Type, Pragma, Retry-After, Last-Modified, Backoff, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Mar 2023 10:12:30 GMT
age: 2065
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
samplesavenue.com/battery/?lastname={lastname}&firstname={firstname}&gender={gender}&email={email}&birthdate={birthdate}&phone={phone}&address={address}&postal_code={postal_code}&locality={locality}&administrative_area_level_1={state}&source=digital&aff_sub=100&aff_sub2=6405c48ba3b1190001a1f8da&aff_sub3=100_2049&hoid=10267b93ac2f34d01fd534f585509b
52.4.190.211302 Found 902 B URL HTTP/2 samplesavenue.com/battery/?lastname={lastname}&firstname={firstname}&gender={gender}&email={email}&birthdate={birthdate}&phone={phone}&address={address}&postal_code={postal_code}&locality={locality}&administrative_area_level_1={state}&source=digital&aff_sub=100&aff_sub2=6405c48ba3b1190001a1f8da&aff_sub3=100_2049&hoid=10267b93ac2f34d01fd534f585509b
IP 52.4.190.211:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (367)
Hash 237d22b1f8aebdc9ab53495ba1081a2d
5df39aaf719c5759a89e89255e4b1d824eb7e2db
2b57261b48a7b65f2eb90454aa380687e0abbaa07d8c0b0077e7fab018e934a9
GET /battery/?lastname={lastname}&firstname={firstname}&gender={gender}&email={email}&birthdate={birthdate}&phone={phone}&address={address}&postal_code={postal_code}&locality={locality}&administrative_area_level_1={state}&source=digital&aff_sub=100&aff_sub2=6405c48ba3b1190001a1f8da&aff_sub3=100_2049&hoid=10267b93ac2f34d01fd534f585509b HTTP/1.1
Host: samplesavenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Mon, 06 Mar 2023 10:46:55 GMT
content-type: text/html; charset=UTF-8
content-length: 902
location: https://samplesavenue.com/battery?source=digital&aff_sub=100&aff_sub2=6405c48ba3b1190001a1f8da&aff_sub3=100_2049&hoid=10267b93ac2f34d01fd534f585509b
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0; path=/; secure; httponly; samesite=none
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
samplesavenue.com/battery?source=digital&aff_sub=100&aff_sub2=6405c48ba3b1190001a1f8da&aff_sub3=100_2049&hoid=10267b93ac2f34d01fd534f585509b
52.4.190.211302 Found 414 B URL HTTP/2 samplesavenue.com/battery?source=digital&aff_sub=100&aff_sub2=6405c48ba3b1190001a1f8da&aff_sub3=100_2049&hoid=10267b93ac2f34d01fd534f585509b
IP 52.4.190.211:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e65b87444e3063c9cad4a6552d59667e
5d50ba80de7a6f15d18725acb56fc81835320a62
f1c1b27a178c7f67eb950740b9648131fa26fa0e1288043cee4f9c6988af4479
GET /battery?source=digital&aff_sub=100&aff_sub2=6405c48ba3b1190001a1f8da&aff_sub3=100_2049&hoid=10267b93ac2f34d01fd534f585509b HTTP/1.1
Host: samplesavenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
date: Mon, 06 Mar 2023 10:46:55 GMT
content-type: text/html; charset=UTF-8
content-length: 414
location: https://samplesavenue.com/battery/signup/1
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0; path=/; secure; httponly; samesite=none
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e44d064b81b73efe46cc420f8ae34410
229b99f9754fdce4f543513a0942ba63f67dc057
69b84b87493304be0456180f60ddf01f51a96fffa86fe8dddc8dd920fb262f06
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69B84B87493304BE0456180F60DDF01F51A96FFFA86FE8DDDC8DD920FB262F06"
Last-Modified: Sat, 04 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19609
Expires: Mon, 06 Mar 2023 16:13:45 GMT
Date: Mon, 06 Mar 2023 10:46:56 GMT
Connection: keep-alive
samplesavenue.com/battery/signup/1
52.4.190.211200 OK 7.2 kB URL HTTP/2 samplesavenue.com/battery/signup/1
IP 52.4.190.211:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2946), with CRLF, LF line terminators
Hash a67f8dd245b6c0c97ef64dd47e8196ec
0a9d4f9a543dac7e1d1f55a51a392978949321ea
42c7459eb6064adaf270e2f42e6a49013501b7fea8ba53b5a2289b1195c026b9
GET /battery/signup/1 HTTP/1.1
Host: samplesavenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:56 GMT
content-type: text/html; charset=UTF-8
content-length: 7211
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0; path=/; secure; httponly; samesite=none
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
samplesavenue.com/css/themes/bigbtn.css?id=29982068a89c7d0ac6f1
52.4.190.211200 OK 2.4 kB URL HTTP/2 samplesavenue.com/css/themes/bigbtn.css?id=29982068a89c7d0ac6f1
IP 52.4.190.211:0
File type ASCII text, with very long lines (12031), with no line terminators
Hash 89d3682e5a196862206833b3daaf5be5
310cf5a820abfd2f053669128077794539129260
d5fd2f3f104009cf0a0c77866b88a2614a5e5e710c5ba20933606a6bd4b8e141
GET /css/themes/bigbtn.css?id=29982068a89c7d0ac6f1 HTTP/1.1
Host: samplesavenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/battery/signup/1
Cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:56 GMT
content-type: text/css
content-length: 2361
last-modified: Mon, 06 Mar 2023 09:17:38 GMT
etag: "2eff-5f637c425d080-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.93.175101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.93.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Bunb9OLJ1KjfoIi1ju3uew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bmk4DXz75LqWXCePnSmHonVyT7E=
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash fed02b60cdde629ed9682f466ed27c05
ca8a522c9deb45527119e5d243ddb316a0e22a44
0d653eca33ea40a8bcaf632dd27528d1ff4f3dfeb6497952edd530241f1cf69e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 2c75d0e565cb4a72973a1f641470b811
429de37955e4b7785b18a83290c4e0b9075ab08d
64939f0385b16a3fa0298f4d6fac5bf1677b2ddc53df604406a5f539f0a93d42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 727 B IP 192.229.221.95:0
Hash a869ff5aee9f4de5b406e0062d01bf1f
2e3a24b1d954e7b29e819edb2f41ebd3c8e48c5f
ccdd8df40b2c21371ecab16f42a6defde2e426db4fa05474f5d410ccf7c2967c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 79438
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:56 GMT
Last-Modified: Sun, 05 Mar 2023 12:42:59 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 727
www.googletagmanager.com/gtag/js?id=
142.250.74.40200 OK 39 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=
IP 142.250.74.40:0
File type ASCII text, with very long lines (2206)
Hash 3b1bc6eb4b211b59f40d6dbf09ab8a92
06255f5aa8fa9dffbe7791fd54b7b95491065eef
4e1f315ea8d50ae3843393a08a3cb6f01f9de175b40b31bc78755184dbc832a5
GET /gtag/js?id= HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 06 Mar 2023 10:46:56 GMT
expires: Mon, 06 Mar 2023 10:46:56 GMT
cache-control: private, max-age=900
last-modified: Mon, 06 Mar 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38656
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6Lc-nzsaAAAAAEND8IZE_fKTIwq3dnZBF15CntLD
216.58.211.4200 OK 583 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Lc-nzsaAAAAAEND8IZE_fKTIwq3dnZBF15CntLD
IP 216.58.211.4:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 5181ce22ef941e51f462135b71693a6e
c6f994d6c1df98aabafb4be0aea4828f0af9786a
a67d97f6e70a81616d64bfa1c0c2c250fa254a8876dd9d3fede368a8862305d0
GET /recaptcha/api.js?render=6Lc-nzsaAAAAAEND8IZE_fKTIwq3dnZBF15CntLD HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 06 Mar 2023 10:46:56 GMT
date: Mon, 06 Mar 2023 10:46:56 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash fed02b60cdde629ed9682f466ed27c05
ca8a522c9deb45527119e5d243ddb316a0e22a44
0d653eca33ea40a8bcaf632dd27528d1ff4f3dfeb6497952edd530241f1cf69e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 88cbc6aea2d9cf4e31579e42cf911fd0
6d3ce6aff3dc9454118cfacdc7f422f3fed83ee7
437586bc85d574c31c56a0ab07b2d44a5299512fdd04cc3ec64abb3b184d485d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 60cf1c3760363de2086f1d0bfd37f242
67a9bb75da4323d3c5185f6eb519ef7aeee9fb38
2e2917eb553608588987bf9c4ca4c0338431f5296af9d1856064e77e8f026f08
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2E2917EB553608588987BF9C4CA4C0338431F5296AF9D1856064E77E8F026F08"
Last-Modified: Sun, 05 Mar 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21243
Expires: Mon, 06 Mar 2023 16:40:59 GMT
Date: Mon, 06 Mar 2023 10:46:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 60cf1c3760363de2086f1d0bfd37f242
67a9bb75da4323d3c5185f6eb519ef7aeee9fb38
2e2917eb553608588987bf9c4ca4c0338431f5296af9d1856064e77e8f026f08
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2E2917EB553608588987BF9C4CA4C0338431F5296AF9D1856064E77E8F026F08"
Last-Modified: Sun, 05 Mar 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21245
Expires: Mon, 06 Mar 2023 16:41:01 GMT
Date: Mon, 06 Mar 2023 10:46:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0fecfa96f356c1115aaa495493da0e6c
7a183e6a42feb73e8f54b8e0057a468c14a56681
6f0c8ad506551c1719e97a7b6d7ce98c1aab87c5d4c47d900599b80333b4765b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6F0C8AD506551C1719E97A7B6D7CE98C1AAB87C5D4C47D900599B80333B4765B"
Last-Modified: Sat, 04 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17760
Expires: Mon, 06 Mar 2023 15:42:56 GMT
Date: Mon, 06 Mar 2023 10:46:56 GMT
Connection: keep-alive
samplesavenue.com/ehawktalon.js
52.4.190.211200 OK 14 kB URL HTTP/2 samplesavenue.com/ehawktalon.js
IP 52.4.190.211:0
File type Unicode text, UTF-8 text, with very long lines (32046)
Hash 0f0cb03c72e2d87095aa2107ca944c75
71dcb06e8cdacdae437510d182922bb1a103530c
1f01c055b2af0e645f23d8917630c276b10e0f056208ccb12f5e238acea301b2
GET /ehawktalon.js HTTP/1.1
Host: samplesavenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/battery/signup/1
Cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:56 GMT
content-type: application/javascript
content-length: 13595
last-modified: Mon, 06 Mar 2023 09:15:55 GMT
etag: "ab47-5f637be0228c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
imgs.tagadamedia.com/contest/prod/us/75/753.png
138.199.36.10200 OK 342 kB URL HTTP/2 imgs.tagadamedia.com/contest/prod/us/75/753.png
IP 138.199.36.10:0
ASN #60068 Datacamp Limited
File type PNG image data, 750 x 350, 8-bit/color RGBA, non-interlaced\012- data
Size 342 kB (342528 bytes)
Hash 54a542186380eb114c24dfbb0c67b1b8
c776de10c93ab28b334e7253c92bb603cadf0b33
23e160c03dee7766f2c1c46edf6e1f31da72fe4bb6bcb48fda0f86bf19ab5536
GET /contest/prod/us/75/753.png HTTP/1.1
Host: imgs.tagadamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:56 GMT
content-type: image/png
content-length: 342528
server: BunnyCDN-DE1-1053
cdn-pullzone: 61945
cdn-uid: 5d127034-96a6-45e8-a482-4f40615f18db
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 09 Apr 2020 13:38:36 GMT
x-amz-id-2: kArENACeocPXbjs5d+DbnfXcPPeCjCPX8q6mqLUcPUJpAW1yJBoP/v7TEhyDO+DlaXKyj9/JMsw=
x-amz-request-id: STDBH60HGEC7GB5B
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/04/2023 20:10:17
cdn-edgestorageid: 1053
cdn-status: 200
cdn-requestid: 892490aafbfc55a392f9f79f2e0722b5
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
imgs.tagadamedia.com/contest/prod/us/75/752.png
138.199.36.10200 OK 368 kB URL HTTP/2 imgs.tagadamedia.com/contest/prod/us/75/752.png
IP 138.199.36.10:0
ASN #60068 Datacamp Limited
File type PNG image data, 580 x 690, 8-bit/color RGB, non-interlaced\012- data
Size 368 kB (367811 bytes)
Hash 2cefb29eef7b1e6d88bc29cf7c699f9d
bd68b082b9498a5f35284b34eb5790a0bc6e4710
394e14a2b912eb79a844dcca08999500d0bf53050245bb73f13a0513044d48e1
GET /contest/prod/us/75/752.png HTTP/1.1
Host: imgs.tagadamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:56 GMT
content-type: image/png
content-length: 367811
server: BunnyCDN-DE1-1053
cdn-pullzone: 61945
cdn-uid: 5d127034-96a6-45e8-a482-4f40615f18db
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 09 Apr 2020 13:38:36 GMT
x-amz-id-2: WKWwemaMm6O4Ug+DwtE3gfbcdwkhcWHHKgDNSfBT2SvfiojOKgZEa7RIJ0hRhijUaKkYyCFsQd4=
x-amz-request-id: STDEHM3DY3J07QK2
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/04/2023 20:10:17
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: e54dbdd16340d741abc501ddcdf3332b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
choices.consentframework.com/js/pa/26948/c/Ifv2D/cmp
212.83.160.162200 OK 199 kB URL HTTP/1.1 choices.consentframework.com/js/pa/26948/c/Ifv2D/cmp
IP 212.83.160.162:0
File type Unicode text, UTF-8 text, with very long lines (65513), with no line terminators
Size 199 kB (199435 bytes)
Hash a7dd3c1b8749755e2b7f0de8a2532ea4
c7ed7bf999d9f72a93c3fb891c63c19384b326d0
a47e2f03413c3a92731a9d85f094497f34fb5b9a346bab71d0e196eb2ba6000f
GET /js/pa/26948/c/Ifv2D/cmp HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Mon, 06 Mar 2023 10:46:56 GMT
Content-Type: text/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, max-age=3600
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
Content-Encoding: gzip
samplesavenue.com/css/app.css?id=34c33efe043c43862f12
52.4.190.211200 OK 47 kB URL HTTP/2 samplesavenue.com/css/app.css?id=34c33efe043c43862f12
IP 52.4.190.211:0
File type ASCII text, with very long lines (34575)
Hash 9aa7637461475ac970d678b9e5b5d4cf
8b8483265b23910e56b4eeb71f4ade305e0a9abd
dbe8b8b6bac6ddfd129d440c897d3d14cdfb9830a11da7b772567e4eac9d05c4
GET /css/app.css?id=34c33efe043c43862f12 HTTP/1.1
Host: samplesavenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/battery/signup/1
Cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:56 GMT
content-type: text/css
content-length: 47045
last-modified: Mon, 06 Mar 2023 09:17:38 GMT
etag: "3bb41-5f637c425d080-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
samplesavenue.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?d824df7eb2e268626a2dd9a6a741ac4e
52.4.190.211200 OK 78 kB URL HTTP/2 samplesavenue.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?d824df7eb2e268626a2dd9a6a741ac4e
IP 52.4.190.211:0
File type Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196\012- data
Hash d824df7eb2e268626a2dd9a6a741ac4e
0ccb2c814a7e4ca12c4778821633809cb0361eaa
9834b82ad26e2a37583d22676a12dd2eb0fe7c80356a2114d0db1aa8b3899537
GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?d824df7eb2e268626a2dd9a6a741ac4e HTTP/1.1
Host: samplesavenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://samplesavenue.com/css/app.css?id=34c33efe043c43862f12
Cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:57 GMT
content-type: font/woff2
content-length: 78268
last-modified: Mon, 06 Mar 2023 09:17:38 GMT
etag: "131bc-5f637c425d080"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
samplesavenue.com/battery/sponso
52.4.190.211200 OK 4.0 kB URL HTTP/2 samplesavenue.com/battery/sponso
IP 52.4.190.211:0
Hash 4b7e96cdfdadda969c0433cb1ae7aa9b
0d3d598b0e99ef77f86561a477b10c916cb6973b
82f6e4c843c470c57d6f4d5d7641af8df526774bd57b3c726f6097daa5511ee1
POST /battery/sponso HTTP/1.1
Host: samplesavenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/battery/signup/1
Cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:57 GMT
content-type: text/html; charset=UTF-8
content-length: 3985
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0; path=/; secure; httponly; samesite=none
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 0b2a6c80075ac612fdd0c0db8ecc7508
816bcd2a7acf9dbf93e52adbe3549a2945d4cbfb
f5b916b912ad2c776304ec956a0d8c6e383551ae5f4c9c15bdf82b2db499d02b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/Nh10qRQB5k2ucc5SCBLAQ4nA/recaptcha__en.js
216.58.211.3200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Nh10qRQB5k2ucc5SCBLAQ4nA/recaptcha__en.js
IP 216.58.211.3:0
File type HTML document, ASCII text, with very long lines (839)
Size 165 kB (164689 bytes)
Hash 7f27adb1216e4ddb02884fd68a1ec297
a33a85dfc58ca995fa184035b8fdb896866c361f
aeea36b977f073b902c2c5536b21f43e931fc2ac5ba3601db228e686457e9bc8
GET /recaptcha/releases/Nh10qRQB5k2ucc5SCBLAQ4nA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164689
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Mar 2023 08:44:27 GMT
expires: Fri, 01 Mar 2024 08:44:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Feb 2023 05:03:28 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 352950
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 0b2a6c80075ac612fdd0c0db8ecc7508
816bcd2a7acf9dbf93e52adbe3549a2945d4cbfb
f5b916b912ad2c776304ec956a0d8c6e383551ae5f4c9c15bdf82b2db499d02b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a5ffd15937290b01c6440b1c62e0521
cfc46cb33cd50e11dedfbfe641713413bc0b6749
1f4515613d7a23a0f6572298f97291e7220f99e4f83fd9f22a7654d4a228caa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F4515613D7A23A0F6572298F97291E7220F99E4F83FD9F22A7654D4A228CAA2"
Last-Modified: Sun, 05 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14548
Expires: Mon, 06 Mar 2023 14:49:25 GMT
Date: Mon, 06 Mar 2023 10:46:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a5ffd15937290b01c6440b1c62e0521
cfc46cb33cd50e11dedfbfe641713413bc0b6749
1f4515613d7a23a0f6572298f97291e7220f99e4f83fd9f22a7654d4a228caa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F4515613D7A23A0F6572298F97291E7220F99E4F83FD9F22A7654D4A228CAA2"
Last-Modified: Sun, 05 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14548
Expires: Mon, 06 Mar 2023 14:49:25 GMT
Date: Mon, 06 Mar 2023 10:46:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5642d287-8c21-49d9-9a11-2bfa6ee1a2f2.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5642d287-8c21-49d9-9a11-2bfa6ee1a2f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab3964124c43755909f9891e162d3c7
c912f5fcb7985842877c76686c6bcd356b5977ff
34627773ad1d710b054986c725eb8e8a4c7d8fbac31e6724e83217dc06cfaaad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5642d287-8c21-49d9-9a11-2bfa6ee1a2f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10332
x-amzn-requestid: bcb59433-4093-4bb3-b6d3-69f5489d5ef9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BU6iVE07oAMF28A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64050adb-757a083b7be05f886d8d6edc;Sampled=0
x-amzn-remapped-date: Sun, 05 Mar 2023 21:34:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: VQHHejqNu7eIU2c9SrcpSjyZ0h9jEHoz3QdUEy8-5vJ8n-PTe5IZPw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Mar 2023 22:00:32 GMT
age: 45985
etag: "c912f5fcb7985842877c76686c6bcd356b5977ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4726917eabc29a977873ad26e264e70d
4619a0418ee08d6618ead537f31823c98f355b5a
d3c6b43d46ccff30f0003a063b6c4c78d4a782262bfdeb138e6c015555ce2dcb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3381
x-amzn-requestid: 8b89e7ab-b8b3-45cd-af3a-cc419e61f1fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A-PNPFynoAMFn8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fbf8ba-616bedc230d1c2b13a09beae;Sampled=0
x-amzn-remapped-date: Mon, 27 Feb 2023 00:26:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 20gfRWuEZKeWijeUdUr10sCx8uqri-zpK-KTXBJrZaQOm3V1Gk8KQw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 0ec9ddba08fcd99386924593dbdbd44a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Mar 2023 11:26:52 GMT
age: 84005
etag: "4619a0418ee08d6618ead537f31823c98f355b5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd016e3e-cec7-484b-8151-f72ea54dc958.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd016e3e-cec7-484b-8151-f72ea54dc958.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49dbeca46074e859a5a2958fdec9b28b
c649916591826b4db490b98cbe530533818daf0d
cb33caa142deb6570ce9e8a382d7fce45ba0101cdbc65ee6319dd23693f22086
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd016e3e-cec7-484b-8151-f72ea54dc958.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7250
x-amzn-requestid: 5ae814e4-592b-4811-a724-d807b69ebd2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BU6hUHslIAMF26w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64050ad4-051cb0632863689209d81d45;Sampled=0
x-amzn-remapped-date: Sun, 05 Mar 2023 21:34:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: zlrwir3_2rfYf_Sr-2fQok_Sm2sLNVZfELD1DR3vdFL3avdVcsXJ4Q==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Mar 2023 21:56:28 GMT
age: 46229
etag: "c649916591826b4db490b98cbe530533818daf0d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa169d27-d4e2-4120-996d-3e708709465a.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa169d27-d4e2-4120-996d-3e708709465a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 71c25a364e8787b187bb8678670dec28
0c31c92a548f4181a72ddd9bd0b2ee56e31b76f3
41063e64c3e5d29e2eea021ed09244fbae7cdda30c5fa31405d6e68146540c59
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa169d27-d4e2-4120-996d-3e708709465a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9916
x-amzn-requestid: e1fcb47d-2282-470d-8ec1-0f7e9cf4ab03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BU6QPG2QIAMF9Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64050a67-2f079e4a1caffe1d74498de3;Sampled=0
x-amzn-remapped-date: Sun, 05 Mar 2023 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: URdGtJbmZGOJVz8P62RSCsCMFNTCudyvXH1VKrTwoajYKwjL0sYQYQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 f268a165a18929fd0a24a3189fbd16b2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Mar 2023 21:43:08 GMT
age: 47029
etag: "0c31c92a548f4181a72ddd9bd0b2ee56e31b76f3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7c2629-88f9-4777-8c3c-14823e639561.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7c2629-88f9-4777-8c3c-14823e639561.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a1ce501327ab258204200a8e3bb733eb
2ef1f390964884ca88df9a497cc632cbb4c23855
84387da5bff97cddf26ca1628d2c69fb32788b8d29ff81a7980d914fb01b2daf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7c2629-88f9-4777-8c3c-14823e639561.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10289
x-amzn-requestid: 3b44d440-b211-4814-bd52-01ee571c020c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BU7KvEoaoAMF9Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64050bde-331469ae5532332d104a8cdb;Sampled=0
x-amzn-remapped-date: Sun, 05 Mar 2023 21:38:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 54GEgQNbvUfktYhEnOTyUSOjQbHxhD8oXSg6gx3KXZ3sUoSPd1qkHQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Mar 2023 21:56:32 GMT
age: 46225
etag: "2ef1f390964884ca88df9a497cc632cbb4c23855"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ee48de7-1dfe-4e91-af0b-f50312bf4404.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ee48de7-1dfe-4e91-af0b-f50312bf4404.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92e50e79e10388a9ea054a927259fe22
10fdce7fd570f8177fb332155ddad96b5944c3fe
6885bd129d739cb6f350963dcbfc8af306a3837a865b1eb2e3a5fa984926a0e5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ee48de7-1dfe-4e91-af0b-f50312bf4404.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7402
x-amzn-requestid: ac2da54b-0105-45cd-b420-7f3cce50eb04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BU6hUHE1IAMFjzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64050ad4-1e990cb1055922d27a1da822;Sampled=0
x-amzn-remapped-date: Sun, 05 Mar 2023 21:34:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: D881JeluMP0LlDNm4LTmHAJCzr02HnLUMLIHpw4Nhf6-n0SXMmO4RA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Mar 2023 21:52:10 GMT
age: 46487
etag: "10fdce7fd570f8177fb332155ddad96b5944c3fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 727 B IP 192.229.221.95:0
Hash a305d7fb5281504dacda5f9b6d02d74b
bb5ab768be659ff07d9009420a45c8bbb2d60c89
08b5314adccfa4c9075936d503abe6ca6efb359f2c77f6d07e1e2df0e9324dd0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 76165
Cache-Control: max-age=86386
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:57 GMT
Etag: "6403498e-2d7"
Expires: Tue, 07 Mar 2023 10:46:43 GMT
Last-Modified: Sat, 04 Mar 2023 13:37:18 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 727
js.cookieless-data.com/GS.d?pa=26948&uf_bday=&uf_gender=&cmp=0&u=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1&r=&rand=1678099617473&gdpr=1&gdpr_consent=CPoM8IAPoM8IABcAIBENC6CgAAAAAH_AABpwIyAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEZACTDVuIAuzLHAm0DCKBECMKwkIgFABBQDC0QEADg4KdlYBPrCJAAgFAEYEQIcAUYEAgAAEgCQiACQIsEAAAIgEAAIAEAiEABAwCCgAsBAIAAQDQMQAoABAkAMiAiKUwICoEggJbKhBKC6Q0wgCrLACgERsFAAiCQAVgACAsHAMESAlYsECTEG0QAAAAAAAA&globalscope=false&cookieless_optout=0&tbp=true
51.15.145.115200 OK 0 B URL HTTP/1.1 js.cookieless-data.com/GS.d?pa=26948&uf_bday=&uf_gender=&cmp=0&u=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1&r=&rand=1678099617473&gdpr=1&gdpr_consent=CPoM8IAPoM8IABcAIBENC6CgAAAAAH_AABpwIyAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEZACTDVuIAuzLHAm0DCKBECMKwkIgFABBQDC0QEADg4KdlYBPrCJAAgFAEYEQIcAUYEAgAAEgCQiACQIsEAAAIgEAAIAEAiEABAwCCgAsBAIAAQDQMQAoABAkAMiAiKUwICoEggJbKhBKC6Q0wgCrLACgERsFAAiCQAVgACAsHAMESAlYsECTEG0QAAAAAAAA&globalscope=false&cookieless_optout=0&tbp=true
IP 51.15.145.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /GS.d?pa=26948&uf_bday=&uf_gender=&cmp=0&u=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1&r=&rand=1678099617473&gdpr=1&gdpr_consent=CPoM8IAPoM8IABcAIBENC6CgAAAAAH_AABpwIyAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEZACTDVuIAuzLHAm0DCKBECMKwkIgFABBQDC0QEADg4KdlYBPrCJAAgFAEYEQIcAUYEAgAAEgCQiACQIsEAAAIgEAAIAEAiEABAwCCgAsBAIAAQDQMQAoABAkAMiAiKUwICoEggJbKhBKC6Q0wgCrLACgERsFAAiCQAVgACAsHAMESAlYsECTEG0QAAAAAAAA&globalscope=false&cookieless_optout=0&tbp=true HTTP/1.1
Host: js.cookieless-data.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Mon, 06 Mar 2023 10:46:57 GMT
Content-Length: 0
Connection: keep-alive
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
X-Xss-Protection: 0
Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
P3p: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
choices.consentframework.com/api/v1/public/user-action
212.83.160.162200 OK 0 B URL HTTP/1.1 choices.consentframework.com/api/v1/public/user-action
IP 212.83.160.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/public/user-action HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://samplesavenue.com/
Origin: https://samplesavenue.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Mon, 06 Mar 2023 10:46:57 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
choices.consentframework.com/api/v1/public/user-action
212.83.160.162200 OK 0 B URL HTTP/1.1 choices.consentframework.com/api/v1/public/user-action
IP 212.83.160.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v1/public/user-action HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://samplesavenue.com/
Content-Type: application/json
Origin: https://samplesavenue.com
Content-Length: 159
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Mon, 06 Mar 2023 10:46:57 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
imgs.tagadamedia.com/media/us/24/1549639292222-2483.jpg
138.199.36.10200 OK 7.5 kB URL HTTP/2 imgs.tagadamedia.com/media/us/24/1549639292222-2483.jpg
IP 138.199.36.10:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Hash a661f8fabf91b0638343c662d823b4b5
a139a2d2ab8a7660549d0c4232eb5730f238980f
b80d2f7365c105563dfb4b9daa9fe16b40b985dd62d96893f465f445f112b440
GET /media/us/24/1549639292222-2483.jpg HTTP/1.1
Host: imgs.tagadamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:57 GMT
content-type: image/jpeg
content-length: 7517
server: BunnyCDN-DE1-1053
cdn-pullzone: 61945
cdn-uid: 5d127034-96a6-45e8-a482-4f40615f18db
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Wed, 21 Dec 2022 13:52:44 GMT
x-amz-id-2: j7O2yAnpnSC9xzMq41PKGTuX78/LGcEZnc1WKG7h7hZy1foJuqHVti4HeIbYPJ+ZahX8TD3fi6s=
x-amz-request-id: Z05YDRDF5AKZZTP8
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 12/21/2022 13:52:43
cdn-edgestorageid: 1049
cdn-status: 200
cdn-requestid: 4c2fd9a3c035ec1dc4482a38a3ac3241
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
imgs.tagadamedia.com/media/us/24/sq-navigation-logo-2491.png
138.199.36.10200 OK 20 kB URL HTTP/2 imgs.tagadamedia.com/media/us/24/sq-navigation-logo-2491.png
IP 138.199.36.10:0
ASN #60068 Datacamp Limited
File type PNG image data, 380 x 62, 8-bit/color RGBA, interlaced\012- data
Hash 0ad52d262a1918e5954c63ec5d7602f2
f40365b54205b44ef5eedb22843d46a33d3f1d09
fc3b76a1878062c3b1be9229be7432df871bd0448a395d7baa995171182f21bd
GET /media/us/24/sq-navigation-logo-2491.png HTTP/1.1
Host: imgs.tagadamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:57 GMT
content-type: image/png
content-length: 20261
server: BunnyCDN-DE1-1053
cdn-pullzone: 61945
cdn-uid: 5d127034-96a6-45e8-a482-4f40615f18db
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Wed, 28 Dec 2022 16:12:25 GMT
x-amz-id-2: +d4xeWrWjgVqYAYcsJ/1uIRvMVt9+IgWMFE65FBJWx9L/mdIRyD6EjuK8h7H0Lox+5hfadJYZ5M=
x-amz-request-id: 8804MRBPHN4V4E2D
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 12/28/2022 16:12:25
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: a20c745562134dd924559e6876ca65db
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
imgs.tagadamedia.com/media/us/24/321615-avatar-image-1564430400-2499.jpeg
138.199.36.10200 OK 127 kB URL HTTP/2 imgs.tagadamedia.com/media/us/24/321615-avatar-image-1564430400-2499.jpeg
IP 138.199.36.10:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2552x2550, components 3\012- data
Size 127 kB (127007 bytes)
Hash 2c664091ca42af8c3c02921ad2442a2f
cf2e8aa31d208b80b5d157f1a01f628020920fca
aae53fe7dfc7ac63c6ada0527f77980c04751803be4ba4b6efc463f2a3a61c6f
GET /media/us/24/321615-avatar-image-1564430400-2499.jpeg HTTP/1.1
Host: imgs.tagadamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:57 GMT
content-type: image/jpeg
content-length: 127007
server: BunnyCDN-DE1-1053
cdn-pullzone: 61945
cdn-uid: 5d127034-96a6-45e8-a482-4f40615f18db
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Wed, 11 Jan 2023 16:17:51 GMT
x-amz-id-2: uckZy0h7NFIphN+VA6gclTpi60tddCM4BLvwdR/W+liFMS1SpqMsJeS7Prtphj7kPTBZeogS+pI=
x-amz-request-id: AS6X2B69JEPG2SVP
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 01/11/2023 16:17:50
cdn-edgestorageid: 1081
cdn-status: 200
cdn-requestid: 2e8e640278681d4706ddd83ac8bc6a4b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
imgs.tagadamedia.com/media/us/25/telechargement-15-2549.png
138.199.36.10200 OK 2.0 kB URL HTTP/2 imgs.tagadamedia.com/media/us/25/telechargement-15-2549.png
IP 138.199.36.10:0
ASN #60068 Datacamp Limited
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash bc18975a1d14ef34bdb59a0d8d3593e2
1b6477dfe0dd019ad579b1ca46b38385e98b729d
999a087a68603d56584c98e225dd7da048ae1dd0178338e39e162891003a1be2
GET /media/us/25/telechargement-15-2549.png HTTP/1.1
Host: imgs.tagadamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:57 GMT
content-type: image/png
content-length: 1997
server: BunnyCDN-DE1-1053
cdn-pullzone: 61945
cdn-uid: 5d127034-96a6-45e8-a482-4f40615f18db
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 09 Feb 2023 14:59:51 GMT
x-amz-id-2: zto6oirVi5QdKxvTcxUYo5qB4xoxc7q2KatXswQ2owZf9Xjn/jn6Db9WcHLjWDub6cMEq1jYjQQ=
x-amz-request-id: D1XN09FT6K0ZX4MK
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 02/09/2023 14:59:50
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: dab5aca2afacac019fcf4999d0ffea11
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/sdk.js?sdkid=BRK97NBJ857475I0MEDG
23.36.79.32200 OK 1.7 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/sdk.js?sdkid=BRK97NBJ857475I0MEDG
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2673)
Hash 0ec057da2a0660ad626e00412faefca0
6c77266c31a88a8eae23c439998a2b3aa1a27995
e390f8f3f7ab02e2c0a5d364fcfed602e48a684eb5a5a52e7804fed5a24c8244
GET /i18n/pixel/sdk.js?sdkid=BRK97NBJ857475I0MEDG HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230306104658D447237D464BFB1FA5DA
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60787dee798e7afc9c5500f386c65d6ca1cdfc00380744f4eb5519d89d107c6df419d6012e99a0e32639cb8b924b32d8798235ce6bd456c4fcfa2234ac651594e93a8ca8bb8391636f4dcca59ddab34cc3
content-encoding: gzip
expires: Mon, 06 Mar 2023 10:46:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 06 Mar 2023 10:46:58 GMT
content-length: 1717
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
set-cookie: _ttp=2MdZraJAQI6pIBinQbDCGqQzLQs; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=101
x-origin-response-time: 101,23.36.79.28
x-akamai-request-id: 6675fb03
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash 653f1077965f4734dfedbf7ed5aa304a
cf54d38db4c49f36876ec8ca5f05d7d31c92464e
1a54490a6702d4e6573581e872606e47c8b431a445df4ed6eda5b1df60312e02
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=86407
Date: Mon, 06 Mar 2023 10:46:58 GMT
Etag: "64044f04-1d7"
Expires: Tue, 07 Mar 2023 10:47:05 GMT
Last-Modified: Sun, 05 Mar 2023 08:12:52 GMT
Server: ECAcc (nya/789D)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -Pt6FoSN-TmOshjouV-LRkunkDtM8M5t3Q9sIR9YBFyIMPlfp4Adig==
Age: 9253
region1.google-analytics.com/g/collect?v=2&tid=G-7NEF16H3WB>m=45je3310&_p=822026437&gcs=G100&cid=2112024163.1678099618&ul=en-us&sr=1280x1024&_s=1&sid=1678099617&sct=1&seg=0&dl=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1&dt=Samples%20Avenue%20%3A%20Battery&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7NEF16H3WB>m=45je3310&_p=822026437&gcs=G100&cid=2112024163.1678099618&ul=en-us&sr=1280x1024&_s=1&sid=1678099617&sct=1&seg=0&dl=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1&dt=Samples%20Avenue%20%3A%20Battery&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7NEF16H3WB>m=45je3310&_p=822026437&gcs=G100&cid=2112024163.1678099618&ul=en-us&sr=1280x1024&_s=1&sid=1678099617&sct=1&seg=0&dl=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1&dt=Samples%20Avenue%20%3A%20Battery&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://samplesavenue.com
date: Mon, 06 Mar 2023 10:46:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.trustedform.com/trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16780996178300.8766944881861217
35.175.162.169301 Moved Permanently 134 B URL HTTP/2 api.trustedform.com/trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16780996178300.8766944881861217
IP 35.175.162.169:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16780996178300.8766944881861217 HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: awselb/2.0
date: Mon, 06 Mar 2023 10:46:58 GMT
content-type: text/html
content-length: 134
location: https://cdn.trustedform.com:443/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16780996178300.8766944881861217
X-Firefox-Spdy: h2
choices.consentframework.com/api/v1/public/consent-string
212.83.160.162200 OK 0 B URL HTTP/1.1 choices.consentframework.com/api/v1/public/consent-string
IP 212.83.160.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/public/consent-string HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://samplesavenue.com/
Origin: https://samplesavenue.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Mon, 06 Mar 2023 10:46:58 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 21bc7d19b85212954bd97a826883dde6
6e26f565b84766c41d45dd9fc9d89f5206ccc9ba
e34750e6e2434f3659b67c93c2106fe6205a66c38186bcf6aaa0142e48f92324
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=701913453.1678099618&url=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1>m=45He3310n81P645S3F
142.250.74.98200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=701913453.1678099618&url=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1>m=45He3310n81P645S3F
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /pagead/landing?gcs=G100&gcd=G100&rnd=701913453.1678099618&url=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1>m=45He3310n81P645S3F HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Mar 2023 10:46:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
choices.consentframework.com/api/v1/public/consent-string
212.83.160.162200 OK 237 B URL HTTP/1.1 choices.consentframework.com/api/v1/public/consent-string
IP 212.83.160.162:0
File type JSON data\012- , ASCII text, with very long lines (453), with no line terminators
Hash df25013257a0e635443934e0f700731c
1a691a76264c833e6a293330cbba79dbcd50ed19
34e14781b6795258a64b86fd79b648320175f350fc29a15300e26dff23f89667
POST /api/v1/public/consent-string HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://samplesavenue.com/
Content-Type: application/json
Origin: https://samplesavenue.com
Content-Length: 526
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Mon, 06 Mar 2023 10:46:58 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 21bc7d19b85212954bd97a826883dde6
6e26f565b84766c41d45dd9fc9d89f5206ccc9ba
e34750e6e2434f3659b67c93c2106fe6205a66c38186bcf6aaa0142e48f92324
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 05497205f054f2d3d7fe0c725c5b2abc
7004ff35c502e3a79c103c6684e13b98bf4e2600
fe1d1b49919dd2ff2090e47c9dee9dc2e72deef35b08f0ee0e28a60fa036e907
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 60960
Cache-Control: max-age=110426
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:58 GMT
Etag: "6403e2dc-1d7"
Expires: Tue, 07 Mar 2023 17:27:24 GMT
Last-Modified: Sun, 05 Mar 2023 00:31:24 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 43d943c7499b27a8ef3972fa070f6756
59303c79335aa0a9f529c0f6166f99c3e650088c
96ab29f531694f1b8e5d2f031e16581fe1052636fb32c5cd96d55b824d6539b2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: FYPxdbeSKX0K/VU5uRpQuossHHUDLDnNQ3DM98RjknT3S/HfHSpDY1+ybkRsTIGKCVEME3Nu0yQwJhDqA8OGeg==
priority: u=3,i
content-length: 27907
x-fb-trip-id: 1679558926
date: Mon, 06 Mar 2023 10:46:58 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
create.lidstatic.com/campaign/beb516a1-60ed-00cc-73eb-a6a318cfa8e9.js?snippet_version=2
172.67.41.229200 OK 106 kB URL HTTP/2 create.lidstatic.com/campaign/beb516a1-60ed-00cc-73eb-a6a318cfa8e9.js?snippet_version=2
IP 172.67.41.229:0
File type Unicode text, UTF-8 text, with very long lines (32003)
Size 106 kB (105981 bytes)
Hash 28c115c9b3c5b2d1c3b3a08a492014ac
0d6ee880208692dec3ee40ab16ec163549f6f14f
8ebbaeee986ad2c118b88707064a4abfbffa1a3d0d20a39eb7e9ecac4ed738d5
GET /campaign/beb516a1-60ed-00cc-73eb-a6a318cfa8e9.js?snippet_version=2 HTTP/1.1
Host: create.lidstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:58 GMT
content-type: text/javascript
x-amz-id-2: nDxqKmRtJXbL+5SxoKJXjK/ixM7+0XX+ukmFXN//Dh8cFqPDkcnYqpTdk71aRh91HO+Gpo4WjF8=
x-amz-request-id: 7Y5WBK8Y0M4GZBM2
x-amz-replication-status: COMPLETED
last-modified: Fri, 12 Nov 2021 01:06:02 GMT
etag: W/"a26a2a7efa03d037874965870726da4a"
cache-control: max-age=1800
x-amz-version-id: C0ArZgU5VyyGfHMzwlfuO_22EOgyVHi9
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a3a04941cf9b518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 05497205f054f2d3d7fe0c725c5b2abc
7004ff35c502e3a79c103c6684e13b98bf4e2600
fe1d1b49919dd2ff2090e47c9dee9dc2e72deef35b08f0ee0e28a60fa036e907
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 60960
Cache-Control: max-age=110426
Content-Type: application/ocsp-response
Date: Mon, 06 Mar 2023 10:46:58 GMT
Etag: "6403e2dc-1d7"
Expires: Tue, 07 Mar 2023 17:27:24 GMT
Last-Modified: Sun, 05 Mar 2023 00:31:24 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Mar 2023 21:48:03 GMT
expires: Fri, 01 Mar 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 305935
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.pushmaster-cdn.xyz/scripts/publishers/616c889db7494c0008691a0e/SDK.js
172.67.72.27200 OK 21 kB URL HTTP/2 cdn.pushmaster-cdn.xyz/scripts/publishers/616c889db7494c0008691a0e/SDK.js
IP 172.67.72.27:0
File type ASCII text, with very long lines (1621)
Hash 3cadca1fb9c2f00517286753e044ac2f
5d0bd2135528890186292f2534d1f2345610dbd3
6e83446f2c4afdf7ce27206b00cb922ded9727151413dd85ea87cb210ab0ed86
GET /scripts/publishers/616c889db7494c0008691a0e/SDK.js HTTP/1.1
Host: cdn.pushmaster-cdn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:57 GMT
content-type: application/javascript
x-amz-id-2: K2Nwi49qjjnW7MDyVf+/urTguKGaLRoSSbScsMpjomFk102k2o6JoqEzOMkhshIvuwhHeYM4ewk=
x-amz-request-id: MRE73ZWPV52R28YP
last-modified: Thu, 07 Jul 2022 18:16:14 GMT
x-amz-version-id: 3iDpsZiRXmLsrKEtZ1pm4Wp_k22Zwbi1
etag: W/"e239a1a8fb10138990c101e3957c013d"
cache-control: max-age=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VCgWa9vrF%2BAbb8ttx6SweshIeRkjqz9bZf%2BTmSFqyez%2FOxEhaY0Yi0LCFcSmlgdL0%2BbsML4MByIMgOK1o6wIMevPas9aeEiLrPqVg1rcAqbzke5ztW38uGJQSFFZfGWVKmC7M11476w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a3a0493f83db50c-OSL
content-encoding: br
X-Firefox-Spdy: h2
samplesavenue.com/sw.js
52.4.190.211200 OK 191 B IP 52.4.190.211:0
Hash ba2e477c78d6ddfb80c11d6112d6f548
fb4fd2a17d23eee5f97f2de511ff96b678c44073
cce04e75f1e2cd6284b7974f87fe1bedc8ba1ef71258671ccf14c115fb7fe75f
GET /sw.js HTTP/1.1
Host: samplesavenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:58 GMT
content-type: application/x-javascript
content-length: 191
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0; path=/; secure; httponly; samesite=none
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_cab4d.js
23.36.79.32200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_cab4d.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 681bc25d1e648965a9374cc7da238fd5
bb973302d1b656e343013fe741d0d54bfe33b15e
2d381181d954e35610fb06daba8df86d7abb4b823e87de97276e0bd81af03669
GET /i18n/pixel/static/identify_cab4d.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Cookie: _ttp=2MdZraJAQI6pIBinQbDCGqQzLQs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202302211453357ED32E9CB4A234CC4054
x-tt-trace-host: 015ddd7329836f23ed04aa0dd6eae000e61dfb35b73ddd0ea6d3f361692c7f8399f836da754548664a9d56a317cca937197d586aef26ea8efc3380c784f4b6030804835a6b84edf6ba964a401008dbe475da2a7be38cb7b795f8af41aeb5068142
content-encoding: gzip
date: Mon, 06 Mar 2023 10:46:59 GMT
content-length: 30779
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 66760572
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash f6b5e9b2fc5092d66a5dc55cc65595cd
adaf03ccc7adbedb6114f65091ff10d7bc036be3
5cbc5efdc4fc9fa7dda17199446123ebee022461b0dbf94b019ec6bf876fd717
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137350
Date: Mon, 06 Mar 2023 10:46:59 GMT
Etag: "6403dd0d-1d7"
Expires: Wed, 08 Mar 2023 00:56:09 GMT
Last-Modified: Sun, 05 Mar 2023 00:06:37 GMT
Server: ECAcc (nya/1C3C)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uecaKqEayx0EsvoC2bQGRA4L-akVTkj6mktfItSvEiq9GR4ZJgtEvA==
Age: 89372
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 790
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Cookie: _ttp=2MdZraJAQI6pIBinQbDCGqQzLQs
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202303061046594471871E34E5AA0EC7AA
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60787dee798e7afc9c5500f386c65d6ca1017a62155cfc5d688040557d9f3b94d62787688342ea28e89b43f4262d1f66b3df24152f2d109b1fb07030103fe62a22e3a5591e956a117fae62d734e4746be4
expires: Mon, 06 Mar 2023 10:46:59 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 06 Mar 2023 10:46:59 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=15, cdn-cache; desc=MISS, edge; dur=5, origin; dur=111
x-origin-response-time: 112,23.36.79.28
x-akamai-request-id: 667605a7
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash 2c7353d0c0c616c00c9767927431eebf
7cfecf0e029a09d7051c897617780d30f27e9dec
9300b0394fe56fc63ee3b4fadd86d52083f4a8990a19782b3dc7cbf010fe5cc0
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=86386
Date: Mon, 06 Mar 2023 10:46:59 GMT
Etag: "6403aeac-1d7"
Expires: Tue, 07 Mar 2023 10:46:45 GMT
Last-Modified: Sat, 04 Mar 2023 20:48:44 GMT
Server: ECAcc (bsa/EA9D)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kTWbqmbKYXVwyaolgUiBezzyBk72sOdquVVTnKz5lfMAsWJ0rkd69Q==
Age: 50281
trc.pushnami.com/api/push/track
3.221.87.162204 No Content 0 B URL HTTP/2 trc.pushnami.com/api/push/track
IP 3.221.87.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/push/track HTTP/1.1
Host: trc.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: key
Referer: https://samplesavenue.com/
Origin: https://samplesavenue.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 06 Mar 2023 10:46:59 GMT
access-control-allow-origin: *
access-control-allow-methods: POST
access-control-allow-headers: Accept,Authorization,Content-Type,If-None-Match,key
access-control-max-age: 86400
access-control-expose-headers: WWW-Authenticate,Server-Authorization
cache-control: no-cache
X-Firefox-Spdy: h2
trc.pushnami.com/api/push/track
3.221.87.162200 OK 2 B URL HTTP/2 trc.pushnami.com/api/push/track
IP 3.221.87.162:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /api/push/track HTTP/1.1
Host: trc.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://samplesavenue.com/
content-type: application/x-www-form-urlencoded
key: 5cc0bb93e04a8c20b5240228
Origin: https://samplesavenue.com
Content-Length: 70
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:59 GMT
content-type: text/html; charset=utf-8
content-length: 2
access-control-allow-origin: *
access-control-expose-headers: WWW-Authenticate,Server-Authorization
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16780996178300.8766944881861217
54.230.111.103200 OK 3.5 kB URL HTTP/2 cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16780996178300.8766944881861217
IP 54.230.111.103:0
Hash cc900a1c4b0c933c8551d416ad734566
076bbdcdc0b14e4333c9a18671f480ca212b9293
5279c9072d1e7c36e11b24c1b18ce0856adab9d352ec7d08624ec9c4843b4982
GET /bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16780996178300.8766944881861217 HTTP/1.1
Host: cdn.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://samplesavenue.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Mar 2023 10:47:00 GMT
last-modified: Fri, 24 Feb 2023 16:04:14 GMT
x-amz-version-id: oadcnJCg2vYrfrS_vSmPkc6nBoYFDxSV
etag: W/"1b4d8abad5e0668a237e388577c6a93c"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: br8mfHKusO2DDEbmu7nsK230vGI_hIQ-x-WIppUymWYW3lbpTNqO0A==
X-Firefox-Spdy: h2
pwrkr.s3.amazonaws.com/push-worker-sdk-TAGA2958.js
54.231.204.217200 OK 222 B URL HTTP/1.1 pwrkr.s3.amazonaws.com/push-worker-sdk-TAGA2958.js
IP 54.231.204.217:0
Hash c86f20d2163476bfa9d8c8ddb4d9ab5b
c79017b2c0c8a134d646d43eab957c1a0dae504e
88535ddc6ee6525237614935cf4a2a3ac15797263a4468a65082ab4b788d94c1
GET /push-worker-sdk-TAGA2958.js HTTP/1.1
Host: pwrkr.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: LQo79VHKzqZvjXMkfS1zFT/KJPz5VYP4OFyJ2lK1hm9SHxLniyj8x19VEGgGH5cO6l5kfke1PH4=
x-amz-request-id: Y59GZ8BZXJSQP3GD
Date: Mon, 06 Mar 2023 10:47:00 GMT
Last-Modified: Wed, 30 Mar 2022 18:54:24 GMT
ETag: "c86f20d2163476bfa9d8c8ddb4d9ab5b"
x-amz-version-id: qXUXhRDuiTMcAHML6mtY_O8jIrrAfEra
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 222
s.yimg.com/wi/config/10015244.json
87.248.119.252200 OK 22 B URL HTTP/2 s.yimg.com/wi/config/10015244.json
IP 87.248.119.252:0
ASN #203220 Yahoo! UK Services Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash 14293ad9ad0ffaf9f7a3acf1b0793b66
718dea6b65b9516e5e33fac53451056397deb255
73a1b438b0221511fb3dde18e019f5ab045811b2248d25d424e40980c683a9dc
GET /wi/config/10015244.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: Y59TAVDG4GSJXDKF
x-amz-id-2: EOT0oGSblDlc9O5JVdqS2zgJQqItkFEI3MJ+vs7xRv+irjtWCBZo7APKmMF2iP3Ttyv97EpjZzU=
content-type: application/json
date: Mon, 06 Mar 2023 10:46:59 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
age: 0
content-encoding: gzip
content-length: 22
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
d2m2wsoho8qq12.cloudfront.net/iframe.html?token=17A12B85-E485-AF72-71F4-22F5D9B2447B&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=BEB516A1-60ED-00CC-73EB-A6A318CFA8E9&lac=A223F9AF-E7A0-7D87-DD28-D0C442307BFE
143.204.42.159200 OK 1.4 kB URL HTTP/1.1 d2m2wsoho8qq12.cloudfront.net/iframe.html?token=17A12B85-E485-AF72-71F4-22F5D9B2447B&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=BEB516A1-60ED-00CC-73EB-A6A318CFA8E9&lac=A223F9AF-E7A0-7D87-DD28-D0C442307BFE
IP 143.204.42.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ef825b8a88a51cd76a51d08dfc1d4f99
5bf247bd91a4be0c3b76a70ec8e5e462de0e9f3b
2ac453ec379c3e7b0fa69b810ecf2d6771de3e7611a2599a20f8e8ce9a240af1
GET /iframe.html?token=17A12B85-E485-AF72-71F4-22F5D9B2447B&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=BEB516A1-60ED-00CC-73EB-A6A318CFA8E9&lac=A223F9AF-E7A0-7D87-DD28-D0C442307BFE HTTP/1.1
Host: d2m2wsoho8qq12.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 14 Feb 2023 20:01:19 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Encoding: gzip
Date: Sun, 05 Mar 2023 20:30:36 GMT
ETag: W/"63ebe88f-dbb"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: B-zwiUDXpoEFIrwm7AP_ydQ4n_8Udo6YGMFCKi2vWUJzS59-gz5zMw==
Age: 51383
ocsp.r2m01.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash 850bda61ccaf5894643da7fc964608bd
0633048b79e877ee76b4aedfcc3109987701bbfa
9cc59c24ef28ed9281bdc35af6e4fe84da226a33f428639f630f83aba2c0c11b
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=150437
Date: Mon, 06 Mar 2023 10:46:59 GMT
Etag: "6403dbcb-1d7"
Expires: Wed, 08 Mar 2023 04:34:16 GMT
Last-Modified: Sun, 05 Mar 2023 00:01:15 GMT
Server: ECAcc (nya/7970)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -yjJcXWUEG3ewdwNCZBzuJGQSzlzFsZBuTyFOw5mmMHNXrD3FVFehQ==
Age: 102782
s3.amazonaws.com/pushext.com/sdk-v3.03.js
54.231.225.48200 OK 28 kB URL HTTP/1.1 s3.amazonaws.com/pushext.com/sdk-v3.03.js
IP 54.231.225.48:0
File type ASCII text, with CRLF line terminators
Hash ddcd86ed61e2264d6ebcfd75102f02ee
e0eccfc8ea444bd5eabcf38e22240b4db80fe34a
d568a00003589ad112ddf1f8a27c4cbf7b63a80b1df39a26d1ebc2f185417e53
GET /pushext.com/sdk-v3.03.js HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: QesVNAgfSkDfvJO3ezf6DGd1qZIbya5brJYiEbkeGfDuHTzJZoj7TQekvRxZsPfJp+/ZojCzjV8=
x-amz-request-id: DB03AR7JY9RX39AS
Date: Mon, 06 Mar 2023 10:47:01 GMT
Last-Modified: Wed, 30 Mar 2022 18:55:32 GMT
ETag: "ddcd86ed61e2264d6ebcfd75102f02ee"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 28274
www.facebook.com/tr/?id=274483184077389&ev=PageView&dl=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1&rl=&if=false&ts=1678099620373&sw=1280&sh=1024&v=2.9.98&r=stable&a=tmgoogletagmanager&ec=0&o=30&cs_est=true&fbp=fb.1.1678099620372.352607561&it=1678099618954&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=274483184077389&ev=PageView&dl=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1&rl=&if=false&ts=1678099620373&sw=1280&sh=1024&v=2.9.98&r=stable&a=tmgoogletagmanager&ec=0&o=30&cs_est=true&fbp=fb.1.1678099620372.352607561&it=1678099618954&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=274483184077389&ev=PageView&dl=https%3A%2F%2Fsamplesavenue.com%2Fbattery%2Fsignup%2F1&rl=&if=false&ts=1678099620373&sw=1280&sh=1024&v=2.9.98&r=stable&a=tmgoogletagmanager&ec=0&o=30&cs_est=true&fbp=fb.1.1678099620372.352607561&it=1678099618954&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 06 Mar 2023 10:47:00 GMT
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash 4e66b948b578d22be954a54bcd94af59
dd98ca7cbf48cdfa27f8f32cf7143f89b0bf96a8
226a314c582a018613afcbb19c28d245c744fd4d82d047b9b933d102c0393915
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=86351
Date: Mon, 06 Mar 2023 10:47:00 GMT
Etag: "64037ef2-1d7"
Expires: Tue, 07 Mar 2023 10:46:11 GMT
Last-Modified: Sat, 04 Mar 2023 17:25:06 GMT
Server: ECAcc (bsa/EB2E)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: oeHpxh5p3gTgILEgvX2GZGMXjR5iOaeBoYo4Xdl3llZDc9I7PxNY7Q==
Age: 62466
ocsp.r2m02.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash 0b59c2abbd34637881979668dc3a5deb
5f744f94a689fa73c1a6700ded9f5b7835c823d6
6256e4d0bcbbfa890d58972f38a8c629f410c04d0faca6b85b259dfdbb592ed9
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 06 Mar 2023 10:47:01 GMT
Last-Modified: Sun, 05 Mar 2023 11:31:39 GMT
Server: ECAcc (bsa/EB2E)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: INC8lwDxx4RwPPdUcvm9BVw71gYCPfMyDgRltLpLJMvEU3E3kZ_lKg==
Age: 83722
api.pushnami.com/scripts/v2/pushnami-sw/5cc0bb93e04a8c20b5240228
54.230.111.53200 OK 13 kB URL HTTP/2 api.pushnami.com/scripts/v2/pushnami-sw/5cc0bb93e04a8c20b5240228
IP 54.230.111.53:0
Hash 94426490f689c49e83dcb323337f4c02
f2f4d7bdba8707a0ff917677682bb6f39aeae8ee
1ea0d56e3845fe7d8ce81872daa43c6a995ea1f08748b5939e695416b91b96f0
GET /scripts/v2/pushnami-sw/5cc0bb93e04a8c20b5240228 HTTP/1.1
Host: api.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Mon, 06 Mar 2023 10:47:00 GMT
cache-control: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RYRIqiB5zjsOyBJWDcl0qGLMS_Xa-Fozt6z2a09oV0N3VM52b4p_Tw==
X-Firefox-Spdy: h2
ads.anura.io/showads.js?549728658363
54.230.111.27200 OK 20 B URL HTTP/2 ads.anura.io/showads.js?549728658363
IP 54.230.111.27:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /showads.js?549728658363 HTTP/1.1
Host: ads.anura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sun, 05 Mar 2023 16:17:23 GMT
server: nginx
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dBqLAnRN0FypT6fo_yCHmWnzMBo1ETnRIQ-qnXAPb_w-PuxtbtPEKw==
age: 66578
X-Firefox-Spdy: h2
api.trustedform.com/certs/c9e246e78d174d09a9d19d634bb4901f82140f18/snapshot
35.175.162.169204 No Content 0 B URL HTTP/2 api.trustedform.com/certs/c9e246e78d174d09a9d19d634bb4901f82140f18/snapshot
IP 35.175.162.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /certs/c9e246e78d174d09a9d19d634bb4901f82140f18/snapshot HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 58991
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 06 Mar 2023 10:47:02 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
api.trustedform.com/certs/c9e246e78d174d09a9d19d634bb4901f82140f18/fingerprints
35.175.162.169204 No Content 0 B URL HTTP/2 api.trustedform.com/certs/c9e246e78d174d09a9d19d634bb4901f82140f18/fingerprints
IP 35.175.162.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /certs/c9e246e78d174d09a9d19d634bb4901f82140f18/fingerprints HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 692
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 06 Mar 2023 10:47:02 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
psp.pushnami.com/api/psp
54.167.183.48200 OK 69 B IP 54.167.183.48:0
File type JSON data\012- , ASCII text, with no line terminators
Hash cef934af42a2b3c3a2ef347da15d70ee
f83f1f069fcc230e3c9397653eef8ddd4d66c9a9
47e250e449472cb557a99ef04f6b6b5a407034f197d911e6301193c20c2f1cee
OPTIONS /api/psp HTTP/1.1
Host: psp.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: key
Referer: https://samplesavenue.com/
Origin: https://samplesavenue.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:47:03 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://samplesavenue.com
access-control-allow-credentials: true
access-control-expose-headers: content-type, content-length, etag
access-control-max-age: 600
access-control-allow-headers: key
access-control-allow-methods: POST
cache-control: no-cache
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
imgs.tagadamedia.com/media/us/25/homeyou-logo-2550.svg
138.199.36.10200 OK 0 B URL HTTP/2 imgs.tagadamedia.com/media/us/25/homeyou-logo-2550.svg
IP 138.199.36.10:0
ASN #60068 Datacamp Limited
GET /media/us/25/homeyou-logo-2550.svg HTTP/1.1
Host: imgs.tagadamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:57 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: BunnyCDN-DE1-1053
cdn-pullzone: 61945
cdn-uid: 5d127034-96a6-45e8-a482-4f40615f18db
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 10 Feb 2023 13:06:59 GMT
x-amz-id-2: lYZiywp3PmBSUkeOu7E93vNVnbVknNccwFe6MZC0PQoO7UnFKJSuw6Xo39TmK0n3RxdFgMDJaVE=
x-amz-request-id: PK8R0DK1DQ2A6VFZ
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 02/10/2023 13:06:59
cdn-edgestorageid: 863
cdn-status: 200
cdn-requestid: 9b1556bf233abe2b4e5d1a017110ff68
cdn-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
imgs.tagadamedia.com/media/us/24/isi-international-4-2481.svg
138.199.36.10200 OK 0 B URL HTTP/2 imgs.tagadamedia.com/media/us/24/isi-international-4-2481.svg
IP 138.199.36.10:0
ASN #60068 Datacamp Limited
GET /media/us/24/isi-international-4-2481.svg HTTP/1.1
Host: imgs.tagadamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:57 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: BunnyCDN-DE1-1053
cdn-pullzone: 61945
cdn-uid: 5d127034-96a6-45e8-a482-4f40615f18db
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Wed, 21 Dec 2022 13:43:46 GMT
x-amz-id-2: 16VTJhr/H4+wHNo8XyCXDNjAvWgvp/1Ub8/Kt41VCm95uzfsduELbpuXtUN54AeUcSblz1mE64s=
x-amz-request-id: X1PZ3JYN7M14ZMWX
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 12/21/2022 13:43:45
cdn-edgestorageid: 722
cdn-status: 200
cdn-requestid: 24397e3e53d857da8db3972ca67cfd84
cdn-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/SaveDom?msn=2&pid=16f2ea85-0ab0-44db-b7a1-4652a60c478c&token=17A12B85-E485-AF72-71F4-22F5D9B2447B&_=945058425
52.72.8.210200 OK 0 B URL HTTP/2 create.leadid.com/2.11.9/SaveDom?msn=2&pid=16f2ea85-0ab0-44db-b7a1-4652a60c478c&token=17A12B85-E485-AF72-71F4-22F5D9B2447B&_=945058425
IP 52.72.8.210:0
POST /2.11.9/SaveDom?msn=2&pid=16f2ea85-0ab0-44db-b7a1-4652a60c478c&token=17A12B85-E485-AF72-71F4-22F5D9B2447B&_=945058425 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 512
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:59 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Wed, 05-Apr-2023 10:46:59 GMT; Max-Age=2592000; path=/
rguserid=0f180ccb-fcbf-4b55-b924-a6fb297b27d2; expires=Wed, 05-Apr-2023 10:46:59 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Wed, 05-Apr-2023 10:46:59 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Wed, 05-Apr-2023 10:46:59 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
s.yimg.com/wi/ytc.js
87.248.119.252200 OK 0 B IP 87.248.119.252:0
ASN #203220 Yahoo! UK Services Limited
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JBoAQ0BesO4SI3MpG/579D4pdaGZoFWZLCywOOfoIRZgZFWZvv+tgREd1OQgmigSp2jc3Dr1c/rioIQAxSAbK2F7tqKARW62JTsx5pNklkg=
x-amz-request-id: VF80YMKPTYQ9VFAP
date: Mon, 06 Mar 2023 10:46:44 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 15
content-encoding: gzip
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
samplesavenue.com/js/app.js?id=f2c75101ca4df1e15b33
52.4.190.211200 OK 0 B URL HTTP/2 samplesavenue.com/js/app.js?id=f2c75101ca4df1e15b33
IP 52.4.190.211:0
GET /js/app.js?id=f2c75101ca4df1e15b33 HTTP/1.1
Host: samplesavenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/battery/signup/1
Cookie: contest_session=jTdjKRtJWB60yjIgmAwW4m1PD5PTcKHmXlrsyVz0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:56 GMT
content-type: application/javascript
last-modified: Mon, 06 Mar 2023 09:17:38 GMT
etag: "ec167-5f637c425d080-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
imgs.tagadamedia.com/media/us/20/512x512-2088.svg
138.199.36.10200 OK 0 B URL HTTP/2 imgs.tagadamedia.com/media/us/20/512x512-2088.svg
IP 138.199.36.10:0
ASN #60068 Datacamp Limited
GET /media/us/20/512x512-2088.svg HTTP/1.1
Host: imgs.tagadamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:57 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: BunnyCDN-DE1-1053
cdn-pullzone: 61945
cdn-uid: 5d127034-96a6-45e8-a482-4f40615f18db
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Mon, 24 Jan 2022 11:11:38 GMT
x-amz-id-2: p2nd6I7cqVmSzjag686VzlXejBGm9AgTi97uKJSaOU1uyzyz6ju1ncWde0MN5mo1ciYGTgarTo8=
x-amz-request-id: AQNKFVS6T6N0GTJC
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 01/15/2023 14:28:49
cdn-edgestorageid: 1049
cdn-status: 200
cdn-requestid: aa6103468da739b3e45bb5e74d2101c9
cdn-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
imgs.tagadamedia.com/media/us/24/awl-red-2482.svg
138.199.36.10200 OK 0 B URL HTTP/2 imgs.tagadamedia.com/media/us/24/awl-red-2482.svg
IP 138.199.36.10:0
ASN #60068 Datacamp Limited
GET /media/us/24/awl-red-2482.svg HTTP/1.1
Host: imgs.tagadamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:57 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: BunnyCDN-DE1-1053
cdn-pullzone: 61945
cdn-uid: 5d127034-96a6-45e8-a482-4f40615f18db
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Wed, 21 Dec 2022 13:49:57 GMT
x-amz-id-2: hj3R3n03xlBj+Oeb3qtGxDoPA0cgAgZ9liSO1s9pHx3YIeb4cIMTUysqEAt2fRtQqTp6XMqIaRE=
x-amz-request-id: V8NYXG7481NSDX0M
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 12/21/2022 13:49:56
cdn-edgestorageid: 1053
cdn-status: 200
cdn-requestid: 36dbea5f3f90763c804b408c4b189b44
cdn-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
imgs.tagadamedia.com/media/us/20/450x70-2089.svg
138.199.36.10200 OK 0 B URL HTTP/2 imgs.tagadamedia.com/media/us/20/450x70-2089.svg
IP 138.199.36.10:0
ASN #60068 Datacamp Limited
GET /media/us/20/450x70-2089.svg HTTP/1.1
Host: imgs.tagadamedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:56 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: BunnyCDN-DE1-1053
cdn-pullzone: 61945
cdn-uid: 5d127034-96a6-45e8-a482-4f40615f18db
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Mon, 24 Jan 2022 11:11:38 GMT
x-amz-id-2: +rpdt03bRSczyjpP3KDBr+3bvH1RdGv2Ry3kWLQZOyM1YipGst2hd4YY3cvsGfMvxGMzOEFXhW8=
x-amz-request-id: WPFPH5GNAJMCRQ32
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 01/15/2023 11:20:14
cdn-edgestorageid: 1053
cdn-status: 200
cdn-requestid: ac20f5e046e65e0b2b7cc36b114756ab
cdn-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.trustedform.com/trustedform-1.8.38.js
54.230.111.103200 OK 0 B URL HTTP/2 cdn.trustedform.com/trustedform-1.8.38.js
IP 54.230.111.103:0
GET /trustedform-1.8.38.js HTTP/1.1
Host: cdn.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 24 Feb 2023 16:04:14 GMT
x-amz-version-id: ffJa67w_.T4JjuAeq9bT6P3fBUPuRaPp
server: AmazonS3
content-encoding: gzip
date: Mon, 06 Mar 2023 10:47:01 GMT
etag: W/"a71c6d4fa015e7b61cc1fc54ff9b242e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BO9LViJOYKvJvKU3ImD7ercDHCm1XJhUvnUQHTCu3JbiHyS7-jPZnw==
age: 19
X-Firefox-Spdy: h2
cache.consentframework.com/js/pa/26948/c/Ifv2D/stub
104.26.5.102200 OK 0 B URL HTTP/2 cache.consentframework.com/js/pa/26948/c/Ifv2D/stub
IP 104.26.5.102:0
GET /js/pa/26948/c/Ifv2D/stub HTTP/1.1
Host: cache.consentframework.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:56 GMT
content-type: text/javascript; charset=UTF-8
cache-control: max-age=3600
strict-transport-security: max-age=15724800; includeSubDomains; preload
last-modified: Mon, 06 Mar 2023 10:40:02 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sLsqrfbQqfGF9SuIudWC70SKx5BlaXFU7Cu9q4%2FYCh6ylLL9YejVxHxMU%2FiELEsw9AZqyz8o0upcfwSPbUfn9Tqqn2pXbUHUGrz%2Begq6ZH7k3XmRL42eaX%2F1nH%2BLUOhfRRtmzOI6Hr5rK7Gy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a3a048a0b070b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
script.anura.io/response.json
18.133.63.102200 OK 0 B URL HTTP/2 script.anura.io/response.json
IP 18.133.63.102:0
POST /response.json HTTP/1.1
Host: script.anura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 3072
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:47:02 GMT
content-type: application/json; charset=utf-8
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST
expires: Sun, 28 Dec 1980 18:57:00 EST
cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
psp.pushnami.com/api/psp
54.167.183.48200 OK 0 B IP 54.167.183.48:0
POST /api/psp HTTP/1.1
Host: psp.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://samplesavenue.com/
content-type: application/x-www-form-urlencoded
key: 5cc0bb93e04a8c20b5240228
Origin: https://samplesavenue.com
Content-Length: 98
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:47:04 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: https://samplesavenue.com
access-control-allow-credentials: true
cache-control: no-cache
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
api.pushnami.com/scripts/v1/hub
54.230.111.53200 OK 0 B URL HTTP/2 api.pushnami.com/scripts/v1/hub
IP 54.230.111.53:0
GET /scripts/v1/hub HTTP/1.1
Host: api.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Mon, 06 Mar 2023 10:15:08 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,PUT,POST,DELETE
access-control-allow-headers: X-Requested-With
content-security-policy: default-src 'unsafe-inline' *
x-content-security-policy: default-src 'unsafe-inline' *
x-webkit-csp: default-src 'unsafe-inline' *
cache-control: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cpwrUsUNvNWKYHENxXBDhJs-QpQNGhhL8MEgNVXtQS7qBhtYxUkxxA==
age: 1912
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/GenerateToken?msn=1&pid=16f2ea85-0ab0-44db-b7a1-4652a60c478c&_=945058424
52.72.8.210200 OK 0 B URL HTTP/2 create.leadid.com/2.11.9/GenerateToken?msn=1&pid=16f2ea85-0ab0-44db-b7a1-4652a60c478c&_=945058424
IP 52.72.8.210:0
POST /2.11.9/GenerateToken?msn=1&pid=16f2ea85-0ab0-44db-b7a1-4652a60c478c&_=945058424 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 185
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:46:59 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Wed, 05-Apr-2023 10:46:59 GMT; Max-Age=2592000; path=/
rguserid=389ae244-cd89-463d-b7a9-07546a718591; expires=Wed, 05-Apr-2023 10:46:59 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Wed, 05-Apr-2023 10:46:59 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Wed, 05-Apr-2023 10:46:59 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/InitFormData?msn=3&pid=16f2ea85-0ab0-44db-b7a1-4652a60c478c&token=17A12B85-E485-AF72-71F4-22F5D9B2447B&_=945058426
52.72.8.210200 OK 0 B URL HTTP/2 create.leadid.com/2.11.9/InitFormData?msn=3&pid=16f2ea85-0ab0-44db-b7a1-4652a60c478c&token=17A12B85-E485-AF72-71F4-22F5D9B2447B&_=945058426
IP 52.72.8.210:0
POST /2.11.9/InitFormData?msn=3&pid=16f2ea85-0ab0-44db-b7a1-4652a60c478c&token=17A12B85-E485-AF72-71F4-22F5D9B2447B&_=945058426 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 74996
Origin: https://samplesavenue.com
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Mar 2023 10:47:00 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Wed, 05-Apr-2023 10:47:00 GMT; Max-Age=2592000; path=/
rguserid=30ab458d-0371-496e-b499-bad30f8c6088; expires=Wed, 05-Apr-2023 10:47:00 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Wed, 05-Apr-2023 10:47:00 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Wed, 05-Apr-2023 10:47:00 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
api.pushnami.com/scripts/v1/pushnami-adv/5cc0bb93e04a8c20b5240228
54.230.111.53200 OK 0 B URL HTTP/2 api.pushnami.com/scripts/v1/pushnami-adv/5cc0bb93e04a8c20b5240228
IP 54.230.111.53:0
GET /scripts/v1/pushnami-adv/5cc0bb93e04a8c20b5240228 HTTP/1.1
Host: api.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samplesavenue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Mon, 06 Mar 2023 10:46:58 GMT
cache-control: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 49GDLk_cxwTS7Ox5rzVfPwcsErTcIpb0s1KmPWt9bmEu5IPx3W_pfw==
X-Firefox-Spdy: h2